This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/ea37f1-ce1a-4816-bcb6-4412defede73/1/y4P7_Bds1I6-Lyzen0wB7SU7uy0.mft File: y4P7_Bds1I6-Lyzen0wB7SU7uy0.mft (raw, json) Hash identifier: /jrXiT2DiOIkjjA7KSOI+uP+okmNptxhAwdJjzdX9Oc= Subject key identifier: 1F:C8:46:DD:23:F7:C5:8C:22:F1:E6:37:00:6D:BC:9A:7E:84:0F:D2 Authority key identifier: CB:83:FB:FC:17:6C:D4:8E:BE:2F:2C:DE:9F:4C:01:ED:25:3B:BB:2D Certificate issuer: /CN=cb83fbfc176cd48ebe2f2cde9f4c01ed253bbb2d Certificate serial: 019C44D9B0C5B99694D6FDAF2DDF811F5EB2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y4P7_Bds1I6-Lyzen0wB7SU7uy0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/ea37f1-ce1a-4816-bcb6-4412defede73/1/y4P7_Bds1I6-Lyzen0wB7SU7uy0.mft Manifest number: 1810 Signing time: Tue 10 Feb 2026 00:00:43 +0000 Manifest this update: Tue 10 Feb 2026 00:00:43 +0000 Manifest next update: Wed 11 Feb 2026 00:00:43 +0000 Files and hashes: 1: y4P7_Bds1I6-Lyzen0wB7SU7uy0.crl (hash: hgyzaIGMiUA5MKHDMwBFDn+SW0BPo2GkTAljn6ct4hw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/ea37f1-ce1a-4816-bcb6-4412defede73/1/y4P7_Bds1I6-Lyzen0wB7SU7uy0.crl rsync://rpki.ripe.net/repository/DEFAULT/08/ea37f1-ce1a-4816-bcb6-4412defede73/1/y4P7_Bds1I6-Lyzen0wB7SU7uy0.mft rsync://rpki.ripe.net/repository/DEFAULT/y4P7_Bds1I6-Lyzen0wB7SU7uy0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:d9:b0:c5:b9:96:94:d6:fd:af:2d:df:81:1f:5e:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cb83fbfc176cd48ebe2f2cde9f4c01ed253bbb2d Validity Not Before: Feb 10 00:00:43 2026 GMT Not After : Feb 11 00:00:43 2026 GMT Subject: CN=1fc846dd23f7c58c22f1e637006dbc9a7e840fd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4e:e6:b5:2c:d4:96:aa:29:f5:8c:05:6c:8b: a3:84:31:74:73:16:b2:ed:ae:b8:1c:2a:27:f9:07: 2f:d3:aa:1c:e4:09:1d:11:d8:ba:36:36:38:a1:5d: 38:84:6f:e1:b2:55:ff:a8:f2:e1:0a:e3:86:f7:35: 1a:c3:90:f8:6d:84:9b:77:67:78:a2:5f:66:ec:0c: 2f:c7:1c:63:15:fa:6b:d8:22:18:10:25:40:19:fd: c3:45:d7:f1:23:fd:29:ca:7c:80:2c:a0:ed:73:b0: f9:b5:5e:14:06:25:8b:6f:e9:b5:43:bb:ff:3e:56: 86:ec:77:9c:48:d0:f6:76:8a:74:20:0d:49:39:af: b9:34:d8:c2:1a:ad:d7:78:3c:a0:34:91:cd:ec:4c: 6c:54:f4:1c:b1:46:18:31:63:55:d7:06:bd:41:9a: fc:ae:b2:74:1c:10:d9:2f:7e:22:b3:83:a8:a9:dc: ab:81:fc:18:de:dc:9e:5b:26:75:1f:a0:19:60:b9: 02:d9:e2:83:56:6f:b2:62:27:da:8c:38:c7:d5:4f: 2e:cb:81:13:df:23:f3:29:21:14:08:2e:b7:c9:90: cd:7a:d8:b9:4c:c0:b3:4f:43:99:da:bf:54:4b:7c: c1:95:89:de:aa:fd:73:f9:7d:bb:e5:e1:b3:03:59: c8:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C8:46:DD:23:F7:C5:8C:22:F1:E6:37:00:6D:BC:9A:7E:84:0F:D2 X509v3 Authority Key Identifier: