This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft File: CYdvfc8Myud0IWBGOzjhw181bRI.mft (raw, json) Hash identifier: lu9pPCa4UIePoNATk8q94wsjtw+IlOCMclRhcv9RAZE= Subject key identifier: 9B:47:3C:DF:DE:26:A5:13:82:0A:4B:19:FA:CC:5C:27:F6:08:BC:BC Authority key identifier: 09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12 Certificate issuer: /CN=09876f7dcf0ccae7742160463b38e1c35f356d12 Certificate serial: 019C41A1F96A42C4ECB0A5A257308691C911 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft Manifest number: 1083 Signing time: Mon 09 Feb 2026 09:01:00 +0000 Manifest this update: Mon 09 Feb 2026 09:01:00 +0000 Manifest next update: Tue 10 Feb 2026 09:01:00 +0000 Files and hashes: 1: CYdvfc8Myud0IWBGOzjhw181bRI.crl (hash: XtftGrpWA2wtSiK1uPEpc9RSx0Lg7CZx1wUfRs9jJls=) 2: VfT1jovZQbB_GOxrewqAg31IJD4.roa (hash: rEaYnnOYpTkHENGl1d6pSu6EPvs3HHaHkQH4luV+aMI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:f9:6a:42:c4:ec:b0:a5:a2:57:30:86:91:c9:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09876f7dcf0ccae7742160463b38e1c35f356d12 Validity Not Before: Feb 9 09:01:00 2026 GMT Not After : Feb 10 09:01:00 2026 GMT Subject: CN=9b473cdfde26a513820a4b19facc5c27f608bcbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:a9:03:6c:36:7a:4b:74:42:99:00:89:d8:cd: 8c:53:23:7c:74:03:0a:01:88:48:06:47:0f:95:da: 2d:96:f7:30:09:95:04:2a:8c:48:ee:f0:20:89:2f: ad:1d:d5:c7:b8:9d:bf:64:04:8c:43:25:47:86:c4: 79:1a:74:b9:74:8b:d9:10:cf:52:e9:05:7c:00:8e: 2d:8b:73:72:93:1a:5b:1b:d7:14:12:4e:ef:38:d4: 8b:ef:0b:ae:ab:bd:77:bf:a6:35:c0:f2:f3:74:5f: d1:f9:b6:bd:ee:b0:24:96:6a:78:d2:68:d7:c5:25: 55:5a:fe:f5:e5:7d:c1:0b:9f:3d:5a:04:d4:8d:14: 32:bf:ce:22:2f:a3:e3:79:00:9e:29:8f:ed:97:b3: c4:59:b0:25:15:22:74:d0:cc:f5:87:17:28:7a:76: 0f:5d:8c:17:b0:c7:10:9b:57:94:4f:36:c2:17:62: 97:79:89:82:a1:43:67:14:1c:b3:a5:2d:15:c9:4c: 70:52:56:3b:42:eb:e1:87:dc:a0:0e:84:c9:5e:88: 4e:14:dc:c8:ad:6b:8c:80:0a:ea:42:b0:2d:59:33: ce:2e:b7:e8:33:21:5a:fb:1a:f1:14:2c:4d:da:35: 00:80:5b:4b:03:af:fd:1f:92:ee:41:67:e3:e3:bf: fa:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:47:3C:DF:DE:26:A5:13:82:0A:4B:19:FA:CC:5C:27:F6:08:BC:BC X509v3 Authority Key Identifier: keyid:09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:3e:75:35:c4:b5:a6:44:0f:ac:8d:e4:57:5f:bb:f8:9f:66: 85:d8:eb:b7:0c:a3:bf:f3:05:ec:1a:c9:41:3c:36:72:4e:4a: 