This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft File: 68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft (raw, json) Hash identifier: kmNc9qR4rlfnc3QGvZZyz3YFDCuQaWctWd95N4+VBk8= Subject key identifier: 00:4E:7F:E8:51:08:3A:83:29:9B:E7:61:60:B9:87:21:9E:25:08:CA Authority key identifier: EB:C8:C4:A0:66:E2:C1:50:31:3E:E1:C0:87:47:1F:3C:8B:0D:E0:54 Certificate issuer: /CN=ebc8c4a066e2c150313ee1c087471f3c8b0de054 Certificate serial: 019C43590F053D096E606827743D6EAA7A6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/68jEoGbiwVAxPuHAh0cfPIsN4FQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft Manifest number: 111D Signing time: Mon 09 Feb 2026 17:00:35 +0000 Manifest this update: Mon 09 Feb 2026 17:00:35 +0000 Manifest next update: Tue 10 Feb 2026 17:00:35 +0000 Files and hashes: 1: 68jEoGbiwVAxPuHAh0cfPIsN4FQ.crl (hash: Z6lOXrK1Tx7kkRg0P32qXcmzS5E2hOtXE3tCOrBdi0c=) 2: srgFShOceYZc8BEx-4KRd7_dBNs.roa (hash: s6LZiMCYlJdzG+ZeLeEfHIvrSApv9TQoNoxc3N5VXmE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft rsync://rpki.ripe.net/repository/DEFAULT/68jEoGbiwVAxPuHAh0cfPIsN4FQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:0f:05:3d:09:6e:60:68:27:74:3d:6e:aa:7a:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ebc8c4a066e2c150313ee1c087471f3c8b0de054 Validity Not Before: Feb 9 17:00:35 2026 GMT Not After : Feb 10 17:00:35 2026 GMT Subject: CN=004e7fe851083a83299be76160b987219e2508ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:bd:dd:bd:55:05:0d:ce:9a:76:76:ed:6b:25: 01:8d:a1:80:9d:05:2d:0f:63:12:73:53:21:f5:41: a6:75:c5:52:8f:78:0f:7b:72:67:9f:d3:a6:15:7b: b0:a4:f4:4d:02:a5:79:77:25:6f:76:7f:43:63:05: b6:91:ba:50:ad:4c:8d:79:97:d3:0d:82:9e:57:5e: a1:de:47:22:ec:52:23:86:e8:d6:8f:b6:e2:b8:da: 25:9b:b5:b7:0e:b0:0f:6c:db:e6:a7:ed:c9:18:da: 04:16:d4:5b:cb:a1:f0:48:8f:e8:bb:87:4d:cf:a7: a9:43:31:27:57:da:77:8e:10:9c:ea:4a:d5:57:4c: 22:05:55:a8:74:74:16:02:13:11:15:6f:79:9a:27: 48:fb:65:eb:97:a2:03:fa:3a:f5:85:b4:9d:52:67: a9:01:80:85:e4:69:5a:9f:84:ec:39:6a:fd:3b:64: b2:ba:5a:0d:2a:5d:ae:cd:9a:e3:fc:ef:44:9e:86: 7b:74:a4:99:1d:a9:10:f8:43:ce:ce:88:be:82:f6: 27:21:51:40:ba:ad:f7:85:ef:cd:c3:72:79:6f:0b: ac:ad:a6:78:4b:88:1d:96:c1:88:9e:f9:ce:6e:6a: 6b:d7:7a:92:8e:5a:c1:c1:a2:a9:2b:c6:be:26:48: 26:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:4E:7F:E8:51:08:3A:83:29:9B:E7:61:60:B9:87:21:9E:25:08:CA X509v3 Authority Key Identifier: keyid:EB:C8:C4:A0:66:E2:C1:50:31:3E:E1:C0:87:47:1F:3C:8B:0D:E0:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/68jEoGbiwVAxPuHAh0cfPIsN4FQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:50:5d:f0:bf:d9:37:ad:ba:6e:a8:5f:aa:57:37:82:a5:45: 35:d6:ad:6a:98:58:f8:40:64:63:50:55:72:89:2b:e1:0d:13: ed:ec:b8:99:bf:f5:8f:44:9f:e1:cb:99:2e:e9:56:c3:eb:75: b3:72:a3:7a:f9:bb:e4:43:e0:a8:44:1d:8a:ff:ef:b4:0b:b5: 14:69:0e:13:22:82:2c:93:f0:64:75:74:0a:7a:9e:95:6f:47: fe:16:ff:fe:c2:d4:bc:93:2d:d7:14:a9:74:fe:ab:75:4d:a3: a4:d3:99:b9:45:03:37:63:4b:89:32:36:79:7e:10:22:e3:93: 16:6f:d5:d5:6d:7a:00:c3:f3:e1:58:2e:ed:e2:98:1f:37:85: 66:9c:50:f6:d0:f0:91:4e:d3:0a:82:18:68:7b:35:4d:2b:06: ac:9a:9b:25:9e:fa:2e:a3:b8:bc:87:f9:fa:2e:ea:b4:3f:4b: 91:03:1e:8e:ce:ca:6a:68:e3:75:91:57:4a:b5:f0:4b:45:75: 79:3d:c4:d2:d6:e5:68:3c:66:23:1d:2a:54:c1:82:f5:e7:03: 04:4d:61:2c:98:a2:1e:69:04:19:fb:42:77:f0:a5:c4:73:de: 38:8b:74:79:9b:b2:f3:85:8c:95:b5:df:5d:97:df:dc:01:41: 85:dc:70:86 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWQ8FPQluYGgndD1uqnpvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGViYzhjNGEwNjZlMmMxNTAzMTNlZTFjMDg3NDcxZjNjOGIw ZGUwNTQwHhcNMjYwMjA5MTcwMDM1WhcNMjYwMjEwMTcwMDM1WjAzMTEwLwYDVQQD EygwMDRlN2ZlODUxMDgzYTgzMjk5YmU3NjE2MGI5ODcyMTllMjUwOGNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsL3dvVUFDc6adnbtayUBjaGAnQUt D2MSc1Mh9UGmdcVSj3gPe3Jnn9OmFXuwpPRNAqV5dyVvdn9DYwW2kbpQrUyNeZfT DYKeV16h3kci7FIjhujWj7biuNolm7W3DrAPbNvmp+3JGNoEFtRby6HwSI/ou4dN z6epQzEnV9p3jhCc6krVV0wiBVWodHQWAhMRFW95midI+2Xrl6ID+jr1hbSdUmep AYCF5Glan4TsOWr9O2SyuloNKl2uzZrj/O9EnoZ7dKSZHakQ+EPOzoi+gvYnIVFA uq33he/Nw3J5bwusraZ4S4gdlsGInvnObmpr13qSjlrBwaKpK8a+Jkgm/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFABOf+hRCDqDKZvnYWC5hyGeJQjKMB8GA1UdIwQY MBaAFOvIxKBm4sFQMT7hwIdHHzyLDeBUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNjhqRW9HYml3VkF4UHVIQWgwY2ZQSXNONEZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC84ZTQ0ZTMtMWI1NC00NzllLWE1NGMt NDdlYWQ1MzcyYmZiLzEvNjhqRW9HYml3VkF4UHVIQWgwY2ZQSXNONEZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC84ZTQ0ZTMtMWI1NC00NzllLWE1NGMtNDdlYWQ1MzcyYmZi LzEvNjhqRW9HYml3VkF4UHVIQWgwY2ZQSXNONEZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgVBd8L/Z N626bqhfqlc3gqVFNdataphY+EBkY1BVcokr4Q0T7ey4mb/1j0Sf4cuZLulWw+t1 s3Kjevm75EPgqEQdiv/vtAu1FGkOEyKCLJPwZHV0CnqelW9H/hb//sLUvJMt1xSp dP6rdU2jpNOZuUUDN2NLiTI2eX4QIuOTFm/V1W16AMPz4Vgu7eKYHzeFZpxQ9tDw kU7TCoIYaHs1TSsGrJqbJZ76LqO4vIf5+i7qtD9LkQMejs7KamjjdZFXSrXwS0V1 eT3E0tblaDxmIx0qVMGC9ecDBE1hLJiiHmkEGftCd/ClxHPeOIt0eZuy84WMlbXf XZff3AFBhdxwhg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:30:56 2026 by rpki-client