This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft File: RzrT6YeegYYjFqEICLtcQhKVTLo.mft (raw, json) Hash identifier: elxDsxurZUfauOAEJiFgkVaHQT5lOtOb7ojHeKWAPZc= Subject key identifier: 76:32:D1:DF:8F:7E:EA:87:7D:A5:69:61:74:32:B4:44:6E:B3:5F:96 Authority key identifier: 47:3A:D3:E9:87:9E:81:86:23:16:A1:08:08:BB:5C:42:12:95:4C:BA Certificate issuer: /CN=473ad3e9879e81862316a10808bb5c4212954cba Certificate serial: 019C432252EA6BA7B3D11FBCB33F6076F6F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft Manifest number: 10BD Signing time: Mon 09 Feb 2026 16:00:48 +0000 Manifest this update: Mon 09 Feb 2026 16:00:48 +0000 Manifest next update: Tue 10 Feb 2026 16:00:48 +0000 Files and hashes: 1: RzrT6YeegYYjFqEICLtcQhKVTLo.crl (hash: VTFpGcG87iz251PXXFTtn63nGBqXwPFDcxt+zhTe22E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.crl rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:52:ea:6b:a7:b3:d1:1f:bc:b3:3f:60:76:f6:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473ad3e9879e81862316a10808bb5c4212954cba Validity Not Before: Feb 9 16:00:48 2026 GMT Not After : Feb 10 16:00:48 2026 GMT Subject: CN=7632d1df8f7eea877da569617432b4446eb35f96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:10:07:96:de:ce:82:23:41:3a:21:4c:10:9c: e5:74:1d:bb:bb:db:a6:db:13:53:8a:8a:bc:29:a5: bb:80:13:55:ba:56:bc:33:0d:f3:89:5d:a8:f9:f0: 0f:40:3b:0a:4f:59:ef:02:6c:aa:25:42:85:f7:48: d9:a2:64:22:27:41:4d:b5:ef:07:f8:fa:3a:64:ff: 4c:37:90:cb:a7:97:df:1c:98:c8:3a:bb:00:2e:79: b2:0b:4b:ea:64:7e:49:53:e7:52:dd:32:3f:5f:1c: a3:a2:80:0a:73:09:98:05:89:bb:df:67:67:33:bd: 1d:cc:bc:41:92:e5:5f:2e:09:e8:79:ab:3a:bf:3a: b2:15:6c:e7:7e:3f:7a:4a:66:38:5a:ce:fd:af:d3: 37:d9:c9:bd:f5:16:e2:e5:2c:33:90:a8:77:0b:f7: 17:c5:a2:e5:4d:2e:69:1a:d4:07:9c:fb:17:c4:02: ed:79:4f:eb:01:a1:4b:df:5d:87:ec:87:fa:43:b4: c9:dd:28:3a:a8:e7:a6:a3:44:47:59:8e:b7:0e:3b: d6:c0:6e:2b:81:94:35:9e:bd:d6:c4:b7:11:41:37: 2a:5e:56:96:c9:69:cb:e9:8a:c5:84:87:b2:dc:90: 2d:cf:c6:b1:bb:0d:08:80:8b:5e:62:24:b9:ac:3d: 19:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:32:D1:DF:8F:7E:EA:87:7D:A5:69:61:74:32:B4:44:6E:B3:5F:96 X509v3 Authority Key Identifier: keyid:47:3A:D3:E9:87:9E:81:86:23:16:A1:08:08:BB:5C:42:12:95:4C:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:04:c7:16:95:f3:d6:c1:79:8e:db:78:0e:15:21:4f:da:1e: b1:ab:f5:9c:94:98:36:da:e6:3b:1d:7d:4b:78:4a:96:d7:94: 