This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft File: syznolxromOxucmrdrjS3DoNaAY.mft (raw, json) Hash identifier: DC8ho5Oi9EehEdDBqIPF4SoWMB3cHDJWpJHFppMCdxk= Subject key identifier: 47:6C:E5:F9:BA:9A:64:DE:63:E8:D7:C4:1E:C2:65:13:82:5B:7B:EA Authority key identifier: B3:2C:E7:A2:5C:6B:A2:63:B1:B9:C9:AB:76:B8:D2:DC:3A:0D:68:06 Certificate issuer: /CN=b32ce7a25c6ba263b1b9c9ab76b8d2dc3a0d6806 Certificate serial: 019C43220C49A8D7BA2BFA48B205A99070C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syznolxromOxucmrdrjS3DoNaAY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft Manifest number: 06C1 Signing time: Mon 09 Feb 2026 16:00:30 +0000 Manifest this update: Mon 09 Feb 2026 16:00:30 +0000 Manifest next update: Tue 10 Feb 2026 16:00:30 +0000 Files and hashes: 1: syznolxromOxucmrdrjS3DoNaAY.crl (hash: 3UL7dqwl9XmxCZonnwnR4f7SUGta4aWndeNzNucDBOk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft rsync://rpki.ripe.net/repository/DEFAULT/syznolxromOxucmrdrjS3DoNaAY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:0c:49:a8:d7:ba:2b:fa:48:b2:05:a9:90:70:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b32ce7a25c6ba263b1b9c9ab76b8d2dc3a0d6806 Validity Not Before: Feb 9 16:00:30 2026 GMT Not After : Feb 10 16:00:30 2026 GMT Subject: CN=476ce5f9ba9a64de63e8d7c41ec26513825b7bea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:69:79:e9:41:75:12:d2:71:d9:8d:5a:47:c1: b3:7c:e7:5c:ae:5a:d7:4d:49:38:44:9f:fd:6d:b5: c4:e9:74:e7:da:ef:3e:49:2e:c8:68:46:90:7c:e5: 6b:44:83:7d:5a:b9:e8:78:b4:f5:42:4e:e0:a2:1d: 45:ea:13:a4:af:b7:f5:a8:bf:0f:a5:96:1a:27:6e: 61:33:86:aa:df:0e:cb:47:50:4a:7e:1e:be:2c:a5: 35:50:60:fb:11:a5:7b:4d:51:c7:61:2e:b5:ea:3a: 42:c2:e9:cf:a7:44:be:b5:cd:0d:b4:0a:31:81:71: 4a:2a:79:0c:30:1e:0e:0b:cf:50:5c:14:99:c2:56: 7d:ff:8b:f2:ee:97:a0:f8:43:42:b9:01:28:20:33: e8:24:10:68:1f:12:80:eb:63:2a:6e:ed:41:27:94: 59:f0:2f:11:9d:b6:88:8e:a0:de:57:b2:45:56:d2: 53:c7:07:ff:fc:67:2f:a9:9f:a4:22:3e:ac:97:56: df:82:11:dd:ff:c2:bf:8d:31:97:f5:cd:9d:d2:e6: 5b:f3:7b:60:ff:4f:9f:8c:dc:f1:e3:85:0d:7a:aa: 5c:b6:88:55:18:d0:9a:75:85:10:f2:f7:9a:46:a5: 94:ee:df:4c:98:ca:c5:09:a2:1f:c1:df:78:d2:2b: 27:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:6C:E5:F9:BA:9A:64:DE:63:E8:D7:C4:1E:C2:65:13:82:5B:7B:EA X509v3 Authority Key Identifier: keyid:B3:2C:E7:A2:5C:6B:A2:63:B1:B9:C9:AB:76:B8:D2:DC:3A:0D:68:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syznolxromOxucmrdrjS3DoNaAY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bd:e6:c5:61:b9:db:5c:9f:79:2e:dd:f6:2b:50:b0:91:67:f0: 