This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft File: ryto8Mg63Zo6O4arJPuRCpYCYsY.mft (raw, json) Hash identifier: 4OTAMak8XIinM27hElM4dCZcSAaX6ijaoq+Xgz7jr0w= Subject key identifier: 61:17:66:9A:B4:50:EA:D4:D0:42:5A:02:5A:3A:8E:9A:0A:02:FF:7F Authority key identifier: AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6 Certificate issuer: /CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6 Certificate serial: 019C424666C268283EF1806292BACC7B7733 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft Manifest number: 1382 Signing time: Mon 09 Feb 2026 12:00:35 +0000 Manifest this update: Mon 09 Feb 2026 12:00:35 +0000 Manifest next update: Tue 10 Feb 2026 12:00:35 +0000 Files and hashes: 1: h-PWIeDfQLuLQns6H59eVXIlTEw.roa (hash: a2RfFAyHbTGC+LHQhF0hKAuxj7Am0hNvyjuE9TNtMKs=) 2: ryto8Mg63Zo6O4arJPuRCpYCYsY.crl (hash: emhpbpNP9UytRqI8IOpAP0cxaSaaP6Ed9w09jFbdMr0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:66:c2:68:28:3e:f1:80:62:92:ba:cc:7b:77:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6 Validity Not Before: Feb 9 12:00:35 2026 GMT Not After : Feb 10 12:00:35 2026 GMT Subject: CN=6117669ab450ead4d0425a025a3a8e9a0a02ff7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:66:89:5a:db:2f:b6:92:9f:66:76:c4:c1:02: 34:6a:c5:f5:77:a8:4a:84:4d:8f:88:3b:bb:b9:04: e4:e1:8c:2a:74:ae:95:97:88:26:20:87:8f:5a:d3: 4c:00:8f:cf:60:9d:a9:ab:d7:ca:c3:24:af:c1:15: b8:86:6e:f3:bf:7f:fc:c5:e6:a1:5f:d8:63:db:0a: 75:88:76:c2:11:88:50:40:33:61:e0:c8:2c:66:90: 32:09:9c:89:89:57:d1:25:5c:3a:c8:6f:07:94:a3: cc:39:b0:5b:3f:e5:59:94:19:e4:f7:40:5a:68:45: d2:ad:35:72:7d:f1:35:32:12:d9:3d:44:33:23:fd: be:5e:ec:5d:50:29:e5:c1:1f:36:1d:ac:8a:b4:c0: 26:5a:fc:98:76:2a:f2:ae:47:37:3b:21:0a:ec:eb: 92:16:62:2c:a7:93:93:3b:47:5c:d4:63:1c:4d:c7: c1:e2:fb:71:16:3b:f7:42:c2:b6:ee:e2:cd:33:0e: b1:a6:7a:09:c9:a0:d6:ae:5b:9a:dd:a3:13:6e:13: 60:00:4e:a4:bc:06:65:76:d5:4f:17:09:27:6a:90: f9:8c:c2:fb:d0:f7:26:5a:02:51:8e:38:5e:ec:93: 07:37:1a:f0:30:c9:7a:4e:aa:70:61:54:1f:d3:b3: e7:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:17:66:9A:B4:50:EA:D4:D0:42:5A:02:5A:3A:8E:9A:0A:02:FF:7F X509v3 Authority Key Identifier: keyid:AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:17:20:21:9a:d0:be:1a:28:50:82:90:e4:33:94:e7:b8:69: d8:c5:81:4e:e2:62:e1:44:33:04:7c:05:ff:05:59:cc:f5:3b: 