This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.mft File: gz8MJRPUNTtAzvg5F57r-HOCRcY.mft (raw, json) Hash identifier: CYJuU7fRbY5C4Z3czyxClB5KQ8g2FCCTQUCYfq5dWO8= Subject key identifier: BD:0C:C4:8E:4A:B7:A2:C7:BF:BF:C1:B4:42:F6:24:74:E6:8D:43:F6 Authority key identifier: 83:3F:0C:25:13:D4:35:3B:40:CE:F8:39:17:9E:EB:F8:73:82:45:C6 Certificate issuer: /CN=833f0c2513d4353b40cef839179eebf8738245c6 Certificate serial: 019C43220EF3B3878A4AE5FB68ED5ABFF29B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz8MJRPUNTtAzvg5F57r-HOCRcY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.mft Manifest number: 12E4 Signing time: Mon 09 Feb 2026 16:00:31 +0000 Manifest this update: Mon 09 Feb 2026 16:00:31 +0000 Manifest next update: Tue 10 Feb 2026 16:00:31 +0000 Files and hashes: 1: gz8MJRPUNTtAzvg5F57r-HOCRcY.crl (hash: xiwyXr+svGf828UNqHwYvHMEU9BRgBsBimR4FsIgFjk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.mft rsync://rpki.ripe.net/repository/DEFAULT/gz8MJRPUNTtAzvg5F57r-HOCRcY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:0e:f3:b3:87:8a:4a:e5:fb:68:ed:5a:bf:f2:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=833f0c2513d4353b40cef839179eebf8738245c6 Validity Not Before: Feb 9 16:00:31 2026 GMT Not After : Feb 10 16:00:31 2026 GMT Subject: CN=bd0cc48e4ab7a2c7bfbfc1b442f62474e68d43f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:71:45:be:25:9e:1a:d8:50:e0:92:7d:fe:a9: bd:7a:93:07:53:04:2c:9a:ee:26:84:0a:25:80:12: 47:6c:d3:c0:81:36:95:b0:cb:10:2b:3f:b1:41:35: 2f:f8:10:cb:14:46:38:fe:81:73:ac:c4:c5:1d:9c: 1d:52:d9:3c:7c:65:d7:0a:fe:19:16:b8:fb:0b:a2: 3f:4d:07:99:5f:b1:f6:99:e4:3f:11:d3:89:9f:5c: e4:f3:5f:43:8c:d0:6b:00:31:dc:3f:48:1d:d6:18: 08:bf:b5:64:a7:21:26:7f:df:c1:a6:f5:a7:79:2c: 22:a7:df:ff:03:59:8d:1f:5a:f6:ba:c6:35:7e:7e: 39:60:87:28:10:1a:b5:40:0b:2e:4e:08:4d:03:ac: 33:f8:05:65:ec:03:f2:14:47:de:6f:13:ea:da:88: c1:f9:0e:b1:da:fa:ec:cf:1c:f5:76:fd:85:15:bc: de:f1:cf:de:22:7a:17:1e:b9:a2:71:81:65:ab:c3: e6:48:98:82:fe:d9:51:27:af:fe:39:fc:c8:b7:c9: 34:5d:d9:6e:b6:06:dc:49:5c:d0:b9:8b:6d:0e:fe: 77:30:60:7e:12:79:de:d3:ca:0f:89:04:78:03:1a: 25:43:c8:50:8a:2a:60:55:6d:ba:63:09:ed:d6:4b: 15:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:0C:C4:8E:4A:B7:A2:C7:BF:BF:C1:B4:42:F6:24:74:E6:8D:43:F6 X509v3 Authority Key Identifier: keyid:83:3F:0C:25:13:D4:35:3B:40:CE:F8:39:17:9E:EB:F8:73:82:45:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz8MJRPUNTtAzvg5F57r-HOCRcY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:da:f5:59:14:59:34:5d:9d:af:12:3c:0d:00:77:11:cf:f9: