This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft File: eYCaQAStlYNQpkbViavLPP3z7S4.mft (raw, json) Hash identifier: wDkKfz13QHFkSiL8GAWA+Vrlmbcbslxiucit1d9Szi8= Subject key identifier: 93:8C:AD:0E:DD:41:06:1E:98:E5:BE:FB:11:36:D3:B1:0B:A4:3F:C9 Authority key identifier: 79:80:9A:40:04:AD:95:83:50:A6:46:D5:89:AB:CB:3C:FD:F3:ED:2E Certificate issuer: /CN=79809a4004ad958350a646d589abcb3cfdf3ed2e Certificate serial: 019C420FDF5C197DA8CDC02FE6A05B5D90C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eYCaQAStlYNQpkbViavLPP3z7S4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft Manifest number: 0992 Signing time: Mon 09 Feb 2026 11:01:02 +0000 Manifest this update: Mon 09 Feb 2026 11:01:02 +0000 Manifest next update: Tue 10 Feb 2026 11:01:02 +0000 Files and hashes: 1: eYCaQAStlYNQpkbViavLPP3z7S4.crl (hash: YZuOlM4kl0dXg9Us8stQe5XgfFyyBgdQEoqJyxvwnag=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.crl rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft rsync://rpki.ripe.net/repository/DEFAULT/eYCaQAStlYNQpkbViavLPP3z7S4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:df:5c:19:7d:a8:cd:c0:2f:e6:a0:5b:5d:90:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=79809a4004ad958350a646d589abcb3cfdf3ed2e Validity Not Before: Feb 9 11:01:02 2026 GMT Not After : Feb 10 11:01:02 2026 GMT Subject: CN=938cad0edd41061e98e5befb1136d3b10ba43fc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ac:10:56:a8:e9:ee:9b:90:d8:e8:2a:b4:45: 53:fe:17:43:e2:7c:6f:c6:4a:b4:fb:34:74:58:98: 47:2a:0c:25:b1:74:b4:45:6c:54:62:1a:ac:d3:2f: 33:f2:82:97:fd:ff:b3:5f:0b:94:43:d5:e1:33:cb: e5:40:53:67:01:b6:d1:4c:b3:0b:12:52:20:bf:81: 6c:24:fd:b7:43:53:e8:9a:5e:6e:03:19:09:38:ba: c3:b8:94:97:16:61:f5:06:37:ce:dd:ad:f4:f5:bd: 09:7b:cc:a3:19:f5:b7:7a:7c:97:3b:85:57:56:5e: 75:2d:61:4b:8e:02:61:1c:84:6b:8e:52:b2:6f:54: 08:38:69:73:52:0b:eb:eb:7e:31:19:41:e4:3c:46: e5:44:7b:58:03:49:85:3e:00:3c:04:d1:23:92:4c: 15:72:29:68:12:2e:2a:96:b3:de:0a:7a:b1:76:1d: ac:4a:5b:3b:a4:6e:8b:cf:40:f8:f9:dc:db:e2:0a: e8:b7:ce:84:d6:ec:24:9f:06:b8:69:d5:88:6e:90: 74:e0:ce:cb:14:50:f9:5e:d5:a3:5a:d5:31:e7:9b: 1c:83:80:34:76:c1:d1:22:e8:cb:bb:9f:66:f2:eb: 30:a7:a3:51:40:37:52:eb:1a:9a:d7:10:46:73:2c: e9:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:8C:AD:0E:DD:41:06:1E:98:E5:BE:FB:11:36:D3:B1:0B:A4:3F:C9 X509v3 Authority Key Identifier: keyid:79:80:9A:40:04:AD:95:83:50:A6:46:D5:89:AB:CB:3C:FD:F3:ED:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eYCaQAStlYNQpkbViavLPP3z7S4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:af:ba:a3:d3:9e:44:a3:63:d8:8f:d3:e7:0c:ba:cd:53:7e: 