This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft File: pyiF7ybebTsiYKtj0sXKD4Y33wM.mft (raw, json) Hash identifier: Sg0R0FHvjgZq0P4bZ5vBCnI640vu1a7KN/6zP9Qj/tk= Subject key identifier: 92:04:22:1C:0E:7E:CE:9E:7F:2C:56:4B:8B:AC:D9:A8:3B:5B:D9:16 Authority key identifier: A7:28:85:EF:26:DE:6D:3B:22:60:AB:63:D2:C5:CA:0F:86:37:DF:03 Certificate issuer: /CN=a72885ef26de6d3b2260ab63d2c5ca0f8637df03 Certificate serial: 019C4133B0F443AC26E3B7F87744C337ABB3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pyiF7ybebTsiYKtj0sXKD4Y33wM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft Manifest number: 1722 Signing time: Mon 09 Feb 2026 07:00:32 +0000 Manifest this update: Mon 09 Feb 2026 07:00:32 +0000 Manifest next update: Tue 10 Feb 2026 07:00:32 +0000 Files and hashes: 1: pyiF7ybebTsiYKtj0sXKD4Y33wM.crl (hash: 7bL9ImbdEaCrDvLm3NM9K2pzmL0GQ4FN1Umr0b3wypw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.crl rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft rsync://rpki.ripe.net/repository/DEFAULT/pyiF7ybebTsiYKtj0sXKD4Y33wM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:b0:f4:43:ac:26:e3:b7:f8:77:44:c3:37:ab:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a72885ef26de6d3b2260ab63d2c5ca0f8637df03 Validity Not Before: Feb 9 07:00:32 2026 GMT Not After : Feb 10 07:00:32 2026 GMT Subject: CN=9204221c0e7ece9e7f2c564b8bacd9a83b5bd916 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:da:18:4e:c9:16:d3:0d:a7:28:cf:c5:98:99: 1a:d6:ec:3c:31:1e:b2:af:a9:dc:97:13:9b:4c:78: 36:76:c4:4e:91:40:be:96:bd:bf:72:bc:0c:d4:c7: 4d:bf:6f:e8:6a:88:ef:41:ab:40:34:96:70:f5:d5: f3:8d:96:36:1f:f2:b6:26:07:91:a5:97:4d:5f:06: 5f:1f:89:c2:59:bc:32:83:36:1f:e0:b9:10:b5:ea: fe:b1:e7:0e:39:64:a1:7d:c4:bc:a4:f6:92:c6:33: 09:19:fa:d2:9e:c9:7b:3b:45:4e:3c:93:94:13:6f: ca:65:e8:a9:58:5d:ad:7e:03:4d:b7:63:a1:f4:e0: e9:6c:59:25:0c:0f:ce:78:e1:eb:12:9c:52:67:bd: 3e:4b:b4:56:b8:8b:ec:d3:24:34:2f:fc:f0:e3:94: fa:18:fa:f4:94:8d:3a:32:f0:ed:c1:f1:98:84:d2: 33:f2:11:59:4d:d7:68:c4:c2:ab:21:2b:1f:15:f3: 29:7c:24:7b:ce:a2:46:83:82:eb:98:2b:c0:df:3a: 71:9f:8f:a1:bb:33:1d:2e:0e:b8:3a:2f:bf:c4:19: 4a:d3:d8:f1:69:e0:58:20:0a:99:d9:34:07:e5:98: c2:98:30:e9:f2:48:37:f8:a4:99:10:6d:c1:7d:7c: f5:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:04:22:1C:0E:7E:CE:9E:7F:2C:56:4B:8B:AC:D9:A8:3B:5B:D9:16 X509v3 Authority Key Identifier: keyid:A7:28:85:EF:26:DE:6D:3B:22:60:AB:63:D2:C5:CA:0F:86:37:DF:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pyiF7ybebTsiYKtj0sXKD4Y33wM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:79:9c:b8:ec:25:6a:d5:5f:06:cf:68:16:44:64:25:50:95: 