This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft File: hyyq6fD7ed7GhEvqzowiHO9NMsk.mft (raw, json) Hash identifier: fqL7KZczAbX+lL848hy0zNHziJjyy1Ieq+v5hha1TzA= Subject key identifier: C8:6C:82:2F:3F:F2:CF:31:D9:94:F3:12:34:CE:AA:41:AA:1E:13:9F Authority key identifier: 87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9 Certificate issuer: /CN=872caae9f0fb79dec6844beace8c221cef4d32c9 Certificate serial: 019C41342C8347C0F519A32DA4627770D3DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft Manifest number: 1297 Signing time: Mon 09 Feb 2026 07:01:04 +0000 Manifest this update: Mon 09 Feb 2026 07:01:04 +0000 Manifest next update: Tue 10 Feb 2026 07:01:04 +0000 Files and hashes: 1: hyyq6fD7ed7GhEvqzowiHO9NMsk.crl (hash: BKVcGl19zlJP5kRqqLHQSCqeU0bPjsyt6HdDs+NkOYM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:2c:83:47:c0:f5:19:a3:2d:a4:62:77:70:d3:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=872caae9f0fb79dec6844beace8c221cef4d32c9 Validity Not Before: Feb 9 07:01:04 2026 GMT Not After : Feb 10 07:01:04 2026 GMT Subject: CN=c86c822f3ff2cf31d994f31234ceaa41aa1e139f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:26:fd:a4:90:45:b4:4d:ec:0e:da:7e:e1:65: a1:9e:99:18:54:90:61:ca:23:65:74:50:7e:e7:31: c0:af:af:c2:72:51:3f:67:02:e5:6b:b3:57:56:f8: f1:05:ff:e0:29:81:67:b6:44:44:01:1b:ee:42:9a: 26:ed:c0:a6:14:26:14:17:50:07:fc:4b:f6:ea:49: 2c:e2:58:f9:8d:a5:29:2b:a5:90:e6:63:ba:5d:4e: db:4c:43:f9:ae:a1:5e:ca:d0:c0:1d:fc:fc:98:2a: 86:5c:4a:6c:a0:16:b9:5c:7e:0b:89:7e:9e:f1:bf: e0:f1:80:fb:cf:09:96:a4:4d:fb:a4:ff:ba:59:57: 7e:3d:98:0e:4c:fd:d3:01:83:09:7e:b9:21:d9:5d: b7:97:50:3c:10:72:75:2d:25:e8:ed:3e:4a:46:f4: d1:7d:59:88:9c:05:9a:56:61:ed:54:51:bd:68:08: 4c:c9:2b:39:6d:bb:b2:1f:d4:18:c2:a8:71:39:df: 56:b6:8d:73:95:17:19:dd:b5:18:39:ac:d8:e8:c6: bb:2b:50:1f:d4:2c:8d:cd:cf:b6:da:52:99:c6:77: 08:db:27:e0:e8:33:00:ce:a7:db:aa:54:a2:ad:7f: 8a:ed:05:24:af:43:1a:6a:30:d5:38:7a:a0:6a:0a: 33:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:6C:82:2F:3F:F2:CF:31:D9:94:F3:12:34:CE:AA:41:AA:1E:13:9F X509v3 Authority Key Identifier: keyid:87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:42:e6:7b:63:e4:b2:a8:5b:0a:34:d9:6b:c9:bb:ae:51:b0: f1:15:7b:10:fe:0d:0e:30:d3:56:4f:19:d9:34:2e:f9:fd:1b: dc:28:3c:67:a3:66:a9:68:a3:64:2e:ef:f6:2d:d9:e5:be:f7: 