This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/f8eb9c-5b99-4cef-93f0-48f151b5231f/1/yxAkP5hjb6oPtsWua62bCrrSNDg.mft File: yxAkP5hjb6oPtsWua62bCrrSNDg.mft (raw, json) Hash identifier: ZwFidGA1bVjyZOkoDK8Oulo/VKXmORV7QWpMacKjy1Y= Subject key identifier: 2B:8F:EB:61:FA:44:AF:E1:DB:67:C3:22:55:95:E8:E6:72:2D:5B:C3 Authority key identifier: CB:10:24:3F:98:63:6F:AA:0F:B6:C5:AE:6B:AD:9B:0A:BA:D2:34:38 Certificate issuer: /CN=cb10243f98636faa0fb6c5ae6bad9b0abad23438 Certificate serial: 019C435912D7FCEB01B8B8715DE5FD707E4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yxAkP5hjb6oPtsWua62bCrrSNDg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/f8eb9c-5b99-4cef-93f0-48f151b5231f/1/yxAkP5hjb6oPtsWua62bCrrSNDg.mft Manifest number: 1122 Signing time: Mon 09 Feb 2026 17:00:36 +0000 Manifest this update: Mon 09 Feb 2026 17:00:36 +0000 Manifest next update: Tue 10 Feb 2026 17:00:36 +0000 Files and hashes: 1: EqMzjpZI_PA25pj2HGjF-sxEQuw.roa (hash: Q+Tx0hJ38g+PHWlMRUIi6h6t6P6zwUEAYvtkrEbFArY=) 2: yxAkP5hjb6oPtsWua62bCrrSNDg.crl (hash: APJJUfg/E+C6gDnTgCD5dI55pH6cCfDTTJvgBqbAaqk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/f8eb9c-5b99-4cef-93f0-48f151b5231f/1/yxAkP5hjb6oPtsWua62bCrrSNDg.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/f8eb9c-5b99-4cef-93f0-48f151b5231f/1/yxAkP5hjb6oPtsWua62bCrrSNDg.mft rsync://rpki.ripe.net/repository/DEFAULT/yxAkP5hjb6oPtsWua62bCrrSNDg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:12:d7:fc:eb:01:b8:b8:71:5d:e5:fd:70:7e:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cb10243f98636faa0fb6c5ae6bad9b0abad23438 Validity Not Before: Feb 9 17:00:36 2026 GMT Not After : Feb 10 17:00:36 2026 GMT Subject: CN=2b8feb61fa44afe1db67c3225595e8e6722d5bc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:2f:76:7d:18:62:a5:94:3e:94:ce:45:f6:a0: a7:73:c3:07:b7:d0:15:22:3e:90:fc:c2:b9:01:da: 59:da:c0:40:26:b1:0d:06:26:f4:ab:63:5e:a7:a8: 81:14:60:b3:86:c5:a8:36:3b:c2:ce:6a:b1:d1:23: af:b0:2f:eb:5b:3d:28:85:2e:70:36:f0:45:e0:bf: e2:8d:c4:7a:7c:be:a7:6a:6a:c1:35:9d:ad:b1:e6: 47:10:94:9c:34:19:c1:0d:06:b1:e5:d2:99:40:b0: 68:22:90:d2:09:85:e3:78:21:74:6e:60:e1:29:8e: fc:f0:b1:38:28:bd:e7:94:ad:86:61:b5:16:bc:be: 5a:0a:e9:3f:a1:17:3b:2a:22:ed:39:0d:ec:4d:f3: 3e:3f:03:41:56:45:85:77:07:73:66:21:b2:71:3a: 87:f5:63:3f:d2:d9:30:6c:bc:76:83:2c:5c:b5:23: 76:6a:75:d5:39:74:ec:e6:ff:8c:65:ba:0b:2a:5c: 0a:50:1f:ca:cb:5d:d2:29:5d:51:43:40:9c:9e:7a: 54:dd:a2:36:2d:e1:38:6a:55:9f:b7:27:91:57:cf: 56:b4:98:c2:a8:cd:af:77:5b:1b:98:4d:2d:9c:fd: 32:82:63:c4:de:01:fa:2b:ca:e6:2d:55:90:39:49: a6:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:8F:EB:61:FA:44:AF:E1:DB:67:C3:22:55:95:E8:E6:72:2D:5B:C3 X509v3 Authority Key Identifier: keyid:CB:10:24:3F:98:63:6F:AA:0F:B6:C5:AE:6B:AD:9B:0A:BA:D2:34:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yxAkP5hjb6oPtsWua62bCrrSNDg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f8eb9c-5b99-4cef-93f0-48f151b5231f/1/yxAkP5hjb6oPtsWua62bCrrSNDg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f8eb9c-5b99-4cef-93f0-48f151b5231f/1/yxAkP5hjb6oPtsWua62bCrrSNDg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:bc:81:89:96:0e:73:dc:41:62:3e:2e:41:89:68:6c:3a:65: cc:73:75:56:af:06:0b:1a:41:17:01:90:03:64:6f:69:41:da: bc:e7:10:b3:6a:81:e5:31:d8:e9:f4:64:83:a5:22:58:4f:7c: e8:7c:1c:2c:9a:f5:27:fe:f5:0a:cf:aa:1a:96:76:d6:0c:6f: 1b:22:3d:e5:b2:33:86:82:3f:bc:c3:ca:33:db:44:1c:69:df: bd:ed:32:73:cb:a9:a3:e2:1a:f0:db:cb:ff:84:79:af:44:b7: e1:d1:49:e2:04:ce:57:ce:62:ab:b3:4f:01:eb:fc:4f:62:1b: ba:07:1a:b8:52:29:1b:f9:e4:d1:39:58:db:b7:64:d7:a0:44: 6a:be:c6:05:09:f0:1d:e7:e7:65:b9:de:de:e4:b8:8c:31:8e: 91:54:69:5d:d6:00:0e:9a:0f:9e:8c:03:db:7a:43:2e:d8:83: e1:73:54:4e:99:8f:cc:77:57:63:15:73:36:5f:43:5f:50:d4: d7:61:43:65:ad:db:9d:75:e5:39:06:94:3a:a5:45:cd:56:c0: 7c:49:14:46:da:0f:69:65:c1:93:bf:eb:f6:d2:a4:9a:cd:c3: dc:18:33:1f:fc:7b:51:6a:d5:dc:71:e4:71:44:cb:5f:67:15: 6f:36:2d:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWRLX/OsBuLhxXeX9cH5NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiMTAyNDNmOTg2MzZmYWEwZmI2YzVhZTZiYWQ5YjBhYmFk MjM0MzgwHhcNMjYwMjA5MTcwMDM2WhcNMjYwMjEwMTcwMDM2WjAzMTEwLwYDVQQD EygyYjhmZWI2MWZhNDRhZmUxZGI2N2MzMjI1NTk1ZThlNjcyMmQ1YmMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2y92fRhipZQ+lM5F9qCnc8MHt9AV Ij6Q/MK5AdpZ2sBAJrENBib0q2Nep6iBFGCzhsWoNjvCzmqx0SOvsC/rWz0ohS5w NvBF4L/ijcR6fL6namrBNZ2tseZHEJScNBnBDQax5dKZQLBoIpDSCYXjeCF0bmDh KY788LE4KL3nlK2GYbUWvL5aCuk/oRc7KiLtOQ3sTfM+PwNBVkWFdwdzZiGycTqH 9WM/0tkwbLx2gyxctSN2anXVOXTs5v+MZboLKlwKUB/Ky13SKV1RQ0CcnnpU3aI2 LeE4alWftyeRV89WtJjCqM2vd1sbmE0tnP0ygmPE3gH6K8rmLVWQOUmmKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCuP62H6RK/h22fDIlWV6OZyLVvDMB8GA1UdIwQY MBaAFMsQJD+YY2+qD7bFrmutmwq60jQ4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveXhBa1A1aGpiNm9QdHNXdWE2MmJDcnJTTkRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9mOGViOWMtNWI5OS00Y2VmLTkzZjAt NDhmMTUxYjUyMzFmLzEveXhBa1A1aGpiNm9QdHNXdWE2MmJDcnJTTkRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy9mOGViOWMtNWI5OS00Y2VmLTkzZjAtNDhmMTUxYjUyMzFm LzEveXhBa1A1aGpiNm9QdHNXdWE2MmJDcnJTTkRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPryBiZYO c9xBYj4uQYlobDplzHN1Vq8GCxpBFwGQA2RvaUHavOcQs2qB5THY6fRkg6UiWE98 6HwcLJr1J/71Cs+qGpZ21gxvGyI95bIzhoI/vMPKM9tEHGnfve0yc8upo+Ia8NvL /4R5r0S34dFJ4gTOV85iq7NPAev8T2IbugcauFIpG/nk0TlY27dk16BEar7GBQnw HefnZbne3uS4jDGOkVRpXdYADpoPnowD23pDLtiD4XNUTpmPzHdXYxVzNl9DX1DU 12FDZa3bnXXlOQaUOqVFzVbAfEkURtoPaWXBk7/r9tKkms3D3BgzH/x7UWrV3HHk cUTLX2cVbzYtkA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:35 2026 by rpki-client