This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft File: ny83TJpzj63o-FDKq11507kARYQ.mft (raw, json) Hash identifier: c9jF9u9sLuXwzKUb9ekyKbfBChVAaFxjCw3M9Xx8hGw= Subject key identifier: 23:72:1D:B4:C6:1E:37:CF:9C:B6:46:94:95:DC:E1:3C:A9:65:91:F7 Authority key identifier: 9F:2F:37:4C:9A:73:8F:AD:E8:F8:50:CA:AB:5D:79:D3:B9:00:45:84 Certificate issuer: /CN=9f2f374c9a738fade8f850caab5d79d3b9004584 Certificate serial: 019C43224A48BE6C460B14DAE35330A64DC8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ny83TJpzj63o-FDKq11507kARYQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 16:00:46 +0000 Manifest this update: Mon 09 Feb 2026 16:00:46 +0000 Manifest next update: Tue 10 Feb 2026 16:00:46 +0000 Files and hashes: 1: ny83TJpzj63o-FDKq11507kARYQ.crl (hash: 9l6iOCJ3l3WHbLeOGqvkno4iKlvb28unSrFundQWB+4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.crl rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft rsync://rpki.ripe.net/repository/DEFAULT/ny83TJpzj63o-FDKq11507kARYQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:4a:48:be:6c:46:0b:14:da:e3:53:30:a6:4d:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9f2f374c9a738fade8f850caab5d79d3b9004584 Validity Not Before: Feb 9 16:00:46 2026 GMT Not After : Feb 10 16:00:46 2026 GMT Subject: CN=23721db4c61e37cf9cb6469495dce13ca96591f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:05:e4:05:6e:cb:32:83:5c:73:39:83:6a:31: 43:d5:48:bb:1b:0b:2c:40:16:8d:a5:b9:fb:b9:1c: 94:53:98:75:d2:98:cf:12:63:29:e7:e2:30:2a:8b: a9:08:54:57:01:3b:df:28:0e:d9:d6:c0:9a:6b:3b: 85:f9:bc:d5:8e:3b:e2:7b:6b:d6:62:63:60:8c:06: 1a:16:86:dc:a3:d5:e6:47:71:6d:85:46:2b:44:78: 8b:a4:99:8b:bb:dc:19:65:22:b4:a0:89:e1:42:0a: b5:cb:fc:b1:b8:e7:17:3d:a6:2b:cc:d3:6c:5f:cb: 04:eb:92:a5:04:fd:1b:28:32:08:79:48:07:ed:04: 8a:0b:45:05:41:57:f6:9a:d3:bf:06:fb:fa:78:d2: 4c:f3:83:6b:be:04:8c:5f:d7:9d:a0:34:b0:90:3e: a9:c5:20:02:85:04:c8:ba:66:49:3d:63:53:89:08: fd:ab:38:bd:81:08:3b:1d:a3:ee:2c:f0:fc:5c:7d: b8:d9:d0:a1:d0:b6:1a:30:07:97:2b:fa:77:02:e8: 80:bc:b8:ab:10:78:9e:cb:1a:25:c9:14:3d:04:d4: 36:e3:9c:69:b6:32:b9:2d:31:dc:35:0f:1d:2c:fc: 47:ad:fb:26:b1:73:f6:2d:3c:2c:4e:9d:26:f5:2e: cc:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:72:1D:B4:C6:1E:37:CF:9C:B6:46:94:95:DC:E1:3C:A9:65:91:F7 X509v3 Authority Key Identifier: keyid:9F:2F:37:4C:9A:73:8F:AD:E8:F8:50:CA:AB:5D:79:D3:B9:00:45:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ny83TJpzj63o-FDKq11507kARYQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:b6:ee:7e:76:9a:21:b9:12:d8:41:b1:ab:75:71:d6:f7:cb: 