This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/421440-f82d-4fa7-a049-f32ba486339a/1/CPyf1Et5SoQuKacYi0qMbkcuHVA.mft File: CPyf1Et5SoQuKacYi0qMbkcuHVA.mft (raw, json) Hash identifier: aDhLcQZ7Canb/C2JQDZ4nkoS81uswMGB40s0UkaDSHg= Subject key identifier: BF:C7:67:E0:4A:93:68:D6:5E:ED:04:01:F8:E8:B4:EC:D2:56:54:24 Authority key identifier: 08:FC:9F:D4:4B:79:4A:84:2E:29:A7:18:8B:4A:8C:6E:47:2E:1D:50 Certificate issuer: /CN=08fc9fd44b794a842e29a7188b4a8c6e472e1d50 Certificate serial: 019C42B442BB6BBAD195F41EE3763849825A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPyf1Et5SoQuKacYi0qMbkcuHVA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/421440-f82d-4fa7-a049-f32ba486339a/1/CPyf1Et5SoQuKacYi0qMbkcuHVA.mft Manifest number: 32 Signing time: Mon 09 Feb 2026 14:00:35 +0000 Manifest this update: Mon 09 Feb 2026 14:00:35 +0000 Manifest next update: Tue 10 Feb 2026 14:00:35 +0000 Files and hashes: 1: 2Cp0m0oboXHVnEkkibc7MZ0iVno.roa (hash: 0rfuIAzK1SMPi5hQRwB+Vwr/Z1zW0RzBLtrMrDa24eI=) 2: CPyf1Et5SoQuKacYi0qMbkcuHVA.crl (hash: HxzP5s3elbFxxceBbVSDdkx3Y1CgBd0IP3moBUsFV9U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/421440-f82d-4fa7-a049-f32ba486339a/1/CPyf1Et5SoQuKacYi0qMbkcuHVA.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/421440-f82d-4fa7-a049-f32ba486339a/1/CPyf1Et5SoQuKacYi0qMbkcuHVA.mft rsync://rpki.ripe.net/repository/DEFAULT/CPyf1Et5SoQuKacYi0qMbkcuHVA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:42:bb:6b:ba:d1:95:f4:1e:e3:76:38:49:82:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08fc9fd44b794a842e29a7188b4a8c6e472e1d50 Validity Not Before: Feb 9 14:00:35 2026 GMT Not After : Feb 10 14:00:35 2026 GMT Subject: CN=bfc767e04a9368d65eed0401f8e8b4ecd2565424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2c:58:16:4c:75:a1:17:84:6a:f9:29:0a:b0: 2d:d4:56:e2:c1:62:00:df:5d:cb:94:14:5d:ac:86: bf:58:65:71:ba:8d:d7:fb:39:7d:83:b0:b6:7d:e3: 32:34:ea:11:85:9e:b4:9f:bc:76:85:a0:e3:11:e8: ad:f3:c1:06:da:88:d9:10:93:49:96:b7:03:ad:d2: 19:4d:ce:02:df:1d:2a:17:66:eb:af:94:22:d6:8e: ea:0c:95:51:7b:a1:a9:62:d3:f0:77:0c:a0:94:c0: fe:34:6c:bd:e7:e7:82:ad:e9:2f:2f:48:97:34:42: 23:df:e6:9c:63:48:d6:32:d8:16:f4:1e:a8:d3:44: 2f:4f:9e:8c:a0:e0:76:22:d4:9f:7d:40:dd:e7:8b: 92:83:7b:08:ed:f1:bd:1b:85:69:28:93:24:93:62: ca:b7:ef:a1:89:47:81:ab:e6:87:9a:ea:97:36:00: b0:2e:d9:79:d5:68:88:db:b4:cc:90:c5:7e:83:e8: 9b:7a:56:93:a2:02:d7:a9:e5:02:68:f9:5c:76:b0: 35:f5:58:e1:35:df:ee:c8:07:7c:1f:29:f4:a1:44: 8a:aa:ad:89:b5:0a:0b:79:e9:e3:05:29:cb:c6:11: de:97:98:4f:cb:f5:c1:fa:33:58:b7:04:ef:2f:73: e1:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:C7:67:E0:4A:93:68:D6:5E:ED:04:01:F8:E8:B4:EC:D2:56:54:24 X509v3 Authority Key Identifier: keyid:08:FC:9F:D4:4B:79:4A:84:2E:29:A7:18:8B:4A:8C:6E:47:2E:1D:50 