This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a35d37-7447-4cf4-982f-50f398bb26e9/1/_yBr0QgxynN4dWteFhc4lqYLAZE.mft File: _yBr0QgxynN4dWteFhc4lqYLAZE.mft (raw, json) Hash identifier: XZDPQieOmMoyAmRetPCh0uoW3sw49YBzN6BbsobZIF4= Subject key identifier: EE:7D:15:75:E2:AB:94:DD:DA:E5:12:2A:9E:3A:9A:57:6D:74:19:CD Authority key identifier: FF:20:6B:D1:08:31:CA:73:78:75:6B:5E:16:17:38:96:A6:0B:01:91 Certificate issuer: /CN=ff206bd10831ca7378756b5e16173896a60b0191 Certificate serial: 019C42EB867A039B8AF06DD121D8D8E90AD5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_yBr0QgxynN4dWteFhc4lqYLAZE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a35d37-7447-4cf4-982f-50f398bb26e9/1/_yBr0QgxynN4dWteFhc4lqYLAZE.mft Manifest number: 0FCF Signing time: Mon 09 Feb 2026 15:00:57 +0000 Manifest this update: Mon 09 Feb 2026 15:00:57 +0000 Manifest next update: Tue 10 Feb 2026 15:00:57 +0000 Files and hashes: 1: _yBr0QgxynN4dWteFhc4lqYLAZE.crl (hash: Suyg2Nu/gLkg/IV/ufD05JQf6xTu3zqMcJ6IC2aX6LI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/a35d37-7447-4cf4-982f-50f398bb26e9/1/_yBr0QgxynN4dWteFhc4lqYLAZE.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/a35d37-7447-4cf4-982f-50f398bb26e9/1/_yBr0QgxynN4dWteFhc4lqYLAZE.mft rsync://rpki.ripe.net/repository/DEFAULT/_yBr0QgxynN4dWteFhc4lqYLAZE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:86:7a:03:9b:8a:f0:6d:d1:21:d8:d8:e9:0a:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ff206bd10831ca7378756b5e16173896a60b0191 Validity Not Before: Feb 9 15:00:57 2026 GMT Not After : Feb 10 15:00:57 2026 GMT Subject: CN=ee7d1575e2ab94dddae5122a9e3a9a576d7419cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:44:6a:d0:6f:7b:6c:6b:05:40:63:96:90:28: 84:c1:de:07:af:bc:24:eb:c5:91:8a:89:e6:56:c6: 75:c0:0c:22:7d:62:5b:49:23:e8:ae:69:c6:c8:43: 84:76:9e:64:7e:a6:c1:fa:1d:aa:6b:cb:df:ca:ca: 8c:46:5d:5e:1f:0f:c1:c9:08:96:4c:b8:15:6e:92: fa:2a:71:4a:45:ba:fa:81:e9:40:75:d5:de:7c:99: fb:92:ee:5a:74:32:91:96:e9:91:bb:d8:4b:24:ab: 30:ca:72:40:2c:f6:56:50:2e:c8:4e:d2:85:30:4d: 77:f4:e7:66:5c:ac:e4:d9:9a:88:66:eb:dc:d0:83: 1c:41:8a:87:e3:1d:09:68:78:65:2d:a0:6b:47:c1: 8b:50:f8:01:7f:d1:b7:81:06:6c:0f:4b:92:2b:ee: 26:53:f9:38:88:a4:2c:e0:74:8e:85:30:20:39:74: b1:f2:a7:fa:5e:44:d8:48:d7:d3:15:69:e3:db:81: aa:18:47:28:88:6d:9d:b2:13:10:c2:be:9e:79:1b: 43:3b:30:7c:32:2b:6a:b4:b9:8a:68:5b:38:44:3e: a2:c3:c1:91:35:89:a6:22:ba:28:37:4f:5f:92:e1: af:67:ca:10:af:32:7c:4a:26:8a:d9:62:c7:7f:8f: a2:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:7D:15:75:E2:AB:94:DD:DA:E5:12:2A:9E:3A:9A:57:6D:74:19:CD X509v3 Authority Key Identifier: keyid:FF:20:6B:D1:08:31:CA:73:78:75:6B:5E:16:17:38:96:A6:0B:01:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_yBr0QgxynN4dWteFhc4lqYLAZE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a35d37-7447-4cf4-982f-50f398bb26e9/1/_yBr0QgxynN4dWteFhc4lqYLAZE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a35d37-7447-4cf4-982f-50f398bb26e9/1/_yBr0QgxynN4dWteFhc4lqYLAZE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:ed:d1:83:28:f4:79:94:83:13:47:8f:87:41:3a:21:fb:71: f9:ec:31:47:98:1c:a9:bd:1d:1b:34:10:c6:f2:15:44:3e:d1: 30:3c:70:34:66:2f:9a:1f:15:8d:20:5d:08:30:42:73:99:67: 72:e5:e8:44:a6:85:00:64:97:e0:6c:75:49:1c:40:f8:d3:f8: 71:30:85:72:44:ca:8b:ad:2f:77:67:98:45:8e:61:55:ba:9f: 4d:09:7a:ef:15:50:f1:aa:2a:ae:f4:39:f7:04:69:a7:a0:9e: db:3e:8b:80:83:83:20:a1:c6:ff:5c:3c:f9:46:2f:36:49:c8: b5:e2:56:43:f2:b0:25:dd:15:3f:b4:fe:61:13:18:43:72:8f: f5:bf:4e:c0:1a:5f:88:9e:e8:60:36:15:6e:43:3c:a1:fd:bd: 91:a4:a7:73:75:04:6e:b1:4a:cb:bb:08:f6:f4:e3:a7:65:08: 72:8a:b1:01:13:b4:58:99:f5:37:a1:aa:df:e8:23:76:32:d7: 6e:4e:26:18:68:6c:93:bd:16:af:41:65:65:5a:0b:d3:ca:a3: 29:ec:ac:38:f6:c9:69:70:86:1c:4b:bc:c2:96:86:9b:22:cf: ff:d3:94:e7:c6:98:49:38:1a:67:45:32:b3:f4:3d:20:c5:9f: cd:12:9d:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC64Z6A5uK8G3RIdjY6QrVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmMjA2YmQxMDgzMWNhNzM3ODc1NmI1ZTE2MTczODk2YTYw YjAxOTEwHhcNMjYwMjA5MTUwMDU3WhcNMjYwMjEwMTUwMDU3WjAzMTEwLwYDVQQD EyhlZTdkMTU3NWUyYWI5NGRkZGFlNTEyMmE5ZTNhOWE1NzZkNzQxOWNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApURq0G97bGsFQGOWkCiEwd4Hr7wk 68WRionmVsZ1wAwifWJbSSPormnGyEOEdp5kfqbB+h2qa8vfysqMRl1eHw/ByQiW TLgVbpL6KnFKRbr6gelAddXefJn7ku5adDKRlumRu9hLJKswynJALPZWUC7ITtKF ME139OdmXKzk2ZqIZuvc0IMcQYqH4x0JaHhlLaBrR8GLUPgBf9G3gQZsD0uSK+4m U/k4iKQs4HSOhTAgOXSx8qf6XkTYSNfTFWnj24GqGEcoiG2dshMQwr6eeRtDOzB8 MitqtLmKaFs4RD6iw8GRNYmmIrooN09fkuGvZ8oQrzJ8SiaK2WLHf4+iSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO59FXXiq5Td2uUSKp46mldtdBnNMB8GA1UdIwQY MBaAFP8ga9EIMcpzeHVrXhYXOJamCwGRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX3lCcjBRZ3h5bk40ZFd0ZUZoYzRscVlMQVpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9hMzVkMzctNzQ0Ny00Y2Y0LTk4MmYt NTBmMzk4YmIyNmU5LzEvX3lCcjBRZ3h5bk40ZFd0ZUZoYzRscVlMQVpFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi9hMzVkMzctNzQ0Ny00Y2Y0LTk4MmYtNTBmMzk4YmIyNmU5 LzEvX3lCcjBRZ3h5bk40ZFd0ZUZoYzRscVlMQVpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgO3Rgyj0 eZSDE0ePh0E6Iftx+ewxR5gcqb0dGzQQxvIVRD7RMDxwNGYvmh8VjSBdCDBCc5ln cuXoRKaFAGSX4Gx1SRxA+NP4cTCFckTKi60vd2eYRY5hVbqfTQl67xVQ8aoqrvQ5 9wRpp6Ce2z6LgIODIKHG/1w8+UYvNknIteJWQ/KwJd0VP7T+YRMYQ3KP9b9OwBpf iJ7oYDYVbkM8of29kaSnc3UEbrFKy7sI9vTjp2UIcoqxARO0WJn1N6Gq3+gjdjLX bk4mGGhsk70Wr0FlZVoL08qjKeysOPbJaXCGHEu8wpaGmyLP/9OU58aYSTgaZ0Uy s/Q9IMWfzRKdyw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:35 2026 by rpki-client