This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft File: sda67LY65G_uowyrhiHUbFn3KAg.mft (raw, json) Hash identifier: YNDHSGovDMxas2Dr0YbqAjrgVfi36UHmi3uS6PG8J+k= Subject key identifier: 17:CE:FB:AF:D5:DB:4B:9C:CA:63:6B:B0:81:47:0F:9A:F9:37:1A:95 Authority key identifier: B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08 Certificate issuer: /CN=b1d6baecb63ae46feea30cab8621d46c59f72808 Certificate serial: 019C416ACC38E6709833825BED3F64FE6C8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft Manifest number: 1561 Signing time: Mon 09 Feb 2026 08:00:43 +0000 Manifest this update: Mon 09 Feb 2026 08:00:43 +0000 Manifest next update: Tue 10 Feb 2026 08:00:43 +0000 Files and hashes: 1: 8JPDTRJcWjJC1p6Bup8VRe1Gagc.roa (hash: /UT/Fa23tq8Vnw8GXuEzSsDokpGGbDVoxclf2hd11P4=) 2: sda67LY65G_uowyrhiHUbFn3KAg.crl (hash: sQbKVIfbD7K3TH1QlptG3HCW84m9DaoOqYNlhyiEA0M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 08:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:6a:cc:38:e6:70:98:33:82:5b:ed:3f:64:fe:6c:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1d6baecb63ae46feea30cab8621d46c59f72808 Validity Not Before: Feb 9 08:00:43 2026 GMT Not After : Feb 10 08:00:43 2026 GMT Subject: CN=17cefbafd5db4b9cca636bb081470f9af9371a95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:81:9a:40:c6:8d:dd:cc:93:be:96:6a:7e:7c: 1c:e6:d2:d6:d4:42:2a:c8:97:42:7e:b0:2c:ed:49: 69:5f:a4:78:cc:67:32:01:8a:6c:92:e0:90:c7:30: e8:57:0c:8c:d8:f1:95:4f:f6:1c:d1:73:f7:30:a1: d6:49:a8:17:7b:de:5a:21:62:bb:6a:24:fd:fe:ff: e3:f4:a9:9e:75:91:a4:18:b4:48:df:32:7b:a8:f6: 7c:e7:21:60:93:f0:28:24:33:a2:3d:db:cc:de:e7: 56:4a:99:41:f7:33:f3:f9:68:9c:76:54:1d:02:0b: 49:6a:b6:0b:3f:75:54:ed:64:36:49:8a:e9:37:46: 31:6e:97:2d:eb:ef:49:5e:05:fa:9f:ed:9d:f8:d3: 81:d4:f6:83:e1:0a:c3:d0:54:ef:be:39:bb:ad:f0: da:d2:94:20:57:88:9a:ad:2f:ec:38:e0:48:26:a4: 71:74:01:ee:4a:8f:e8:9b:59:a2:07:7b:f1:92:7a: ab:3e:cc:f5:b8:64:48:b6:fe:9a:51:8c:8e:95:8f: fa:16:95:cb:aa:41:4a:9f:bf:aa:6e:a9:96:2c:30: 14:01:3a:80:c4:31:5d:11:a2:5c:9c:04:2f:69:9e: cd:0c:64:7d:a9:23:87:a1:8b:d0:43:83:a1:67:5e: d4:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:CE:FB:AF:D5:DB:4B:9C:CA:63:6B:B0:81:47:0F:9A:F9:37:1A:95 X509v3 Authority Key Identifier: keyid:B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:fa:3f:94:fb:7e:8f:d4:8b:7e:5a:47:29:22:c9:b1:3e:bd: 