This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft File: MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft (raw, json) Hash identifier: ni6C5jSz8Od9XbVUUxurumtEQ2zBn6V3b9cOFw6rJfk= Subject key identifier: 8F:C7:AA:01:6B:7F:C4:DB:76:83:F5:9D:B2:96:35:F0:AE:EE:D7:C6 Authority key identifier: 32:C2:BE:48:3F:F2:7B:B8:F0:DC:09:CE:0F:71:F2:A8:8E:AF:7E:07 Certificate issuer: /CN=32c2be483ff27bb8f0dc09ce0f71f2a88eaf7e07 Certificate serial: 019C416ACD11F2E0222A9203EB19FEC80686 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MsK-SD_ye7jw3AnOD3HyqI6vfgc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft Manifest number: 1812 Signing time: Mon 09 Feb 2026 08:00:44 +0000 Manifest this update: Mon 09 Feb 2026 08:00:44 +0000 Manifest next update: Tue 10 Feb 2026 08:00:44 +0000 Files and hashes: 1: CXw4IiYcMMsq5Ub-2HQJVH14IxY.roa (hash: W9tE5EUHkQFTRiFxznT+ictJcHvJ5wZk3oWmLH3VHTs=) 2: MsK-SD_ye7jw3AnOD3HyqI6vfgc.crl (hash: 4lFmSS1O/puM3WjvVLNJp3PY9EHLIudchb1afiurWV4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.crl rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft rsync://rpki.ripe.net/repository/DEFAULT/MsK-SD_ye7jw3AnOD3HyqI6vfgc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 08:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:6a:cd:11:f2:e0:22:2a:92:03:eb:19:fe:c8:06:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32c2be483ff27bb8f0dc09ce0f71f2a88eaf7e07 Validity Not Before: Feb 9 08:00:44 2026 GMT Not After : Feb 10 08:00:44 2026 GMT Subject: CN=8fc7aa016b7fc4db7683f59db29635f0aeeed7c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:3d:ea:6b:8e:66:09:18:1d:4f:6e:22:b4:af: a9:6a:ef:e7:29:f2:2c:44:5b:f0:13:9a:dd:4d:ed: a5:d3:5a:5a:87:6f:2e:9e:74:09:2d:68:f5:aa:ea: 8a:ac:7b:f4:4e:79:7b:5a:24:ea:53:c7:01:ce:49: 39:71:0a:a9:5d:a9:42:36:a4:2d:04:71:e9:68:74: 67:8f:a6:0f:a2:54:d3:c3:65:b3:75:f9:fc:52:d2: 9a:2f:74:6c:62:fd:ae:bf:0b:0e:fa:42:9a:4f:ea: f6:a8:48:ae:10:a9:38:ac:b9:df:5a:6a:1c:c8:22: a0:f6:d6:8a:05:aa:b6:15:24:34:a8:58:dd:64:44: ee:a0:0d:9c:3a:ae:a3:0d:da:92:fb:49:a8:72:e2: 91:2f:eb:0b:a5:52:c0:0d:08:d1:3a:e7:1e:b5:d9: 2f:a4:73:91:24:87:34:3b:42:4a:49:c9:7f:05:f0: 0a:30:0d:a7:07:ad:6d:37:60:ae:b0:97:68:c3:9c: 23:43:31:d1:68:26:9c:4e:2a:cf:f8:d4:47:0f:b0: 6d:78:52:b4:ad:b1:fa:52:79:f2:01:26:bf:86:71: eb:c6:9c:ab:6b:82:e8:ed:ef:ab:f5:19:29:d9:db: 2a:9f:93:ee:84:db:e4:59:05:62:56:78:64:f8:ad: c6:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:C7:AA:01:6B:7F:C4:DB:76:83:F5:9D:B2:96:35:F0:AE:EE:D7:C6 X509v3 Authority Key Identifier: keyid:32:C2:BE:48:3F:F2:7B:B8:F0:DC:09:CE:0F:71:F2:A8:8E:AF:7E:07 