This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft File: y9dX6ROqzkNObdbW1Qp-33LOiIw.mft (raw, json) Hash identifier: PfM4OtsDqtDnC1vpbOj05kftREnhFPgKbZqnpIoWKpk= Subject key identifier: 69:6F:39:EB:35:30:0A:1D:D9:5F:25:24:DE:C6:5B:72:D1:B7:17:E6 Authority key identifier: CB:D7:57:E9:13:AA:CE:43:4E:6D:D6:D6:D5:0A:7E:DF:72:CE:88:8C Certificate issuer: /CN=cbd757e913aace434e6dd6d6d50a7edf72ce888c Certificate serial: 019C41D8D56C7BA853149F16EB81B0830D11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9dX6ROqzkNObdbW1Qp-33LOiIw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft Manifest number: 11DC Signing time: Mon 09 Feb 2026 10:00:55 +0000 Manifest this update: Mon 09 Feb 2026 10:00:55 +0000 Manifest next update: Tue 10 Feb 2026 10:00:55 +0000 Files and hashes: 1: tnlT3WguTIaBPQyXQdyvdPZTqq0.roa (hash: OdNtfnb+ps4t4Tb3faIsE6ujGrvLv+3p6hrL7wNeeB4=) 2: y9dX6ROqzkNObdbW1Qp-33LOiIw.crl (hash: kzOhjqmigh4L2mx8K8njdDWryaRlHuOoS0e32+u3M5w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.crl rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft rsync://rpki.ripe.net/repository/DEFAULT/y9dX6ROqzkNObdbW1Qp-33LOiIw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:d5:6c:7b:a8:53:14:9f:16:eb:81:b0:83:0d:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cbd757e913aace434e6dd6d6d50a7edf72ce888c Validity Not Before: Feb 9 10:00:55 2026 GMT Not After : Feb 10 10:00:55 2026 GMT Subject: CN=696f39eb35300a1dd95f2524dec65b72d1b717e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a1:bc:51:5f:7c:1d:87:8d:e9:62:ac:a9:cd: 42:7a:6b:5e:15:15:a3:07:27:db:62:61:cb:c7:3c: 03:58:9a:8e:a1:7e:63:48:42:f3:36:b6:99:b6:cd: dc:4c:42:f1:03:22:99:3e:c9:30:a8:dd:0c:d4:9e: a9:23:21:1b:da:82:0d:60:fa:6d:08:39:db:69:c5: e5:8d:7f:69:25:5b:0f:28:9f:b5:81:fa:97:7f:6f: 25:51:17:34:20:f8:f3:a8:31:fc:bb:47:62:74:fa: 46:43:b4:bb:a2:79:ff:cb:39:b1:4f:c8:a0:36:48: cc:cc:b3:b5:6a:7a:15:7d:7a:54:54:89:94:14:1f: a1:7b:71:3a:b1:61:03:d8:09:b7:0d:e9:e5:78:4a: 63:df:1f:e7:22:76:89:97:fd:d2:97:5e:c7:41:3c: 63:dd:0c:24:d8:c9:f1:6a:81:db:40:a9:de:d4:26: 1d:7f:8c:fc:8d:59:79:02:9b:54:0f:b4:ec:24:bb: c4:49:11:a6:42:cb:1a:0f:22:db:6f:4a:9e:5d:65: 24:37:a1:03:d4:40:98:2f:72:6d:ef:b7:5a:68:79: d2:7e:ed:d7:83:49:7c:bc:7b:64:7a:5e:08:22:ba: 70:51:b1:55:c9:2b:dd:c4:e8:cf:32:a8:79:b6:d1: 53:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:6F:39:EB:35:30:0A:1D:D9:5F:25:24:DE:C6:5B:72:D1:B7:17:E6 X509v3 Authority Key Identifier: keyid:CB:D7:57:E9:13:AA:CE:43:4E:6D:D6:D6:D5:0A:7E:DF:72:CE:88:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9dX6ROqzkNObdbW1Qp-33LOiIw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:f6:b7:02:d4:5e:db:64:7e:48:35:3f:01:8f:3f:b3:9e:4b: 89:5b:e1:b5:53:83:32:25:cf:d0:77:5d:ca:49:94:5e:3d:97: b3:2a:57:a1:83:75:8c:9b:cf:b0:3c:ff:51:98:d7:fc:1a:04: 43:5e:35:a2:4c:61:b4:e9:66:6a:c1:3b:32:54:50:f9:85:da: 96:83:75:ad:44:48:f2:5a:6b:98:09:81:82:10:fe:d0:7c:0f: c4:1d:cb:89:32:57:5f:33:de:24:d8:8b:57:6e:a2:8d:20:d6: ca:bf:68:ff:a0:2f:60:00:cc:30:8f:d5:ff:58:f5:c6:d4:94: 7b:16:a5:09:69:a4:75:b3:c4:c2:91:62:1d:9d:a9:03:0a:f7: ea:28:c5:16:fc:bd:c8:37:aa:2d:40:df:ea:29:c4:fc:40:b4: 9c:25:3e:28:08:49:a4:61:3b:ec:cc:43:12:36:e9:c3:ab:5b: 84:f3:dd:08:97:4c:94:70:65:09:7c:d2:b6:dc:39:e0:0b:f6: c7:94:95:33:3e:0e:80:a1:58:69:2c:e7:73:f0:2d:0f:f9:ff: 58:34:02:bc:0a:2f:42:41:b0:00:29:9d:d9:b5:1b:65:c5:19: 75:35:6f:d1:cf:0f:6a:ca:0a:ff:1f:d3:49:27:f7:fe:ea:5f: b0:7e:23:d2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2NVse6hTFJ8W64Gwgw0RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiZDc1N2U5MTNhYWNlNDM0ZTZkZDZkNmQ1MGE3ZWRmNzJj ZTg4OGMwHhcNMjYwMjA5MTAwMDU1WhcNMjYwMjEwMTAwMDU1WjAzMTEwLwYDVQQD Eyg2OTZmMzllYjM1MzAwYTFkZDk1ZjI1MjRkZWM2NWI3MmQxYjcxN2U2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxaG8UV98HYeN6WKsqc1CemteFRWj ByfbYmHLxzwDWJqOoX5jSELzNraZts3cTELxAyKZPskwqN0M1J6pIyEb2oINYPpt CDnbacXljX9pJVsPKJ+1gfqXf28lURc0IPjzqDH8u0didPpGQ7S7onn/yzmxT8ig NkjMzLO1anoVfXpUVImUFB+he3E6sWED2Am3DenleEpj3x/nInaJl/3Sl17HQTxj 3Qwk2MnxaoHbQKne1CYdf4z8jVl5AptUD7TsJLvESRGmQssaDyLbb0qeXWUkN6ED 1ECYL3Jt77daaHnSfu3Xg0l8vHtkel4IIrpwUbFVySvdxOjPMqh5ttFTgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGlvOes1MAod2V8lJN7GW3LRtxfmMB8GA1UdIwQY MBaAFMvXV+kTqs5DTm3W1tUKft9yzoiMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTlkWDZST3F6a05PYmRiVzFRcC0zM0xPaUl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi9iZGMwOWEtMmIyYS00Nzk3LWEyOTYt OWNmZGYzYzJiMzQ4LzEveTlkWDZST3F6a05PYmRiVzFRcC0zM0xPaUl3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi9iZGMwOWEtMmIyYS00Nzk3LWEyOTYtOWNmZGYzYzJiMzQ4 LzEveTlkWDZST3F6a05PYmRiVzFRcC0zM0xPaUl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQPa3AtRe 22R+SDU/AY8/s55LiVvhtVODMiXP0HddykmUXj2XsypXoYN1jJvPsDz/UZjX/BoE Q141okxhtOlmasE7MlRQ+YXaloN1rURI8lprmAmBghD+0HwPxB3LiTJXXzPeJNiL V26ijSDWyr9o/6AvYADMMI/V/1j1xtSUexalCWmkdbPEwpFiHZ2pAwr36ijFFvy9 yDeqLUDf6inE/EC0nCU+KAhJpGE77MxDEjbpw6tbhPPdCJdMlHBlCXzSttw54Av2 x5SVMz4OgKFYaSznc/AtD/n/WDQCvAovQkGwACmd2bUbZcUZdTVv0c8PasoK/x/T SSf3/upfsH4j0g== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:39 2026 by rpki-client