This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft File: rysOIXo1FoOSIGvac85hlTWgLzU.mft (raw, json) Hash identifier: Dtg8Od7IQw7bgBl6+3oZ1B3r1Dfogxhan9ikr3KlIcU= Subject key identifier: 48:78:00:F4:87:1E:B6:C6:A3:10:CB:02:60:DF:C0:C6:37:2A:90:91 Authority key identifier: AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35 Certificate issuer: /CN=af2b0e217a35168392206bda73ce619535a02f35 Certificate serial: 019C4390377D010F23B4D31114C53D01FDA1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft Manifest number: 0CB9 Signing time: Mon 09 Feb 2026 18:00:50 +0000 Manifest this update: Mon 09 Feb 2026 18:00:50 +0000 Manifest next update: Tue 10 Feb 2026 18:00:50 +0000 Files and hashes: 1: rysOIXo1FoOSIGvac85hlTWgLzU.crl (hash: vug88QtaU3at39mESMZsHXrn2TuekYHbCi0A+gYV/i0=) 2: zakSxSI_wYoHQeaPnt8X9AknTHE.roa (hash: DFDQf/fadQ5V13foLZM1hVw4SY7MFQSi7KXroTzcGGo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:37:7d:01:0f:23:b4:d3:11:14:c5:3d:01:fd:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af2b0e217a35168392206bda73ce619535a02f35 Validity Not Before: Feb 9 18:00:50 2026 GMT Not After : Feb 10 18:00:50 2026 GMT Subject: CN=487800f4871eb6c6a310cb0260dfc0c6372a9091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8a:9b:65:d0:2d:ca:49:45:cf:27:4c:2f:2a: a4:57:0f:9b:ec:9a:7f:37:9e:f8:86:a1:24:a4:e0: 90:0e:cb:26:c5:ef:17:7d:d6:d2:c2:84:89:31:24: c2:73:6a:22:b4:2a:0d:28:77:eb:a1:63:0b:bb:04: 80:7d:a4:28:25:a3:f5:68:20:52:b2:d8:39:7e:f3: 30:8b:1b:bf:38:42:85:c2:e0:42:aa:96:f7:77:31: 13:c4:77:96:37:1c:fa:4d:a7:00:7b:df:e6:af:3c: 13:2d:38:be:b0:e1:c2:82:bc:10:56:b3:a1:a8:68: ea:6d:a4:0e:df:7e:82:7a:e1:cc:e9:fe:9a:95:2e: 35:79:27:48:0d:5e:99:5c:75:61:96:8f:8c:06:fc: ff:c9:c9:ff:24:73:8d:8d:c0:ac:72:87:7b:3c:fd: c2:bb:93:fb:ac:85:35:7b:7e:a4:3b:ce:38:3c:7d: 08:2f:b0:23:76:d5:d2:24:af:53:aa:4f:44:ef:e3: e8:d4:b4:b9:0f:af:f1:cc:49:77:64:92:74:0f:14: 3e:7d:28:11:d4:77:0c:ac:4c:d1:db:45:08:1c:ce: 17:80:5d:31:91:5d:0e:42:e4:10:10:40:79:da:85: ce:42:95:8f:fc:8e:92:96:d6:af:b0:1f:bd:d1:8a: 60:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:78:00:F4:87:1E:B6:C6:A3:10:CB:02:60:DF:C0:C6:37:2A:90:91 X509v3 Authority Key Identifier: keyid:AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:15:3e:bf:f1:32:c4:95:4c:a8:2c:e8:43:08:03:23:66:57: 43:a7:10:7d:c9:c4:a2:42:f1:c3:07:f2:5f:67:e1:49:86:52: e0:7d:10:67:f7:29:94:d8:1d:ee:69:8f:9e:6a:d3:f7:9a:16: 40:32:e3:f2:98:c9:34:e8:13:44:c2:4a:9e:ca:6b:aa:01:73: c3:cb:05:8e:b8:65:92:2a:0e:35:f0:52:1b:31:be:0f:54:4c: 1b:82:47:4f:bb:00:d5:82:5d:b9:8f:ae:f8:26:23:1a:02:17: 2e:20:78:a6:68:35:ec:7a:b3:48:ae:f6:c2:fa:f8:e5:d6:e0: 18:94:2b:c3:04:8b:b2:1d:c6:3b:c9:66:48:93:00:6a:72:f5: 13:09:32:b2:21:14:84:6a:6c:9d:09:5c:bc:93:6a:ab:95:91: 73:e8:1f:36:0c:81:72:70:64:74:e9:4b:8f:9d:61:b9:c4:75: 48:1b:79:5a:b0:e7:f0:42:c3:82:b9:b4:01:94:be:6b:bb:dc: ae:d6:87:bc:a7:3b:62:27:69:55:ff:44:c6:ca:b2:4a:f4:55: 57:ea:06:db:ba:b6:26:54:6f:41:b0:5d:8c:67:32:0d:58:f5: b3:3b:5e:9e:55:b3:e7:db:19:f5:f0:1c:87:4d:54:ae:25:e7: 8b:0c:e6:0f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkDd9AQ8jtNMRFMU9Af2hMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmMmIwZTIxN2EzNTE2ODM5MjIwNmJkYTczY2U2MTk1MzVh MDJmMzUwHhcNMjYwMjA5MTgwMDUwWhcNMjYwMjEwMTgwMDUwWjAzMTEwLwYDVQQD Eyg0ODc4MDBmNDg3MWViNmM2YTMxMGNiMDI2MGRmYzBjNjM3MmE5MDkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz4qbZdAtyklFzydMLyqkVw+b7Jp/ N574hqEkpOCQDssmxe8XfdbSwoSJMSTCc2oitCoNKHfroWMLuwSAfaQoJaP1aCBS stg5fvMwixu/OEKFwuBCqpb3dzETxHeWNxz6TacAe9/mrzwTLTi+sOHCgrwQVrOh qGjqbaQO336CeuHM6f6alS41eSdIDV6ZXHVhlo+MBvz/ycn/JHONjcCscod7PP3C u5P7rIU1e36kO844PH0IL7AjdtXSJK9Tqk9E7+Po1LS5D6/xzEl3ZJJ0DxQ+fSgR 1HcMrEzR20UIHM4XgF0xkV0OQuQQEEB52oXOQpWP/I6SltavsB+90YpgjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEh4APSHHrbGoxDLAmDfwMY3KpCRMB8GA1UdIwQY MBaAFK8rDiF6NRaDkiBr2nPOYZU1oC81MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnlzT0lYbzFGb09TSUd2YWM4NWhsVFdnTHpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9kMjU0MWUtNzU5Ny00ODIwLWJlZDct ZjBkMTk4MDk4NzRhLzEvcnlzT0lYbzFGb09TSUd2YWM4NWhsVFdnTHpVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC9kMjU0MWUtNzU5Ny00ODIwLWJlZDctZjBkMTk4MDk4NzRh LzEvcnlzT0lYbzFGb09TSUd2YWM4NWhsVFdnTHpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcBU+v/Ey xJVMqCzoQwgDI2ZXQ6cQfcnEokLxwwfyX2fhSYZS4H0QZ/cplNgd7mmPnmrT95oW QDLj8pjJNOgTRMJKnsprqgFzw8sFjrhlkioONfBSGzG+D1RMG4JHT7sA1YJduY+u +CYjGgIXLiB4pmg17HqzSK72wvr45dbgGJQrwwSLsh3GO8lmSJMAanL1EwkysiEU hGpsnQlcvJNqq5WRc+gfNgyBcnBkdOlLj51hucR1SBt5WrDn8ELDgrm0AZS+a7vc rtaHvKc7YidpVf9ExsqySvRVV+oG27q2JlRvQbBdjGcyDVj1sztenlWz59sZ9fAc h01UriXniwzmDw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:55:01 2026 by rpki-client