This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft File: CYZDIBoqokoLh3o638p6iSBH2_w.mft (raw, json) Hash identifier: yCdiEDON3Gopy+h9lyH4DNH5dx6Oa1FgB6D8FiNslnI= Subject key identifier: 69:CB:37:03:14:0B:46:38:08:63:67:6D:8F:27:6E:EE:F8:61:07:D5 Authority key identifier: 09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC Certificate issuer: /CN=098643201a2aa24a0b877a3adfca7a892047dbfc Certificate serial: 019C438FF659708DA730A83D56569F7891D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft Manifest number: 142A Signing time: Mon 09 Feb 2026 18:00:33 +0000 Manifest this update: Mon 09 Feb 2026 18:00:33 +0000 Manifest next update: Tue 10 Feb 2026 18:00:33 +0000 Files and hashes: 1: CYZDIBoqokoLh3o638p6iSBH2_w.crl (hash: cfErMj0saJS/lyAV1l6tLPfTQiPB8cGRc2jVg3Xq/5E=) 2: WIUAFonkV2sfv2obw7wp_H-MGvU.roa (hash: GtKF8czJWl3ExfCMW9FZWgpdCqhRe9QAiKNJnvpNNSc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:f6:59:70:8d:a7:30:a8:3d:56:56:9f:78:91:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098643201a2aa24a0b877a3adfca7a892047dbfc Validity Not Before: Feb 9 18:00:33 2026 GMT Not After : Feb 10 18:00:33 2026 GMT Subject: CN=69cb3703140b46380863676d8f276eeef86107d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:38:b1:91:a0:ae:ec:20:3c:0c:e8:74:77:1c: e7:92:67:01:d0:64:52:ff:a4:e5:cd:8b:91:39:72: a5:e6:59:fe:e2:a6:2a:e3:8f:4c:f8:e6:ee:af:b7: e5:5f:37:cf:a9:fd:af:0c:db:c2:50:63:77:bd:d9: df:68:6e:fc:a8:58:52:02:72:d3:89:57:ef:0c:51: e8:98:56:ea:b6:68:b7:59:cf:22:7d:54:6a:fb:e0: 6e:30:85:8d:b1:ad:69:6c:8a:a4:f5:44:db:02:18: 32:0f:b5:80:ef:fa:aa:06:ae:ce:7c:99:95:eb:f1: 79:42:83:58:5c:89:61:0c:c4:e2:ae:c1:58:42:36: b4:86:25:10:cd:6c:b3:c8:2a:cb:92:c1:52:57:5c: a0:52:57:20:74:6a:ef:30:b3:0e:76:ff:8c:87:15: 39:a6:07:dd:63:d1:96:d2:9a:e0:30:b4:98:fb:b0: ee:6e:6a:df:76:1c:38:6f:2d:37:67:59:60:f9:c0: ba:c9:5d:7a:2d:7f:76:23:2e:cc:00:f2:95:47:35: cc:d1:5d:f8:e8:7e:86:82:95:34:73:1f:d7:29:52: b2:07:47:30:2e:17:fc:f1:78:36:83:56:21:b4:35: c7:c1:6e:0a:14:ea:10:56:3c:5c:e1:b7:03:41:a1: 42:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:CB:37:03:14:0B:46:38:08:63:67:6D:8F:27:6E:EE:F8:61:07:D5 X509v3 Authority Key Identifier: keyid:09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:26:75:a8:08:e4:40:97:33:d9:bf:56:f5:f3:c5:b2:98:29: bf:54:56:f4:ef:9f:68:6f:10:85:db:e0:19:e3:c7:12:ab:51: 