04:33:bd:f1:97:5b:b6:21:27:35:19:89:15:ba:3b:0d:7c:c3: 85:40:cf:7e:af:35:6c:ca:77:26:0c:95:ea:a9:bb:9e:f4:db: 4d:3f:54:28:42:ed:75:8b:37:a9:5d:40:98:02:86:6d:b2:e7: 66:eb:e6:49:a8:1c:56:04:d1:bb:eb:1a:62:8e:93:b5:01:35: cb:f2:68:07:a4:1b:46:6c:68:36:e3:2c:26:fa:05:6e:19:06: 72:70:ce:27:2e:a9:b8:7a:72:4a:bb:e4:ba:6b:c2:bc:4f:d2: 88:3d:46:59:38:73:f5:97:bf:4e:71:a0:92:f2:f1:a2:fd:ce: 03:23:45:e0:f5:95:d6:8e:6a:d8:90:bf:2d:7b:3b:77:7f:b7: 6a:5e:ae:9c:0e:99:9f:06:0c:13:17:e7:e7:24:73:35:44:de: 3c:df:75:60:e2:50:ef:67:62:cf:50:8a:f6:38:87:fe:2f:d4: 07:67:26:61:14:81:0b:28:55:29:9d:dd:05:d6:9b:a2:65:4e: fc:eb:83:0b:17:c9:b2:61:2c:f7:0d:02:d2:f0:cb:c6:c5:c4: 3e:fa:e7:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoflqQsTssKWiVzCGkckRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5ODc2ZjdkY2YwY2NhZTc3NDIxNjA0NjNiMzhlMWMzNWYz NTZkMTIwHhcNMjYwMjA5MDkwMTAwWhcNMjYwMjEwMDkwMTAwWjAzMTEwLwYDVQQD Eyg5YjQ3M2NkZmRlMjZhNTEzODIwYTRiMTlmYWNjNWMyN2Y2MDhiY2JjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj6kDbDZ6S3RCmQCJ2M2MUyN8dAMK AYhIBkcPldotlvcwCZUEKoxI7vAgiS+tHdXHuJ2/ZASMQyVHhsR5GnS5dIvZEM9S 6QV8AI4ti3NykxpbG9cUEk7vONSL7wuuq713v6Y1wPLzdF/R+ba97rAklmp40mjX xSVVWv715X3BC589WgTUjRQyv84iL6PjeQCeKY/tl7PEWbAlFSJ00Mz1hxcoenYP XYwXsMcQm1eUTzbCF2KXeYmCoUNnFByzpS0VyUxwUlY7Quvhh9ygDoTJXohOFNzI rWuMgArqQrAtWTPOLrfoMyFa+xrxFCxN2jUAgFtLA6/9H5LuQWfj47/6RQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJtHPN/eJqUTggpLGfrMXCf2CLy8MB8GA1UdIwQY MBaAFAmHb33PDMrndCFgRjs44cNfNW0SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1lkdmZjOE15dWQwSVdCR096amh3MTgxYlJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9hNDM3NjYtOTFkZC00MjY2LWFmNjAt OTIwYjMyMGQyZTIxLzEvQ1lkdmZjOE15dWQwSVdCR096amh3MTgxYlJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9hNDM3NjYtOTFkZC00MjY2LWFmNjAtOTIwYjMyMGQyZTIx LzEvQ1lkdmZjOE15dWQwSVdCR096amh3MTgxYlJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMT51NcS1 pkQPrI3kV1+7+J9mhdjrtwyjv/MF7BrJQTw2ck5KBDO98ZdbtiEnNRmJFbo7DXzD hUDPfq81bMp3JgyV6qm7nvTbTT9UKELtdYs3qV1AmAKGbbLnZuvmSagcVgTRu+sa Yo6TtQE1y/JoB6QbRmxoNuMsJvoFbhkGcnDOJy6puHpySrvkumvCvE/SiD1GWThz 9Ze/TnGgkvLxov3OAyNF4PWV1o5q2JC/LXs7d3+3al6unA6ZnwYMExfn5yRzNUTe PN91YOJQ72diz1CK9jiH/i/UB2cmYRSBCyhVKZ3dBdabomVO/OuDCxfJsmEs9w0C 0vDLxsXEPvrnRA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:30:52 2026 by rpki-client