This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft File: 8khYdchHDmqs3JR0IQXzDFl6wrs.mft (raw, json) Hash identifier: 8ajjq+M37xyvLh63UUoXF4DzzhfdzrKvpZHaqGkEbN4= Subject key identifier: D9:06:9B:B8:8C:47:00:34:12:F9:35:85:FC:D7:C1:BE:69:07:75:D6 Authority key identifier: F2:48:58:75:C8:47:0E:6A:AC:DC:94:74:21:05:F3:0C:59:7A:C2:BB Certificate issuer: /CN=f2485875c8470e6aacdc94742105f30c597ac2bb Certificate serial: 019C43FDA3244B49EA79749EE95CDC2BF9CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft Manifest number: 0F0A Signing time: Mon 09 Feb 2026 20:00:21 +0000 Manifest this update: Mon 09 Feb 2026 20:00:21 +0000 Manifest next update: Tue 10 Feb 2026 20:00:21 +0000 Files and hashes: 1: 8khYdchHDmqs3JR0IQXzDFl6wrs.crl (hash: GLtl/Hfr5Z4X/cnFhX0CKPXNDHtRJcNTZDo73HewLXE=) 2: foPJ5M9ZOVkGAWVnVqDC4Cs4-NU.roa (hash: 1DlyQW+RNTimUxXGNa+g3AQuv/uMpZoTB33IBxZu3oc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:a3:24:4b:49:ea:79:74:9e:e9:5c:dc:2b:f9:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f2485875c8470e6aacdc94742105f30c597ac2bb Validity Not Before: Feb 9 20:00:21 2026 GMT Not After : Feb 10 20:00:21 2026 GMT Subject: CN=d9069bb88c47003412f93585fcd7c1be690775d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:fa:0d:81:3a:ed:9e:2d:68:f1:d7:32:65:4c: 1c:ec:87:92:4f:22:61:9d:7e:2a:d1:76:15:14:9d: 88:44:cf:68:0a:69:86:06:70:c4:34:37:21:b0:ad: 05:32:df:b8:26:35:53:08:58:e2:eb:e2:e3:a6:1e: 89:a5:4e:a3:a8:6c:26:2f:ed:01:d8:f5:fe:0b:a0: 5e:7b:e8:2e:f2:bb:b5:e3:5b:17:e0:36:d1:b8:1e: 9c:79:4c:a7:4d:59:50:25:3b:42:61:bc:c8:26:d4: 79:9b:56:54:97:b3:18:a4:55:87:8e:2a:e1:55:bf: c0:74:20:5a:31:20:00:51:09:ac:b0:f8:2b:bc:e9: a0:e4:da:95:13:2b:62:10:58:7d:01:f0:87:c5:3f: f0:ca:9c:22:7a:7d:a9:42:80:a4:45:27:02:d5:5c: 26:5d:13:d0:0d:5f:88:d9:d4:82:0c:1a:1c:46:d0: bc:20:2c:67:52:69:50:ec:7d:45:d5:db:0f:59:00: 8e:9b:8a:b8:0b:14:81:2b:49:ef:c7:b8:d7:db:c9: 2a:8a:8f:01:37:76:92:6f:11:40:e1:d3:65:99:ab: 4f:e9:dc:01:a6:f3:1f:04:96:0a:d5:13:12:f9:f2: dd:90:31:d0:05:42:42:1b:14:e7:15:b6:40:3c:03: 95:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:06:9B:B8:8C:47:00:34:12:F9:35:85:FC:D7:C1:BE:69:07:75:D6 X509v3 Authority Key Identifier: keyid:F2:48:58:75:C8:47:0E:6A:AC:DC:94:74:21:05:F3:0C:59:7A:C2:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:90:9b:75:48:b0:7f:31:68:42:97:06:18:12:c9:fd:b5:03: 