4a:11:94:ff:65:40:8d:e1:16:19:b4:56:3e:a4:94:0b:16:9d: b9:57:1e:65:67:18:a3:6b:2f:a5:91:dc:89:a3:94:24:16:b1: 87:48:8c:6d:55:02:4b:f6:26:2a:a0:18:26:f4:55:00:9f:55: 89:a1:89:05:84:06:e2:69:e6:ed:bf:6a:22:01:a3:74:ce:80: 4d:d9:71:07:80:5f:dc:e1:fe:8c:fd:c5:82:22:90:0c:6c:78: 30:12:ee:f0:8e:c3:55:ba:8a:85:12:86:4f:dc:1e:a0:f9:05: 80:01:4b:0f:62:30:27:58:1e:20:f2:91:a5:d2:e9:39:c0:06: b2:e8:c5:3c:4c:f5:64:26:91:b0:a9:78:8c:8a:da:75:73:02: 9f:51:f4:b5:a5:3c:96:fd:78:49:4b:ef:32:52:1d:b5:36:37: e5:a0:a2:d3:96:1b:37:95:f5:f0:de:6f:06:0c:5f:0a:c4:93: af:4e:83:10:a9:5e:9e:be:ff:e8:9b:4a:d5:34:26:01:46:b1: 31:0a:b0:e3:0f:38:7f:14:66:28:40:09:86:6a:88:d9:ae:f1: d3:bc:1c:3f:53:87:2f:c8:de:5a:a8:d2:2e:ac:e3:30:52:d1: 22:b1:14:d8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBasw45nCYM4Jb7T9k/myNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxZDZiYWVjYjYzYWU0NmZlZWEzMGNhYjg2MjFkNDZjNTlm NzI4MDgwHhcNMjYwMjA5MDgwMDQzWhcNMjYwMjEwMDgwMDQzWjAzMTEwLwYDVQQD EygxN2NlZmJhZmQ1ZGI0YjljY2E2MzZiYjA4MTQ3MGY5YWY5MzcxYTk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjIGaQMaN3cyTvpZqfnwc5tLW1EIq yJdCfrAs7UlpX6R4zGcyAYpskuCQxzDoVwyM2PGVT/Yc0XP3MKHWSagXe95aIWK7 aiT9/v/j9KmedZGkGLRI3zJ7qPZ85yFgk/AoJDOiPdvM3udWSplB9zPz+WicdlQd AgtJarYLP3VU7WQ2SYrpN0Yxbpct6+9JXgX6n+2d+NOB1PaD4QrD0FTvvjm7rfDa 0pQgV4iarS/sOOBIJqRxdAHuSo/om1miB3vxknqrPsz1uGRItv6aUYyOlY/6FpXL qkFKn7+qbqmWLDAUATqAxDFdEaJcnAQvaZ7NDGR9qSOHoYvQQ4OhZ17UVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBfO+6/V20ucymNrsIFHD5r5NxqVMB8GA1UdIwQY MBaAFLHWuuy2OuRv7qMMq4Yh1GxZ9ygIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2RhNjdMWTY1R191b3d5cmhpSFViRm4zS0FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny83MDNkOTYtZTM0Yi00YzI0LTljOWMt N2FmNzlkYWE2OWI5LzEvc2RhNjdMWTY1R191b3d5cmhpSFViRm4zS0FnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny83MDNkOTYtZTM0Yi00YzI0LTljOWMtN2FmNzlkYWE2OWI5 LzEvc2RhNjdMWTY1R191b3d5cmhpSFViRm4zS0FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAofo/lPt+ j9SLflpHKSLJsT69ShGU/2VAjeEWGbRWPqSUCxaduVceZWcYo2svpZHciaOUJBax h0iMbVUCS/YmKqAYJvRVAJ9ViaGJBYQG4mnm7b9qIgGjdM6ATdlxB4Bf3OH+jP3F giKQDGx4MBLu8I7DVbqKhRKGT9weoPkFgAFLD2IwJ1geIPKRpdLpOcAGsujFPEz1 ZCaRsKl4jIradXMCn1H0taU8lv14SUvvMlIdtTY35aCi05YbN5X18N5vBgxfCsST r06DEKlenr7/6JtK1TQmAUaxMQqw4w84fxRmKEAJhmqI2a7x07wcP1OHL8jeWqjS LqzjMFLRIrEU2A== -----END CERTIFICATE-----Generated at Mon Feb 9 16:53:46 2026 by rpki-client