This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft File: 20YNIBeVpqmS7UrBi7fFLBCLeFI.mft (raw, json) Hash identifier: oJS5OYZNlQj432MAQUeoeQTac21HZwzg5vF1jIgTvk8= Subject key identifier: 3C:2A:67:39:6B:33:DE:11:92:9B:20:C9:C0:B3:09:BE:3F:20:2F:A9 Authority key identifier: DB:46:0D:20:17:95:A6:A9:92:ED:4A:C1:8B:B7:C5:2C:10:8B:78:52 Certificate issuer: /CN=db460d201795a6a992ed4ac18bb7c52c108b7852 Certificate serial: 019C41D8FC0278AD24E1326DE753472EE20A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft Manifest number: 180B Signing time: Mon 09 Feb 2026 10:01:05 +0000 Manifest this update: Mon 09 Feb 2026 10:01:05 +0000 Manifest next update: Tue 10 Feb 2026 10:01:05 +0000 Files and hashes: 1: 20YNIBeVpqmS7UrBi7fFLBCLeFI.crl (hash: Cb1dKEuJrm1jsTSo8pcpw+2Ht93aVVOza1hLSBUIQlA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:fc:02:78:ad:24:e1:32:6d:e7:53:47:2e:e2:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db460d201795a6a992ed4ac18bb7c52c108b7852 Validity Not Before: Feb 9 10:01:05 2026 GMT Not After : Feb 10 10:01:05 2026 GMT Subject: CN=3c2a67396b33de11929b20c9c0b309be3f202fa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:da:0e:13:4b:a0:ce:de:b9:9c:f0:5d:30:c2: f5:21:25:d6:6b:22:47:95:0a:bd:37:13:7a:e8:8a: c1:d9:d4:80:3e:c9:a3:13:a0:1e:b3:f1:dc:14:0f: 40:7f:4d:13:b4:d2:14:cd:4b:75:33:fb:90:42:69: ab:35:d8:7c:9a:b9:ae:a8:7f:09:7a:b5:8f:18:ac: 73:38:e2:e0:7f:e7:89:02:f7:fe:ca:fe:9c:e2:68: 7a:d0:60:d1:e6:01:2d:a8:f2:21:ce:4a:08:19:ba: 0a:7e:62:75:e9:8c:cd:18:d5:ec:0c:8f:3c:d8:b6: 7c:5d:40:f6:ac:c4:74:9d:76:f4:35:ef:72:38:ff: ec:66:64:b1:eb:69:66:66:d7:a7:03:5c:8a:8f:f0: 6f:6e:98:a6:0f:95:96:54:01:39:5c:4f:73:74:41: f2:46:4c:d5:7b:2e:a5:ea:0e:80:55:24:92:de:41: d0:8e:97:f0:8e:50:e8:5e:9f:fd:78:39:0b:6f:a2: 81:72:36:10:0f:95:bd:d5:43:4f:1b:aa:b2:ab:03: f3:bc:ee:b9:b7:e9:b9:ef:da:ed:16:3e:2e:3e:a6: ae:2f:0e:35:7e:7b:14:50:9c:d1:3a:74:0b:ce:92: 24:b1:41:7d:53:37:dd:ae:5a:38:d9:5d:20:5e:61: a3:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:2A:67:39:6B:33:DE:11:92:9B:20:C9:C0:B3:09:BE:3F:20:2F:A9 X509v3 Authority Key Identifier: keyid:DB:46:0D:20:17:95:A6:A9:92:ED:4A:C1:8B:B7:C5:2C:10:8B:78:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:ce:0e:bb:6d:ef:d0:99:09:85:a9:03:83:6f:f5:4f:95:c2: d9:70:f2:33:dd:ae:46:f5:d0:ff:6c:96:fd:c1:1e:93:6f:23: 