89:62:ff:4d:95:c1:a3:ce:6a:d4:35:77:3e:e6:e5:c6:df:94: 18:e4:97:45:f4:e5:d0:6f:3b:b1:66:7f:e0:ca:09:d8:ac:53: 00:5e:11:79:54:b7:23:ed:3f:40:df:97:5f:1a:b4:c3:cd:e5: 03:e9:34:64:0c:ed:a1:c4:f3:13:68:0c:39:41:f1:1b:99:63: e1:05:b2:61:f6:b0:75:ad:db:68:b6:c2:0b:2b:e1:b1:f5:40: bd:99:09:02:94:48:01:59:79:47:1d:a8:d6:68:ad:bc:85:56: 88:f0:d7:09:5a:2f:d7:57:38:dd:8b:f9:34:be:8c:f1:e9:90: 1b:54:6c:2d:e0:77:65:12:4f:59:4d:0a:06:32:14:ce:3f:e8: 35:4e:87:52:c6:8f:b9:c3:8a:ad:75:ba:53:8c:9e:91:ea:ea: 3c:10:fa:6e:82:7d:ec:06:de:06:64:77:d8:89:19:bb:3b:29: 3f:f8:af:94:e2:29:88:40:76:20:4b:93:1a:8f:5b:a2:17:e4: a1:8f:ab:e4:22:92:df:ad:b6:cc:f2:e9:9f:03:86:e5:11:a1: 15:32:bd:b2:12:4f:4f:2f:6a:34:2b:a8:8e:fd:66:60:74:95: 7d:22:70:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/aMkS0nqeXSe6VzcK/nLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYyNDg1ODc1Yzg0NzBlNmFhY2RjOTQ3NDIxMDVmMzBjNTk3 YWMyYmIwHhcNMjYwMjA5MjAwMDIxWhcNMjYwMjEwMjAwMDIxWjAzMTEwLwYDVQQD EyhkOTA2OWJiODhjNDcwMDM0MTJmOTM1ODVmY2Q3YzFiZTY5MDc3NWQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3voNgTrtni1o8dcyZUwc7IeSTyJh nX4q0XYVFJ2IRM9oCmmGBnDENDchsK0FMt+4JjVTCFji6+Ljph6JpU6jqGwmL+0B 2PX+C6Bee+gu8ru141sX4DbRuB6ceUynTVlQJTtCYbzIJtR5m1ZUl7MYpFWHjirh Vb/AdCBaMSAAUQmssPgrvOmg5NqVEytiEFh9AfCHxT/wypwien2pQoCkRScC1Vwm XRPQDV+I2dSCDBocRtC8ICxnUmlQ7H1F1dsPWQCOm4q4CxSBK0nvx7jX28kqio8B N3aSbxFA4dNlmatP6dwBpvMfBJYK1RMS+fLdkDHQBUJCGxTnFbZAPAOVnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNkGm7iMRwA0Evk1hfzXwb5pB3XWMB8GA1UdIwQY MBaAFPJIWHXIRw5qrNyUdCEF8wxZesK7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOGtoWWRjaEhEbXFzM0pSMElRWHpERmw2d3JzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS81YTNmMGItODZmNS00MDZlLTkxZDUt OGZkNGMwMjQ0ODhlLzEvOGtoWWRjaEhEbXFzM0pSMElRWHpERmw2d3JzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS81YTNmMGItODZmNS00MDZlLTkxZDUtOGZkNGMwMjQ0ODhl LzEvOGtoWWRjaEhEbXFzM0pSMElRWHpERmw2d3JzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjJCbdUiw fzFoQpcGGBLJ/bUDiWL/TZXBo85q1DV3Publxt+UGOSXRfTl0G87sWZ/4MoJ2KxT AF4ReVS3I+0/QN+XXxq0w83lA+k0ZAztocTzE2gMOUHxG5lj4QWyYfawda3baLbC CyvhsfVAvZkJApRIAVl5Rx2o1mitvIVWiPDXCVov11c43Yv5NL6M8emQG1RsLeB3 ZRJPWU0KBjIUzj/oNU6HUsaPucOKrXW6U4yekerqPBD6boJ97AbeBmR32IkZuzsp P/ivlOIpiEB2IEuTGo9bohfkoY+r5CKS3622zPLpnwOG5RGhFTK9shJPTy9qNCuo jv1mYHSVfSJwMg== -----END CERTIFICATE-----Generated at Tue Feb 10 05:54:25 2026 by rpki-client