6f:3b:f8:15:bb:54:33:11:8b:75:7c:58:14:7e:25:a1:fe:a3: e8:32:af:54:76:8a:98:11:99:ae:ac:e1:88:5a:b3:03:2d:58: c1:f2:9a:fa:5d:fe:f8:c2:02:58:e7:69:f7:10:35:b6:86:bc: 6b:09:c6:ef:8f:a4:71:63:37:42:e9:a5:5a:ef:64:74:a0:33: 0a:29:d0:55:8e:c0:98:35:60:10:33:95:21:4a:0b:97:9b:f9: da:2f:76:46:51:71:f0:17:60:49:29:50:3b:0a:58:d7:3a:93: 16:f1:d4:7c:42:b6:54:b5:2c:a2:db:d9:b5:f3:c9:7a:b7:88: a4:88:91:65:7c:70:8b:01:a9:5f:c0:d5:96:ac:c5:5b:e2:f8: 8f:50:78:b6:03:54:d0:55:b4:69:de:16:24:87:84:26:36:29: eb:d7:42:7b:64:6a:b2:dc:b5:6e:2a:0f:93:a1:92:69:d8:23: 10:6a:03:de:d3:1a:2f:6a:35:fb:da:e9:c6:a8:b0:31:1c:46: 02:4d:df:ca:c8:b6:fb:02:fe:68:1d:fc:ae:56:fe:54:1d:4b: 70:58:d6:a9:d7:9e:bb:46:67:a3:df:bb:ec:43:21:4c:e0:90: e2:de:d3:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIkpIvmxGCxTa41Mwpk3IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmMmYzNzRjOWE3MzhmYWRlOGY4NTBjYWFiNWQ3OWQzYjkw MDQ1ODQwHhcNMjYwMjA5MTYwMDQ2WhcNMjYwMjEwMTYwMDQ2WjAzMTEwLwYDVQQD EygyMzcyMWRiNGM2MWUzN2NmOWNiNjQ2OTQ5NWRjZTEzY2E5NjU5MWY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0wXkBW7LMoNcczmDajFD1Ui7Gwss QBaNpbn7uRyUU5h10pjPEmMp5+IwKoupCFRXATvfKA7Z1sCaazuF+bzVjjvie2vW YmNgjAYaFobco9XmR3FthUYrRHiLpJmLu9wZZSK0oInhQgq1y/yxuOcXPaYrzNNs X8sE65KlBP0bKDIIeUgH7QSKC0UFQVf2mtO/Bvv6eNJM84NrvgSMX9edoDSwkD6p xSAChQTIumZJPWNTiQj9qzi9gQg7HaPuLPD8XH242dCh0LYaMAeXK/p3AuiAvLir EHieyxolyRQ9BNQ245xptjK5LTHcNQ8dLPxHrfsmsXP2LTwsTp0m9S7MKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCNyHbTGHjfPnLZGlJXc4TypZZH3MB8GA1UdIwQY MBaAFJ8vN0yac4+t6PhQyqtdedO5AEWEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnk4M1RKcHpqNjNvLUZES3ExMTUwN2tBUllRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS82MzRlNzYtNWM1Zi00NGM0LWI4YTQt NTI0ZTkzMGU1ZmQxLzEvbnk4M1RKcHpqNjNvLUZES3ExMTUwN2tBUllRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS82MzRlNzYtNWM1Zi00NGM0LWI4YTQtNTI0ZTkzMGU1ZmQx LzEvbnk4M1RKcHpqNjNvLUZES3ExMTUwN2tBUllRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnLbufnaa IbkS2EGxq3Vx1vfLbzv4FbtUMxGLdXxYFH4lof6j6DKvVHaKmBGZrqzhiFqzAy1Y wfKa+l3++MICWOdp9xA1toa8awnG74+kcWM3QumlWu9kdKAzCinQVY7AmDVgEDOV IUoLl5v52i92RlFx8BdgSSlQOwpY1zqTFvHUfEK2VLUsotvZtfPJereIpIiRZXxw iwGpX8DVlqzFW+L4j1B4tgNU0FW0ad4WJIeEJjYp69dCe2Rqsty1bioPk6GSadgj EGoD3tMaL2o1+9rpxqiwMRxGAk3fysi2+wL+aB38rlb+VB1LcFjWqdeeu0Zno9+7 7EMhTOCQ4t7Tpg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:03 2026 by rpki-client