This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft File: y2bnZjRVc9cVnWeU7a7bc5okH48.mft (raw, json) Hash identifier: 02HWdRurk0akJ9NcmfqKe0ptzBjdGEBpNprXoitAtMA= Subject key identifier: 73:53:C5:CF:21:3B:EF:84:51:20:D7:61:49:09:A5:24:FE:2B:FF:C1 Authority key identifier: CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F Certificate issuer: /CN=cb66e766345573d7159d6794edaedb739a241f8f Certificate serial: 019C416AC331AD6D6929D55F249787AFA98B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft Manifest number: 085E Signing time: Mon 09 Feb 2026 08:00:41 +0000 Manifest this update: Mon 09 Feb 2026 08:00:41 +0000 Manifest next update: Tue 10 Feb 2026 08:00:41 +0000 Files and hashes: 1: y2bnZjRVc9cVnWeU7a7bc5okH48.crl (hash: nfIZzIeCzQoaQpR2wB1c3jlk+BZniiASUu9XSjnjvVE=) 2: zyxH_ZayU87vTJX81fgX-DVJmTk.roa (hash: v7IX/ua2uQXhjGalwVPCerFWeIG3hQEbj9ssotgdfjM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 08:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:6a:c3:31:ad:6d:69:29:d5:5f:24:97:87:af:a9:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cb66e766345573d7159d6794edaedb739a241f8f Validity Not Before: Feb 9 08:00:41 2026 GMT Not After : Feb 10 08:00:41 2026 GMT Subject: CN=7353c5cf213bef845120d7614909a524fe2bffc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:16:f9:02:9c:d4:e0:09:c5:d9:7e:2a:18:5a: 38:6f:7e:10:34:df:7c:0d:99:88:45:83:d4:5d:ee: f5:30:6c:6e:fa:05:f9:3e:79:bb:fd:db:41:ee:2f: 95:f5:6d:9e:db:4b:89:5d:6d:03:91:6c:d7:33:ca: b6:53:af:37:33:c0:84:a2:95:5d:f9:37:82:bc:5a: 8e:ce:b8:11:e6:f8:20:2c:39:a1:b5:81:7c:1a:e6: 82:38:e5:0f:97:40:f0:9e:af:d4:5c:35:b1:d9:3f: 4f:a9:78:50:0d:90:37:80:85:d9:bc:99:66:f4:75: ef:05:ba:aa:42:90:ac:2b:c1:1f:21:c2:d6:4d:07: 3e:cf:12:d4:90:9f:7c:5e:98:a4:d5:84:e5:8c:09: 6e:1e:55:a1:08:70:a9:d7:5f:c9:3f:cd:6e:fd:95: c4:11:7c:32:a6:7a:0f:de:fe:c0:c7:bf:47:ba:0e: 2a:7e:92:94:d7:d1:69:82:97:b3:c4:6e:4d:1a:0d: ac:fd:8a:39:3b:86:af:f7:5d:0a:6b:4e:0a:3e:f4: 46:06:ca:40:2d:a6:b3:38:70:98:ac:ec:5c:ba:28: a2:41:10:68:9e:fb:93:c4:0c:29:25:de:5e:15:51: 1b:93:20:39:db:98:43:57:4a:f4:68:0e:7b:3d:10: 62:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:53:C5:CF:21:3B:EF:84:51:20:D7:61:49:09:A5:24:FE:2B:FF:C1 X509v3 Authority Key Identifier: keyid:CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:f8:97:95:15:25:ae:95:9c:b5:fa:7a:ac:a1:29:31:8f:d9: f3:b2:55:2e:d9:81:7c:2d:4a:cf:75:2d:0e:be:c8:6d:af:63: 80:53:c2:e0:26:6f:5e:41:86:47:52:58:f0:5b:96:a3:2b:28: 68:15:bd:34:39:1a:22:4f:9a:88:aa:3a:c9:b3:f1:08:cf:3e: 70:c4:34:b8:90:44:8e:64:27:a3:ce:2a:4e:9b:11:0f:3f:9f: be:73:48:6e:60:58:ee:cd:67:01:a9:a7:c1:7e:69:e9:54:cc: c1:de:eb:e6:3b:0d:ca:dc:da:66:6b:2d:df:23:0a:12:cd:d1: f3:15:4b:d0:83:83:b3:ba:bd:a8:dd:c7:72:f4:7e:a2:aa:bb: 74:30:25:b2:b3:fc:d5:7a:7a:bc:4e:1c:2f:6e:8d:d6:5b:41: 31:69:ff:a0:2e:bc:1f:d4:c8:e2:37:e0:53:7e:13:e8:16:0a: 8a:e8:ca:a2:9b:72:08:5b:86:f2:fa:af:98:cc:ce:12:dd:6f: c6:eb:29:5b:ea:1c:07:1b:fc:d8:24:10:76:e0:93:3a:ca:ae: 00:71:05:72:ee:dc:8a:26:28:9a:2f:09:45:9f:d9:29:81:e9: 75:76:37:f3:3a:14:cf:4c:e6:f9:d5:0f:f9:e8:13:8c:f3:ac: d7:a2:59:09 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBasMxrW1pKdVfJJeHr6mLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiNjZlNzY2MzQ1NTczZDcxNTlkNjc5NGVkYWVkYjczOWEy NDFmOGYwHhcNMjYwMjA5MDgwMDQxWhcNMjYwMjEwMDgwMDQxWjAzMTEwLwYDVQQD Eyg3MzUzYzVjZjIxM2JlZjg0NTEyMGQ3NjE0OTA5YTUyNGZlMmJmZmMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvhb5ApzU4AnF2X4qGFo4b34QNN98 DZmIRYPUXe71MGxu+gX5Pnm7/dtB7i+V9W2e20uJXW0DkWzXM8q2U683M8CEopVd +TeCvFqOzrgR5vggLDmhtYF8GuaCOOUPl0Dwnq/UXDWx2T9PqXhQDZA3gIXZvJlm 9HXvBbqqQpCsK8EfIcLWTQc+zxLUkJ98Xpik1YTljAluHlWhCHCp11/JP81u/ZXE EXwypnoP3v7Ax79Hug4qfpKU19FpgpezxG5NGg2s/Yo5O4av910Ka04KPvRGBspA LaazOHCYrOxcuiiiQRBonvuTxAwpJd5eFVEbkyA525hDV0r0aA57PRBikQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHNTxc8hO++EUSDXYUkJpST+K//BMB8GA1UdIwQY MBaAFMtm52Y0VXPXFZ1nlO2u23OaJB+PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTJiblpqUlZjOWNWbldlVTdhN2JjNW9rSDQ4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi80NTg5MGUtNmY3MS00ZDM2LTk4OGEt NjViZjc5YjBhOTg5LzEveTJiblpqUlZjOWNWbldlVTdhN2JjNW9rSDQ4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi80NTg5MGUtNmY3MS00ZDM2LTk4OGEtNjViZjc5YjBhOTg5 LzEveTJiblpqUlZjOWNWbldlVTdhN2JjNW9rSDQ4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARPiXlRUl rpWctfp6rKEpMY/Z87JVLtmBfC1Kz3UtDr7Iba9jgFPC4CZvXkGGR1JY8FuWoyso aBW9NDkaIk+aiKo6ybPxCM8+cMQ0uJBEjmQno84qTpsRDz+fvnNIbmBY7s1nAamn wX5p6VTMwd7r5jsNytzaZmst3yMKEs3R8xVL0IODs7q9qN3HcvR+oqq7dDAlsrP8 1Xp6vE4cL26N1ltBMWn/oC68H9TI4jfgU34T6BYKiujKoptyCFuG8vqvmMzOEt1v xuspW+ocBxv82CQQduCTOsquAHEFcu7ciiYomi8JRZ/ZKYHpdXY38zoUz0zm+dUP +egTjPOs16JZCQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:25 2026 by rpki-client