0f:98:1a:27:32:bd:d4:9d:5d:e9:a0:ca:48:69:d7:79:d2:5c: 15:6f:3d:8e:33:94:ad:be:a5:a7:6e:c0:1b:cc:31:e3:96:6d: 12:09:94:d5:0c:90:28:ad:db:a9:19:7e:d9:79:b1:c9:17:b0: 6e:59:23:f5:77:76:de:83:67:64:94:3e:81:92:8a:5c:47:b2: 32:a1:a0:d7:c3:4a:60:bc:71:73:9d:95:d7:57:af:b5:67:ba: 86:40:55:7c:aa:33:42:cc:a8:68:e5:92:d5:ae:e4:55:98:16: e2:d3:84:2a:69:3d:7e:de:0a:ac:7a:f7:05:7f:86:0d:4d:69: 83:f5:62:a2:25:fe:e6:b9:86:e5:08:f4:99:37:3c:b0:9a:2c: 16:b7:3d:fb:be:17:b3:a7:e8:1b:bf:8f:4f:5d:3e:f5:c2:28: cd:df:3f:94:dd:26:dd:5d:8f:30:78:bc:06:7c:09:07:32:f0: ee:6c:db:10:5d:2f:e1:d7:36:0e:2d:9e:a4:b4:7a:e5:81:ad: 37:57:ae:d3:75:32:24:56:29:71:9c:06:86:59:0b:5b:c4:47: b0:9f:37:de -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj/ZZcI2nMKg9VlafeJHTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5ODY0MzIwMWEyYWEyNGEwYjg3N2EzYWRmY2E3YTg5MjA0 N2RiZmMwHhcNMjYwMjA5MTgwMDMzWhcNMjYwMjEwMTgwMDMzWjAzMTEwLwYDVQQD Eyg2OWNiMzcwMzE0MGI0NjM4MDg2MzY3NmQ4ZjI3NmVlZWY4NjEwN2Q1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7DixkaCu7CA8DOh0dxznkmcB0GRS /6TlzYuROXKl5ln+4qYq449M+Obur7flXzfPqf2vDNvCUGN3vdnfaG78qFhSAnLT iVfvDFHomFbqtmi3Wc8ifVRq++BuMIWNsa1pbIqk9UTbAhgyD7WA7/qqBq7OfJmV 6/F5QoNYXIlhDMTirsFYQja0hiUQzWyzyCrLksFSV1ygUlcgdGrvMLMOdv+MhxU5 pgfdY9GW0prgMLSY+7Dubmrfdhw4by03Z1lg+cC6yV16LX92Iy7MAPKVRzXM0V34 6H6GgpU0cx/XKVKyB0cwLhf88Xg2g1YhtDXHwW4KFOoQVjxc4bcDQaFCnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGnLNwMUC0Y4CGNnbY8nbu74YQfVMB8GA1UdIwQY MBaAFAmGQyAaKqJKC4d6Ot/KeokgR9v8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1laRElCb3Fva29MaDNvNjM4cDZpU0JIMl93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy8yZDdmNGMtYzNkNS00NTU3LTkzYzQt NzhiZmQyNGNmMTA3LzEvQ1laRElCb3Fva29MaDNvNjM4cDZpU0JIMl93Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy8yZDdmNGMtYzNkNS00NTU3LTkzYzQtNzhiZmQyNGNmMTA3 LzEvQ1laRElCb3Fva29MaDNvNjM4cDZpU0JIMl93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhSZ1qAjk QJcz2b9W9fPFspgpv1RW9O+faG8QhdvgGePHEqtRD5gaJzK91J1d6aDKSGnXedJc FW89jjOUrb6lp27AG8wx45ZtEgmU1QyQKK3bqRl+2XmxyRewblkj9Xd23oNnZJQ+ gZKKXEeyMqGg18NKYLxxc52V11evtWe6hkBVfKozQsyoaOWS1a7kVZgW4tOEKmk9 ft4KrHr3BX+GDU1pg/VioiX+5rmG5Qj0mTc8sJosFrc9+74Xs6foG7+PT10+9cIo zd8/lN0m3V2PMHi8BnwJBzLw7mzbEF0v4dc2Di2epLR65YGtN1eu03UyJFYpcZwG hlkLW8RHsJ833g== -----END CERTIFICATE-----Generated at Tue Feb 10 02:51:51 2026 by rpki-client