This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft File: y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft (raw, json) Hash identifier: wp77RR7yj7CD+EuhnUBuu2Vz+blXQtWyujt5o7u1JmA= Subject key identifier: 4B:32:CD:C7:B1:44:8A:FA:E7:8C:24:54:B2:F7:CA:EF:95:A5:BB:69 Authority key identifier: CB:B9:96:FF:05:5D:65:75:E0:1F:2E:64:D9:A3:B3:82:83:47:02:D1 Certificate issuer: /CN=cbb996ff055d6575e01f2e64d9a3b382834702d1 Certificate serial: 019C424671AFB4805A6ED7B2246B2DAA08C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y7mW_wVdZXXgHy5k2aOzgoNHAtE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft Manifest number: 0CEB Signing time: Mon 09 Feb 2026 12:00:38 +0000 Manifest this update: Mon 09 Feb 2026 12:00:38 +0000 Manifest next update: Tue 10 Feb 2026 12:00:38 +0000 Files and hashes: 1: gISB5XKycKPv5hrE5ng7DwaTFZs.roa (hash: sJhtL2wlmJpjXzVIWne8fY+2r1IBnfbZ2BjwXpNs+R8=) 2: y7mW_wVdZXXgHy5k2aOzgoNHAtE.crl (hash: mWLdsIkLmSUuXSa5cv5MO13N6KJNDhI3lAbOnZF7Mu8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft rsync://rpki.ripe.net/repository/DEFAULT/y7mW_wVdZXXgHy5k2aOzgoNHAtE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:71:af:b4:80:5a:6e:d7:b2:24:6b:2d:aa:08:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cbb996ff055d6575e01f2e64d9a3b382834702d1 Validity Not Before: Feb 9 12:00:38 2026 GMT Not After : Feb 10 12:00:38 2026 GMT Subject: CN=4b32cdc7b1448afae78c2454b2f7caef95a5bb69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:c9:85:e1:5b:b3:29:e2:7b:b0:73:22:49:0d: 90:8e:bc:b5:b8:4d:29:e0:2c:fe:8c:86:34:73:75: 96:c3:95:f1:ec:03:e7:49:84:d6:8b:39:04:2e:67: 1d:81:04:76:42:88:e9:3d:72:45:e1:bd:eb:7c:b8: 5b:78:bf:36:23:07:c3:0a:bb:30:83:61:a0:a4:5a: 95:75:34:a5:4f:dc:fe:77:53:b7:5a:a0:65:7a:91: 1e:c6:4a:99:ac:6d:c1:ce:bf:7b:9b:bd:ef:1d:4c: ce:d2:71:71:e5:27:da:99:9c:01:b0:af:c0:45:73: 09:7b:9c:5a:86:3b:b7:4e:18:68:3e:e8:3a:4d:7e: d1:bd:0a:56:72:e0:3b:0d:82:f1:87:ad:f8:5d:dc: e2:4d:84:23:59:87:2a:cb:b7:87:4e:38:ac:8d:a5: 32:7f:2e:5a:dd:8f:66:97:32:b1:9d:c6:09:6a:5d: 5e:4c:f2:51:02:9d:d2:94:ab:b0:43:bf:89:a8:8c: c0:be:ac:5f:64:b2:65:d9:90:09:b4:06:50:43:4e: 2d:18:34:24:34:4a:ae:25:9e:76:2f:89:25:76:79: 7a:0b:4d:b6:cc:5e:be:8d:87:5c:a5:7e:a0:d2:ad: 82:70:16:8c:32:1e:31:dc:2f:ff:ae:c6:5a:57:ef: fa:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:32:CD:C7:B1:44:8A:FA:E7:8C:24:54:B2:F7:CA:EF:95:A5:BB:69 X509v3 Authority Key Identifier: keyid:CB:B9:96:FF:05:5D:65:75:E0:1F:2E:64:D9:A3:B3:82:83:47:02:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y7mW_wVdZXXgHy5k2aOzgoNHAtE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:19:23:24:e6:bc:d9:30:30:79:87:20:ae:3e:f0:5e:15:80: 46:9e:f1:f7:89:6d:24:73:b7:86:23:19:06:c6:19:da:6b:73: fe:28:2c:5b:44:36:29:6e:84:48:c8:4d:04:47:c1:f7:9f:0a: 45:17:85:da:c5:9c:d5:1a:67:9b:ac:a5:a7:d6:26:0b:c4:c1: 2b:98:30:a1:43:7a:4e:65:f6:95:89:1a:6b:f3:ea:82:22:10: 29:1a:66:85:7f:a0:29:16:c6:34:ef:4f:09:71:3d:27:b6:b9: f8:22:f9:cc:3d:a4:b3:f0:71:a3:f0:6a:ac:1a:18:e1:c3:85: 07:c5:21:3a:3e:0f:67:f1:1c:6c:54:64:b4:e6:ea:b9:9b:af: 21:e8:88:d0:d9:d4:f6:bd:dd:89:cb:05:6d:88:d9:01:af:82: 8a:73:e2:7e:8b:62:11:02:48:45:74:9e:43:ba:a9:a6:60:18: 35:4e:a2:4f:33:df:d8:e3:8d:33:9d:08:d9:75:9d:f4:21:d9: e0:a5:71:90:97:08:5e:e7:0c:fe:21:cf:09:3a:4d:00:ed:30: b0:03:ae:1e:5a:d4:f6:d5:bf:7e:b0:a5:b0:49:03:04:ed:d5: 34:7c:0c:f1:e5:25:43:5f:d1:14:3f:f6:bb:1f:54:0b:54:eb: 9f:87:45:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRnGvtIBabteyJGstqgjFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiYjk5NmZmMDU1ZDY1NzVlMDFmMmU2NGQ5YTNiMzgyODM0 NzAyZDEwHhcNMjYwMjA5MTIwMDM4WhcNMjYwMjEwMTIwMDM4WjAzMTEwLwYDVQQD Eyg0YjMyY2RjN2IxNDQ4YWZhZTc4YzI0NTRiMmY3Y2FlZjk1YTViYjY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlsmF4VuzKeJ7sHMiSQ2Qjry1uE0p 4Cz+jIY0c3WWw5Xx7APnSYTWizkELmcdgQR2QojpPXJF4b3rfLhbeL82IwfDCrsw g2GgpFqVdTSlT9z+d1O3WqBlepEexkqZrG3Bzr97m73vHUzO0nFx5SfamZwBsK/A RXMJe5xahju3ThhoPug6TX7RvQpWcuA7DYLxh634XdziTYQjWYcqy7eHTjisjaUy fy5a3Y9mlzKxncYJal1eTPJRAp3SlKuwQ7+JqIzAvqxfZLJl2ZAJtAZQQ04tGDQk NEquJZ52L4kldnl6C022zF6+jYdcpX6g0q2CcBaMMh4x3C//rsZaV+/6EwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEsyzcexRIr654wkVLL3yu+VpbtpMB8GA1UdIwQY MBaAFMu5lv8FXWV14B8uZNmjs4KDRwLRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTdtV193VmRaWFhnSHk1azJhT3pnb05IQXRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC81NTcxZjktZDliYi00ZTc4LWJhZDYt MDlkNDIzMWMxYzk5LzEveTdtV193VmRaWFhnSHk1azJhT3pnb05IQXRFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC81NTcxZjktZDliYi00ZTc4LWJhZDYtMDlkNDIzMWMxYzk5 LzEveTdtV193VmRaWFhnSHk1azJhT3pnb05IQXRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYBkjJOa8 2TAweYcgrj7wXhWARp7x94ltJHO3hiMZBsYZ2mtz/igsW0Q2KW6ESMhNBEfB958K RReF2sWc1Rpnm6ylp9YmC8TBK5gwoUN6TmX2lYkaa/PqgiIQKRpmhX+gKRbGNO9P CXE9J7a5+CL5zD2ks/Bxo/BqrBoY4cOFB8UhOj4PZ/EcbFRktObquZuvIeiI0NnU 9r3dicsFbYjZAa+CinPifotiEQJIRXSeQ7qppmAYNU6iTzPf2OONM50I2XWd9CHZ 4KVxkJcIXucM/iHPCTpNAO0wsAOuHlrU9tW/frClsEkDBO3VNHwM8eUlQ1/RFD/2 ux9UC1Trn4dFqg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:39 2026 by rpki-client