This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.mft File: 9Y3yxGnJeIlfhFgCTFBugByPsho.mft (raw, json) Hash identifier: GuKRode+NT2cbdUmRXukw0JT9+JpDc8bSHhuxvHJPgM= Subject key identifier: BC:8A:1D:81:07:70:57:BB:B1:56:57:44:0E:BB:EB:74:A4:A7:76:AE Authority key identifier: F5:8D:F2:C4:69:C9:78:89:5F:84:58:02:4C:50:6E:80:1C:8F:B2:1A Certificate issuer: /CN=f58df2c469c978895f8458024c506e801c8fb21a Certificate serial: 019C4358EBB4F92EC726CD2FE26DD573D23D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Y3yxGnJeIlfhFgCTFBugByPsho.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.mft Manifest number: 1598 Signing time: Mon 09 Feb 2026 17:00:26 +0000 Manifest this update: Mon 09 Feb 2026 17:00:26 +0000 Manifest next update: Tue 10 Feb 2026 17:00:26 +0000 Files and hashes: 1: 9Y3yxGnJeIlfhFgCTFBugByPsho.crl (hash: eEG9VoDGH+bhLAiw6GysIeFjWTeD7wfXRt8F2Ze20ww=) 2: ipd84dEDEe7cj4KStBVIlQrMGyg.roa (hash: Sbm22JKwRV49kiJvKoySC0PxR1MmmHGGM53bqn3Gb1c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.crl rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.mft rsync://rpki.ripe.net/repository/DEFAULT/9Y3yxGnJeIlfhFgCTFBugByPsho.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:eb:b4:f9:2e:c7:26:cd:2f:e2:6d:d5:73:d2:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f58df2c469c978895f8458024c506e801c8fb21a Validity Not Before: Feb 9 17:00:26 2026 GMT Not After : Feb 10 17:00:26 2026 GMT Subject: CN=bc8a1d81077057bbb15657440ebbeb74a4a776ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:ba:77:78:4b:09:00:43:a9:f5:20:a5:7f:f3: f7:ed:a1:96:fd:5b:14:27:ca:4f:73:9d:b7:39:76: 9d:94:2f:6c:4f:cf:bc:0e:54:76:65:e4:d8:5e:e8: b0:92:5e:73:ed:13:19:67:e5:81:d4:34:b8:5f:6b: 63:dc:c5:78:0b:83:04:c9:36:f3:62:9b:d2:14:bd: 19:bf:8b:24:96:36:83:d2:e1:ab:32:54:11:14:b9: 0c:e5:40:84:2e:ee:08:ae:98:21:06:18:3d:87:f3: 6c:68:ac:2b:5b:d0:16:fd:a2:d2:8a:c5:2a:a1:1a: cf:8d:fd:63:1c:11:81:29:b4:3d:72:e0:ed:d4:a3: a9:75:0e:3c:c0:ad:6d:8b:ee:f5:e1:e0:31:5d:73: e8:eb:df:b0:b2:d0:aa:ae:7f:ea:b7:c0:7f:aa:2b: 65:9c:c0:5b:e4:ec:4a:87:91:fa:f0:e1:72:51:7f: 3d:8f:2c:2f:d2:3f:9e:57:6c:a1:d2:94:e2:73:b2: 18:ad:d3:e2:6a:e5:d8:e0:8f:a4:26:ec:5a:f3:34: 83:73:00:22:bb:89:c2:4f:c9:50:0e:87:bd:fa:e9: da:f5:eb:11:0e:b5:a3:30:54:9c:e0:44:56:4d:77: e6:52:4d:c9:71:9f:bf:5c:d7:12:bf:88:f7:99:90: b1:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:8A:1D:81:07:70:57:BB:B1:56:57:44:0E:BB:EB:74:A4:A7:76:AE X509v3 Authority Key Identifier: keyid:F5:8D:F2:C4:69:C9:78:89:5F:84:58:02:4C:50:6E:80:1C:8F:B2:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Y3yxGnJeIlfhFgCTFBugByPsho.