This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/9255bd-8b7f-46d2-9773-f50a2a006414/1/SYN20qIgPYbnmm1ESVq_xIkDFGU.mft File: SYN20qIgPYbnmm1ESVq_xIkDFGU.mft (raw, json) Hash identifier: JKX89ELbZcB0nrp29aD5phhA/y6HBnrmR0rerVp3Kko= Subject key identifier: BF:35:F1:C5:A7:51:F2:FC:FF:FA:11:01:52:01:93:5A:31:A9:57:F6 Authority key identifier: 49:83:76:D2:A2:20:3D:86:E7:9A:6D:44:49:5A:BF:C4:89:03:14:65 Certificate issuer: /CN=498376d2a2203d86e79a6d44495abfc489031465 Certificate serial: 019C439096FE9C1F5D0EBA94D3B3CB6D07B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SYN20qIgPYbnmm1ESVq_xIkDFGU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/9255bd-8b7f-46d2-9773-f50a2a006414/1/SYN20qIgPYbnmm1ESVq_xIkDFGU.mft Manifest number: 0EF5 Signing time: Mon 09 Feb 2026 18:01:15 +0000 Manifest this update: Mon 09 Feb 2026 18:01:15 +0000 Manifest next update: Tue 10 Feb 2026 18:01:15 +0000 Files and hashes: 1: SYN20qIgPYbnmm1ESVq_xIkDFGU.crl (hash: Yk4o6ymduQK9mBmW3OiykL6AcU2+xtDJrElmbu1yPUo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/9255bd-8b7f-46d2-9773-f50a2a006414/1/SYN20qIgPYbnmm1ESVq_xIkDFGU.crl rsync://rpki.ripe.net/repository/DEFAULT/66/9255bd-8b7f-46d2-9773-f50a2a006414/1/SYN20qIgPYbnmm1ESVq_xIkDFGU.mft rsync://rpki.ripe.net/repository/DEFAULT/SYN20qIgPYbnmm1ESVq_xIkDFGU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:96:fe:9c:1f:5d:0e:ba:94:d3:b3:cb:6d:07:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=498376d2a2203d86e79a6d44495abfc489031465 Validity Not Before: Feb 9 18:01:15 2026 GMT Not After : Feb 10 18:01:15 2026 GMT Subject: CN=bf35f1c5a751f2fcfffa11015201935a31a957f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ac:b0:29:b5:b9:56:b9:60:ee:89:37:f2:4d: 5d:8f:c7:fa:c0:16:25:41:c2:cd:ba:01:9a:56:64: f5:a4:a8:5b:3d:25:fc:a0:af:c1:3c:af:37:9f:13: ed:30:bf:e6:6d:08:59:aa:80:ec:c7:8b:45:dd:c8: 05:e5:32:89:7d:18:18:50:2d:19:39:74:c4:f1:db: cc:d8:4a:e2:46:11:f4:a9:39:88:7c:3f:9c:d3:30: 89:e5:5a:e1:14:b1:77:79:7a:49:9a:38:d2:33:15: f8:89:f8:c9:36:a8:f1:43:65:a4:c9:d2:d9:71:ca: 9c:40:74:6b:8b:82:22:2b:56:60:14:d0:a7:65:0f: 43:56:24:c4:98:a4:f0:c5:27:9d:fb:e7:90:b6:4f: 7e:e3:e6:34:b9:a6:90:18:a3:0d:26:bf:7d:d8:6d: 2d:b3:dc:78:89:4b:9b:9b:8f:98:b9:f8:dc:80:fa: b1:eb:df:bc:2c:d5:6b:76:8c:2b:10:09:bf:4b:96: 39:1c:a1:9d:2b:a0:fd:35:12:3a:d5:3f:57:85:27: 96:7f:0f:d3:cc:f0:b9:18:4d:1d:e1:43:1c:59:23: 28:7c:da:4c:62:51:3d:d8:01:a6:dc:45:c0:1a:9f: 5f:43:29:06:17:c5:80:2d:90:fa:3c:21:82:83:ab: 24:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:35:F1:C5:A7:51:F2:FC:FF:FA:11:01:52:01:93:5A:31:A9:57:F6 X509v3 Authority Key Identifier: keyid:49:83:76:D2:A2:20:3D:86:E7:9A:6D:44:49:5A:BF:C4:89:03:14:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYN20qIgPYbnmm1ESVq_xIkDFGU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9255bd-8b7f-46d2-9773-f50a2a006414/1/SYN20qIgPYbnmm1ESVq_xIkDFGU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9255bd-8b7f-46d2-9773-f50a2a006414/1/SYN20qIgPYbnmm1ESVq_xIkDFGU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:6f:9c:fb:e0:2d:9b:95:b0:13:4a:11:ae:1a:8f:4a:a1:0a: d1:c1:d9:85:6c:26:f3:a3:79:9d:cc:fb:26:e3:75:5f:42:f9: 16:76:fb:a8:4a:0c:d7:c6:c2:eb:3f:e4:15:4d:ff:47:ef:72: 42:79:36:e2:40:50:2f:00:8b:46:3f:53:fe:9d:b0:28:7c:70: b7:2a:50:73:62:03:1a:13:e8:66:90:8d:ad:8b:2a:74:63:b3: e0:4e:cf:4e:bb:e2:9c:70:40:95:9b:09:20:20:fc:1a:e7:11: 4a:6a:4f:1c:40:25:05:7b:6e:a0:d8:18:0f:f4:bd:ca:d7:76: bb:98:b6:95:dd:65:b5:74:83:9a:8e:d9:a3:9e:d4:0c:d9:af: 1d:fe:ed:9a:42:55:51:af:be:fe:ce:c2:a7:ce:13:fb:a6:2f: 2c:5a:43:e4:1a:66:49:e4:ab:f6:42:b1:12:20:21:71:68:8c: 34:cc:8a:10:90:a8:9e:6c:ae:ba:73:16:5c:35:78:54:13:1c: 53:ab:a6:79:17:5c:f2:56:e4:5c:2e:d5:b3:42:73:b7:74:b9: 63:ed:cb:57:5c:a1:d2:3d:d6:74:11:ad:98:db:57:05:10:ea: 34:a1:6b:11:f8:dd:9f:ec:89:0f:bf:11:02:d9:3a:05:40:c4: 88:e1:cd:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkJb+nB9dDrqU07PLbQexMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5ODM3NmQyYTIyMDNkODZlNzlhNmQ0NDQ5NWFiZmM0ODkw MzE0NjUwHhcNMjYwMjA5MTgwMTE1WhcNMjYwMjEwMTgwMTE1WjAzMTEwLwYDVQQD EyhiZjM1ZjFjNWE3NTFmMmZjZmZmYTExMDE1MjAxOTM1YTMxYTk1N2Y2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu6ywKbW5Vrlg7ok38k1dj8f6wBYl QcLNugGaVmT1pKhbPSX8oK/BPK83nxPtML/mbQhZqoDsx4tF3cgF5TKJfRgYUC0Z OXTE8dvM2EriRhH0qTmIfD+c0zCJ5VrhFLF3eXpJmjjSMxX4ifjJNqjxQ2WkydLZ ccqcQHRri4IiK1ZgFNCnZQ9DViTEmKTwxSed++eQtk9+4+Y0uaaQGKMNJr992G0t s9x4iUubm4+YufjcgPqx69+8LNVrdowrEAm/S5Y5HKGdK6D9NRI61T9XhSeWfw/T zPC5GE0d4UMcWSMofNpMYlE92AGm3EXAGp9fQykGF8WALZD6PCGCg6sk+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL818cWnUfL8//oRAVIBk1oxqVf2MB8GA1UdIwQY MBaAFEmDdtKiID2G55ptRElav8SJAxRlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU1lOMjBxSWdQWWJubW0xRVNWcV94SWtERkdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni85MjU1YmQtOGI3Zi00NmQyLTk3NzMt ZjUwYTJhMDA2NDE0LzEvU1lOMjBxSWdQWWJubW0xRVNWcV94SWtERkdVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni85MjU1YmQtOGI3Zi00NmQyLTk3NzMtZjUwYTJhMDA2NDE0 LzEvU1lOMjBxSWdQWWJubW0xRVNWcV94SWtERkdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh2+c++At m5WwE0oRrhqPSqEK0cHZhWwm86N5ncz7JuN1X0L5Fnb7qEoM18bC6z/kFU3/R+9y Qnk24kBQLwCLRj9T/p2wKHxwtypQc2IDGhPoZpCNrYsqdGOz4E7PTrvinHBAlZsJ ICD8GucRSmpPHEAlBXtuoNgYD/S9ytd2u5i2ld1ltXSDmo7Zo57UDNmvHf7tmkJV Ua++/s7Cp84T+6YvLFpD5BpmSeSr9kKxEiAhcWiMNMyKEJConmyuunMWXDV4VBMc U6umeRdc8lbkXC7Vs0Jzt3S5Y+3LV1yh0j3WdBGtmNtXBRDqNKFrEfjdn+yJD78R Atk6BUDEiOHNng== -----END CERTIFICATE-----Generated at Mon Feb 9 21:09:53 2026 by rpki-client