This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft File: MCbiQi-nIkVOYIMX0hhitmqjfTM.mft (raw, json) Hash identifier: ZG4CVeSh+OFbiDP+1mQizGiNjXFyzeUR6HGkjLOhDIA= Subject key identifier: B8:48:9B:24:BF:28:42:E8:DD:5C:C5:43:E2:AE:49:A1:95:CC:50:0C Authority key identifier: 30:26:E2:42:2F:A7:22:45:4E:60:83:17:D2:18:62:B6:6A:A3:7D:33 Certificate issuer: /CN=3026e2422fa722454e608317d21862b66aa37d33 Certificate serial: 019C432238EBF44F39501B0C3DCD018703BB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft Manifest number: 1760 Signing time: Mon 09 Feb 2026 16:00:42 +0000 Manifest this update: Mon 09 Feb 2026 16:00:42 +0000 Manifest next update: Tue 10 Feb 2026 16:00:42 +0000 Files and hashes: 1: MCbiQi-nIkVOYIMX0hhitmqjfTM.crl (hash: 8K5YAGYbKBeemeGbr0EGBOZd2ZKNZFWnyv94m6/7ezw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.crl rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:38:eb:f4:4f:39:50:1b:0c:3d:cd:01:87:03:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3026e2422fa722454e608317d21862b66aa37d33 Validity Not Before: Feb 9 16:00:42 2026 GMT Not After : Feb 10 16:00:42 2026 GMT Subject: CN=b8489b24bf2842e8dd5cc543e2ae49a195cc500c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:00:63:c5:44:29:ab:e4:da:16:a8:53:a3:7f: 8e:35:a9:b5:89:02:ae:56:bf:6d:59:fa:d7:c1:39: 9c:d9:fd:aa:81:9a:a9:fb:07:b2:ef:33:d0:76:4c: d2:68:d6:d0:50:8a:d6:44:d7:ea:a5:f0:d3:f6:6e: 75:b6:5b:76:d9:81:46:33:96:10:3a:4c:11:bc:58: 5f:82:76:d7:f5:2a:eb:11:85:9d:bb:3c:bf:ef:cb: 5c:7d:d0:a5:7f:24:e9:30:7f:ab:86:09:36:c4:1f: 55:ce:2f:23:9d:cb:16:2b:42:af:6c:00:bc:70:19: cd:3d:f8:49:c8:ef:d8:e4:42:2b:ba:a3:f6:96:32: ef:39:91:40:1b:20:32:8b:d4:5b:a7:74:9a:a3:0c: aa:bf:dc:94:42:fa:4f:31:08:35:32:87:65:d1:85: b3:b3:21:72:f5:33:74:2c:91:61:3c:a7:46:f7:df: 2e:73:63:04:26:f2:ef:d9:a8:6d:5e:da:ba:01:f9: 2a:7c:f7:0d:da:90:a9:80:83:62:d8:1f:f1:39:2d: e1:1f:a7:8d:77:5b:16:73:6d:9f:86:bc:89:0c:58: 6d:23:b9:c5:cb:90:e4:38:6f:75:c2:77:eb:eb:9f: c9:53:83:88:b3:ff:ba:91:87:f0:7d:69:01:5d:0d: f9:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:48:9B:24:BF:28:42:E8:DD:5C:C5:43:E2:AE:49:A1:95:CC:50:0C X509v3 Authority Key Identifier: keyid:30:26:E2:42:2F:A7:22:45:4E:60:83:17:D2:18:62:B6:6A:A3:7D:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:36:c1:8f:00:0e:68:88:43:31:70:c0:c0:c7:0f:5e:c3:3d: af:66:39:e0:77:ba:73:33:31:d1:3d:1b:85:75:2d:a7:8a:1d: 