This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft File: 67YrcxkGEIQRy1VV2BvcOj_cbbg.mft (raw, json) Hash identifier: WO3GrV9iXmyoUe1BB8KfzvjiULPHS7dgM8zzuUrSVfg= Subject key identifier: A2:96:98:52:9C:74:B3:5C:60:13:7F:57:2E:19:9E:25:E4:9C:08:AB Authority key identifier: EB:B6:2B:73:19:06:10:84:11:CB:55:55:D8:1B:DC:3A:3F:DC:6D:B8 Certificate issuer: /CN=ebb62b731906108411cb5555d81bdc3a3fdc6db8 Certificate serial: 019C420FD0EABE88715C00376030A7E67F44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/67YrcxkGEIQRy1VV2BvcOj_cbbg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft Manifest number: 02BC Signing time: Mon 09 Feb 2026 11:00:58 +0000 Manifest this update: Mon 09 Feb 2026 11:00:58 +0000 Manifest next update: Tue 10 Feb 2026 11:00:58 +0000 Files and hashes: 1: 67YrcxkGEIQRy1VV2BvcOj_cbbg.crl (hash: KHQunsZvoy9tQKSkUTr8EKpFiQ6e7yMf4rcBcZFv+x0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.crl rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft rsync://rpki.ripe.net/repository/DEFAULT/67YrcxkGEIQRy1VV2BvcOj_cbbg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:d0:ea:be:88:71:5c:00:37:60:30:a7:e6:7f:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ebb62b731906108411cb5555d81bdc3a3fdc6db8 Validity Not Before: Feb 9 11:00:58 2026 GMT Not After : Feb 10 11:00:58 2026 GMT Subject: CN=a29698529c74b35c60137f572e199e25e49c08ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:48:0a:02:aa:b8:70:fc:53:21:23:ca:82:a3: 51:ab:de:4f:92:96:0c:54:25:f5:14:ef:55:bf:ac: 86:99:a4:95:8d:f3:c6:18:3f:0a:3d:5a:89:bd:43: 01:44:67:e5:50:fa:9c:97:b7:30:d4:ba:01:0d:27: 20:50:a9:32:08:da:b9:2b:f1:33:d6:19:f4:33:09: de:d5:6d:67:11:6b:67:f7:69:96:38:6c:ca:80:77: 14:f9:da:c0:79:03:fd:27:61:38:e9:44:24:08:5e: ba:38:f2:0f:43:52:45:d2:8b:8b:d5:45:08:26:84: ce:41:b8:0e:c7:e6:c8:11:52:b2:84:d2:af:5f:08: cf:d8:eb:ab:1a:9e:5b:fb:78:35:e3:d0:23:a6:19: 03:a6:ee:24:f9:7b:04:73:e7:85:9d:1e:a8:21:fb: 21:e1:fe:2c:e5:8a:be:74:0f:30:0c:60:fe:e9:36: 06:34:79:35:d5:7e:9a:05:db:df:3d:59:e3:e9:5f: 7d:c1:3f:87:ca:25:41:94:ee:27:67:4a:81:b0:6a: 55:d6:86:ef:c2:12:48:98:cb:7a:42:ef:78:02:b9: f5:b2:44:09:32:48:56:e1:86:ed:17:55:15:0c:29: cb:63:4e:27:97:9e:fc:a9:a1:6b:46:ea:9d:ed:16: e5:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:96:98:52:9C:74:B3:5C:60:13:7F:57:2E:19:9E:25:E4:9C:08:AB X509v3 Authority Key Identifier: keyid:EB:B6:2B:73:19:06:10:84:11:CB:55:55:D8:1B:DC:3A:3F:DC:6D:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/67YrcxkGEIQRy1VV2BvcOj_cbbg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:ec:99:e1:46:88:7d:9c:ad:09:b9:f0:ff:35:5a:ac:9c:03: 