This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft File: 8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft (raw, json) Hash identifier: P6maUJOdImz53JxnvQ/lzCxrKW8qEi03hDZXXzC8dIM= Subject key identifier: FF:62:E5:A0:15:4A:0D:D2:12:F3:40:DC:49:9D:94:1F:4E:67:BF:B1 Authority key identifier: F1:2B:38:1E:00:D6:16:21:AC:C4:5C:F1:8A:3E:70:59:7D:5B:91:86 Certificate issuer: /CN=f12b381e00d61621acc45cf18a3e70597d5b9186 Certificate serial: 019C4134061220CF3A495E075641D569DF25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Ss4HgDWFiGsxFzxij5wWX1bkYY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft Manifest number: 14AF Signing time: Mon 09 Feb 2026 07:00:54 +0000 Manifest this update: Mon 09 Feb 2026 07:00:54 +0000 Manifest next update: Tue 10 Feb 2026 07:00:54 +0000 Files and hashes: 1: 8Ss4HgDWFiGsxFzxij5wWX1bkYY.crl (hash: SgDFix9VrXgZDbPGvRUnMbHe5RJQksmwAjTxzMaibPw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft rsync://rpki.ripe.net/repository/DEFAULT/8Ss4HgDWFiGsxFzxij5wWX1bkYY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:06:12:20:cf:3a:49:5e:07:56:41:d5:69:df:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f12b381e00d61621acc45cf18a3e70597d5b9186 Validity Not Before: Feb 9 07:00:54 2026 GMT Not After : Feb 10 07:00:54 2026 GMT Subject: CN=ff62e5a0154a0dd212f340dc499d941f4e67bfb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7c:12:e3:f1:d5:0d:88:d0:27:85:64:5a:cc: 40:ee:83:04:fe:b0:ba:e0:ea:d2:73:16:1d:07:bd: c8:4d:e5:fe:28:f7:2a:7c:5c:f1:dc:6e:f6:4f:39: 54:bd:0f:fe:83:dd:03:b6:97:c8:7a:52:7a:c7:74: 36:12:5a:a2:c2:f4:99:c3:f8:1b:4b:ef:4d:e4:72: b6:65:88:2d:cd:36:c7:66:eb:93:cc:31:04:3b:9a: 65:54:e8:58:72:af:09:f5:95:13:57:f6:63:45:5e: 83:30:2c:fd:37:e0:74:80:1f:63:96:da:10:54:5c: 60:c8:6c:2b:a6:25:f2:0d:49:eb:b9:c0:52:02:ae: 8e:72:9f:df:20:c0:46:63:1a:c0:a4:ac:13:18:22: 1b:59:54:22:15:61:6c:b2:eb:70:ae:05:b9:d2:cc: e2:89:70:f3:2d:d1:20:06:f8:01:92:18:2a:df:f8: ab:5c:52:a7:dc:e3:d9:0f:c4:b3:18:b2:53:26:07: a9:c7:7f:93:64:70:1c:c3:12:c2:ef:20:ed:e8:0c: 6a:fe:40:c7:60:23:8e:09:90:65:f0:fd:15:dd:7b: 93:33:03:7a:82:76:20:40:48:6e:3e:e1:d8:92:42: 22:5e:11:89:2d:b4:a2:10:99:f8:e8:36:62:ad:d9: d0:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:62:E5:A0:15:4A:0D:D2:12:F3:40:DC:49:9D:94:1F:4E:67:BF:B1 X509v3 Authority Key Identifier: keyid:F1:2B:38:1E:00:D6:16:21:AC:C4:5C:F1:8A:3E:70:59:7D:5B:91:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Ss4HgDWFiGsxFzxij5wWX1bkYY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8b2c9f-15ce-434e-be93-5d436cef608f/1/8Ss4HgDWFiGsxFzxij5wWX1bkYY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:2f:7a:36:ef:20:04:b5:53:bc:6d:29:4d:7c:af:91:8d:ca: 