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:ea:65:90:df:79:48:28:5f:6b:2e:b2:76:b7:86:4d:4b:b4: 8f:b7:5d:1a:f1:00:d4:63:5d:3c:11:c9:ae:98:e0:56:e1:48: db:e2:2b:d8:70:98:94:1b:0d:66:27:ac:a7:ce:2e:ab:f2:7e: ac:32:e4:e8:80:a7:98:a0:ef:44:93:76:10:84:00:cd:e1:d7: fd:05:84:3b:a8:cd:1a:78:9b:78:88:d1:3a:06:bf:bc:57:29: f3:2f:bc:6a:5f:2a:a2:5a:16:ab:6a:86:8a:df:54:8f:d3:a8: 4d:a8:8e:31:da:b5:67:9b:74:a0:f4:ce:7b:d8:f0:4e:39:ef: 4d:61:92:0e:23:ec:ab:a3:7c:ec:fa:d9:b8:2a:4a:b5:e4:e0: 3f:4d:c7:26:7e:f8:59:37:a4:3e:75:6c:f5:96:bf:ee:29:98: 1e:e5:0f:e0:49:65:de:4b:8c:82:d9:40:86:05:24:d2:0e:15: 08:0c:fd:15:5d:83:47:3e:78:26:d0:b8:85:50:30:cd:7d:e6: 04:74:e8:ea:ae:a9:64:4f:3d:fd:72:70:77:b9:8a:22:e0:af: a9:c4:7e:4e:2f:bc:c6:19:64:9c:f7:a6:5e:fa:20:7f:59:bd: 54:a7:32:90:8d:cf:99:1d:91:ae:cc:ee:41:d1:d9:b3:3c:f6: c4:6c:17:06 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWOu0+S7HJs0v4m3Vc9I9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY1OGRmMmM0NjljOTc4ODk1Zjg0NTgwMjRjNTA2ZTgwMWM4 ZmIyMWEwHhcNMjYwMjA5MTcwMDI2WhcNMjYwMjEwMTcwMDI2WjAzMTEwLwYDVQQD EyhiYzhhMWQ4MTA3NzA1N2JiYjE1NjU3NDQwZWJiZWI3NGE0YTc3NmFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjrp3eEsJAEOp9SClf/P37aGW/VsU J8pPc523OXadlC9sT8+8DlR2ZeTYXuiwkl5z7RMZZ+WB1DS4X2tj3MV4C4MEyTbz YpvSFL0Zv4skljaD0uGrMlQRFLkM5UCELu4IrpghBhg9h/NsaKwrW9AW/aLSisUq oRrPjf1jHBGBKbQ9cuDt1KOpdQ48wK1ti+714eAxXXPo69+wstCqrn/qt8B/qitl nMBb5OxKh5H68OFyUX89jywv0j+eV2yh0pTic7IYrdPiauXY4I+kJuxa8zSDcwAi u4nCT8lQDoe9+una9esRDrWjMFSc4ERWTXfmUk3JcZ+/XNcSv4j3mZCxtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLyKHYEHcFe7sVZXRA6763Skp3auMB8GA1UdIwQY MBaAFPWN8sRpyXiJX4RYAkxQboAcj7IaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOVkzeXhHbkplSWxmaEZnQ1RGQnVnQnlQc2hvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy8xZTk2MjEtNjI2ZS00MDMyLTliNTQt NzZlMzM0OWM5N2MyLzEvOVkzeXhHbkplSWxmaEZnQ1RGQnVnQnlQc2hvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYy8xZTk2MjEtNjI2ZS00MDMyLTliNTQtNzZlMzM0OWM5N2My LzEvOVkzeXhHbkplSWxmaEZnQ1RGQnVnQnlQc2hvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMuplkN95 SChfay6ydreGTUu0j7ddGvEA1GNdPBHJrpjgVuFI2+Ir2HCYlBsNZiesp84uq/J+ rDLk6ICnmKDvRJN2EIQAzeHX/QWEO6jNGnibeIjROga/vFcp8y+8al8qoloWq2qG it9Uj9OoTaiOMdq1Z5t0oPTOe9jwTjnvTWGSDiPsq6N87PrZuCpKteTgP03HJn74 WTekPnVs9Za/7imYHuUP4Ell3kuMgtlAhgUk0g4VCAz9FV2DRz54JtC4hVAwzX3m BHTo6q6pZE89/XJwd7mKIuCvqcR+Ti+8xhlknPemXvogf1m9VKcykI3PmR2Rrszu QdHZszz2xGwXBg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:44:01 2026 by rpki-client