This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft File: nY85NIPUicQp_Biwk0LXbQr-QkQ.mft (raw, json) Hash identifier: sVWwCi89O7c9AXIAAWb/LVrLYNmGHsEteLyTeF+uoEg= Subject key identifier: D3:A3:70:AB:2D:76:6A:DA:29:6D:7E:CE:74:D9:C0:E8:8D:B6:0C:31 Authority key identifier: 9D:8F:39:34:83:D4:89:C4:29:FC:18:B0:93:42:D7:6D:0A:FE:42:44 Certificate issuer: /CN=9d8f393483d489c429fc18b09342d76d0afe4244 Certificate serial: 019C41D8E3A5723DDB62AC98569B5F498961 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft Manifest number: 13F9 Signing time: Mon 09 Feb 2026 10:00:58 +0000 Manifest this update: Mon 09 Feb 2026 10:00:58 +0000 Manifest next update: Tue 10 Feb 2026 10:00:58 +0000 Files and hashes: 1: PnOOh7fnmZFCfeOa_wMzgqjdxqA.roa (hash: ggogQletXZT21dYbTRV1SNWHwV2S6gHYiktJ4MjCyQI=) 2: nY85NIPUicQp_Biwk0LXbQr-QkQ.crl (hash: 2IWILdEPrfMZYn+yaMn0mzsfk5Ew6XyYF6JeNGDkNtE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:e3:a5:72:3d:db:62:ac:98:56:9b:5f:49:89:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d8f393483d489c429fc18b09342d76d0afe4244 Validity Not Before: Feb 9 10:00:58 2026 GMT Not After : Feb 10 10:00:58 2026 GMT Subject: CN=d3a370ab2d766ada296d7ece74d9c0e88db60c31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b6:cc:9c:9d:3e:87:c3:76:ae:98:5e:c5:8a: 22:b8:d2:81:14:e3:0f:9e:f3:56:ea:26:1e:14:97: 06:c1:ca:21:d0:30:a7:28:03:ba:36:e4:94:cd:f0: f9:e5:1f:73:25:84:e2:6a:21:b7:10:af:95:a7:0f: 4e:95:84:7e:76:68:02:10:ee:cf:b6:90:f9:42:ee: 1b:74:dc:08:ca:86:d1:ef:26:c5:e9:fb:d2:78:8b: 6f:0d:0b:c3:b9:c1:77:27:78:ea:a1:ff:53:7c:a2: 29:4b:de:d7:a0:6b:27:ed:60:65:06:70:c7:01:27: 5c:7d:09:0f:7a:1b:89:ae:5e:06:f6:4e:0a:ae:d4: a7:13:5b:3c:0e:1b:08:f2:4a:bd:89:33:5d:a0:18: a7:b0:a1:7c:0d:ea:c7:4b:0d:85:d8:0b:73:39:e9: 8d:5e:49:2f:df:41:f9:34:20:6e:8d:a3:33:16:03: 2a:70:0e:1e:a6:c4:aa:3e:94:97:e3:76:a6:2a:60: 27:35:50:64:27:83:98:93:9e:e9:aa:9d:9f:1a:17: 40:a0:89:1d:51:23:fb:3a:62:6d:52:15:bf:04:c4: da:25:d6:d2:a0:73:9e:89:0d:4e:5a:c6:86:81:e4: b7:a9:dc:8e:4b:f3:c6:b7:46:c7:56:85:ad:7f:26: a4:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:A3:70:AB:2D:76:6A:DA:29:6D:7E:CE:74:D9:C0:E8:8D:B6:0C:31 X509v3 Authority Key Identifier: keyid:9D:8F:39:34:83:D4:89:C4:29:FC:18:B0:93:42:D7:6D:0A:FE:42:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b1:ca:10:be:1a:b9:7b:c3:67:29:d1:a1:94:d2:ae:b0:64:dc: 