This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft File: 0YZHAF-osG5H7i77_e3Jegx3Vfg.mft (raw, json) Hash identifier: xIU1V5FKVpA4ajcjENRPLHKLEXcyw8uk2dlIWWt3PPo= Subject key identifier: 56:A9:FD:04:4C:72:F7:E4:0A:93:86:E1:A6:8F:0B:B0:8E:9A:5C:E2 Authority key identifier: D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8 Certificate issuer: /CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8 Certificate serial: 019C41D8AF811D3F5A0670845C1EA89D55B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 10:00:45 +0000 Manifest this update: Mon 09 Feb 2026 10:00:45 +0000 Manifest next update: Tue 10 Feb 2026 10:00:45 +0000 Files and hashes: 1: 0YZHAF-osG5H7i77_e3Jegx3Vfg.crl (hash: CJyJeknIi6WlRzIGq/Aab1uNG7n2V3StLYf2BAB1A3k=) 2: GmHD_yxmhmb7r8gjp6el8HpBXOw.roa (hash: fVaQ2rKEBssbb0vmO7FX3uJ1zApwIkrOyFVIx+Y+u/4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:af:81:1d:3f:5a:06:70:84:5c:1e:a8:9d:55:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8 Validity Not Before: Feb 9 10:00:45 2026 GMT Not After : Feb 10 10:00:45 2026 GMT Subject: CN=56a9fd044c72f7e40a9386e1a68f0bb08e9a5ce2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:d0:a1:10:c9:08:d4:68:69:76:2d:6a:6d:51: ae:af:bd:c2:3e:e9:fd:64:cf:b0:7d:6c:67:8e:27: 2b:25:b1:36:c4:f5:d5:29:a8:29:d6:82:d8:85:f8: c4:69:0f:f8:a0:79:ff:7c:57:b6:f8:5b:df:06:97: c5:b2:dc:2c:fd:96:9f:e7:50:54:b6:21:c9:11:4f: ec:84:23:a1:8b:df:ed:2a:38:db:1e:44:6a:86:16: 88:e9:26:8e:37:a7:c4:75:5f:c0:60:26:13:15:f5: 61:fc:29:5f:e2:81:c4:b0:61:ac:ed:d2:9d:fb:39: 8d:bf:ad:a5:3e:10:39:bf:f4:78:83:14:f5:aa:6d: b2:70:50:66:68:84:38:07:03:a4:a8:5c:a1:21:b3: e2:74:5e:ea:65:eb:85:bc:b5:80:24:b8:77:98:82: 59:23:fa:ff:fe:eb:c7:35:84:7c:45:4f:83:bd:90: a7:69:28:42:7f:10:64:62:03:9d:f7:d0:b4:81:e4: f8:c3:9a:7e:2d:1d:30:74:a7:a5:61:db:45:2c:ef: 6b:1e:bb:cd:86:87:fd:c5:ef:89:71:db:4a:7d:48: 19:ee:ec:24:3f:b9:fb:6e:e0:49:04:93:c6:49:7a: 10:e2:8a:53:57:5f:84:43:5d:3a:f9:17:90:43:b8: 12:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:A9:FD:04:4C:72:F7:E4:0A:93:86:E1:A6:8F:0B:B0:8E:9A:5C:E2 X509v3 Authority Key Identifier: keyid:D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:be:ca:c3:76:2e:bc:33:d3:40:4e:42:7b:80:5e:4e:bd:a3: 07:16:41:c2:ac:59:47:6a:54:9b:05:3c:da:83:7b:06:0c:e4: 86:e4:ea:fa:9a:c4:b0:a7:f0:d7:ae:41:af:ff:54:c8:5f:89: f5:1f:a0:95:b7:58:77:b2:03:8a:cb:07:a0:ad:fd:3f:69:04: 80:31:9f:ba:eb:08:11:94:b1:b2:38:0c:21:1a:b6:27:38:65: 73:ac:ae:af:dd:9b:11:c5:bb:6d:ec:40:85:1f:78:db:86:f6: 82:14:c5:ee:1f:95:b5:71:e4:e6:47:f5:fb:98:be:65:97:63: c6:41:33:c5:d3:cf:35:e7:fe:9f:bd:26:3c:b8:be:c6:bf:ab: 94:56:8e:df:84:be:0e:9a:84:0f:ff:e1:75:b1:90:74:94:97: 52:9c:8d:f7:78:cd:7e:ab:c0:23:62:93:f0:63:1a:6f:d9:00: 74:60:f5:f9:81:e7:ee:06:89:53:62:76:85:fb:07:ca:19:98: 8e:b2:78:14:ed:82:a7:5b:3f:ac:37:91:bb:5e:29:f1:34:1b: b0:9f:2a:d3:0b:5c:66:c9:68:2c:15:de:4b:1b:58:94:ec:d4: d5:4d:4d:fd:08:06:f0:72:03:c6:35:e6:bc:e0:95:50:e1:11: 23:c8:07:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2K+BHT9aBnCEXB6onVW4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxODY0NzAwNWZhOGIwNmU0N2VlMmVmYmZkZWRjOTdhMGM3 NzU1ZjgwHhcNMjYwMjA5MTAwMDQ1WhcNMjYwMjEwMTAwMDQ1WjAzMTEwLwYDVQQD Eyg1NmE5ZmQwNDRjNzJmN2U0MGE5Mzg2ZTFhNjhmMGJiMDhlOWE1Y2UyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4dChEMkI1Ghpdi1qbVGur73CPun9 ZM+wfWxnjicrJbE2xPXVKagp1oLYhfjEaQ/4oHn/fFe2+FvfBpfFstws/Zaf51BU tiHJEU/shCOhi9/tKjjbHkRqhhaI6SaON6fEdV/AYCYTFfVh/Clf4oHEsGGs7dKd +zmNv62lPhA5v/R4gxT1qm2ycFBmaIQ4BwOkqFyhIbPidF7qZeuFvLWAJLh3mIJZ I/r//uvHNYR8RU+DvZCnaShCfxBkYgOd99C0geT4w5p+LR0wdKelYdtFLO9rHrvN hof9xe+JcdtKfUgZ7uwkP7n7buBJBJPGSXoQ4opTV1+EQ106+ReQQ7gSowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFap/QRMcvfkCpOG4aaPC7COmlziMB8GA1UdIwQY MBaAFNGGRwBfqLBuR+4u+/3tyXoMd1X4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMFlaSEFGLW9zRzVIN2k3N19lM0plZ3gzVmZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83ZmE3OTEtYjNjOS00OGFlLTgwMzQt YzIxMDQ2NzNjMjBiLzEvMFlaSEFGLW9zRzVIN2k3N19lM0plZ3gzVmZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi83ZmE3OTEtYjNjOS00OGFlLTgwMzQtYzIxMDQ2NzNjMjBi LzEvMFlaSEFGLW9zRzVIN2k3N19lM0plZ3gzVmZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVL7Kw3Yu vDPTQE5Ce4BeTr2jBxZBwqxZR2pUmwU82oN7BgzkhuTq+prEsKfw165Br/9UyF+J 9R+glbdYd7IDissHoK39P2kEgDGfuusIEZSxsjgMIRq2Jzhlc6yur92bEcW7bexA hR9424b2ghTF7h+VtXHk5kf1+5i+ZZdjxkEzxdPPNef+n70mPLi+xr+rlFaO34S+ DpqED//hdbGQdJSXUpyN93jNfqvAI2KT8GMab9kAdGD1+YHn7gaJU2J2hfsHyhmY jrJ4FO2Cp1s/rDeRu14p8TQbsJ8q0wtcZsloLBXeSxtYlOzU1U1N/QgG8HIDxjXm vOCVUOERI8gHig== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:15 2026 by rpki-client