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPyf1Et5SoQuKacYi0qMbkcuHVA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/421440-f82d-4fa7-a049-f32ba486339a/1/CPyf1Et5SoQuKacYi0qMbkcuHVA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/421440-f82d-4fa7-a049-f32ba486339a/1/CPyf1Et5SoQuKacYi0qMbkcuHVA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:10:78:68:e9:da:c3:f7:01:ea:a1:24:7c:38:79:ee:4f:b8: 82:8d:16:1d:ee:05:af:d2:be:08:25:48:e3:eb:a0:e6:75:2e: 3d:87:8b:b5:02:83:36:62:eb:84:50:27:f4:05:66:7a:be:e5: 2e:be:de:a8:ed:4a:56:ef:5a:40:0a:80:a2:b5:97:f4:2b:14: e3:bb:2f:48:87:29:63:fe:1b:fc:91:73:ee:28:d3:43:ed:14: bf:da:c4:ce:81:58:5c:41:38:4a:21:9a:fe:33:22:2b:f0:75: 26:9f:54:2c:e1:c5:1f:9f:17:d4:a7:8a:15:a1:3e:96:0d:d2: 8d:98:90:db:f3:0e:12:96:d2:89:bc:54:83:f2:63:0e:90:55: 6b:fe:4a:63:03:45:c9:a1:45:84:f0:ea:66:5a:6d:73:1d:0f: ab:45:5c:f3:ba:5a:fd:b4:32:cc:e7:5e:c3:af:1a:b0:0b:84: fa:56:1e:9b:92:17:84:28:83:f0:36:3c:85:9f:9b:02:1f:71: c4:60:0a:c2:6a:72:0b:be:0a:29:13:ff:28:0f:40:4f:3f:cc: 8f:a6:2c:b1:b1:1c:33:3a:37:cf:75:d8:7f:df:92:35:e4:72: b8:0a:08:92:25:d7:66:2c:bc:79:58:ab:76:68:4f:0b:27:a1: 67:51:fe:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtEK7a7rRlfQe43Y4SYJaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4ZmM5ZmQ0NGI3OTRhODQyZTI5YTcxODhiNGE4YzZlNDcy ZTFkNTAwHhcNMjYwMjA5MTQwMDM1WhcNMjYwMjEwMTQwMDM1WjAzMTEwLwYDVQQD EyhiZmM3NjdlMDRhOTM2OGQ2NWVlZDA0MDFmOGU4YjRlY2QyNTY1NDI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqixYFkx1oReEavkpCrAt1FbiwWIA 313LlBRdrIa/WGVxuo3X+zl9g7C2feMyNOoRhZ60n7x2haDjEeit88EG2ojZEJNJ lrcDrdIZTc4C3x0qF2brr5Qi1o7qDJVRe6GpYtPwdwyglMD+NGy95+eCrekvL0iX NEIj3+acY0jWMtgW9B6o00QvT56MoOB2ItSffUDd54uSg3sI7fG9G4VpKJMkk2LK t++hiUeBq+aHmuqXNgCwLtl51WiI27TMkMV+g+ibelaTogLXqeUCaPlcdrA19Vjh Nd/uyAd8Hyn0oUSKqq2JtQoLeenjBSnLxhHel5hPy/XB+jNYtwTvL3Ph2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL/HZ+BKk2jWXu0EAfjotOzSVlQkMB8GA1UdIwQY MBaAFAj8n9RLeUqELimnGItKjG5HLh1QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1B5ZjFFdDVTb1F1S2FjWWkwcU1ia2N1SFZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS80MjE0NDAtZjgyZC00ZmE3LWEwNDkt ZjMyYmE0ODYzMzlhLzEvQ1B5ZjFFdDVTb1F1S2FjWWkwcU1ia2N1SFZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS80MjE0NDAtZjgyZC00ZmE3LWEwNDktZjMyYmE0ODYzMzlh LzEvQ1B5ZjFFdDVTb1F1S2FjWWkwcU1ia2N1SFZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApRB4aOna w/cB6qEkfDh57k+4go0WHe4Fr9K+CCVI4+ug5nUuPYeLtQKDNmLrhFAn9AVmer7l Lr7eqO1KVu9aQAqAorWX9CsU47svSIcpY/4b/JFz7ijTQ+0Uv9rEzoFYXEE4SiGa /jMiK/B1Jp9ULOHFH58X1KeKFaE+lg3SjZiQ2/MOEpbSibxUg/JjDpBVa/5KYwNF yaFFhPDqZlptcx0Pq0Vc87pa/bQyzOdew68asAuE+lYem5IXhCiD8DY8hZ+bAh9x xGAKwmpyC74KKRP/KA9ATz/Mj6YssbEcMzo3z3XYf9+SNeRyuAoIkiXXZiy8eVir dmhPCyehZ1H+YQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:23:12 2026 by rpki-client