This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft File: pol1o9gy4UUny7or4QujwebGOFY.mft (raw, json) Hash identifier: x9Xm19nZ1Pp7poes2N7WpgMrSk+PdsRQoU67JwIdJEA= Subject key identifier: D7:59:8F:19:1A:37:6E:55:CC:B3:93:00:C2:3A:22:F9:0F:F2:4F:2B Authority key identifier: A6:89:75:A3:D8:32:E1:45:27:CB:BA:2B:E1:0B:A3:C1:E6:C6:38:56 Certificate issuer: /CN=a68975a3d832e14527cbba2be10ba3c1e6c63856 Certificate serial: 019C432216F89E49723886E34B0BA246B62A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft Manifest number: 07E4 Signing time: Mon 09 Feb 2026 16:00:33 +0000 Manifest this update: Mon 09 Feb 2026 16:00:33 +0000 Manifest next update: Tue 10 Feb 2026 16:00:33 +0000 Files and hashes: 1: pol1o9gy4UUny7or4QujwebGOFY.crl (hash: h5h9QHBC0WzqpEdqunCoYPKUCOaQ0Fx3DbuF1KEuylw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:16:f8:9e:49:72:38:86:e3:4b:0b:a2:46:b6:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a68975a3d832e14527cbba2be10ba3c1e6c63856 Validity Not Before: Feb 9 16:00:33 2026 GMT Not After : Feb 10 16:00:33 2026 GMT Subject: CN=d7598f191a376e55ccb39300c23a22f90ff24f2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:af:73:25:86:aa:d2:a5:ca:02:1d:f9:77:3c: df:b1:b2:8e:5d:7f:48:c9:a4:a5:74:6d:d5:b9:6e: 20:b1:b0:32:f3:8a:80:c2:64:d1:87:90:b8:06:b3: 21:7c:79:83:1a:d9:24:45:a0:2a:77:36:30:4e:0b: 83:87:46:b7:81:b6:62:23:c5:a0:5c:6d:65:a2:e0: 21:c2:97:7b:7c:35:e6:c7:a7:96:2d:ce:dd:96:25: 4a:55:85:c0:7f:21:35:e8:84:f8:75:7b:22:78:9d: c1:21:44:93:15:95:1f:47:c1:22:ec:62:0e:51:b4: c7:61:77:50:e2:48:2c:6b:37:66:9e:e6:c0:6a:eb: c4:92:f6:2b:85:5d:83:b6:0e:a2:80:d3:05:33:7e: 84:3e:8e:7f:b5:45:55:64:19:a6:79:4a:c7:f1:2e: ba:1a:80:67:be:b5:51:21:e6:2c:cb:f9:4d:fe:76: 61:bf:72:e1:09:47:08:20:f7:e3:d9:69:6c:7e:3f: 5b:67:16:8d:93:8b:af:89:ee:e7:f4:fd:2b:ce:2b: 3a:9a:91:5d:0d:df:bb:93:6a:25:c5:e2:af:87:af: fa:01:9e:ff:8d:87:5e:0e:2d:d4:8a:6d:73:87:ba: e7:95:41:7b:9f:34:f4:65:21:be:9e:4a:b6:3f:41: 24:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:59:8F:19:1A:37:6E:55:CC:B3:93:00:C2:3A:22:F9:0F:F2:4F:2B X509v3 Authority Key Identifier: keyid:A6:89:75:A3:D8:32:E1:45:27:CB:BA:2B:E1:0B:A3:C1:E6:C6:38:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:b4:a8:94:f7:c1:89:95:8e:aa:6a:9c:e3:3c:b9:e8:99:9b: da:6f:f5:21:b5:04:4f:16:b0:ea:5c:78:20:73:2e:93:22:59: e3:37:ee:c6:f3:4a:f3:57:14:35:47:ea:e6:91:1e:a1:ae:a6: 5a:77:12:d1:86:a3:94:09:78:c2:fc:6a:ba:4d:53:ba:6d:d7: d3:f1:00:ea:9b:e2:c8:de:64:a8:c8:6e:78:91:fb:69:f9:13: de:3a:4a:06:0e:2e:a1:81:4f:ab:28:65:61:dc:67:9d:d8:87: 70:83:a4:2c:bd:87:1c:29:5d:7a:bd:05:79:cb:a4:4a:f9:61: d3:56:a9:67:3b:64:10:e5:f6:9a:65:1c:ed:ab:f4:20:a6:7c: 1c:6c:06:02:b9:35:9a:69:c2:59:8c:2b:76:10:9f:bd:a2:10: 0a:cb:b7:0c:af:e7:fc:48:a7:47:a0:0d:ca:04:60:8f:f8:de: 4c:96:76:bb:c8:1b:9a:31:de:46:75:bf:b7:5f:24:1e:ce:74: 35:ed:85:63:40:86:bc:54:04:f3:82:dd:7b:1d:ca:03:6e:65: aa:dc:e6:39:a9:4c:4d:6d:d0:91:2f:3e:46:94:bf:cf:b3:fd: 1b:28:0a:11:b1:38:d4:00:53:1a:be:e5:c3:ce:4b:40:eb:d5: b0:88:a6:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIhb4nklyOIbjSwuiRrYqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2ODk3NWEzZDgzMmUxNDUyN2NiYmEyYmUxMGJhM2MxZTZj NjM4NTYwHhcNMjYwMjA5MTYwMDMzWhcNMjYwMjEwMTYwMDMzWjAzMTEwLwYDVQQD EyhkNzU5OGYxOTFhMzc2ZTU1Y2NiMzkzMDBjMjNhMjJmOTBmZjI0ZjJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwq9zJYaq0qXKAh35dzzfsbKOXX9I yaSldG3VuW4gsbAy84qAwmTRh5C4BrMhfHmDGtkkRaAqdzYwTguDh0a3gbZiI8Wg XG1louAhwpd7fDXmx6eWLc7dliVKVYXAfyE16IT4dXsieJ3BIUSTFZUfR8Ei7GIO UbTHYXdQ4kgsazdmnubAauvEkvYrhV2Dtg6igNMFM36EPo5/tUVVZBmmeUrH8S66 GoBnvrVRIeYsy/lN/nZhv3LhCUcIIPfj2Wlsfj9bZxaNk4uvie7n9P0rzis6mpFd Dd+7k2olxeKvh6/6AZ7/jYdeDi3Uim1zh7rnlUF7nzT0ZSG+nkq2P0EkOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNdZjxkaN25VzLOTAMI6IvkP8k8rMB8GA1UdIwQY MBaAFKaJdaPYMuFFJ8u6K+ELo8HmxjhWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcG9sMW85Z3k0VVVueTdvcjRRdWp3ZWJHT0ZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8wYjNjYzEtMzE4ZS00OTdmLWEyYjUt MTMxNmFkODA1ZTY0LzEvcG9sMW85Z3k0VVVueTdvcjRRdWp3ZWJHT0ZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi8wYjNjYzEtMzE4ZS00OTdmLWEyYjUtMTMxNmFkODA1ZTY0 LzEvcG9sMW85Z3k0VVVueTdvcjRRdWp3ZWJHT0ZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATrSolPfB iZWOqmqc4zy56Jmb2m/1IbUETxaw6lx4IHMukyJZ4zfuxvNK81cUNUfq5pEeoa6m WncS0YajlAl4wvxquk1Tum3X0/EA6pviyN5kqMhueJH7afkT3jpKBg4uoYFPqyhl YdxnndiHcIOkLL2HHClder0FecukSvlh01apZztkEOX2mmUc7av0IKZ8HGwGArk1 mmnCWYwrdhCfvaIQCsu3DK/n/EinR6ANygRgj/jeTJZ2u8gbmjHeRnW/t18kHs50 Ne2FY0CGvFQE84Ldex3KA25lqtzmOalMTW3QkS8+RpS/z7P9GygKEbE41ABTGr7l w85LQOvVsIimyg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:53 2026 by rpki-client