This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft File: RyyyiCCZANGvGpmLsDnsdX5JPdU.mft (raw, json) Hash identifier: 4h2mBmtDzb60BeejttU7HpXHlQKYpP0udiixGpHlRS0= Subject key identifier: EF:94:86:FA:31:3B:B3:3A:E2:D6:AD:E4:33:49:48:3D:03:01:7C:25 Authority key identifier: 47:2C:B2:88:20:99:00:D1:AF:1A:99:8B:B0:39:EC:75:7E:49:3D:D5 Certificate issuer: /CN=472cb288209900d1af1a998bb039ec757e493dd5 Certificate serial: 019C43591821FB8FF5BEF907E696A0C82AD8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft Manifest number: 0A39 Signing time: Mon 09 Feb 2026 17:00:38 +0000 Manifest this update: Mon 09 Feb 2026 17:00:38 +0000 Manifest next update: Tue 10 Feb 2026 17:00:38 +0000 Files and hashes: 1: JJzMSTrLw8Mj9A-jTJgxuAcpCQg.roa (hash: bTN07ZSVj23jINcVNw98RDlf14ha9z+H0npRvmlsk8E=) 2: RyyyiCCZANGvGpmLsDnsdX5JPdU.crl (hash: MZyLaXW8QBQ75fXierlJ3X0eDO+MM6BMX/xL6mxeE2s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.crl rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:18:21:fb:8f:f5:be:f9:07:e6:96:a0:c8:2a:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=472cb288209900d1af1a998bb039ec757e493dd5 Validity Not Before: Feb 9 17:00:38 2026 GMT Not After : Feb 10 17:00:38 2026 GMT Subject: CN=ef9486fa313bb33ae2d6ade43349483d03017c25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:68:16:16:46:9d:1e:56:5c:e2:c2:0a:2a:f1: fb:31:25:dd:88:9b:d5:c2:9f:77:cf:81:30:6b:19: ae:ed:d1:79:1a:6d:c1:4e:d5:89:18:b3:47:bc:d0: 9a:e3:63:f4:93:c2:c1:aa:59:20:20:80:71:2f:a9: d0:25:68:2b:86:ec:a8:57:fe:07:ee:ba:68:f2:28: 74:82:ac:f3:0e:c0:8b:d5:d1:6c:2e:16:48:4d:5c: cc:8b:16:25:d9:2d:fd:72:f0:8c:46:d8:4b:07:e1: d0:db:63:d3:f5:53:67:ed:87:8f:4c:30:f6:76:8e: 07:1b:11:64:37:36:43:a0:98:ce:be:d2:96:6e:42: a0:8a:04:e6:3b:cd:66:d4:db:73:33:82:34:10:66: 78:12:d6:56:ac:05:7d:c6:bf:9d:93:c5:42:19:ac: d3:b9:8f:35:d0:4a:37:32:2f:20:2f:45:b1:0d:7d: 6f:48:08:e3:87:68:93:96:af:80:e5:6d:16:72:27: ae:73:e8:66:43:cd:15:c1:10:16:6b:54:f8:8f:19: ac:ce:2e:8f:02:06:c0:0f:08:ca:de:2f:c8:13:67: 6e:a5:fe:02:1b:a6:76:28:0e:82:80:03:51:98:c4: 60:d0:d0:f1:66:34:99:fd:d1:60:20:6b:61:e0:8e: 79:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:94:86:FA:31:3B:B3:3A:E2:D6:AD:E4:33:49:48:3D:03:01:7C:25 X509v3 Authority Key Identifier: keyid:47:2C:B2:88:20:99:00:D1:AF:1A:99:8B:B0:39:EC:75:7E:49:3D:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:16:82:18:b1:96:fa:0a:dd:4b:2c:cf:4f:42:22:40:97:29: 