96:3d:07:21:29:da:95:80:7e:29:5a:f2:f9:96:f9:17:36:56: 96:1e:62:54:9a:ff:6e:c6:42:c2:a3:9c:25:b2:8b:5c:19:6a: e7:27:eb:b2:df:1c:34:28:5a:3f:4d:39:88:62:f8:b2:23:f1: cd:26:97:c3:25:65:40:cf:fa:45:f2:c6:da:5f:be:83:e6:8c: 7d:eb:2f:ac:db:c8:86:e4:d7:ad:36:0a:df:b2:dc:0b:54:0b: 79:59:0a:7e:23:df:db:36:47:a0:8d:39:a2:41:b2:b2:c7:bb: e0:be:a5:8c:80:b1:06:2a:0e:34:5a:32:7f:8b:01:5e:c6:92: 72:24:52:8e:58:af:84:c8:47:2e:9b:ac:79:fb:0b:5c:3b:0b: a9:da:f6:41:94:10:52:5d:1e:28:df:06:34:85:57:85:6d:47: e2:95:1f:c5:22:ce:02:16:e3:49:4d:f3:db:7e:4c:34:c2:22: ee:eb:2f:85:30:20:1c:a8:dc:15:e8:2d:51:24:aa:10:ee:37: c3:f8:09:bc:d9:da:2d:23:fe:e0:9c:71:0e:2b:0b:ef:30:9f: 33:7e:b4:7c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIjjr9E85UBsMPc0BhwO7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwMjZlMjQyMmZhNzIyNDU0ZTYwODMxN2QyMTg2MmI2NmFh MzdkMzMwHhcNMjYwMjA5MTYwMDQyWhcNMjYwMjEwMTYwMDQyWjAzMTEwLwYDVQQD EyhiODQ4OWIyNGJmMjg0MmU4ZGQ1Y2M1NDNlMmFlNDlhMTk1Y2M1MDBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwgBjxUQpq+TaFqhTo3+ONam1iQKu Vr9tWfrXwTmc2f2qgZqp+wey7zPQdkzSaNbQUIrWRNfqpfDT9m51tlt22YFGM5YQ OkwRvFhfgnbX9SrrEYWduzy/78tcfdClfyTpMH+rhgk2xB9Vzi8jncsWK0KvbAC8 cBnNPfhJyO/Y5EIruqP2ljLvOZFAGyAyi9Rbp3Saowyqv9yUQvpPMQg1Modl0YWz syFy9TN0LJFhPKdG998uc2MEJvLv2ahtXtq6AfkqfPcN2pCpgINi2B/xOS3hH6eN d1sWc22fhryJDFhtI7nFy5DkOG91wnfr65/JU4OIs/+6kYfwfWkBXQ35lwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLhImyS/KELo3VzFQ+KuSaGVzFAMMB8GA1UdIwQY MBaAFDAm4kIvpyJFTmCDF9IYYrZqo30zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUNiaVFpLW5Ja1ZPWUlNWDBoaGl0bXFqZlRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9iNzkyY2MtYWI5Ni00NTZlLTlkM2Ut YTFlZTQ0MGZmZTNlLzEvTUNiaVFpLW5Ja1ZPWUlNWDBoaGl0bXFqZlRNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS9iNzkyY2MtYWI5Ni00NTZlLTlkM2UtYTFlZTQ0MGZmZTNl LzEvTUNiaVFpLW5Ja1ZPWUlNWDBoaGl0bXFqZlRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIjbBjwAO aIhDMXDAwMcPXsM9r2Y54He6czMx0T0bhXUtp4odlj0HISnalYB+KVry+Zb5FzZW lh5iVJr/bsZCwqOcJbKLXBlq5yfrst8cNChaP005iGL4siPxzSaXwyVlQM/6RfLG 2l++g+aMfesvrNvIhuTXrTYK37LcC1QLeVkKfiPf2zZHoI05okGysse74L6ljICx BioONFoyf4sBXsaSciRSjlivhMhHLpusefsLXDsLqdr2QZQQUl0eKN8GNIVXhW1H 4pUfxSLOAhbjSU3z235MNMIi7usvhTAgHKjcFegtUSSqEO43w/gJvNnaLSP+4Jxx DisL7zCfM360fA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:16 2026 by rpki-client