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MsK-SD_ye7jw3AnOD3HyqI6vfgc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:4a:57:b3:45:3c:8f:8a:ee:25:8a:c2:fd:ef:e1:0a:0a:0b: 0c:bf:fb:26:7e:c8:77:e4:43:20:04:72:f2:a9:f2:9b:20:7e: 44:a3:98:58:dd:ac:d6:cc:75:72:61:c0:53:c4:68:d3:70:cd: 88:b7:bc:83:96:d8:d4:c7:d7:e2:e0:e5:b1:c3:5a:65:82:f7: c1:e6:a7:06:cf:2c:70:8f:89:4b:48:63:ac:9e:bc:53:f7:4f: b5:95:7a:6d:d2:57:39:e7:ff:8e:35:b9:7c:ec:e3:f1:9f:06: 68:2e:33:4a:3a:34:ac:24:9c:31:bb:fe:97:96:3c:44:15:be: 1e:74:96:31:dd:93:fa:fe:0b:37:42:31:fc:c1:25:80:58:52: e3:3e:31:83:76:23:07:85:4f:b4:ba:89:ed:3a:0d:c9:04:09: 95:05:24:eb:a1:ec:f2:5e:28:2b:19:51:66:a4:f5:9e:cf:2a: 12:99:e6:15:84:c7:41:12:17:b6:0b:84:a8:b0:98:c8:c0:35: 0c:0d:67:71:ee:3c:b0:86:57:42:10:97:32:0c:e7:5e:f2:c2: 8e:d1:39:9b:98:9d:14:e5:1b:10:26:cb:5e:71:da:7e:20:3f: 09:cc:fb:93:8c:cd:ee:07:37:03:04:e2:4c:7b:61:09:32:ef: f0:c6:62:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBas0R8uAiKpID6xn+yAaGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyYzJiZTQ4M2ZmMjdiYjhmMGRjMDljZTBmNzFmMmE4OGVh ZjdlMDcwHhcNMjYwMjA5MDgwMDQ0WhcNMjYwMjEwMDgwMDQ0WjAzMTEwLwYDVQQD Eyg4ZmM3YWEwMTZiN2ZjNGRiNzY4M2Y1OWRiMjk2MzVmMGFlZWVkN2M2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0z3qa45mCRgdT24itK+pau/nKfIs RFvwE5rdTe2l01pah28unnQJLWj1quqKrHv0Tnl7WiTqU8cBzkk5cQqpXalCNqQt BHHpaHRnj6YPolTTw2Wzdfn8UtKaL3RsYv2uvwsO+kKaT+r2qEiuEKk4rLnfWmoc yCKg9taKBaq2FSQ0qFjdZETuoA2cOq6jDdqS+0mocuKRL+sLpVLADQjROucetdkv pHORJIc0O0JKScl/BfAKMA2nB61tN2CusJdow5wjQzHRaCacTirP+NRHD7BteFK0 rbH6UnnyASa/hnHrxpyra4Lo7e+r9Rkp2dsqn5PuhNvkWQViVnhk+K3GEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI/HqgFrf8TbdoP1nbKWNfCu7tfGMB8GA1UdIwQY MBaAFDLCvkg/8nu48NwJzg9x8qiOr34HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTXNLLVNEX3llN2p3M0FuT0QzSHlxSTZ2ZmdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9mZjAwYzQtYjcyOC00NGEwLTk2MmQt OTczZGI5Y2U2OGI1LzEvTXNLLVNEX3llN2p3M0FuT0QzSHlxSTZ2ZmdjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC9mZjAwYzQtYjcyOC00NGEwLTk2MmQtOTczZGI5Y2U2OGI1 LzEvTXNLLVNEX3llN2p3M0FuT0QzSHlxSTZ2ZmdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApUpXs0U8 j4ruJYrC/e/hCgoLDL/7Jn7Id+RDIARy8qnymyB+RKOYWN2s1sx1cmHAU8Ro03DN iLe8g5bY1MfX4uDlscNaZYL3weanBs8scI+JS0hjrJ68U/dPtZV6bdJXOef/jjW5 fOzj8Z8GaC4zSjo0rCScMbv+l5Y8RBW+HnSWMd2T+v4LN0Ix/MElgFhS4z4xg3Yj B4VPtLqJ7ToNyQQJlQUk66Hs8l4oKxlRZqT1ns8qEpnmFYTHQRIXtguEqLCYyMA1 DA1nce48sIZXQhCXMgznXvLCjtE5m5idFOUbECbLXnHafiA/Ccz7k4zN7gc3AwTi THthCTLv8MZioA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:02 2026 by rpki-client