70:72:4e:9e:fb:d1:bf:d6:c3:fa:4a:8a:47:7a:df:43:e7:24: 23:ad:65:b9:3c:5e:d0:31:67:19:4f:b3:f9:a2:71:72:8e:cf: a6:41:f5:62:1a:78:bf:6a:3d:45:a5:98:11:32:2f:5d:2a:b6: c7:13:4f:86:6e:bb:8b:ec:87:25:cb:55:ba:9b:1c:6d:dc:24: c6:a5:9c:b9:00:ba:af:c8:9a:0b:75:4e:30:8e:4f:34:00:cd: 4e:b3:9a:4b:3c:96:20:e1:f5:19:4d:c5:ed:dc:f1:a4:fd:da: fe:67:3c:fa:bb:f8:9c:c3:f3:76:be:ac:56:8f:a4:93:d3:bb: 76:df:90:0a:85:99:52:0b:be:0f:05:67:bc:03:43:f1:de:99: 88:cb:a4:39:d8:b1:a1:18:cc:94:c7:e5:44:de:37:7f:81:16: ea:cf:7d:18:46:e7:14:71:b7:60:b1:01:8e:04:dd:5d:63:f5: 95:91:e0:c2:31:35:73:87:67:dd:9a:4d:f1:e4:2a:af:55:7f: 72:1b:10:a9:f5:d5:7a:56:c4:b6:7c:43:38:21:26:a7:e1:e4: 70:4e:7a:52:54:c2:6c:d5:03:ed:7d:cc:eb:81:e2:3d:02:e3: 3a:32:61:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWRgh+4/1vvkH5pagyCrYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3MmNiMjg4MjA5OTAwZDFhZjFhOTk4YmIwMzllYzc1N2U0 OTNkZDUwHhcNMjYwMjA5MTcwMDM4WhcNMjYwMjEwMTcwMDM4WjAzMTEwLwYDVQQD EyhlZjk0ODZmYTMxM2JiMzNhZTJkNmFkZTQzMzQ5NDgzZDAzMDE3YzI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnWgWFkadHlZc4sIKKvH7MSXdiJvV wp93z4Ewaxmu7dF5Gm3BTtWJGLNHvNCa42P0k8LBqlkgIIBxL6nQJWgrhuyoV/4H 7rpo8ih0gqzzDsCL1dFsLhZITVzMixYl2S39cvCMRthLB+HQ22PT9VNn7YePTDD2 do4HGxFkNzZDoJjOvtKWbkKgigTmO81m1NtzM4I0EGZ4EtZWrAV9xr+dk8VCGazT uY810Eo3Mi8gL0WxDX1vSAjjh2iTlq+A5W0Wcieuc+hmQ80VwRAWa1T4jxmszi6P AgbADwjK3i/IE2dupf4CG6Z2KA6CgANRmMRg0NDxZjSZ/dFgIGth4I55ZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO+UhvoxO7M64tat5DNJSD0DAXwlMB8GA1UdIwQY MBaAFEcssoggmQDRrxqZi7A57HV+ST3VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUnl5eWlDQ1pBTkd2R3BtTHNEbnNkWDVKUGRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9mOWI2YjktYjc4Ny00ZTI4LWIwYmYt YWE5MDJkYmFlOTI4LzEvUnl5eWlDQ1pBTkd2R3BtTHNEbnNkWDVKUGRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy9mOWI2YjktYjc4Ny00ZTI4LWIwYmYtYWE5MDJkYmFlOTI4 LzEvUnl5eWlDQ1pBTkd2R3BtTHNEbnNkWDVKUGRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAThaCGLGW +grdSyzPT0IiQJcpcHJOnvvRv9bD+kqKR3rfQ+ckI61luTxe0DFnGU+z+aJxco7P pkH1Yhp4v2o9RaWYETIvXSq2xxNPhm67i+yHJctVupscbdwkxqWcuQC6r8iaC3VO MI5PNADNTrOaSzyWIOH1GU3F7dzxpP3a/mc8+rv4nMPzdr6sVo+kk9O7dt+QCoWZ Ugu+DwVnvAND8d6ZiMukOdixoRjMlMflRN43f4EW6s99GEbnFHG3YLEBjgTdXWP1 lZHgwjE1c4dn3ZpN8eQqr1V/chsQqfXVelbEtnxDOCEmp+HkcE56UlTCbNUD7X3M 64HiPQLjOjJhNw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:40:49 2026 by rpki-client