53:36:66:6c:92:b2:95:cb:5c:53:6a:b3:9d:85:6f:44:a2:7c: c2:f0:be:7c:a8:eb:c4:f3:ff:f5:41:dc:f4:3e:0e:da:4f:ba: 78:02:e1:a0:d9:4b:88:f2:7f:44:d9:f9:05:2d:27:f8:64:cc: b2:70:72:82:02:ab:d9:68:6f:11:1f:f6:94:97:85:e9:21:79: 1e:e0:53:58:76:04:96:07:eb:7f:f0:2e:76:cd:d9:3c:ff:fe: 06:83:e5:ad:5b:9f:21:0b:4e:82:e0:b0:d4:79:09:e6:04:8b: de:1e:82:c2:ab:aa:fc:12:3d:c0:54:99:1a:9c:29:1b:43:18: 2b:13:a3:9d:94:9b:e1:e0:d6:2b:65:ed:fd:32:0d:2d:44:04: 78:82:8b:44:9c:88:92:12:26:ae:0f:1d:df:47:c2:7f:ab:53: 72:86:bd:29:ff:a7:1d:e5:b0:c3:d5:e6:77:5d:a8:fe:b6:42: 33:e0:79:bf:b0:b7:d6:e2:9f:e4:a0:79:cb:3b:80:e2:af:60: 8e:28:1e:04 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNCyDR8D1GaMtpGJ3cNPeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3MmNhYWU5ZjBmYjc5ZGVjNjg0NGJlYWNlOGMyMjFjZWY0 ZDMyYzkwHhcNMjYwMjA5MDcwMTA0WhcNMjYwMjEwMDcwMTA0WjAzMTEwLwYDVQQD EyhjODZjODIyZjNmZjJjZjMxZDk5NGYzMTIzNGNlYWE0MWFhMWUxMzlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7ib9pJBFtE3sDtp+4WWhnpkYVJBh yiNldFB+5zHAr6/CclE/ZwLla7NXVvjxBf/gKYFntkREARvuQpom7cCmFCYUF1AH /Ev26kks4lj5jaUpK6WQ5mO6XU7bTEP5rqFeytDAHfz8mCqGXEpsoBa5XH4LiX6e 8b/g8YD7zwmWpE37pP+6WVd+PZgOTP3TAYMJfrkh2V23l1A8EHJ1LSXo7T5KRvTR fVmInAWaVmHtVFG9aAhMySs5bbuyH9QYwqhxOd9Wto1zlRcZ3bUYOazY6Ma7K1Af 1CyNzc+22lKZxncI2yfg6DMAzqfbqlSirX+K7QUkr0MaajDVOHqgagozCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMhsgi8/8s8x2ZTzEjTOqkGqHhOfMB8GA1UdIwQY MBaAFIcsqunw+3nexoRL6s6MIhzvTTLJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHl5cTZmRDdlZDdHaEV2cXpvd2lITzlOTXNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC82Yzc5MWYtYmE4NS00YzAzLWI3OTEt ZTViMTY3MmQ0YjE3LzEvaHl5cTZmRDdlZDdHaEV2cXpvd2lITzlOTXNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC82Yzc5MWYtYmE4NS00YzAzLWI3OTEtZTViMTY3MmQ0YjE3 LzEvaHl5cTZmRDdlZDdHaEV2cXpvd2lITzlOTXNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVELme2Pk sqhbCjTZa8m7rlGw8RV7EP4NDjDTVk8Z2TQu+f0b3Cg8Z6NmqWijZC7v9i3Z5b73 UzZmbJKylctcU2qznYVvRKJ8wvC+fKjrxPP/9UHc9D4O2k+6eALhoNlLiPJ/RNn5 BS0n+GTMsnByggKr2WhvER/2lJeF6SF5HuBTWHYElgfrf/Auds3ZPP/+BoPlrVuf IQtOguCw1HkJ5gSL3h6Cwquq/BI9wFSZGpwpG0MYKxOjnZSb4eDWK2Xt/TINLUQE eIKLRJyIkhImrg8d30fCf6tTcoa9Kf+nHeWww9Xmd12o/rZCM+B5v7C31uKf5KB5 yzuA4q9gjigeBA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:23 2026 by rpki-client