2a:ed:0c:2e:84:85:2c:12:38:fe:ea:14:71:72:44:09:d9:76: 1a:62:84:51:79:05:02:31:8a:61:83:00:c6:99:f2:96:8f:2e: 19:25:35:da:f4:6d:a3:26:ef:85:1b:e1:f1:c1:16:a4:7f:34: f8:3a:cd:64:a3:cf:a2:3c:2a:e5:26:62:d9:a4:e5:97:29:54: 9f:c4:80:30:01:76:6d:80:96:ac:c8:6f:43:53:61:e6:af:25: 0c:cf:f9:57:be:28:f3:90:8a:fc:ab:e1:45:78:91:fd:87:83: 00:2b:eb:b4:7c:c9:08:a6:5b:8c:47:89:fe:9c:85:52:1a:41: 84:20:8c:ed:b9:e8:79:c9:e1:3a:8c:76:93:5c:85:66:9b:f3: 7a:ca:eb:7e:f2:92:14:49:5b:e5:ea:c5:19:41:07:90:29:4a: 02:f7:bc:23:1a:b6:25:6a:35:ff:5f:8a:d3:46:ed:6c:45:7a: d6:3b:1e:79:4b:18:cf:a3:de:96:1c:df:57:27:da:0c:02:d1: 21:96:bf:73:18:2e:8c:2f:17:6c:11:bd:24:b3:30:25:3f:50: 7e:84:a3:05:ce:99:35:0d:8b:e6:29:20:d0:c4:8b:a0:21:e6: 2d:83:3a:2d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD9DqvohxXAA3YDCn5n9EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGViYjYyYjczMTkwNjEwODQxMWNiNTU1NWQ4MWJkYzNhM2Zk YzZkYjgwHhcNMjYwMjA5MTEwMDU4WhcNMjYwMjEwMTEwMDU4WjAzMTEwLwYDVQQD EyhhMjk2OTg1MjljNzRiMzVjNjAxMzdmNTcyZTE5OWUyNWU0OWMwOGFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtEgKAqq4cPxTISPKgqNRq95PkpYM VCX1FO9Vv6yGmaSVjfPGGD8KPVqJvUMBRGflUPqcl7cw1LoBDScgUKkyCNq5K/Ez 1hn0Mwne1W1nEWtn92mWOGzKgHcU+drAeQP9J2E46UQkCF66OPIPQ1JF0ouL1UUI JoTOQbgOx+bIEVKyhNKvXwjP2OurGp5b+3g149AjphkDpu4k+XsEc+eFnR6oIfsh 4f4s5Yq+dA8wDGD+6TYGNHk11X6aBdvfPVnj6V99wT+HyiVBlO4nZ0qBsGpV1obv whJImMt6Qu94Arn1skQJMkhW4YbtF1UVDCnLY04nl578qaFrRuqd7RblJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKKWmFKcdLNcYBN/Vy4ZniXknAirMB8GA1UdIwQY MBaAFOu2K3MZBhCEEctVVdgb3Do/3G24MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNjdZcmN4a0dFSVFSeTFWVjJCdmNPal9jYmJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS8zMzJmMGEtNTdkMS00MGQwLWE4NmIt NzcyMTNmOTkxZGI5LzEvNjdZcmN4a0dFSVFSeTFWVjJCdmNPal9jYmJnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS8zMzJmMGEtNTdkMS00MGQwLWE4NmItNzcyMTNmOTkxZGI5 LzEvNjdZcmN4a0dFSVFSeTFWVjJCdmNPal9jYmJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALuyZ4UaI fZytCbnw/zVarJwDKu0MLoSFLBI4/uoUcXJECdl2GmKEUXkFAjGKYYMAxpnylo8u GSU12vRtoybvhRvh8cEWpH80+DrNZKPPojwq5SZi2aTllylUn8SAMAF2bYCWrMhv Q1Nh5q8lDM/5V74o85CK/KvhRXiR/YeDACvrtHzJCKZbjEeJ/pyFUhpBhCCM7bno ecnhOox2k1yFZpvzesrrfvKSFElb5erFGUEHkClKAve8Ixq2JWo1/1+K00btbEV6 1jseeUsYz6PelhzfVyfaDALRIZa/cxgujC8XbBG9JLMwJT9QfoSjBc6ZNQ2L5ikg 0MSLoCHmLYM6LQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:57 2026 by rpki-client