This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft File: Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft (raw, json) Hash identifier: 5jf7GIAAenzmxuuGyADrRWMFrgdcgOhfdwmDaSqqmVU= Subject key identifier: 20:F3:3B:04:7B:3C:11:30:F6:AF:5F:F6:34:EC:5C:F2:70:56:A6:6C Authority key identifier: 63:FA:71:5C:2F:4B:90:08:C8:F4:B6:06:54:F7:F3:C7:63:53:AE:67 Certificate issuer: /CN=63fa715c2f4b9008c8f4b60654f7f3c76353ae67 Certificate serial: 019C427D6403925517490C783527D52476B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft Manifest number: 0B45 Signing time: Mon 09 Feb 2026 13:00:39 +0000 Manifest this update: Mon 09 Feb 2026 13:00:39 +0000 Manifest next update: Tue 10 Feb 2026 13:00:39 +0000 Files and hashes: 1: ORD5CVRl8fHNkrGDCcDgKgiB4nA.roa (hash: SAvELpe3u4u8sy1W4tmIPkF/1bK/o7riGyIeb81WOH8=) 2: Y_pxXC9LkAjI9LYGVPfzx2NTrmc.crl (hash: 7J77t4fM1zQeIgP9oGlAF7UBD0En5ibVz3kTWAYVUwU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft rsync://rpki.ripe.net/repository/DEFAULT/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:64:03:92:55:17:49:0c:78:35:27:d5:24:76:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63fa715c2f4b9008c8f4b60654f7f3c76353ae67 Validity Not Before: Feb 9 13:00:39 2026 GMT Not After : Feb 10 13:00:39 2026 GMT Subject: CN=20f33b047b3c1130f6af5ff634ec5cf27056a66c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e0:1e:e6:8e:a9:ff:ce:f6:a1:15:0e:c7:5b: 71:4c:f8:9b:2a:4e:f2:51:10:0b:d1:e1:7c:9c:49: 35:4a:03:a6:f8:a5:dc:af:93:b1:06:62:53:55:6e: 09:4b:3e:26:21:f2:46:4b:bf:0a:c9:71:6c:c1:08: 2f:40:f8:ad:40:bd:1f:2d:bd:a6:c2:af:39:bd:d5: 4b:b5:e8:4e:e9:25:67:59:63:75:35:ba:71:95:bb: 5c:b3:a7:18:09:40:5f:6b:d0:a1:96:e9:69:9f:bf: df:4e:73:ad:d7:6e:da:e3:e6:98:3b:d1:99:c3:b5: 2f:06:ac:d5:1e:85:40:ca:a9:a7:69:8e:bb:2d:2c: 4e:43:be:4e:c8:76:78:f6:48:a0:16:97:3c:9b:2d: 63:80:a7:57:2c:24:f9:52:b2:b8:b4:8e:d3:98:34: 54:5b:ce:bb:7a:7e:68:22:db:2b:e4:8f:4a:ca:94: 56:be:79:cf:c4:99:0a:d4:72:04:e6:d8:25:e4:7b: 50:24:61:05:50:3d:1f:18:7c:f2:06:84:7b:3c:5e: 74:dc:d7:da:84:48:da:87:f3:4d:31:7e:cf:91:c9: ce:6d:36:86:22:bc:5e:a1:ae:0a:8d:7f:dc:b1:66: 31:c0:ff:9b:6e:b6:ac:e9:74:e4:0b:e9:40:90:68: 75:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:F3:3B:04:7B:3C:11:30:F6:AF:5F:F6:34:EC:5C:F2:70:56:A6:6C X509v3 Authority Key Identifier: keyid:63:FA:71:5C:2F:4B:90:08:C8:F4:B6:06:54:F7:F3:C7:63:53:AE:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:80:f5:19:4d:f3:44:0d:59:25:5f:0c:a7:13:4e:14:b9:c4: c6:e5:02:57:2b:a6:b1:a3:62:56:2d:a6:d5:ce:b8:01:d2:7f: 09:8c:19:1b:83:ed:54:5b:9b:ea:93:c3:fc:b8:f9:55:03:fa: f2:2e:ab:d7:3b:fa:0c:36:81:fb:6d:02:2b:01:c3:fb:d9:9f: 66:81:94:c4:26:9b:4f:24:77:d4:34:0a:86:da:4e:6b:40:d5: 4a:4a:15:ca:a6:8c:75:75:20:4c:18:c5:fb:17:c5:5a:2a:67: fc:39:52:99:08:ad:d1:31:d2:f2:06:91:d4:45:0d:97:88:11: 6f:c4:e1:0c:52:51:6d:fa:84:11:c4:c4:4b:1d:d8:79:fe:28: 4d:8c:db:cc:04:90:0f:93:50:1a:40:c6:f9:2b:6a:be:e6:1e: db:06:bd:81:e5:08:d1:f5:16:c0:93:92:e9:54:7b:66:50:6a: d1:84:0f:47:bc:05:3e:2d:b9:26:d6:c6:8c:98:3c:2d:15:fe: 33:4d:5e:6a:c5:c1:bb:dc:b9:c0:c6:7f:69:bf:f9:1d:11:b0: 20:5c:d1:b9:2f:08:6e:51:5b:37:2f:19:a2:20:3c:c9:ad:71: a9:61:ae:fb:94:73:97:63:c4:9b:c2:c4:06:b5:e1:9a:33:2c: 58:ab:ad:12 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfWQDklUXSQx4NSfVJHa0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZmE3MTVjMmY0YjkwMDhjOGY0YjYwNjU0ZjdmM2M3NjM1 M2FlNjcwHhcNMjYwMjA5MTMwMDM5WhcNMjYwMjEwMTMwMDM5WjAzMTEwLwYDVQQD EygyMGYzM2IwNDdiM2MxMTMwZjZhZjVmZjYzNGVjNWNmMjcwNTZhNjZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnuAe5o6p/872oRUOx1txTPibKk7y URAL0eF8nEk1SgOm+KXcr5OxBmJTVW4JSz4mIfJGS78KyXFswQgvQPitQL0fLb2m wq85vdVLtehO6SVnWWN1Nbpxlbtcs6cYCUBfa9Chlulpn7/fTnOt127a4+aYO9GZ w7UvBqzVHoVAyqmnaY67LSxOQ75OyHZ49kigFpc8my1jgKdXLCT5UrK4tI7TmDRU W867en5oItsr5I9KypRWvnnPxJkK1HIE5tgl5HtQJGEFUD0fGHzyBoR7PF503Nfa hEjah/NNMX7PkcnObTaGIrxeoa4KjX/csWYxwP+bbras6XTkC+lAkGh1+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCDzOwR7PBEw9q9f9jTsXPJwVqZsMB8GA1UdIwQY MBaAFGP6cVwvS5AIyPS2BlT388djU65nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWV9weFhDOUxrQWpJOUxZR1ZQZnp4Mk5Ucm1jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9iZjljZGItNmU4Ny00NzlmLTkzYTEt NjVhNWVmMGFmMGI0LzEvWV9weFhDOUxrQWpJOUxZR1ZQZnp4Mk5Ucm1jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS9iZjljZGItNmU4Ny00NzlmLTkzYTEtNjVhNWVmMGFmMGI0 LzEvWV9weFhDOUxrQWpJOUxZR1ZQZnp4Mk5Ucm1jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeID1GU3z RA1ZJV8MpxNOFLnExuUCVyumsaNiVi2m1c64AdJ/CYwZG4PtVFub6pPD/Lj5VQP6 8i6r1zv6DDaB+20CKwHD+9mfZoGUxCabTyR31DQKhtpOa0DVSkoVyqaMdXUgTBjF +xfFWipn/DlSmQit0THS8gaR1EUNl4gRb8ThDFJRbfqEEcTESx3Yef4oTYzbzASQ D5NQGkDG+StqvuYe2wa9geUI0fUWwJOS6VR7ZlBq0YQPR7wFPi25JtbGjJg8LRX+ M01easXBu9y5wMZ/ab/5HRGwIFzRuS8IblFbNy8ZoiA8ya1xqWGu+5Rzl2PEm8LE BrXhmjMsWKutEg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:53 2026 by rpki-client