This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/14d7b8-afce-45a1-b272-04d96fa83d07/1/_9YayMVuOP32EjgDbHNUcnADRjE.mft File: _9YayMVuOP32EjgDbHNUcnADRjE.mft (raw, json) Hash identifier: Jz7kht7hhQP+fX65BU6N6y2QvjlWxlF28uwUYv9i0T0= Subject key identifier: 57:4B:14:88:47:B1:75:DE:A7:C0:9D:B0:3A:9B:7A:C2:DC:6F:A7:1E Authority key identifier: FF:D6:1A:C8:C5:6E:38:FD:F6:12:38:03:6C:73:54:72:70:03:46:31 Certificate issuer: /CN=ffd61ac8c56e38fdf61238036c73547270034631 Certificate serial: 019C4246C58B04E59E199413C274C25ED4CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_9YayMVuOP32EjgDbHNUcnADRjE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/14d7b8-afce-45a1-b272-04d96fa83d07/1/_9YayMVuOP32EjgDbHNUcnADRjE.mft Manifest number: 180F Signing time: Mon 09 Feb 2026 12:01:00 +0000 Manifest this update: Mon 09 Feb 2026 12:01:00 +0000 Manifest next update: Tue 10 Feb 2026 12:01:00 +0000 Files and hashes: 1: _9YayMVuOP32EjgDbHNUcnADRjE.crl (hash: AmLNOtSYLlMbDUuI+fDOQA4TvXy6pWn/IDFQHEBMI4U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/14d7b8-afce-45a1-b272-04d96fa83d07/1/_9YayMVuOP32EjgDbHNUcnADRjE.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/14d7b8-afce-45a1-b272-04d96fa83d07/1/_9YayMVuOP32EjgDbHNUcnADRjE.mft rsync://rpki.ripe.net/repository/DEFAULT/_9YayMVuOP32EjgDbHNUcnADRjE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:c5:8b:04:e5:9e:19:94:13:c2:74:c2:5e:d4:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ffd61ac8c56e38fdf61238036c73547270034631 Validity Not Before: Feb 9 12:01:00 2026 GMT Not After : Feb 10 12:01:00 2026 GMT Subject: CN=574b148847b175dea7c09db03a9b7ac2dc6fa71e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:32:b2:5f:f3:5e:bb:14:03:25:6a:6d:9b:7e: 82:01:2b:2f:7c:f8:b5:2b:0c:e3:9d:98:61:79:54: 19:bb:a3:99:22:a4:f7:5b:c9:50:03:77:49:82:4e: 69:aa:91:04:1d:83:41:b3:18:9c:ae:e1:a4:5f:89: 60:11:13:74:b0:c1:67:c6:89:fa:94:b4:2b:a9:51: d4:65:d6:5c:4e:20:0e:aa:83:50:2c:61:54:30:f2: 02:4e:b2:b1:8c:2f:a1:f9:8c:e3:5b:fc:47:ce:59: f6:b8:5c:02:8b:8b:0f:f3:17:3e:c8:15:70:f9:88: e4:7f:5c:c7:54:25:4e:2b:59:fd:b5:00:ec:e3:69: 39:b4:5a:6c:86:e8:ac:ed:73:c3:ba:a4:ba:98:fc: 5e:a3:68:9f:3c:20:03:97:40:0e:23:9a:a2:12:2c: ea:6c:a5:e8:ce:53:7f:58:ec:21:95:25:30:3c:cc: 59:ea:ce:c0:63:35:6c:7f:21:4b:4a:a2:14:66:a7: e5:78:f6:4e:4d:97:cd:86:d6:11:e5:a1:1e:2e:e4: 0f:1a:62:d0:a0:f9:98:46:b9:29:68:63:de:34:a0: d6:5c:ff:37:4d:3b:13:27:dd:50:04:20:64:c9:47: 0e:0b:96:e7:b8:0e:9d:02:87:bd:cc:7e:75:b7:4e: 28:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:4B:14:88:47:B1:75:DE:A7:C0:9D:B0:3A:9B:7A:C2:DC:6F:A7:1E X509v3 Authority Key Identifier: keyid:FF:D6:1A:C8:C5:6E:38:FD:F6:12:38:03:6C:73:54:72:70:03:46:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_9YayMVuOP32EjgDbHNUcnADRjE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/14d7b8-afce-45a1-b272-04d96fa83d07/1/_9YayMVuOP32EjgDbHNUcnADRjE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/14d7b8-afce-45a1-b272-04d96fa83d07/1/_9YayMVuOP32EjgDbHNUcnADRjE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:39:86:c2:22:d1:ee:2f:ab:fe:bf:fb:d8:36:04:13:a2:a6: ad:59:fc:77:82:ef:91:24:65:f7:cd:9f:82:46:a9:cb:32:a8: 36:72:66:de:7d:01:6c:37:3a:fd:54:04:f3:d0:97:c6:9e:eb: 04:b8:48:d0:0e:06:16:83:87:ff:40:27:b5:a1:ea:97:4e:75: 5f:6a:59:43:89:97:92:33:c0:a9:b4:90:c7:e0:e1:a1:47:19: 34:17:75:6c:63:fc:b7:e9:6f:3e:ea:37:d9:03:53:b0:51:1a: 81:77:f3:8a:fb:85:a4:18:db:26:a7:8b:43:79:a3:77:86:37: 30:05:71:b0:b2:60:a5:e7:e5:dc:bd:d6:ca:d8:44:41:65:60: b6:7a:00:0a:88:53:7c:58:d9:b5:2d:bb:6b:ca:fb:11:3b:c5: d3:ee:24:d0:52:df:23:0b:91:a6:b8:16:17:dd:04:24:46:98: fc:d1:16:ac:64:c4:2c:40:e6:ce:60:6a:83:f6:a9:7b:39:f3: c1:27:e3:78:37:12:c7:a7:a2:74:fb:5a:f1:45:c3:f7:e6:c9: 38:af:55:fa:d9:19:cd:9a:f3:dc:c7:5f:6e:82:8b:05:20:32: eb:87:2a:09:8f:8c:36:6d:89:fd:7e:e8:ea:b9:eb:8c:0f:ea: 03:c8:f8:b1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRsWLBOWeGZQTwnTCXtTOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmZDYxYWM4YzU2ZTM4ZmRmNjEyMzgwMzZjNzM1NDcyNzAw MzQ2MzEwHhcNMjYwMjA5MTIwMTAwWhcNMjYwMjEwMTIwMTAwWjAzMTEwLwYDVQQD Eyg1NzRiMTQ4ODQ3YjE3NWRlYTdjMDlkYjAzYTliN2FjMmRjNmZhNzFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0zKyX/NeuxQDJWptm36CASsvfPi1 KwzjnZhheVQZu6OZIqT3W8lQA3dJgk5pqpEEHYNBsxicruGkX4lgERN0sMFnxon6 lLQrqVHUZdZcTiAOqoNQLGFUMPICTrKxjC+h+YzjW/xHzln2uFwCi4sP8xc+yBVw +Yjkf1zHVCVOK1n9tQDs42k5tFpshuis7XPDuqS6mPxeo2ifPCADl0AOI5qiEizq bKXozlN/WOwhlSUwPMxZ6s7AYzVsfyFLSqIUZqflePZOTZfNhtYR5aEeLuQPGmLQ oPmYRrkpaGPeNKDWXP83TTsTJ91QBCBkyUcOC5bnuA6dAoe9zH51t04oiQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFdLFIhHsXXep8CdsDqbesLcb6ceMB8GA1UdIwQY MBaAFP/WGsjFbjj99hI4A2xzVHJwA0YxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvXzlZYXlNVnVPUDMyRWpnRGJITlVjbkFEUmpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS8xNGQ3YjgtYWZjZS00NWExLWIyNzIt MDRkOTZmYTgzZDA3LzEvXzlZYXlNVnVPUDMyRWpnRGJITlVjbkFEUmpFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS8xNGQ3YjgtYWZjZS00NWExLWIyNzItMDRkOTZmYTgzZDA3 LzEvXzlZYXlNVnVPUDMyRWpnRGJITlVjbkFEUmpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGDmGwiLR 7i+r/r/72DYEE6KmrVn8d4LvkSRl982fgkapyzKoNnJm3n0BbDc6/VQE89CXxp7r BLhI0A4GFoOH/0AntaHql051X2pZQ4mXkjPAqbSQx+DhoUcZNBd1bGP8t+lvPuo3 2QNTsFEagXfzivuFpBjbJqeLQ3mjd4Y3MAVxsLJgpefl3L3WythEQWVgtnoACohT fFjZtS27a8r7ETvF0+4k0FLfIwuRprgWF90EJEaY/NEWrGTELEDmzmBqg/apeznz wSfjeDcSx6eidPta8UXD9+bJOK9V+tkZzZrz3MdfboKLBSAy64cqCY+MNm2J/X7o 6rnrjA/qA8j4sQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:16 2026 by rpki-client