This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/b1388f-3aeb-40d6-b4b7-9e852f3301c0/1/ny4CE8HB23M97spK4mFsqv-lFXA.mft File: ny4CE8HB23M97spK4mFsqv-lFXA.mft (raw, json) Hash identifier: wXU2a98AqRxDFREu63CKJ4SCil4btdldRiWqcs7ACbI= Subject key identifier: 80:F6:84:90:15:97:90:75:1C:07:C8:6A:B0:9A:97:5B:9B:DA:63:07 Authority key identifier: 9F:2E:02:13:C1:C1:DB:73:3D:EE:CA:4A:E2:61:6C:AA:FF:A5:15:70 Certificate issuer: /CN=9f2e0213c1c1db733deeca4ae2616caaffa51570 Certificate serial: 019C43FE3ED01D1AAF8804DB78ABE3E129DD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ny4CE8HB23M97spK4mFsqv-lFXA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/b1388f-3aeb-40d6-b4b7-9e852f3301c0/1/ny4CE8HB23M97spK4mFsqv-lFXA.mft Manifest number: 14BE Signing time: Mon 09 Feb 2026 20:01:01 +0000 Manifest this update: Mon 09 Feb 2026 20:01:01 +0000 Manifest next update: Tue 10 Feb 2026 20:01:01 +0000 Files and hashes: 1: ny4CE8HB23M97spK4mFsqv-lFXA.crl (hash: bm5e8r8hr90DXyWUupKoH0riqCOUAsu3VhOcDjfF76s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/b1388f-3aeb-40d6-b4b7-9e852f3301c0/1/ny4CE8HB23M97spK4mFsqv-lFXA.crl rsync://rpki.ripe.net/repository/DEFAULT/04/b1388f-3aeb-40d6-b4b7-9e852f3301c0/1/ny4CE8HB23M97spK4mFsqv-lFXA.mft rsync://rpki.ripe.net/repository/DEFAULT/ny4CE8HB23M97spK4mFsqv-lFXA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:3e:d0:1d:1a:af:88:04:db:78:ab:e3:e1:29:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9f2e0213c1c1db733deeca4ae2616caaffa51570 Validity Not Before: Feb 9 20:01:01 2026 GMT Not After : Feb 10 20:01:01 2026 GMT Subject: CN=80f68490159790751c07c86ab09a975b9bda6307 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:67:38:67:be:de:fa:5e:2a:e7:96:15:d6:19: 8b:b8:19:0e:12:d9:48:5f:eb:c0:f6:02:e5:b8:b1: 6d:0d:9f:e3:fa:13:d3:4b:1b:3b:77:68:2a:c1:23: 52:a9:74:96:82:a9:56:89:67:1f:ce:1d:30:a2:69: 52:d8:3d:a5:05:77:43:fd:25:82:51:ba:db:35:36: 38:f2:59:d6:c4:5b:25:91:75:fa:5a:19:a3:7f:8d: 7c:21:93:c0:45:cd:3f:0a:00:cf:92:93:86:88:11: 89:f5:b1:1d:a8:c8:0f:9d:cd:a6:c9:a5:20:c4:d0: 8f:10:4e:ac:9f:d8:79:bd:ee:89:13:f4:3d:95:95: 9a:c4:f8:e2:6c:b9:1b:da:cf:8f:b8:c6:2e:93:82: 71:e0:ab:6b:d8:35:b5:ed:5b:98:21:15:e6:3e:49: 0d:05:ac:be:95:e2:4e:9c:f8:a8:fe:05:ae:87:0b: 13:f6:bf:e7:f6:d3:a0:3f:44:a6:fa:a9:1c:a6:d0: 5a:b9:7b:27:56:41:ae:57:ac:a3:09:c5:e7:c4:b9: 6c:27:78:e1:1c:58:7b:02:5a:c8:8b:33:7a:40:e9: 90:13:46:7e:78:a6:cd:33:04:cb:77:86:e9:64:c6: 2b:25:f3:c4:1d:9a:b3:9e:90:02:f7:a9:b6:b5:be: 3d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:F6:84:90:15:97:90:75:1C:07:C8:6A:B0:9A:97:5B:9B:DA:63:07 X509v3 Authority Key Identifier: keyid:9F:2E:02:13:C1:C1:DB:73:3D:EE:CA:4A:E2:61:6C:AA:FF:A5:15:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ny4CE8HB23M97spK4mFsqv-lFXA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/b1388f-3aeb-40d6-b4b7-9e852f3301c0/1/ny4CE8HB23M97spK4mFsqv-lFXA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/b1388f-3aeb-40d6-b4b7-9e852f3301c0/1/ny4CE8HB23M97spK4mFsqv-lFXA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption af:94:3b:6c:33:57:97:04:1f:12:9d:94:50:41:8c:10:da:67: 85:c0:10:d9:e5:ff:7d:cd:fd:1d:3c:bf:44:12:b4:f8:90:25: c5:40:b0:d6:df:8f:dd:04:fd:af:17:8c:b0:9f:7a:45:e0:5a: 77:12:a0:4b:aa:fa:c4:aa:ed:61:8f:5f:63:de:cf:99:fa:37: c2:5e:51:3f:18:2f:47:e0:54:ec:a3:e6:74:cc:0c:73:89:e6: ce:45:93:1e:ae:79:63:15:f3:55:ce:05:bb:dd:1c:f3:bf:df: 56:2c:dc:6b:69:28:64:3d:8c:f3:29:76:56:a7:bb:cd:78:33: e2:69:51:f5:4e:d4:1f:da:c7:b6:a0:d8:38:86:7f:d1:4d:7c: 0a:a2:05:ba:c4:78:88:73:5a:c8:ae:ef:c2:ff:3e:df:8c:4b: 78:13:a7:17:7f:bf:ee:12:d6:15:6b:68:12:77:83:13:ce:91: cd:b2:c8:7b:83:82:38:df:e4:a1:16:13:61:b4:f1:d4:93:9f: b5:a5:0e:1e:88:4c:e2:7d:67:6f:72:ee:7b:ac:13:ef:8a:f9: 57:3e:cf:1c:1a:ea:a6:e6:0d:07:94:fe:c6:75:e9:84:cd:59: d6:ad:97:f0:b6:d3:fb:1c:d1:01:73:3b:b3:2f:fb:73:8b:86: 41:5e:53:f3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/j7QHRqviATbeKvj4SndMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmMmUwMjEzYzFjMWRiNzMzZGVlY2E0YWUyNjE2Y2FhZmZh NTE1NzAwHhcNMjYwMjA5MjAwMTAxWhcNMjYwMjEwMjAwMTAxWjAzMTEwLwYDVQQD Eyg4MGY2ODQ5MDE1OTc5MDc1MWMwN2M4NmFiMDlhOTc1YjliZGE2MzA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvmc4Z77e+l4q55YV1hmLuBkOEtlI X+vA9gLluLFtDZ/j+hPTSxs7d2gqwSNSqXSWgqlWiWcfzh0womlS2D2lBXdD/SWC UbrbNTY48lnWxFslkXX6Whmjf418IZPARc0/CgDPkpOGiBGJ9bEdqMgPnc2myaUg xNCPEE6sn9h5ve6JE/Q9lZWaxPjibLkb2s+PuMYuk4Jx4Ktr2DW17VuYIRXmPkkN Bay+leJOnPio/gWuhwsT9r/n9tOgP0Sm+qkcptBauXsnVkGuV6yjCcXnxLlsJ3jh HFh7AlrIizN6QOmQE0Z+eKbNMwTLd4bpZMYrJfPEHZqznpAC96m2tb49eQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFID2hJAVl5B1HAfIarCal1ub2mMHMB8GA1UdIwQY MBaAFJ8uAhPBwdtzPe7KSuJhbKr/pRVwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnk0Q0U4SEIyM005N3NwSzRtRnNxdi1sRlhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9iMTM4OGYtM2FlYi00MGQ2LWI0Yjct OWU4NTJmMzMwMWMwLzEvbnk0Q0U4SEIyM005N3NwSzRtRnNxdi1sRlhBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC9iMTM4OGYtM2FlYi00MGQ2LWI0YjctOWU4NTJmMzMwMWMw LzEvbnk0Q0U4SEIyM005N3NwSzRtRnNxdi1sRlhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAr5Q7bDNX lwQfEp2UUEGMENpnhcAQ2eX/fc39HTy/RBK0+JAlxUCw1t+P3QT9rxeMsJ96ReBa dxKgS6r6xKrtYY9fY97Pmfo3wl5RPxgvR+BU7KPmdMwMc4nmzkWTHq55YxXzVc4F u90c87/fVizca2koZD2M8yl2Vqe7zXgz4mlR9U7UH9rHtqDYOIZ/0U18CqIFusR4 iHNayK7vwv8+34xLeBOnF3+/7hLWFWtoEneDE86RzbLIe4OCON/koRYTYbTx1JOf taUOHohM4n1nb3Lue6wT74r5Vz7PHBrqpuYNB5T+xnXphM1Z1q2X8LbT+xzRAXM7 sy/7c4uGQV5T8w== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:44 2026 by rpki-client