8d:7b:7d:0e:0a:1b:0f:b9:ca:ba:d9:a9:d1:81:32:fd:dd:f4: c8:77:c5:43:19:ae:12:4a:f1:85:0f:af:70:44:f5:77:75:03: 93:8c:82:c8:36:00:74:a5:a8:28:51:ad:63:c8:eb:81:42:ca: 44:9d:50:b5:fb:a7:90:36:e5:90:88:e7:ae:92:c7:03:72:75: 01:6c:82:6c:6d:58:2f:26:a2:d5:8c:86:23:e3:bb:40:9f:be: 36:d9:df:2b:60:c6:f0:27:ce:12:39:e8:1c:c8:2c:b5:4b:d4: 72:83:fc:be:0c:f6:13:a1:b4:e2:5e:0e:38:c4:df:1d:2b:4c: 69:57:1d:26:3b:cc:af:68:bb:74:43:b2:14:7a:61:ef:66:18: e1:ae:d1:01:34:d0:35:b2:31:f5:e0:93:71:da:f8:b8:f8:3c: 19:ed:01:74:fb:b4:a2:3b:6c:ae:04:5f:25:cd:b1:7f:a5:b3: f2:1c:8a:cd:48:07:94:ce:00:7a:e5:08:bc:fe:fc:88:fe:3a: fd:0d:10:b9:1a:fe:d5:fb:6d:b3:68:99:f2:8a:29:07:8b:56: 25:f1:4c:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIlLqa6ez0R+8sz9gdvb1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3M2FkM2U5ODc5ZTgxODYyMzE2YTEwODA4YmI1YzQyMTI5 NTRjYmEwHhcNMjYwMjA5MTYwMDQ4WhcNMjYwMjEwMTYwMDQ4WjAzMTEwLwYDVQQD Eyg3NjMyZDFkZjhmN2VlYTg3N2RhNTY5NjE3NDMyYjQ0NDZlYjM1Zjk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyhAHlt7OgiNBOiFMEJzldB27u9um 2xNTioq8KaW7gBNVula8Mw3ziV2o+fAPQDsKT1nvAmyqJUKF90jZomQiJ0FNte8H +Po6ZP9MN5DLp5ffHJjIOrsALnmyC0vqZH5JU+dS3TI/XxyjooAKcwmYBYm732dn M70dzLxBkuVfLgnoeas6vzqyFWznfj96SmY4Ws79r9M32cm99Rbi5SwzkKh3C/cX xaLlTS5pGtQHnPsXxALteU/rAaFL312H7If6Q7TJ3Sg6qOemo0RHWY63DjvWwG4r gZQ1nr3WxLcRQTcqXlaWyWnL6YrFhIey3JAtz8axuw0IgIteYiS5rD0ZcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHYy0d+PfuqHfaVpYXQytERus1+WMB8GA1UdIwQY MBaAFEc60+mHnoGGIxahCAi7XEISlUy6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUnpyVDZZZWVnWVlqRnFFSUNMdGNRaEtWVExvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi8xZDI3ZGEtYjM5Zi00MmE5LTk0OWYt YjZjMzlhZDk4M2RkLzEvUnpyVDZZZWVnWVlqRnFFSUNMdGNRaEtWVExvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi8xZDI3ZGEtYjM5Zi00MmE5LTk0OWYtYjZjMzlhZDk4M2Rk LzEvUnpyVDZZZWVnWVlqRnFFSUNMdGNRaEtWVExvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABgTHFpXz 1sF5jtt4DhUhT9oesav1nJSYNtrmOx19S3hKlteUjXt9DgobD7nKutmp0YEy/d30 yHfFQxmuEkrxhQ+vcET1d3UDk4yCyDYAdKWoKFGtY8jrgULKRJ1QtfunkDblkIjn rpLHA3J1AWyCbG1YLyai1YyGI+O7QJ++NtnfK2DG8CfOEjnoHMgstUvUcoP8vgz2 E6G04l4OOMTfHStMaVcdJjvMr2i7dEOyFHph72YY4a7RATTQNbIx9eCTcdr4uPg8 Ge0BdPu0ojtsrgRfJc2xf6Wz8hyKzUgHlM4AeuUIvP78iP46/Q0QuRr+1ftts2iZ 8oopB4tWJfFM9w== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:23 2026 by rpki-client