48:7a:49:79:55:53:54:6d:b2:36:7a:cb:b3:31:7a:52:0c:23: be:27:96:24:50:4b:6b:b2:c8:87:e8:0a:04:76:b3:4b:6e:0f: a2:8a:60:45:28:09:4f:9f:4b:7d:ad:e0:f7:e2:ad:a7:67:0f: f0:14:09:bf:ff:e1:55:4d:3b:c4:98:a7:13:16:35:7f:8f:68: 5c:94:fc:41:f7:a9:49:3d:0b:01:73:4e:8e:6f:6b:7b:a8:ed: 29:2d:ab:a3:b9:1c:41:ba:79:99:92:52:06:b7:04:f1:d1:00: 66:14:9d:e0:01:e3:6c:b8:ae:8e:ef:80:2e:e2:c5:e8:32:f7: 55:c4:99:f1:12:36:2f:fc:bc:1b:71:ff:5f:00:e3:16:35:48: 60:30:02:cd:29:40:83:3a:95:0a:ba:5c:e0:66:7d:ca:fd:57: 34:90:69:d2:49:c4:b0:cd:03:5e:9f:76:3f:a1:58:85:04:2c: a6:3f:da:2a:90:55:0b:b2:47:20:42:bc:0c:d1:7d:a1:70:85: f0:19:b1:9b:07:a3:d0:5d:62:51:11:7d:49:46:ee:db:09:0b: ca:31:02:42 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2PwCeK0k4TJt51NHLuIKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiNDYwZDIwMTc5NWE2YTk5MmVkNGFjMThiYjdjNTJjMTA4 Yjc4NTIwHhcNMjYwMjA5MTAwMTA1WhcNMjYwMjEwMTAwMTA1WjAzMTEwLwYDVQQD EygzYzJhNjczOTZiMzNkZTExOTI5YjIwYzljMGIzMDliZTNmMjAyZmE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAttoOE0ugzt65nPBdMML1ISXWayJH lQq9NxN66IrB2dSAPsmjE6Aes/HcFA9Af00TtNIUzUt1M/uQQmmrNdh8mrmuqH8J erWPGKxzOOLgf+eJAvf+yv6c4mh60GDR5gEtqPIhzkoIGboKfmJ16YzNGNXsDI88 2LZ8XUD2rMR0nXb0Ne9yOP/sZmSx62lmZtenA1yKj/BvbpimD5WWVAE5XE9zdEHy RkzVey6l6g6AVSSS3kHQjpfwjlDoXp/9eDkLb6KBcjYQD5W91UNPG6qyqwPzvO65 t+m579rtFj4uPqauLw41fnsUUJzROnQLzpIksUF9Uzfdrlo42V0gXmGjqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDwqZzlrM94RkpsgycCzCb4/IC+pMB8GA1UdIwQY MBaAFNtGDSAXlaapku1KwYu3xSwQi3hSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjBZTklCZVZwcW1TN1VyQmk3ZkZMQkNMZUZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy8xZjM0NmEtYTg3ZC00OTU3LWE0Y2Ut ZTgyZWQzZDc2YTg3LzEvMjBZTklCZVZwcW1TN1VyQmk3ZkZMQkNMZUZJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy8xZjM0NmEtYTg3ZC00OTU3LWE0Y2UtZTgyZWQzZDc2YTg3 LzEvMjBZTklCZVZwcW1TN1VyQmk3ZkZMQkNMZUZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAas4Ou23v 0JkJhakDg2/1T5XC2XDyM92uRvXQ/2yW/cEek28jSHpJeVVTVG2yNnrLszF6Ugwj vieWJFBLa7LIh+gKBHazS24PoopgRSgJT59Lfa3g9+Ktp2cP8BQJv//hVU07xJin ExY1f49oXJT8QfepST0LAXNOjm9re6jtKS2ro7kcQbp5mZJSBrcE8dEAZhSd4AHj bLiuju+ALuLF6DL3VcSZ8RI2L/y8G3H/XwDjFjVIYDACzSlAgzqVCrpc4GZ9yv1X NJBp0knEsM0DXp92P6FYhQQspj/aKpBVC7JHIEK8DNF9oXCF8Bmxmwej0F1iURF9 SUbu2wkLyjECQg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:53:57 2026 by rpki-client