This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.mft File: ny8WbQXql29prtWORqQfflBSRHU.mft (raw, json) Hash identifier: 5spw1pruerUqDYaw5XbXi5DEjBdqrVrX3j/41YXhzFQ= Subject key identifier: EB:25:0E:EB:1E:DD:DD:E9:A8:BE:C5:51:C3:38:B0:47:30:AC:D8:8C Authority key identifier: 9F:2F:16:6D:05:EA:97:6F:69:AE:D5:8E:46:A4:1F:7E:50:52:44:75 Certificate issuer: /CN=9f2f166d05ea976f69aed58e46a41f7e50524475 Certificate serial: 019C420F22BE52DC7C761CA973C751251099 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ny8WbQXql29prtWORqQfflBSRHU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.mft Manifest number: 1586 Signing time: Mon 09 Feb 2026 11:00:14 +0000 Manifest this update: Mon 09 Feb 2026 11:00:14 +0000 Manifest next update: Tue 10 Feb 2026 11:00:14 +0000 Files and hashes: 1: ny8WbQXql29prtWORqQfflBSRHU.crl (hash: PMGEGNgb/l8yOqpVOo8748oyVFQvui09zMbrgxj2Ruc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.mft rsync://rpki.ripe.net/repository/DEFAULT/ny8WbQXql29prtWORqQfflBSRHU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:22:be:52:dc:7c:76:1c:a9:73:c7:51:25:10:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9f2f166d05ea976f69aed58e46a41f7e50524475 Validity Not Before: Feb 9 11:00:14 2026 GMT Not After : Feb 10 11:00:14 2026 GMT Subject: CN=eb250eeb1edddde9a8bec551c338b04730acd88c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:09:fd:f5:df:10:2d:e8:70:41:08:1d:d4:c3: 77:de:d3:14:71:e9:c4:91:60:81:dc:4b:c0:46:de: a7:f1:d1:ef:8c:bd:c2:bd:19:37:36:21:fb:bf:e5: 26:c9:98:17:8c:55:5a:ed:55:1e:d8:82:25:9a:a0: 55:c8:4c:53:10:e3:f0:40:92:c4:ee:b3:65:34:eb: 28:8f:9c:e1:17:9f:e6:35:f1:ac:49:51:c3:a1:18: 37:f5:34:a9:54:cc:9e:01:36:09:68:e1:cc:27:7b: da:5c:49:c9:3f:75:a0:1c:84:0f:fa:d9:76:d4:42: f8:54:0f:c5:25:a1:01:3a:64:5e:e6:36:19:6a:8c: 9a:a7:c2:b9:e4:fb:6e:d7:cc:6c:90:e6:5f:ac:1a: 3f:61:a4:7a:f1:90:9b:db:7d:11:77:7b:d5:eb:42: f4:57:18:51:36:b2:09:fa:40:02:e6:09:f2:61:c8: 6c:20:4c:e5:da:37:c2:29:3b:5d:63:13:55:c1:1b: 1f:64:63:99:45:a4:d9:8c:e7:6a:f0:d6:35:00:29: 4d:02:f1:ea:bd:9f:b3:71:f7:a9:b9:2a:53:ba:00: 83:24:c1:c4:fe:74:a6:12:23:25:7e:4b:47:26:b5: b4:31:6a:e9:80:9d:ac:88:b7:54:86:df:07:7c:a5: bf:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:25:0E:EB:1E:DD:DD:E9:A8:BE:C5:51:C3:38:B0:47:30:AC:D8:8C X509v3 Authority Key Identifier: keyid:9F:2F:16:6D:05:EA:97:6F:69:AE:D5:8E:46:A4:1F:7E:50:52:44:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ny8WbQXql29prtWORqQfflBSRHU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption f2:b6:02:b9:79:47:33:a8:12:6b:9c:7d:3e:52:41:bd:90:a1: 68:87:43:c9:58:6f:a9:af:53:20:a5:56:d3:cd:06:5f:0d:68: 64:b9:13:13:4f:04:ea:c0:d3:f3:66:2b:87:ac:27:53:d8:2f: ec:81:22:84:f5:72:d4:11:47:cb:0f:20:24:ff:5c:9e:06:c9: 02:6b:0f:ee:85:76:a3:94:72:23:94:3e:55:c2:e6:ec:73:13: b4:97:c5:6b:01:e6:49:a2:af:0e:48:39:a7:db:2f:4d:dc:40: 42:e0:a8:12:4a:bd:13:e8:f4:0f:84:6e:6f:80:74:46:a2:b0: 79:ee:1f:42:f3:86:c6:7e:1b:ce:3c:41:a5:83:e7:df:7c:4f: dc:bf:17:e1:39:aa:2e:80:ef:97:2b:29:59:54:78:88:2c:6a: 37:21:ee:b6:43:ee:7b:94:2c:e4:43:8c:3a:36:5e:80:31:91: e3:a7:9a:79:8b:38:ed:aa:51:f3:3e:6a:41:8f:40:88:a2:13: 4a:d2:42:8c:f3:34:f6:76:aa:a5:10:96:08:85:5e:7b:b8:5d: c4:7a:6a:20:f6:72:1b:dc:e6:2b:1d:33:66:ec:d3:19:fb:ec: a1:50:d7:63:e7:08:a2:cc:c9:43:73:58:77:ae:91:67:02:a9: a3:c5:48:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCDyK+Utx8dhypc8dRJRCZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmMmYxNjZkMDVlYTk3NmY2OWFlZDU4ZTQ2YTQxZjdlNTA1 MjQ0NzUwHhcNMjYwMjA5MTEwMDE0WhcNMjYwMjEwMTEwMDE0WjAzMTEwLwYDVQQD EyhlYjI1MGVlYjFlZGRkZGU5YThiZWM1NTFjMzM4YjA0NzMwYWNkODhjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqgn99d8QLehwQQgd1MN33tMUcenE kWCB3EvARt6n8dHvjL3CvRk3NiH7v+UmyZgXjFVa7VUe2IIlmqBVyExTEOPwQJLE 7rNlNOsoj5zhF5/mNfGsSVHDoRg39TSpVMyeATYJaOHMJ3vaXEnJP3WgHIQP+tl2 1EL4VA/FJaEBOmRe5jYZaoyap8K55Ptu18xskOZfrBo/YaR68ZCb230Rd3vV60L0 VxhRNrIJ+kAC5gnyYchsIEzl2jfCKTtdYxNVwRsfZGOZRaTZjOdq8NY1AClNAvHq vZ+zcfepuSpTugCDJMHE/nSmEiMlfktHJrW0MWrpgJ2siLdUht8HfKW/GwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOslDuse3d3pqL7FUcM4sEcwrNiMMB8GA1UdIwQY MBaAFJ8vFm0F6pdvaa7VjkakH35QUkR1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnk4V2JRWHFsMjlwcnRXT1JxUWZmbEJTUkhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8yMmVmYmItMzY1OS00YTNkLWJlYTQt OTYyZDRmMGMyOWIwLzEvbnk4V2JRWHFsMjlwcnRXT1JxUWZmbEJTUkhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC8yMmVmYmItMzY1OS00YTNkLWJlYTQtOTYyZDRmMGMyOWIw LzEvbnk4V2JRWHFsMjlwcnRXT1JxUWZmbEJTUkhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA8rYCuXlH M6gSa5x9PlJBvZChaIdDyVhvqa9TIKVW080GXw1oZLkTE08E6sDT82Yrh6wnU9gv 7IEihPVy1BFHyw8gJP9cngbJAmsP7oV2o5RyI5Q+VcLm7HMTtJfFawHmSaKvDkg5 p9svTdxAQuCoEkq9E+j0D4Rub4B0RqKwee4fQvOGxn4bzjxBpYPn33xP3L8X4Tmq LoDvlyspWVR4iCxqNyHutkPue5Qs5EOMOjZegDGR46eaeYs47apR8z5qQY9AiKIT StJCjPM09naqpRCWCIVee7hdxHpqIPZyG9zmKx0zZuzTGfvsoVDXY+cIoszJQ3NY d66RZwKpo8VIWA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:34 2026 by rpki-client