This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/55b848-0fc3-43c3-8ace-0dc3c21bd628/1/maXkwc3ovLO4Qgdw1ZqDp5F8jMg.mft File: maXkwc3ovLO4Qgdw1ZqDp5F8jMg.mft (raw, json) Hash identifier: C2zcAzMueBxIi94PDNComT3yyHlu0f/4pzMfqEpx6Mw= Subject key identifier: F9:46:B9:EB:85:40:A6:5C:CA:C5:28:19:D3:9C:C5:5E:F7:30:F1:59 Authority key identifier: 99:A5:E4:C1:CD:E8:BC:B3:B8:42:07:70:D5:9A:83:A7:91:7C:8C:C8 Certificate issuer: /CN=99a5e4c1cde8bcb3b8420770d59a83a7917c8cc8 Certificate serial: 019C43FDF9DD4E8DE7B31F42DB40FFCD3034 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/maXkwc3ovLO4Qgdw1ZqDp5F8jMg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/55b848-0fc3-43c3-8ace-0dc3c21bd628/1/maXkwc3ovLO4Qgdw1ZqDp5F8jMg.mft Manifest number: 13CE Signing time: Mon 09 Feb 2026 20:00:43 +0000 Manifest this update: Mon 09 Feb 2026 20:00:43 +0000 Manifest next update: Tue 10 Feb 2026 20:00:43 +0000 Files and hashes: 1: maXkwc3ovLO4Qgdw1ZqDp5F8jMg.crl (hash: dFEKRF5O2e9bXltWXQevzXyssFultUczjdF8BQ2U78c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/55b848-0fc3-43c3-8ace-0dc3c21bd628/1/maXkwc3ovLO4Qgdw1ZqDp5F8jMg.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/55b848-0fc3-43c3-8ace-0dc3c21bd628/1/maXkwc3ovLO4Qgdw1ZqDp5F8jMg.mft rsync://rpki.ripe.net/repository/DEFAULT/maXkwc3ovLO4Qgdw1ZqDp5F8jMg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:f9:dd:4e:8d:e7:b3:1f:42:db:40:ff:cd:30:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99a5e4c1cde8bcb3b8420770d59a83a7917c8cc8 Validity Not Before: Feb 9 20:00:43 2026 GMT Not After : Feb 10 20:00:43 2026 GMT Subject: CN=f946b9eb8540a65ccac52819d39cc55ef730f159 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5a:15:0f:9b:f4:37:45:12:5c:96:60:58:b3: f7:44:1d:3b:d5:9f:da:39:59:ff:ae:cc:23:4a:1d: 4c:3f:2a:d0:40:69:90:8e:f6:39:d0:53:18:97:6e: bc:b3:a3:b3:7e:45:21:6a:06:dd:59:e8:0f:bf:bb: 24:e0:e7:85:71:74:8a:83:87:1f:fd:f8:e1:ce:12: c8:16:89:fd:de:be:cc:51:4a:38:29:ef:27:17:60: 6f:95:a5:98:88:ce:17:d7:91:05:5e:57:c4:58:06: ab:83:b1:fb:5e:0c:f5:a3:8e:c3:73:81:0e:85:02: e2:76:fb:3a:27:3f:be:6c:c4:e6:0c:7d:b0:ed:d4: c9:89:27:0b:28:25:d1:1b:97:3f:dc:c6:ab:c1:a2: ab:bf:2d:87:9a:22:d9:28:e5:fd:b9:a8:e8:7e:49: 5d:b5:8e:86:0e:ad:1c:f9:f4:75:ee:1f:b7:2b:2d: 37:03:0b:90:dd:7a:7f:ae:7c:a7:ab:54:ed:77:21: a2:f5:4f:b2:78:05:d6:24:4d:1c:6b:c9:44:3a:cd: 7a:94:85:a3:84:53:b2:68:36:85:60:85:6e:3b:69: 0d:c8:66:6a:ab:20:23:f0:a6:9a:c0:bd:e8:f9:0e: d3:35:db:b4:02:5b:79:5f:d4:ab:6a:83:49:d2:37: f7:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:46:B9:EB:85:40:A6:5C:CA:C5:28:19:D3:9C:C5:5E:F7:30:F1:59 X509v3 Authority Key Identifier: keyid:99:A5:E4:C1:CD:E8:BC:B3:B8:42:07:70:D5:9A:83:A7:91:7C:8C:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/maXkwc3ovLO4Qgdw1ZqDp5F8jMg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/55b848-0fc3-43c3-8ace-0dc3c21bd628/1/maXkwc3ovLO4Qgdw1ZqDp5F8jMg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/55b848-0fc3-43c3-8ace-0dc3c21bd628/1/maXkwc3ovLO4Qgdw1ZqDp5F8jMg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:32:a0:37:d9:61:1d:87:7b:d1:1a:bf:1c:c2:8e:a5:7c:77: 76:24:90:31:59:ea:6d:a7:9b:f5:0f:83:df:3b:ee:53:07:3e: 69:4d:7d:cc:39:6b:70:65:d2:1f:48:e2:f4:87:1c:f5:99:d1: 2f:f3:66:63:a9:f5:9a:17:0f:71:09:81:e8:ee:1f:68:0d:ea: 75:c7:57:5d:32:f3:e6:94:52:ca:52:7f:fe:10:0c:f7:5c:b6: 8a:1e:91:46:be:c9:48:23:33:97:51:aa:54:c4:55:f9:90:be: 05:f0:54:2a:63:06:03:7d:d8:4e:91:e9:f7:a0:59:d4:33:78: 31:21:d5:7c:4a:5c:96:a7:9a:56:e0:5f:0d:87:28:e6:2f:b1: 65:3d:64:47:5e:24:09:ca:3b:5e:21:c1:49:3a:64:e9:d4:54: 24:59:e2:a2:ea:05:48:0f:c7:4b:2a:fb:df:9d:d4:dc:80:13: ea:3f:7e:be:a8:98:6f:1d:d2:f0:1d:15:85:3c:b8:87:6d:9f: 04:26:ae:07:f3:93:41:9a:c1:9a:9a:cd:a5:a8:16:fa:b3:bb: 6f:7f:ac:b2:26:62:cc:09:c3:62:a0:6b:48:df:59:99:4f:f3: 56:50:d7:ed:57:c8:25:ff:7a:c0:d9:ad:37:50:89:f1:8c:94: 8c:d4:dd:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/fndTo3nsx9C20D/zTA0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5YTVlNGMxY2RlOGJjYjNiODQyMDc3MGQ1OWE4M2E3OTE3 YzhjYzgwHhcNMjYwMjA5MjAwMDQzWhcNMjYwMjEwMjAwMDQzWjAzMTEwLwYDVQQD EyhmOTQ2YjllYjg1NDBhNjVjY2FjNTI4MTlkMzljYzU1ZWY3MzBmMTU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxloVD5v0N0USXJZgWLP3RB071Z/a OVn/rswjSh1MPyrQQGmQjvY50FMYl268s6OzfkUhagbdWegPv7sk4OeFcXSKg4cf /fjhzhLIFon93r7MUUo4Ke8nF2BvlaWYiM4X15EFXlfEWAarg7H7Xgz1o47Dc4EO hQLidvs6Jz++bMTmDH2w7dTJiScLKCXRG5c/3MarwaKrvy2HmiLZKOX9uajofkld tY6GDq0c+fR17h+3Ky03AwuQ3Xp/rnynq1TtdyGi9U+yeAXWJE0ca8lEOs16lIWj hFOyaDaFYIVuO2kNyGZqqyAj8KaawL3o+Q7TNdu0Alt5X9SraoNJ0jf3CQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPlGueuFQKZcysUoGdOcxV73MPFZMB8GA1UdIwQY MBaAFJml5MHN6LyzuEIHcNWag6eRfIzIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWFYa3djM292TE80UWdkdzFacURwNUY4ak1nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS81NWI4NDgtMGZjMy00M2MzLThhY2Ut MGRjM2MyMWJkNjI4LzEvbWFYa3djM292TE80UWdkdzFacURwNUY4ak1nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS81NWI4NDgtMGZjMy00M2MzLThhY2UtMGRjM2MyMWJkNjI4 LzEvbWFYa3djM292TE80UWdkdzFacURwNUY4ak1nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsjKgN9lh HYd70Rq/HMKOpXx3diSQMVnqbaeb9Q+D3zvuUwc+aU19zDlrcGXSH0ji9Icc9ZnR L/NmY6n1mhcPcQmB6O4faA3qdcdXXTLz5pRSylJ//hAM91y2ih6RRr7JSCMzl1Gq VMRV+ZC+BfBUKmMGA33YTpHp96BZ1DN4MSHVfEpclqeaVuBfDYco5i+xZT1kR14k Cco7XiHBSTpk6dRUJFniouoFSA/HSyr7353U3IAT6j9+vqiYbx3S8B0VhTy4h22f BCauB/OTQZrBmprNpagW+rO7b3+ssiZizAnDYqBrSN9ZmU/zVlDX7VfIJf96wNmt N1CJ8YyUjNTdOg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:44:28 2026 by rpki-client