05:6b:9f:06:68:7f:9a:1e:cf:70:12:f1:fc:ae:93:78:3d:b1: 40:f7:ed:e5:cf:25:02:a8:aa:17:e4:5b:d5:6d:40:87:ef:bd: fd:f0:fe:ef:b3:5e:95:f7:03:70:32:94:44:c3:f0:56:0b:ca: b5:5d:26:a9:04:5e:84:1e:8c:25:01:94:47:bf:ee:32:ef:1f: f7:43:4e:09:e0:1f:6c:e1:a4:4c:e0:45:d9:3b:e3:8c:03:e8: d1:53:fb:dd:e2:75:90:1f:bf:8a:78:6a:b7:82:67:6a:fa:b9: d6:69:a8:08:0b:4b:83:22:5a:5a:18:c0:99:e2:26:bb:5e:c1: df:13:f8:b3:bc:d4:b9:97:17:36:e1:e8:08:f3:24:f8:3f:e0: 04:43:be:ce:d0:c1:bf:7c:a7:68:80:de:e5:cd:6e:f8:7d:5d: c4:40:40:7d:5d:0b:d8:1c:3e:67:9d:09:d1:66:45:6a:74:2b: 13:91:b9:7b:25:ca:7f:ef:98:1c:98:bc:26:43:58:13:19:80: b6:e6:02:9f:3a:5d:d3:98:f1:8d:e1:90:8c:ae:a3:a1:6e:1d: db:57:9c:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRmbCaCg+8YBikrrMe3czMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmMmI2OGYwYzgzYWRkOWEzYTNiODZhYjI0ZmI5MTBhOTYw MjYyYzYwHhcNMjYwMjA5MTIwMDM1WhcNMjYwMjEwMTIwMDM1WjAzMTEwLwYDVQQD Eyg2MTE3NjY5YWI0NTBlYWQ0ZDA0MjVhMDI1YTNhOGU5YTBhMDJmZjdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr2aJWtsvtpKfZnbEwQI0asX1d6hK hE2PiDu7uQTk4YwqdK6Vl4gmIIePWtNMAI/PYJ2pq9fKwySvwRW4hm7zv3/8xeah X9hj2wp1iHbCEYhQQDNh4MgsZpAyCZyJiVfRJVw6yG8HlKPMObBbP+VZlBnk90Ba aEXSrTVyffE1MhLZPUQzI/2+XuxdUCnlwR82HayKtMAmWvyYdiryrkc3OyEK7OuS FmIsp5OTO0dc1GMcTcfB4vtxFjv3QsK27uLNMw6xpnoJyaDWrlua3aMTbhNgAE6k vAZldtVPFwknapD5jML70PcmWgJRjjhe7JMHNxrwMMl6TqpwYVQf07PnrwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGEXZpq0UOrU0EJaAlo6jpoKAv9/MB8GA1UdIwQY MBaAFK8raPDIOt2aOjuGqyT7kQqWAmLGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnl0bzhNZzYzWm82TzRhckpQdVJDcFlDWXNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy83OTNlMDAtMGM1My00OWM0LWE1MWIt ZWRhMzE2YTJhZmI4LzEvcnl0bzhNZzYzWm82TzRhckpQdVJDcFlDWXNZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy83OTNlMDAtMGM1My00OWM0LWE1MWItZWRhMzE2YTJhZmI4 LzEvcnl0bzhNZzYzWm82TzRhckpQdVJDcFlDWXNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApRcgIZrQ vhooUIKQ5DOU57hp2MWBTuJi4UQzBHwF/wVZzPU7BWufBmh/mh7PcBLx/K6TeD2x QPft5c8lAqiqF+Rb1W1Ah++9/fD+77NelfcDcDKURMPwVgvKtV0mqQRehB6MJQGU R7/uMu8f90NOCeAfbOGkTOBF2TvjjAPo0VP73eJ1kB+/inhqt4Jnavq51mmoCAtL gyJaWhjAmeImu17B3xP4s7zUuZcXNuHoCPMk+D/gBEO+ztDBv3ynaIDe5c1u+H1d xEBAfV0L2Bw+Z50J0WZFanQrE5G5eyXKf++YHJi8JkNYExmAtuYCnzpd05jxjeGQ jK6joW4d21ecIQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:09:01 2026 by rpki-client