f4:3f:6a:6e:cd:72:09:04:76:40:a8:6d:b9:8a:fc:dc:09:ce: da:ce:8f:1e:7e:50:32:ef:2b:41:2f:64:21:af:87:dc:c7:9c: e4:96:6d:f2:eb:d1:01:1f:3e:87:f6:e0:2b:eb:72:d9:04:06: ab:c7:a3:87:cd:c2:0e:ce:cf:5c:be:a3:cb:ea:1d:81:62:6a: e9:48:e1:d7:fd:89:6c:8c:94:cd:ca:16:72:38:3a:ae:59:ad: 1c:43:50:25:50:89:07:b6:51:e4:f6:b5:29:9b:be:5a:0c:a0: 46:a8:0e:24:17:b9:7b:21:de:24:75:ea:a9:9f:10:e1:90:e7: 70:f2:e9:c6:45:10:7e:54:1b:ae:86:7e:2c:0d:b3:dc:a8:d9: 63:fe:ab:73:e5:dd:75:f2:21:20:be:72:37:7c:e6:42:0c:b8: 11:23:4c:32:44:e9:e1:52:1e:16:65:9b:82:de:89:88:6f:7b: ef:bc:05:8d:ff:a5:84:cf:8f:96:b6:6a:2d:78:d6:58:38:2e: fa:d5:ab:9b:48:e9:fe:ec:f4:d0:8c:ad:10:69:73:38:bd:90: f8:65:4d:b1:40:10:1a:ef:67:f7:5f:43:dd:75:58:eb:87:90: f2:89:d6:ad -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIg7zs4eKSuX7aO1av/KbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzM2YwYzI1MTNkNDM1M2I0MGNlZjgzOTE3OWVlYmY4NzM4 MjQ1YzYwHhcNMjYwMjA5MTYwMDMxWhcNMjYwMjEwMTYwMDMxWjAzMTEwLwYDVQQD EyhiZDBjYzQ4ZTRhYjdhMmM3YmZiZmMxYjQ0MmY2MjQ3NGU2OGQ0M2Y2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtXFFviWeGthQ4JJ9/qm9epMHUwQs mu4mhAolgBJHbNPAgTaVsMsQKz+xQTUv+BDLFEY4/oFzrMTFHZwdUtk8fGXXCv4Z Frj7C6I/TQeZX7H2meQ/EdOJn1zk819DjNBrADHcP0gd1hgIv7VkpyEmf9/BpvWn eSwip9//A1mNH1r2usY1fn45YIcoEBq1QAsuTghNA6wz+AVl7APyFEfebxPq2ojB +Q6x2vrszxz1dv2FFbze8c/eInoXHrmicYFlq8PmSJiC/tlRJ6/+OfzIt8k0Xdlu tgbcSVzQuYttDv53MGB+Enne08oPiQR4AxolQ8hQiipgVW26Ywnt1ksVRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL0MxI5Kt6LHv7/BtEL2JHTmjUP2MB8GA1UdIwQY MBaAFIM/DCUT1DU7QM74ORee6/hzgkXGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3o4TUpSUFVOVHRBenZnNUY1N3ItSE9DUmNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi85ZjJmYzgtOGYyYy00N2UwLTk3ZGEt ZWQwN2VjZjJkYzM2LzEvZ3o4TUpSUFVOVHRBenZnNUY1N3ItSE9DUmNZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi85ZjJmYzgtOGYyYy00N2UwLTk3ZGEtZWQwN2VjZjJkYzM2 LzEvZ3o4TUpSUFVOVHRBenZnNUY1N3ItSE9DUmNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJdr1WRRZ NF2drxI8DQB3Ec/59D9qbs1yCQR2QKhtuYr83AnO2s6PHn5QMu8rQS9kIa+H3Mec 5JZt8uvRAR8+h/bgK+ty2QQGq8ejh83CDs7PXL6jy+odgWJq6Ujh1/2JbIyUzcoW cjg6rlmtHENQJVCJB7ZR5Pa1KZu+WgygRqgOJBe5eyHeJHXqqZ8Q4ZDncPLpxkUQ flQbroZ+LA2z3KjZY/6rc+XddfIhIL5yN3zmQgy4ESNMMkTp4VIeFmWbgt6JiG97 77wFjf+lhM+PlrZqLXjWWDgu+tWrm0jp/uz00IytEGlzOL2Q+GVNsUAQGu9n919D 3XVY64eQ8onWrQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:00 2026 by rpki-client