12:f9:ca:49:c9:87:09:de:5b:4c:07:ee:e5:fb:51:bd:c1:42: 6c:76:c4:f4:a5:b4:cb:5d:0b:0e:a4:38:be:f4:14:78:36:60: a8:66:20:31:aa:ca:cd:2a:d4:d4:c8:84:d6:a6:9a:3e:0d:50: 0d:b0:92:23:bd:91:3f:13:ea:52:08:f1:3a:d1:c6:f3:f8:67: d2:77:11:e5:36:ef:ce:09:6c:58:b7:fa:13:3b:cf:c7:25:d6: 3a:3b:1e:ec:5b:d6:34:13:0f:00:73:ea:11:87:c5:55:f8:a9: 1b:4f:26:75:e4:e5:d1:db:7b:3a:b1:e8:bd:1c:fd:3a:7f:ce: c0:51:3e:cc:dc:00:a1:30:4f:a5:fb:b2:a3:99:51:74:24:a1: 12:1a:5e:1e:fe:68:b9:97:e8:46:45:92:12:87:ed:5f:f4:f1: 6b:84:2f:3c:83:db:af:84:6b:1b:a6:16:68:9b:88:b1:7d:5b: 41:9f:22:09:6d:48:14:db:c3:79:35:b9:9f:9b:98:a0:82:a0: 2d:f0:4e:91:ac:b4:ba:05:7a:7e:c6:d7:f7:d7:34:19:26:29: f5:98:85:61:db:42:0d:d2:08:3f:cd:b7:80:17:cd:77:80:b3: ab:90:da:34 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNAYSIM86SV4HVkHVad8lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYxMmIzODFlMDBkNjE2MjFhY2M0NWNmMThhM2U3MDU5N2Q1 YjkxODYwHhcNMjYwMjA5MDcwMDU0WhcNMjYwMjEwMDcwMDU0WjAzMTEwLwYDVQQD EyhmZjYyZTVhMDE1NGEwZGQyMTJmMzQwZGM0OTlkOTQxZjRlNjdiZmIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy3wS4/HVDYjQJ4VkWsxA7oME/rC6 4OrScxYdB73ITeX+KPcqfFzx3G72TzlUvQ/+g90DtpfIelJ6x3Q2ElqiwvSZw/gb S+9N5HK2ZYgtzTbHZuuTzDEEO5plVOhYcq8J9ZUTV/ZjRV6DMCz9N+B0gB9jltoQ VFxgyGwrpiXyDUnrucBSAq6Ocp/fIMBGYxrApKwTGCIbWVQiFWFssutwrgW50szi iXDzLdEgBvgBkhgq3/irXFKn3OPZD8SzGLJTJgepx3+TZHAcwxLC7yDt6Axq/kDH YCOOCZBl8P0V3XuTMwN6gnYgQEhuPuHYkkIiXhGJLbSiEJn46DZirdnQTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP9i5aAVSg3SEvNA3EmdlB9OZ7+xMB8GA1UdIwQY MBaAFPErOB4A1hYhrMRc8Yo+cFl9W5GGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOFNzNEhnRFdGaUdzeEZ6eGlqNXdXWDFia1lZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS84YjJjOWYtMTVjZS00MzRlLWJlOTMt NWQ0MzZjZWY2MDhmLzEvOFNzNEhnRFdGaUdzeEZ6eGlqNXdXWDFia1lZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS84YjJjOWYtMTVjZS00MzRlLWJlOTMtNWQ0MzZjZWY2MDhm LzEvOFNzNEhnRFdGaUdzeEZ6eGlqNXdXWDFia1lZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUS96Nu8g BLVTvG0pTXyvkY3KEvnKScmHCd5bTAfu5ftRvcFCbHbE9KW0y10LDqQ4vvQUeDZg qGYgMarKzSrU1MiE1qaaPg1QDbCSI72RPxPqUgjxOtHG8/hn0ncR5TbvzglsWLf6 EzvPxyXWOjse7FvWNBMPAHPqEYfFVfipG08mdeTl0dt7OrHovRz9On/OwFE+zNwA oTBPpfuyo5lRdCShEhpeHv5ouZfoRkWSEoftX/Txa4QvPIPbr4RrG6YWaJuIsX1b QZ8iCW1IFNvDeTW5n5uYoIKgLfBOkay0ugV6fsbX99c0GSYp9ZiFYdtCDdIIP823 gBfNd4Czq5DaNA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:48 2026 by rpki-client