01:be:9d:e9:1a:94:9a:6b:df:c5:dd:24:c9:bd:db:dc:90:24: 7d:ce:b5:d2:82:eb:41:e0:e7:f7:14:81:5f:35:1e:1a:f4:44: 38:ac:b2:2e:47:62:5c:20:a0:73:a1:97:36:51:6d:68:2f:eb: 24:7c:0e:28:88:d4:38:00:e8:cc:f9:d1:17:85:df:53:94:7c: 22:62:7f:01:e4:f9:b0:61:6b:5d:7e:9e:9f:df:2b:f6:0a:02: ed:4f:85:75:6a:ec:5e:a5:80:c3:d7:c0:7c:c0:90:03:b2:9a: 8c:c9:50:19:39:cc:c1:9d:b9:ad:fe:62:7b:93:98:de:10:bd: fd:4c:6b:de:75:ba:be:3d:da:a2:3b:f0:c0:0f:bc:7b:87:b9: 60:9f:7c:f4:22:bf:dd:bc:21:b7:cf:eb:ae:41:c1:40:e7:cc: 65:78:b0:ac:e3:a5:79:0c:c5:df:9a:83:83:14:da:31:b8:a8: 0b:fe:c1:4d:74:3b:05:1d:aa:15:43:ab:3d:e1:3e:a9:86:33: a9:22:61:b9:e4:10:a6:73:5c:c4:14:ad:b6:59:c4:28:85:49: cd:05:bd:1f:f4:11:86:be:8a:e2:aa:06:37:2c:b1:91:fe:50: bf:dd:06:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD99cGX2ozcAv5qBbXZDDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc5ODA5YTQwMDRhZDk1ODM1MGE2NDZkNTg5YWJjYjNjZmRm M2VkMmUwHhcNMjYwMjA5MTEwMTAyWhcNMjYwMjEwMTEwMTAyWjAzMTEwLwYDVQQD Eyg5MzhjYWQwZWRkNDEwNjFlOThlNWJlZmIxMTM2ZDNiMTBiYTQzZmM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtqwQVqjp7puQ2OgqtEVT/hdD4nxv xkq0+zR0WJhHKgwlsXS0RWxUYhqs0y8z8oKX/f+zXwuUQ9XhM8vlQFNnAbbRTLML ElIgv4FsJP23Q1Poml5uAxkJOLrDuJSXFmH1BjfO3a309b0Je8yjGfW3enyXO4VX Vl51LWFLjgJhHIRrjlKyb1QIOGlzUgvr634xGUHkPEblRHtYA0mFPgA8BNEjkkwV ciloEi4qlrPeCnqxdh2sSls7pG6Lz0D4+dzb4grot86E1uwknwa4adWIbpB04M7L FFD5XtWjWtUx55scg4A0dsHRIujLu59m8uswp6NRQDdS6xqa1xBGcyzpOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJOMrQ7dQQYemOW++xE207ELpD/JMB8GA1UdIwQY MBaAFHmAmkAErZWDUKZG1Ymryzz98+0uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZVlDYVFBU3RsWU5RcGtiVmlhdkxQUDN6N1M0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81YjQ1ZjgtOWEzMC00MWQzLWI2MTEt ZDVhYTY0NzdlZmRlLzEvZVlDYVFBU3RsWU5RcGtiVmlhdkxQUDN6N1M0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMC81YjQ1ZjgtOWEzMC00MWQzLWI2MTEtZDVhYTY0NzdlZmRl LzEvZVlDYVFBU3RsWU5RcGtiVmlhdkxQUDN6N1M0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARq+6o9Oe RKNj2I/T5wy6zVN+Ab6d6RqUmmvfxd0kyb3b3JAkfc610oLrQeDn9xSBXzUeGvRE OKyyLkdiXCCgc6GXNlFtaC/rJHwOKIjUOADozPnRF4XfU5R8ImJ/AeT5sGFrXX6e n98r9goC7U+FdWrsXqWAw9fAfMCQA7KajMlQGTnMwZ25rf5ie5OY3hC9/Uxr3nW6 vj3aojvwwA+8e4e5YJ989CK/3bwht8/rrkHBQOfMZXiwrOOleQzF35qDgxTaMbio C/7BTXQ7BR2qFUOrPeE+qYYzqSJhueQQpnNcxBSttlnEKIVJzQW9H/QRhr6K4qoG Nyyxkf5Qv90Gyg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:53 2026 by rpki-client