This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/497125-61fb-42e8-ac49-61673a477543/1/9z1njq7ZSnm3Qt1DveP1TynbMVI.mft File: 9z1njq7ZSnm3Qt1DveP1TynbMVI.mft (raw, json) Hash identifier: 8zZs76bSfL4kYl15J/hgEK602FUVcH85ONreZtV8nrA= Subject key identifier: 39:5A:3F:AB:ED:DF:09:E7:C7:F3:DE:C4:05:AF:7C:33:0F:5C:1C:18 Authority key identifier: F7:3D:67:8E:AE:D9:4A:79:B7:42:DD:43:BD:E3:F5:4F:29:DB:31:52 Certificate issuer: /CN=f73d678eaed94a79b742dd43bde3f54f29db3152 Certificate serial: 019C4358BD76EF846A69BB9AE47AA37E03D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9z1njq7ZSnm3Qt1DveP1TynbMVI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/497125-61fb-42e8-ac49-61673a477543/1/9z1njq7ZSnm3Qt1DveP1TynbMVI.mft Manifest number: 020A Signing time: Mon 09 Feb 2026 17:00:14 +0000 Manifest this update: Mon 09 Feb 2026 17:00:14 +0000 Manifest next update: Tue 10 Feb 2026 17:00:14 +0000 Files and hashes: 1: 9z1njq7ZSnm3Qt1DveP1TynbMVI.crl (hash: OZNbdSHaryVpmMeSBXkQjPu5mOSqIMYtgWEOmIrf/UA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/497125-61fb-42e8-ac49-61673a477543/1/9z1njq7ZSnm3Qt1DveP1TynbMVI.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/497125-61fb-42e8-ac49-61673a477543/1/9z1njq7ZSnm3Qt1DveP1TynbMVI.mft rsync://rpki.ripe.net/repository/DEFAULT/9z1njq7ZSnm3Qt1DveP1TynbMVI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:bd:76:ef:84:6a:69:bb:9a:e4:7a:a3:7e:03:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f73d678eaed94a79b742dd43bde3f54f29db3152 Validity Not Before: Feb 9 17:00:14 2026 GMT Not After : Feb 10 17:00:14 2026 GMT Subject: CN=395a3fabeddf09e7c7f3dec405af7c330f5c1c18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:42:93:20:dc:26:63:4e:95:90:f6:9e:72:60: 40:7d:14:21:c5:4c:07:87:b4:1c:8c:67:46:e6:64: cf:b6:0c:9f:83:60:7a:29:c5:b6:a1:bf:c0:9c:f5: fe:82:6d:c8:63:1b:c1:c7:d2:a1:f1:0d:fd:33:ef: b9:e2:7b:48:3a:8f:af:e2:50:4d:da:f5:86:68:0f: 89:8f:be:82:1b:a5:77:b7:56:99:35:21:58:48:c7: 62:2f:d3:6d:27:d8:31:ab:ac:69:aa:aa:f3:f3:90: 3b:eb:06:f5:8f:89:0d:b5:1b:7c:3e:0a:44:33:98: 3a:39:1d:fe:39:4c:84:25:89:95:0e:8c:d9:a5:36: 76:67:2e:5f:17:cb:fb:91:81:e5:c6:44:84:d7:34: 32:fc:ab:ab:e2:a4:09:05:0e:15:9e:c9:21:b9:cc: 56:8f:cd:89:16:43:ee:b4:78:ea:60:f9:51:8d:1c: d4:31:9b:a4:84:ec:ee:69:0f:87:99:76:f6:3f:ac: 43:83:63:ef:18:41:bd:51:23:3e:e1:c8:4b:8c:45: c3:83:17:da:db:8a:70:cd:14:8f:59:01:1f:7f:b8: a1:75:c4:11:95:b4:0e:af:60:97:b8:45:32:25:8e: 85:3c:0e:24:e8:ed:a0:b4:2d:55:c6:b6:ad:9f:e4: 23:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:5A:3F:AB:ED:DF:09:E7:C7:F3:DE:C4:05:AF:7C:33:0F:5C:1C:18 X509v3 Authority Key Identifier: keyid:F7:3D:67:8E:AE:D9:4A:79:B7:42:DD:43:BD:E3:F5:4F:29:DB:31:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9z1njq7ZSnm3Qt1DveP1TynbMVI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/497125-61fb-42e8-ac49-61673a477543/1/9z1njq7ZSnm3Qt1DveP1TynbMVI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/497125-61fb-42e8-ac49-61673a477543/1/9z1njq7ZSnm3Qt1DveP1TynbMVI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:cd:43:b3:f1:68:81:d3:a3:89:c2:72:02:06:12:5c:c7:53: cb:7d:29:c9:52:29:ab:af:c3:d2:b4:d3:ba:11:38:72:0a:39: b2:68:86:11:3a:ec:8a:af:3a:45:b0:20:54:4b:03:3d:38:10: 41:3c:bd:4c:a2:31:eb:12:b8:15:0f:95:c0:4e:ed:93:bf:90: e4:f8:39:ae:d8:d3:be:f3:b8:75:83:b4:9c:0c:06:51:d9:ad: d8:da:11:4e:31:40:45:68:44:b3:01:14:5f:e4:f0:0c:df:fc: b6:7b:ac:fc:79:c5:6f:f4:dc:4e:9e:a4:c5:eb:c9:2e:db:a5: 7a:bc:9e:31:bb:58:d9:75:b6:72:9d:37:8f:ff:22:d7:12:2a: f1:f7:84:b5:6a:d3:6d:08:54:87:4f:80:d3:7b:a5:18:ba:b3: bd:83:ec:fa:b8:69:1c:b4:8b:dc:90:05:90:81:73:d7:6e:b3: d6:49:f6:57:28:15:44:43:ec:cf:a3:85:27:f2:e7:b2:06:89: 88:67:9d:e2:89:a9:7a:4a:b3:7f:fc:46:55:86:0d:e4:13:f0: 8a:d1:35:b9:6c:ef:17:24:2a:8a:7d:51:e5:f6:fe:97:36:98: 0e:7b:2a:14:91:95:63:8d:f5:a5:0e:fc:bc:c0:cb:c9:5f:1c: 18:14:33:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWL1274Rqabua5HqjfgPRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3M2Q2NzhlYWVkOTRhNzliNzQyZGQ0M2JkZTNmNTRmMjlk YjMxNTIwHhcNMjYwMjA5MTcwMDE0WhcNMjYwMjEwMTcwMDE0WjAzMTEwLwYDVQQD EygzOTVhM2ZhYmVkZGYwOWU3YzdmM2RlYzQwNWFmN2MzMzBmNWMxYzE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsUKTINwmY06VkPaecmBAfRQhxUwH h7QcjGdG5mTPtgyfg2B6KcW2ob/AnPX+gm3IYxvBx9Kh8Q39M++54ntIOo+v4lBN 2vWGaA+Jj76CG6V3t1aZNSFYSMdiL9NtJ9gxq6xpqqrz85A76wb1j4kNtRt8PgpE M5g6OR3+OUyEJYmVDozZpTZ2Zy5fF8v7kYHlxkSE1zQy/Kur4qQJBQ4VnskhucxW j82JFkPutHjqYPlRjRzUMZukhOzuaQ+HmXb2P6xDg2PvGEG9USM+4chLjEXDgxfa 24pwzRSPWQEff7ihdcQRlbQOr2CXuEUyJY6FPA4k6O2gtC1Vxratn+QjywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDlaP6vt3wnnx/PexAWvfDMPXBwYMB8GA1UdIwQY MBaAFPc9Z46u2Up5t0LdQ73j9U8p2zFSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOXoxbmpxN1pTbm0zUXQxRHZlUDFUeW5iTVZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi80OTcxMjUtNjFmYi00MmU4LWFjNDkt NjE2NzNhNDc3NTQzLzEvOXoxbmpxN1pTbm0zUXQxRHZlUDFUeW5iTVZJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi80OTcxMjUtNjFmYi00MmU4LWFjNDktNjE2NzNhNDc3NTQz LzEvOXoxbmpxN1pTbm0zUXQxRHZlUDFUeW5iTVZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlM1Ds/Fo gdOjicJyAgYSXMdTy30pyVIpq6/D0rTTuhE4cgo5smiGETrsiq86RbAgVEsDPTgQ QTy9TKIx6xK4FQ+VwE7tk7+Q5Pg5rtjTvvO4dYO0nAwGUdmt2NoRTjFARWhEswEU X+TwDN/8tnus/HnFb/TcTp6kxevJLtuleryeMbtY2XW2cp03j/8i1xIq8feEtWrT bQhUh0+A03ulGLqzvYPs+rhpHLSL3JAFkIFz126z1kn2VygVREPsz6OFJ/LnsgaJ iGed4ompekqzf/xGVYYN5BPwitE1uWzvFyQqin1R5fb+lzaYDnsqFJGVY431pQ78 vMDLyV8cGBQzwg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:47:38 2026 by rpki-client