This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft File: r8GT7hHlRxYWn5TI-THq4fyFSSE.mft (raw, json) Hash identifier: /QvQyeCfUH8AMkZ0FG5HbxtbHyLF5uJ7BKif3xywMyE= Subject key identifier: 53:40:5B:99:07:8B:4B:39:C4:67:82:91:BF:BD:F8:FA:F4:20:22:9A Authority key identifier: AF:C1:93:EE:11:E5:47:16:16:9F:94:C8:F9:31:EA:E1:FC:85:49:21 Certificate issuer: /CN=afc193ee11e54716169f94c8f931eae1fc854921 Certificate serial: 019C42EB668A334EAD3517FA7392A347F914 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft Manifest number: 0D63 Signing time: Mon 09 Feb 2026 15:00:49 +0000 Manifest this update: Mon 09 Feb 2026 15:00:49 +0000 Manifest next update: Tue 10 Feb 2026 15:00:49 +0000 Files and hashes: 1: lWFmjWS1SbQSeACbvDZD9f1EmEg.roa (hash: TjMg92xbLY6yeaH0PpcE4pe0qFscpI9c3d7VL5l9Rzw=) 2: r8GT7hHlRxYWn5TI-THq4fyFSSE.crl (hash: RF6es9hDmFKpI8fbtcgvSi+5jk2LyAhjFFdsw0XS3Ek=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:66:8a:33:4e:ad:35:17:fa:73:92:a3:47:f9:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=afc193ee11e54716169f94c8f931eae1fc854921 Validity Not Before: Feb 9 15:00:49 2026 GMT Not After : Feb 10 15:00:49 2026 GMT Subject: CN=53405b99078b4b39c4678291bfbdf8faf420229a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bd:18:d6:07:9f:b7:4d:bd:ee:fc:20:9f:65: 93:72:ac:56:7e:6f:c3:df:1c:57:08:a5:40:3c:b2: 39:9e:53:e8:96:31:e3:b3:f9:af:46:ce:bc:c2:d6: aa:7e:82:cf:a4:ae:c9:8f:d7:ce:a7:94:83:60:b7: 23:07:dd:4d:7c:42:5f:97:a9:17:41:81:c0:30:e7: b2:cd:2c:94:c5:d0:2f:b1:29:6a:c3:2f:b1:6a:81: 14:0f:2c:20:18:9c:ce:ff:3c:4a:57:dc:95:64:65: 5f:af:f2:da:0c:97:e3:8e:20:f0:97:1a:41:e2:59: 67:99:16:87:8d:f7:56:99:d5:5f:93:89:ed:aa:18: b8:71:b0:f5:80:5c:11:00:e1:7b:6a:16:12:b0:6e: 77:2a:2b:9d:c8:0b:47:0b:f5:d6:b8:8a:a9:74:cc: 22:60:1a:e0:f1:ca:fc:90:57:9b:8d:e5:45:7f:2a: 42:b6:ab:9a:96:16:21:bd:f0:91:35:4a:a8:d9:4c: b6:e9:5c:18:ab:99:cf:74:c3:6d:56:aa:3d:e4:70: 8e:ae:d2:52:4a:5f:43:61:97:62:f7:63:10:11:30: dd:1e:4d:0e:4f:66:3e:2c:f3:c0:38:62:ea:c3:4d: de:54:38:80:c4:a2:8d:39:bf:4e:23:1f:af:e4:59: 54:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:40:5B:99:07:8B:4B:39:C4:67:82:91:BF:BD:F8:FA:F4:20:22:9A X509v3 Authority Key Identifier: keyid:AF:C1:93:EE:11:E5:47:16:16:9F:94:C8:F9:31:EA:E1:FC:85:49:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:0f:63:e9:35:2a:e1:7b:5d:e6:f8:f5:89:17:37:2a:fd:e3: d1:a1:57:42:41:32:ea:70:a8:d5:8a:dd:a3:54:6b:0f:fa:17: 5e:e4:20:90:5b:68:ba:00:01:83:9f:bd:ef:8b:da:e9:11:1d: c5:71:2c:33:36:70:b0:fe:8e:46:a6:5e:27:02:69:a7:8d:13: 22:a7:83:67:11:dc:8b:58:7b:40:05:c3:8c:aa:b5:73:7a:db: 80:10:39:bc:bf:42:f6:2a:13:03:71:38:6c:a5:2a:3f:01:57: f7:b0:9e:82:e8:06:24:a7:bb:b7:10:3f:42:8f:20:6a:64:6c: 37:68:03:4d:6c:73:35:52:81:04:b1:ee:d9:a8:ad:0c:63:53: a1:c0:c1:04:9a:a5:2c:c2:65:3e:1a:db:ce:38:92:cd:99:5b: 89:87:42:ac:ea:4a:b7:e5:6e:aa:3d:07:8d:00:9f:bc:f1:5d: 98:66:92:29:5f:29:bb:bd:35:33:31:7e:28:b0:ad:73:26:5c: 81:9a:a9:da:d5:a1:11:0b:65:2a:cf:36:84:1c:c1:fb:8b:5b: 9f:a5:1a:f3:cd:63:f4:1f:c9:c5:94:d1:04:5b:8d:24:9e:36: 1e:76:2b:00:fc:94:bb:07:e6:2f:37:5f:a4:f6:22:cd:53:ad: 65:63:9a:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC62aKM06tNRf6c5KjR/kUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmYzE5M2VlMTFlNTQ3MTYxNjlmOTRjOGY5MzFlYWUxZmM4 NTQ5MjEwHhcNMjYwMjA5MTUwMDQ5WhcNMjYwMjEwMTUwMDQ5WjAzMTEwLwYDVQQD Eyg1MzQwNWI5OTA3OGI0YjM5YzQ2NzgyOTFiZmJkZjhmYWY0MjAyMjlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAub0Y1geft0297vwgn2WTcqxWfm/D 3xxXCKVAPLI5nlPoljHjs/mvRs68wtaqfoLPpK7Jj9fOp5SDYLcjB91NfEJfl6kX QYHAMOeyzSyUxdAvsSlqwy+xaoEUDywgGJzO/zxKV9yVZGVfr/LaDJfjjiDwlxpB 4llnmRaHjfdWmdVfk4ntqhi4cbD1gFwRAOF7ahYSsG53KiudyAtHC/XWuIqpdMwi YBrg8cr8kFebjeVFfypCtqualhYhvfCRNUqo2Uy26VwYq5nPdMNtVqo95HCOrtJS Sl9DYZdi92MQETDdHk0OT2Y+LPPAOGLqw03eVDiAxKKNOb9OIx+v5FlU6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFNAW5kHi0s5xGeCkb+9+Pr0ICKaMB8GA1UdIwQY MBaAFK/Bk+4R5UcWFp+UyPkx6uH8hUkhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjhHVDdoSGxSeFlXbjVUSS1USHE0ZnlGU1NFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy8wYjljYmYtMjVhZS00MzI3LTk4YWEt YTdkZDlhZWExZDdhLzEvcjhHVDdoSGxSeFlXbjVUSS1USHE0ZnlGU1NFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy8wYjljYmYtMjVhZS00MzI3LTk4YWEtYTdkZDlhZWExZDdh LzEvcjhHVDdoSGxSeFlXbjVUSS1USHE0ZnlGU1NFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnQ9j6TUq 4Xtd5vj1iRc3Kv3j0aFXQkEy6nCo1Yrdo1RrD/oXXuQgkFtougABg5+974va6REd xXEsMzZwsP6ORqZeJwJpp40TIqeDZxHci1h7QAXDjKq1c3rbgBA5vL9C9ioTA3E4 bKUqPwFX97CegugGJKe7txA/Qo8gamRsN2gDTWxzNVKBBLHu2aitDGNTocDBBJql LMJlPhrbzjiSzZlbiYdCrOpKt+Vuqj0HjQCfvPFdmGaSKV8pu701MzF+KLCtcyZc gZqp2tWhEQtlKs82hBzB+4tbn6Ua881j9B/JxZTRBFuNJJ42HnYrAPyUuwfmLzdf pPYizVOtZWOadA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:47:31 2026 by rpki-client