6e:e8:80:ad:36:eb:1c:63:1b:29:38:62:44:53:2f:9a:ef:b7: dc:b0:f2:4e:ab:96:4c:9c:6e:66:b7:7a:1b:3b:ad:66:da:4e: 5e:bb:b3:bc:ff:43:2f:de:00:3b:8b:9a:c4:0d:16:18:c3:24: 67:b2:96:49:f5:55:e9:81:5c:41:aa:1f:e3:00:7f:64:2b:99: 8a:dc:8d:4c:67:6f:48:93:33:bf:37:1c:1d:5b:5a:65:62:0d: 2f:e7:e0:a9:4e:ae:5c:ed:46:c5:c4:37:bd:9d:e3:73:ba:68: fa:46:87:71:50:b3:b8:c8:2e:d4:b9:60:38:28:05:1a:b5:d0: ce:b5:69:f7:9b:41:e7:e6:53:8b:d6:ba:fe:17:b8:3b:46:68: a5:02:0e:18:8b:db:69:e5:0a:e1:2a:f6:91:58:ce:3f:57:87: b7:26:45:36:81:8a:39:c8:dd:8e:a1:8e:fe:7d:bb:c4:9a:e2: f6:c9:2d:08:90:92:20:91:dd:38:18:e5:7e:65:2b:07:30:be: 83:a0:a6:68:2c:f7:97:84:4a:13:63:26:1c:7b:7c:6d:55:2a: 77:72:69:b7:b7:91:c7:3a:8a:8b:17:b4:95:45:b0:6f:02:dd: d2:bc:86:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM7D0Q6wm47f4d0TDN6uzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3Mjg4NWVmMjZkZTZkM2IyMjYwYWI2M2QyYzVjYTBmODYz N2RmMDMwHhcNMjYwMjA5MDcwMDMyWhcNMjYwMjEwMDcwMDMyWjAzMTEwLwYDVQQD Eyg5MjA0MjIxYzBlN2VjZTllN2YyYzU2NGI4YmFjZDlhODNiNWJkOTE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyNoYTskW0w2nKM/FmJka1uw8MR6y r6nclxObTHg2dsROkUC+lr2/crwM1MdNv2/oaojvQatANJZw9dXzjZY2H/K2JgeR pZdNXwZfH4nCWbwygzYf4LkQter+secOOWShfcS8pPaSxjMJGfrSnsl7O0VOPJOU E2/KZeipWF2tfgNNt2Oh9ODpbFklDA/OeOHrEpxSZ70+S7RWuIvs0yQ0L/zw45T6 GPr0lI06MvDtwfGYhNIz8hFZTddoxMKrISsfFfMpfCR7zqJGg4LrmCvA3zpxn4+h uzMdLg64Oi+/xBlK09jxaeBYIAqZ2TQH5ZjCmDDp8kg3+KSZEG3BfXz1IQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJIEIhwOfs6efyxWS4us2ag7W9kWMB8GA1UdIwQY MBaAFKcohe8m3m07ImCrY9LFyg+GN98DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcHlpRjd5YmViVHNpWUt0ajBzWEtENFkzM3dNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9lZDI1OWItZDdiZi00ZGU0LWJiZjAt MGU3MTgwZjk4NzRkLzEvcHlpRjd5YmViVHNpWUt0ajBzWEtENFkzM3dNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS9lZDI1OWItZDdiZi00ZGU0LWJiZjAtMGU3MTgwZjk4NzRk LzEvcHlpRjd5YmViVHNpWUt0ajBzWEtENFkzM3dNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi3mcuOwl atVfBs9oFkRkJVCVbuiArTbrHGMbKThiRFMvmu+33LDyTquWTJxuZrd6GzutZtpO XruzvP9DL94AO4uaxA0WGMMkZ7KWSfVV6YFcQaof4wB/ZCuZityNTGdvSJMzvzcc HVtaZWINL+fgqU6uXO1GxcQ3vZ3jc7po+kaHcVCzuMgu1LlgOCgFGrXQzrVp95tB 5+ZTi9a6/he4O0ZopQIOGIvbaeUK4Sr2kVjOP1eHtyZFNoGKOcjdjqGO/n27xJri 9sktCJCSIJHdOBjlfmUrBzC+g6CmaCz3l4RKE2MmHHt8bVUqd3Jpt7eRxzqKixe0 lUWwbwLd0ryG3A== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:23 2026 by rpki-client