This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4a523b-7244-422d-9004-c4aa9db1abb5/1/MCX9M5qmRQTyiaAMQXPFWgAC60Q.mft File: MCX9M5qmRQTyiaAMQXPFWgAC60Q.mft (raw, json) Hash identifier: Juf6psB8JyUzV8XPbGHe9CNhP1yV3i0idjldhHvo26k= Subject key identifier: 56:D6:92:00:6D:6C:2D:15:77:BF:26:0F:E4:6E:A3:6A:7A:01:B0:FC Authority key identifier: 30:25:FD:33:9A:A6:45:04:F2:89:A0:0C:41:73:C5:5A:00:02:EB:44 Certificate issuer: /CN=3025fd339aa64504f289a00c4173c55a0002eb44 Certificate serial: 019C43C6A9BEA686D793CDF1BF45E36D228B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MCX9M5qmRQTyiaAMQXPFWgAC60Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4a523b-7244-422d-9004-c4aa9db1abb5/1/MCX9M5qmRQTyiaAMQXPFWgAC60Q.mft Manifest number: 11D9 Signing time: Mon 09 Feb 2026 19:00:18 +0000 Manifest this update: Mon 09 Feb 2026 19:00:18 +0000 Manifest next update: Tue 10 Feb 2026 19:00:18 +0000 Files and hashes: 1: MCX9M5qmRQTyiaAMQXPFWgAC60Q.crl (hash: yOH1tvxf3ngQ857CvHc1uvAgycQ+Rkkm1k5JDDNGSxI=) 2: nmezCljgDKAAsVa5oeMHTBs1c_U.roa (hash: Xymj/HTNJ2zrfxFUZg4F510dD3oB+LKLTaSEqJfdsGA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/4a523b-7244-422d-9004-c4aa9db1abb5/1/MCX9M5qmRQTyiaAMQXPFWgAC60Q.crl rsync://rpki.ripe.net/repository/DEFAULT/8c/4a523b-7244-422d-9004-c4aa9db1abb5/1/MCX9M5qmRQTyiaAMQXPFWgAC60Q.mft rsync://rpki.ripe.net/repository/DEFAULT/MCX9M5qmRQTyiaAMQXPFWgAC60Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:a9:be:a6:86:d7:93:cd:f1:bf:45:e3:6d:22:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3025fd339aa64504f289a00c4173c55a0002eb44 Validity Not Before: Feb 9 19:00:18 2026 GMT Not After : Feb 10 19:00:18 2026 GMT Subject: CN=56d692006d6c2d1577bf260fe46ea36a7a01b0fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:59:48:0b:46:32:75:e4:16:bb:ff:18:a6:9c: 48:05:99:a4:2e:29:02:5f:1d:5c:80:e8:57:75:13: 28:25:d6:e4:ca:7c:f7:98:61:d3:a5:35:be:88:dc: 91:b9:78:96:56:f5:3e:d6:cf:d6:fc:c1:68:7d:a9: 69:30:38:20:2a:92:34:cc:18:1b:c3:fb:90:b3:5f: 74:f5:d3:3c:76:73:9f:3c:f4:92:fb:33:42:5b:c6: 02:60:a9:ae:ae:21:59:62:c0:93:06:e2:9d:0e:5e: 10:97:a3:25:55:8b:bc:0e:4c:24:49:50:cd:9b:fa: e1:b5:f9:d9:8d:f5:1f:54:22:fe:93:cd:35:bf:06: 6b:14:6b:07:4a:d7:63:c7:e3:0a:73:cf:63:c0:6b: b6:71:8d:48:f7:06:9b:55:77:67:4b:2e:3c:af:50: a6:98:1a:2f:8b:2b:91:01:a1:ae:49:2b:f7:ce:95: 39:2e:75:4d:f4:13:58:3d:25:aa:b6:15:b5:8c:2e: 18:d7:1e:c1:a5:b0:54:1f:49:21:fa:24:8d:75:a0: 21:b3:22:61:35:73:0b:f7:ad:d8:f7:f4:09:fc:a0: a1:31:42:51:05:9c:d0:cb:0d:00:1d:9e:cb:99:cc: 10:dd:49:74:64:cc:c9:1e:87:aa:06:62:13:9c:74: 22:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:D6:92:00:6D:6C:2D:15:77:BF:26:0F:E4:6E:A3:6A:7A:01:B0:FC X509v3 Authority Key Identifier: keyid:30:25:FD:33:9A:A6:45:04:F2:89:A0:0C:41:73:C5:5A:00:02:EB:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCX9M5qmRQTyiaAMQXPFWgAC60Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4a523b-7244-422d-9004-c4aa9db1abb5/1/MCX9M5qmRQTyiaAMQXPFWgAC60Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4a523b-7244-422d-9004-c4aa9db1abb5/1/MCX9M5qmRQTyiaAMQXPFWgAC60Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:e0:d1:15:85:2f:d5:97:9c:cb:8d:a8:06:02:07:49:5c:34: d7:12:c2:df:9f:52:2f:3a:3c:90:1f:e6:33:ea:64:5e:07:62: df:b7:3f:d0:8e:67:e7:12:05:34:e9:9e:9b:6c:1d:db:8e:7a: 43:21:22:ba:07:1b:91:42:fb:bd:ed:c9:41:14:ec:d2:47:84: 95:89:18:91:93:17:18:cc:ce:8b:2c:7d:2c:f4:19:89:1b:00: b2:f6:6d:c0:2a:6c:43:38:09:b3:6b:b9:03:58:c0:b9:60:92: a8:61:05:fd:04:92:f0:62:f4:0d:11:2d:bd:55:db:b4:82:8e: e3:55:d1:04:31:93:e5:8b:9b:b0:31:b8:c6:f0:c6:ee:f1:04: 52:d7:ba:3a:b7:12:29:e5:e5:43:b3:12:6e:ed:90:dd:a9:a4: b0:ac:56:42:b8:cc:95:29:d5:47:df:b6:77:d0:cd:e3:0a:1e: d8:01:29:16:c2:bb:07:83:86:61:62:0a:78:35:cd:e7:ba:5a: 31:93:47:79:58:88:7e:55:c3:3a:ba:e4:6c:e2:6f:f0:ae:36: 41:22:e9:77:d3:79:bb:53:08:1d:bf:8f:df:08:c7:f6:3e:d9: fe:2c:59:39:1f:65:ef:75:6f:2c:ff:60:bd:3e:a0:c4:4e:b7: ec:d7:ea:02 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxqm+pobXk83xv0XjbSKLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwMjVmZDMzOWFhNjQ1MDRmMjg5YTAwYzQxNzNjNTVhMDAw MmViNDQwHhcNMjYwMjA5MTkwMDE4WhcNMjYwMjEwMTkwMDE4WjAzMTEwLwYDVQQD Eyg1NmQ2OTIwMDZkNmMyZDE1NzdiZjI2MGZlNDZlYTM2YTdhMDFiMGZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx1lIC0YydeQWu/8YppxIBZmkLikC Xx1cgOhXdRMoJdbkynz3mGHTpTW+iNyRuXiWVvU+1s/W/MFofalpMDggKpI0zBgb w/uQs1909dM8dnOfPPSS+zNCW8YCYKmuriFZYsCTBuKdDl4Ql6MlVYu8DkwkSVDN m/rhtfnZjfUfVCL+k801vwZrFGsHStdjx+MKc89jwGu2cY1I9wabVXdnSy48r1Cm mBoviyuRAaGuSSv3zpU5LnVN9BNYPSWqthW1jC4Y1x7BpbBUH0kh+iSNdaAhsyJh NXML963Y9/QJ/KChMUJRBZzQyw0AHZ7LmcwQ3Ul0ZMzJHoeqBmITnHQiJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFbWkgBtbC0Vd78mD+Ruo2p6AbD8MB8GA1UdIwQY MBaAFDAl/TOapkUE8omgDEFzxVoAAutEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUNYOU01cW1SUVR5aWFBTVFYUEZXZ0FDNjBRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy80YTUyM2ItNzI0NC00MjJkLTkwMDQt YzRhYTlkYjFhYmI1LzEvTUNYOU01cW1SUVR5aWFBTVFYUEZXZ0FDNjBRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yy80YTUyM2ItNzI0NC00MjJkLTkwMDQtYzRhYTlkYjFhYmI1 LzEvTUNYOU01cW1SUVR5aWFBTVFYUEZXZ0FDNjBRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATeDRFYUv 1Zecy42oBgIHSVw01xLC359SLzo8kB/mM+pkXgdi37c/0I5n5xIFNOmem2wd2456 QyEiugcbkUL7ve3JQRTs0keElYkYkZMXGMzOiyx9LPQZiRsAsvZtwCpsQzgJs2u5 A1jAuWCSqGEF/QSS8GL0DREtvVXbtIKO41XRBDGT5YubsDG4xvDG7vEEUte6OrcS KeXlQ7MSbu2Q3amksKxWQrjMlSnVR9+2d9DN4woe2AEpFsK7B4OGYWIKeDXN57pa MZNHeViIflXDOrrkbOJv8K42QSLpd9N5u1MIHb+P3wjH9j7Z/ixZOR9l73VvLP9g vT6gxE637NfqAg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:44:50 2026 by rpki-client