24:8b:8d:64:20:f8:eb:e9:19:cc:5f:c8:9a:41:ba:6d:b1:b2: f0:96:5c:87:4e:64:eb:87:2b:d0:55:1e:40:bd:64:d6:2b:b4: b7:e4:c1:40:0d:d3:4c:df:6a:6d:d7:4e:55:cd:cf:ec:3e:d4: 56:da:1b:6c:8a:d4:d4:8a:90:84:ba:0a:7c:74:41:9c:90:e3: c6:1a:67:6f:ec:fc:76:96:25:34:b5:e7:87:7d:69:de:27:ed: e2:0a:73:4c:21:3f:7d:28:c9:a2:94:0e:7c:7b:05:f1:ab:de: d9:7a:10:e1:f8:01:4c:05:7d:ad:10:33:39:af:8a:82:27:4e: b1:61:ff:03:a8:70:01:6e:35:1a:00:01:5c:94:14:34:3f:f7: ff:ab:39:c6:19:23:a3:76:38:b0:dd:00:11:d6:69:fd:94:60: 26:99:f7:45:8b:2f:84:91:c3:8b:34:76:df:c2:7a:05:c4:3d: 7b:50:35:9e:03:8a:d3:ef:5d:94:13:16:4e:a5:c4:7e:c0:6c: 44:c4:22:14:91:18:e1:ce:d2:78:4d:b1:34:ae:0c:b2:81:77: 18:8b:6d:9d:f9:ac:96:7b:cd:01:a5:f3:f1:bb:68:9b:3e:94: 96:ba:de:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2OOlcj3bYqyYVptfSYlhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkOGYzOTM0ODNkNDg5YzQyOWZjMThiMDkzNDJkNzZkMGFm ZTQyNDQwHhcNMjYwMjA5MTAwMDU4WhcNMjYwMjEwMTAwMDU4WjAzMTEwLwYDVQQD EyhkM2EzNzBhYjJkNzY2YWRhMjk2ZDdlY2U3NGQ5YzBlODhkYjYwYzMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy7bMnJ0+h8N2rphexYoiuNKBFOMP nvNW6iYeFJcGwcoh0DCnKAO6NuSUzfD55R9zJYTiaiG3EK+Vpw9OlYR+dmgCEO7P tpD5Qu4bdNwIyobR7ybF6fvSeItvDQvDucF3J3jqof9TfKIpS97XoGsn7WBlBnDH ASdcfQkPehuJrl4G9k4KrtSnE1s8DhsI8kq9iTNdoBinsKF8DerHSw2F2AtzOemN Xkkv30H5NCBujaMzFgMqcA4epsSqPpSX43amKmAnNVBkJ4OYk57pqp2fGhdAoIkd USP7OmJtUhW/BMTaJdbSoHOeiQ1OWsaGgeS3qdyOS/PGt0bHVoWtfyak3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNOjcKstdmraKW1+znTZwOiNtgwxMB8GA1UdIwQY MBaAFJ2POTSD1InEKfwYsJNC120K/kJEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblk4NU5JUFVpY1FwX0Jpd2swTFhiUXItUWtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC85ZTgxNjYtMTYwZi00Y2UyLTkwMTct MWUxNTFhYTFhZmRjLzEvblk4NU5JUFVpY1FwX0Jpd2swTFhiUXItUWtRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC85ZTgxNjYtMTYwZi00Y2UyLTkwMTctMWUxNTFhYTFhZmRj LzEvblk4NU5JUFVpY1FwX0Jpd2swTFhiUXItUWtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAscoQvhq5 e8NnKdGhlNKusGTcJIuNZCD46+kZzF/ImkG6bbGy8JZch05k64cr0FUeQL1k1iu0 t+TBQA3TTN9qbddOVc3P7D7UVtobbIrU1IqQhLoKfHRBnJDjxhpnb+z8dpYlNLXn h31p3ift4gpzTCE/fSjJopQOfHsF8ave2XoQ4fgBTAV9rRAzOa+KgidOsWH/A6hw AW41GgABXJQUND/3/6s5xhkjo3Y4sN0AEdZp/ZRgJpn3RYsvhJHDizR238J6BcQ9 e1A1ngOK0+9dlBMWTqXEfsBsRMQiFJEY4c7SeE2xNK4MsoF3GIttnfmslnvNAaXz 8btomz6UlrreuQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:01 2026 by rpki-client