This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/047982-37de-4e70-bebd-7c9e10517c25/1/8M0rO57YMSbUXboSAD1sbjWms4A.mft File: 8M0rO57YMSbUXboSAD1sbjWms4A.mft (raw, json) Hash identifier: I9V34kJJ4EjVuBCQbVtPWn5twweolqNjDJPFtIODU9Y= Subject key identifier: 57:36:38:09:41:8A:E6:F6:DA:E5:59:53:21:A0:F9:4D:E2:84:B6:58 Authority key identifier: F0:CD:2B:3B:9E:D8:31:26:D4:5D:BA:12:00:3D:6C:6E:35:A6:B3:80 Certificate issuer: /CN=f0cd2b3b9ed83126d45dba12003d6c6e35a6b380 Certificate serial: 019C427D00AA3ED90544E5A40AC8842FC6ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8M0rO57YMSbUXboSAD1sbjWms4A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/047982-37de-4e70-bebd-7c9e10517c25/1/8M0rO57YMSbUXboSAD1sbjWms4A.mft Manifest number: 1536 Signing time: Mon 09 Feb 2026 13:00:14 +0000 Manifest this update: Mon 09 Feb 2026 13:00:14 +0000 Manifest next update: Tue 10 Feb 2026 13:00:14 +0000 Files and hashes: 1: 8M0rO57YMSbUXboSAD1sbjWms4A.crl (hash: zkAnuQj8OdtRB40WxgCyireVH3+fdkqWLzuv6ZhPz7o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/047982-37de-4e70-bebd-7c9e10517c25/1/8M0rO57YMSbUXboSAD1sbjWms4A.crl rsync://rpki.ripe.net/repository/DEFAULT/db/047982-37de-4e70-bebd-7c9e10517c25/1/8M0rO57YMSbUXboSAD1sbjWms4A.mft rsync://rpki.ripe.net/repository/DEFAULT/8M0rO57YMSbUXboSAD1sbjWms4A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:00:aa:3e:d9:05:44:e5:a4:0a:c8:84:2f:c6:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f0cd2b3b9ed83126d45dba12003d6c6e35a6b380 Validity Not Before: Feb 9 13:00:14 2026 GMT Not After : Feb 10 13:00:14 2026 GMT Subject: CN=57363809418ae6f6dae5595321a0f94de284b658 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4d:c2:53:87:a8:13:63:27:0c:1b:52:e2:f6: 03:20:ac:44:c4:fc:96:bd:00:d8:89:17:c1:aa:44: c3:6f:8d:88:58:20:fa:db:41:d2:20:b4:ef:47:09: 22:8e:9f:53:95:8b:3e:52:3e:e1:e5:a3:4c:01:35: 48:3e:70:ca:eb:99:aa:02:11:bd:cd:57:0e:a5:e7: bd:83:cd:e8:5e:c5:fd:2e:a8:74:3a:21:ac:cd:ef: 7e:31:81:be:a7:00:1a:e8:e7:4f:d1:16:33:bb:c2: 86:fa:06:3e:3f:f7:f5:04:ea:8a:c7:20:96:2e:ce: ca:0d:3b:1d:bd:60:71:60:dc:5a:e5:96:91:cc:e5: 91:76:93:0e:b9:4b:99:10:f9:c6:74:50:00:9d:14: 54:f3:c5:78:4c:b8:0e:60:4c:83:77:0d:ce:74:ad: 9e:f3:78:a8:63:dc:6e:3a:6b:fa:17:40:3f:a4:00: 0f:df:cf:6d:11:64:f0:51:54:ad:19:c0:93:2e:58: 41:8d:b5:58:3f:79:14:e0:bc:6f:c4:97:b1:5b:6e: e9:c1:e8:61:db:5a:07:70:da:61:bd:ee:00:0d:a7: 92:e4:e8:d7:85:48:b4:46:dc:88:d7:f6:de:89:9c: 87:c9:b5:8d:14:a4:ce:c5:bd:64:9c:45:c9:84:21: 1d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:36:38:09:41:8A:E6:F6:DA:E5:59:53:21:A0:F9:4D:E2:84:B6:58 X509v3 Authority Key Identifier: keyid:F0:CD:2B:3B:9E:D8:31:26:D4:5D:BA:12:00:3D:6C:6E:35:A6:B3:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8M0rO57YMSbUXboSAD1sbjWms4A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/047982-37de-4e70-bebd-7c9e10517c25/1/8M0rO57YMSbUXboSAD1sbjWms4A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/047982-37de-4e70-bebd-7c9e10517c25/1/8M0rO57YMSbUXboSAD1sbjWms4A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:32:b0:a7:63:9b:e1:43:42:72:c8:1f:7a:1b:1d:2c:60:8e: 4b:fb:3d:80:2c:1f:34:85:fc:80:1a:2e:5f:7d:a0:36:d0:f8: 48:8f:97:0a:2e:f9:97:25:75:25:a0:b5:64:66:b3:bc:50:5d: a0:23:fb:85:91:dd:c1:e5:a7:c2:15:2a:dc:df:16:0d:a5:20: e7:ed:44:7b:2a:09:dc:96:f2:0b:b2:70:75:76:b8:11:b7:dd: 2a:17:26:7e:4b:56:5a:e6:a2:00:66:ac:60:d9:40:63:d7:b1: 4e:91:e4:69:63:b0:ea:f7:1c:b8:a3:3c:3b:84:c4:60:19:53: 9c:67:05:7f:09:7c:84:a0:97:a8:83:53:d8:e0:36:3c:48:b8: 10:4c:17:52:44:23:a0:95:b5:54:ab:b1:81:f5:10:f7:fa:5f: dc:57:ae:d0:e9:38:e0:64:7c:a1:d2:d3:f6:e3:df:6b:24:1e: bb:be:68:a1:d5:90:82:1c:0c:09:45:3d:4b:be:34:cf:a5:0b: 52:9f:c2:74:70:e9:7a:75:7d:99:78:f7:ff:89:50:ab:be:d6: b0:60:43:19:ec:76:36:b4:15:30:70:bb:ac:bc:05:c2:db:26: 48:53:6a:44:7f:81:50:9f:06:45:10:d5:19:8b:d3:a2:0f:b3: 7d:a1:b5:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfQCqPtkFROWkCsiEL8btMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwY2QyYjNiOWVkODMxMjZkNDVkYmExMjAwM2Q2YzZlMzVh NmIzODAwHhcNMjYwMjA5MTMwMDE0WhcNMjYwMjEwMTMwMDE0WjAzMTEwLwYDVQQD Eyg1NzM2MzgwOTQxOGFlNmY2ZGFlNTU5NTMyMWEwZjk0ZGUyODRiNjU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr03CU4eoE2MnDBtS4vYDIKxExPyW vQDYiRfBqkTDb42IWCD620HSILTvRwkijp9TlYs+Uj7h5aNMATVIPnDK65mqAhG9 zVcOpee9g83oXsX9Lqh0OiGsze9+MYG+pwAa6OdP0RYzu8KG+gY+P/f1BOqKxyCW Ls7KDTsdvWBxYNxa5ZaRzOWRdpMOuUuZEPnGdFAAnRRU88V4TLgOYEyDdw3OdK2e 83ioY9xuOmv6F0A/pAAP389tEWTwUVStGcCTLlhBjbVYP3kU4LxvxJexW27pwehh 21oHcNphve4ADaeS5OjXhUi0RtyI1/beiZyHybWNFKTOxb1knEXJhCEd3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFc2OAlBiub22uVZUyGg+U3ihLZYMB8GA1UdIwQY MBaAFPDNKzue2DEm1F26EgA9bG41prOAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOE0wck81N1lNU2JVWGJvU0FEMXNialdtczRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi8wNDc5ODItMzdkZS00ZTcwLWJlYmQt N2M5ZTEwNTE3YzI1LzEvOE0wck81N1lNU2JVWGJvU0FEMXNialdtczRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi8wNDc5ODItMzdkZS00ZTcwLWJlYmQtN2M5ZTEwNTE3YzI1 LzEvOE0wck81N1lNU2JVWGJvU0FEMXNialdtczRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVTKwp2Ob 4UNCcsgfehsdLGCOS/s9gCwfNIX8gBouX32gNtD4SI+XCi75lyV1JaC1ZGazvFBd oCP7hZHdweWnwhUq3N8WDaUg5+1EeyoJ3JbyC7JwdXa4EbfdKhcmfktWWuaiAGas YNlAY9exTpHkaWOw6vccuKM8O4TEYBlTnGcFfwl8hKCXqINT2OA2PEi4EEwXUkQj oJW1VKuxgfUQ9/pf3Feu0Ok44GR8odLT9uPfayQeu75oodWQghwMCUU9S740z6UL Up/CdHDpenV9mXj3/4lQq77WsGBDGex2NrQVMHC7rLwFwtsmSFNqRH+BUJ8GRRDV GYvTog+zfaG1aQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:48:29 2026 by rpki-client