54:1b:a0:b9:b0:a2:a6:4c:9d:10:b3:d1:10:34:16:41:1b:56: 94:05:07:11:c7:9a:44:50:88:2d:7c:46:49:fa:6a:38:01:3a: 2f:d6:b3:3d:10:ae:7a:1b:89:e1:24:30:38:6e:00:10:a9:80: 25:8a:d3:5e:de:f9:e2:f4:44:ff:4d:6d:b6:06:09:bf:a6:f6: 97:15:c0:cd:e4:d0:1c:43:fa:18:be:51:eb:50:32:75:af:0c: b0:2b:f1:41:9b:ad:60:91:4f:bc:11:a0:08:0a:73:40:1c:fc: ef:10:09:47:6f:8f:96:97:9f:c8:5e:6e:59:b1:aa:aa:ea:c4: a0:7a:d7:0f:11:8a:eb:45:fe:1b:88:5b:d3:12:10:23:ab:93: 24:89:39:7e:03:27:4a:55:9f:b5:0e:3f:0a:d5:87:b3:22:bb: d6:3f:7c:74:19:85:0c:46:fe:1a:f1:dc:6f:91:09:06:2a:33: 53:9b:6a:3c:a9:4f:5a:7f:58:09:3c:7b:51:7d:33:f8:96:87: 62:af:a9:66:8d:38:33:ad:a1:d8:c4:d9:1f:ad:0e:c9:44:dc: d5:29:e7:3d:84:02:90:1b:57:0d:7d:ed:83:1d:72:83:18:a6: e9:6e:e0:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIgxJqNe6K/pIsgWpkHDHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzMmNlN2EyNWM2YmEyNjNiMWI5YzlhYjc2YjhkMmRjM2Ew ZDY4MDYwHhcNMjYwMjA5MTYwMDMwWhcNMjYwMjEwMTYwMDMwWjAzMTEwLwYDVQQD Eyg0NzZjZTVmOWJhOWE2NGRlNjNlOGQ3YzQxZWMyNjUxMzgyNWI3YmVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArml56UF1EtJx2Y1aR8GzfOdcrlrX TUk4RJ/9bbXE6XTn2u8+SS7IaEaQfOVrRIN9WrnoeLT1Qk7goh1F6hOkr7f1qL8P pZYaJ25hM4aq3w7LR1BKfh6+LKU1UGD7EaV7TVHHYS616jpCwunPp0S+tc0NtAox gXFKKnkMMB4OC89QXBSZwlZ9/4vy7peg+ENCuQEoIDPoJBBoHxKA62Mqbu1BJ5RZ 8C8RnbaIjqDeV7JFVtJTxwf//GcvqZ+kIj6sl1bfghHd/8K/jTGX9c2d0uZb83tg /0+fjNzx44UNeqpctohVGNCadYUQ8veaRqWU7t9MmMrFCaIfwd940isnywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEds5fm6mmTeY+jXxB7CZROCW3vqMB8GA1UdIwQY MBaAFLMs56Jca6JjsbnJq3a40tw6DWgGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3l6bm9seHJvbU94dWNtcmRyalMzRG9OYUFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9hM2E2NTMtYWVmYS00OGNkLWFhYzct MzQwM2E4NDI5N2IxLzEvc3l6bm9seHJvbU94dWNtcmRyalMzRG9OYUFZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy9hM2E2NTMtYWVmYS00OGNkLWFhYzctMzQwM2E4NDI5N2Ix LzEvc3l6bm9seHJvbU94dWNtcmRyalMzRG9OYUFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvebFYbnb XJ95Lt32K1CwkWfwVBugubCipkydELPREDQWQRtWlAUHEceaRFCILXxGSfpqOAE6 L9azPRCuehuJ4SQwOG4AEKmAJYrTXt754vRE/01ttgYJv6b2lxXAzeTQHEP6GL5R 61Ayda8MsCvxQZutYJFPvBGgCApzQBz87xAJR2+PlpefyF5uWbGqqurEoHrXDxGK 60X+G4hb0xIQI6uTJIk5fgMnSlWftQ4/CtWHsyK71j98dBmFDEb+GvHcb5EJBioz U5tqPKlPWn9YCTx7UX0z+JaHYq+pZo04M62h2MTZH60OyUTc1SnnPYQCkBtXDX3t gx1ygxim6W7gpg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:38 2026 by rpki-client