keyid:CB:83:FB:FC:17:6C:D4:8E:BE:2F:2C:DE:9F:4C:01:ED:25:3B:BB:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y4P7_Bds1I6-Lyzen0wB7SU7uy0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/ea37f1-ce1a-4816-bcb6-4412defede73/1/y4P7_Bds1I6-Lyzen0wB7SU7uy0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/ea37f1-ce1a-4816-bcb6-4412defede73/1/y4P7_Bds1I6-Lyzen0wB7SU7uy0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:e1:c9:58:9f:35:78:f9:9d:64:f5:7f:15:56:1e:b7:87:08: 88:fa:62:66:27:25:6f:88:a9:11:56:73:39:a5:53:d6:3c:e3: 7e:06:50:99:b0:fb:26:8a:d2:09:3f:06:71:bf:a1:4f:f9:6d: fb:e4:7b:dd:bf:f6:b3:40:a8:34:92:fd:73:fc:a1:21:e1:4b: 7d:48:45:45:84:fb:16:02:3a:55:4d:ca:51:fd:47:d8:b1:f2: e3:29:b5:c7:d6:e7:1d:6b:c3:e0:fc:f2:d8:6d:29:40:d8:d8: 34:e7:4c:5c:c0:52:5d:fa:b0:f2:65:2e:32:e4:e0:3e:11:84: a8:58:d3:24:e6:5d:3d:62:fa:34:9a:ca:6c:02:6c:a2:89:6a: 58:20:53:2c:a2:23:23:3a:27:7f:3c:03:0d:e3:54:60:93:c9: d8:08:0d:dc:ff:c6:c9:21:c1:81:7d:6a:24:3e:53:8b:29:f2: f0:b5:7f:a6:be:bc:9c:a2:d3:3e:7a:55:92:fa:94:a6:2e:34: 8c:5e:f6:5b:16:f7:59:ae:32:4c:20:eb:9b:3c:bb:c5:a3:80: bf:1a:b0:07:22:1e:46:aa:80:e5:e0:38:d8:87:56:b3:eb:2c: e5:60:74:fa:34:4f:85:0a:33:6a:b5:a0:f6:26:dd:00:08:a2: 97:7d:f5:eb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxE2bDFuZaU1v2vLd+BH16yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiODNmYmZjMTc2Y2Q0OGViZTJmMmNkZTlmNGMwMWVkMjUz YmJiMmQwHhcNMjYwMjEwMDAwMDQzWhcNMjYwMjExMDAwMDQzWjAzMTEwLwYDVQQD EygxZmM4NDZkZDIzZjdjNThjMjJmMWU2MzcwMDZkYmM5YTdlODQwZmQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv07mtSzUlqop9YwFbIujhDF0cxay 7a64HCon+Qcv06oc5AkdEdi6NjY4oV04hG/hslX/qPLhCuOG9zUaw5D4bYSbd2d4 ol9m7AwvxxxjFfpr2CIYECVAGf3DRdfxI/0pynyALKDtc7D5tV4UBiWLb+m1Q7v/ PlaG7HecSND2dop0IA1JOa+5NNjCGq3XeDygNJHN7ExsVPQcsUYYMWNV1wa9QZr8 rrJ0HBDZL34is4OoqdyrgfwY3tyeWyZ1H6AZYLkC2eKDVm+yYifajDjH1U8uy4ET 3yPzKSEUCC63yZDNeti5TMCzT0OZ2r9US3zBlYneqv1z+X275eGzA1nIkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB/IRt0j98WMIvHmNwBtvJp+hA/SMB8GA1UdIwQY MBaAFMuD+/wXbNSOvi8s3p9MAe0lO7stMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTRQN19CZHMxSTYtTHl6ZW4wd0I3U1U3dXkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC9lYTM3ZjEtY2UxYS00ODE2LWJjYjYt NDQxMmRlZmVkZTczLzEveTRQN19CZHMxSTYtTHl6ZW4wd0I3U1U3dXkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC9lYTM3ZjEtY2UxYS00ODE2LWJjYjYtNDQxMmRlZmVkZTcz LzEveTRQN19CZHMxSTYtTHl6ZW4wd0I3U1U3dXkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAReHJWJ81 ePmdZPV/FVYet4cIiPpiZiclb4ipEVZzOaVT1jzjfgZQmbD7JorSCT8Gcb+hT/lt ++R73b/2s0CoNJL9c/yhIeFLfUhFRYT7FgI6VU3KUf1H2LHy4ym1x9bnHWvD4Pzy 2G0pQNjYNOdMXMBSXfqw8mUuMuTgPhGEqFjTJOZdPWL6NJrKbAJsoolqWCBTLKIj IzonfzwDDeNUYJPJ2AgN3P/GySHBgX1qJD5Tiyny8LV/pr68nKLTPnpVkvqUpi40 jF72Wxb3Wa4yTCDrmzy7xaOAvxqwByIeRqqA5eA42IdWs+ss5WB0+jRPhQozarWg 9ibdAAiil3316w== -----END CERTIFICATE-----Generated at Tue Feb 10 02:51:42 2026 by rpki-client