This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft File: cnOYybFuqY0iKkwpyvey68mE8oI.mft (raw, json) Hash identifier: iocYVON3rNGahjpSAnSxM+moey0DR/aAqzpwL7mj7gg= Subject key identifier: 81:A8:9F:DD:57:A7:70:79:B8:1A:CF:0A:88:D4:8D:29:F2:96:B0:10 Authority key identifier: 72:73:98:C9:B1:6E:A9:8D:22:2A:4C:29:CA:F7:B2:EB:C9:84:F2:82 Certificate issuer: /CN=727398c9b16ea98d222a4c29caf7b2ebc984f282 Certificate serial: 019C4322B938EBC197D54990FCFCB2266A21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnOYybFuqY0iKkwpyvey68mE8oI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft Manifest number: 03A8 Signing time: Mon 09 Feb 2026 16:01:14 +0000 Manifest this update: Mon 09 Feb 2026 16:01:14 +0000 Manifest next update: Tue 10 Feb 2026 16:01:14 +0000 Files and hashes: 1: cnOYybFuqY0iKkwpyvey68mE8oI.crl (hash: wh7KkhUe+zgwiUp+z39zEXEqa9K5uX9PtDqWSxEjr1s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft rsync://rpki.ripe.net/repository/DEFAULT/cnOYybFuqY0iKkwpyvey68mE8oI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:b9:38:eb:c1:97:d5:49:90:fc:fc:b2:26:6a:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=727398c9b16ea98d222a4c29caf7b2ebc984f282 Validity Not Before: Feb 9 16:01:14 2026 GMT Not After : Feb 10 16:01:14 2026 GMT Subject: CN=81a89fdd57a77079b81acf0a88d48d29f296b010 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ee:51:26:b3:ef:c9:f0:d8:39:ba:77:2d:35: 16:19:80:84:1b:b1:83:eb:89:f0:08:60:67:07:f1: 43:a3:ac:76:64:19:7a:fd:44:13:ee:2a:75:1a:d4: f0:09:a8:89:50:18:6f:59:b1:5d:08:d5:a0:01:6a: f8:cc:80:2c:2f:0b:a6:e8:fe:8f:81:7c:55:ee:72: b4:a2:9f:1e:1d:30:04:b2:a0:9a:cb:18:01:44:63: f1:b5:83:e5:22:03:96:a5:44:15:7f:af:38:13:7b: 3d:b9:56:b7:11:a1:50:0f:cd:62:f4:b3:18:54:75: 2c:e4:9f:a9:15:22:ff:c2:ee:0a:80:e8:18:cb:58: 9d:2f:09:2d:b3:bf:da:cf:5e:27:21:c0:f0:1f:01: 20:15:8b:5d:1f:bc:ae:3d:a6:32:e2:28:81:8a:ed: 28:9e:3a:a1:b6:ae:04:53:2e:c7:f5:d4:4b:76:44: b2:55:93:93:65:c2:bd:c4:37:76:43:32:5d:03:6b: e2:c4:50:d7:b9:2f:4a:c7:79:df:5a:ef:40:56:1f: 28:82:0f:f1:0d:ff:e9:cd:3e:e0:7d:29:56:f9:71: 72:5f:73:b4:bd:3e:08:d4:26:25:64:d0:76:52:96: e8:5a:c0:91:20:1c:aa:ac:cf:15:8f:83:24:7e:7e: 1c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:A8:9F:DD:57:A7:70:79:B8:1A:CF:0A:88:D4:8D:29:F2:96:B0:10 X509v3 Authority Key Identifier: keyid:72:73:98:C9:B1:6E:A9:8D:22:2A:4C:29:CA:F7:B2:EB:C9:84:F2:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnOYybFuqY0iKkwpyvey68mE8oI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:8c:e6:9c:4f:22:d1:20:99:3b:af:25:20:aa:80:a5:02:15: 32:82:92:d7:f6:d9:16:00:03:18:80:9a:66:b6:5c:00:89:b3: 0a:10:9a:6e:ad:aa:a1:bf:e9:59:55:2b:f8:3e:44:78:9b:08: b5:6b:13:1a:d0:ef:d5:8d:24:52:aa:1c:a4:22:1d:21:4f:5f: 9b:59:63:d4:e8:a7:c9:c3:cd:52:9b:f9:17:36:f8:e3:bc:3f: da:f3:5f:9a:bb:52:28:fe:bd:9f:14:aa:60:cf:ac:c5:8b:0f: 96:b9:33:7a:19:c3:6f:9e:f4:50:52:e4:8f:74:02:7b:03:0a: 7a:1e:3c:20:f6:b2:28:98:21:04:9a:ff:bc:26:68:9b:99:20: 51:b8:2a:0b:25:dc:75:de:ed:82:2e:0c:b9:0e:c7:d8:f3:e7: fa:90:6e:62:08:3c:65:db:a4:13:fd:50:bd:09:95:34:12:81: c9:1a:70:de:0b:9a:c7:40:c0:a0:84:14:2c:5c:05:f5:b2:82: b9:e6:3d:0a:fb:6f:38:19:97:07:ee:bf:7f:22:78:0b:41:fb: a2:62:7b:65:d4:ed:bb:49:0b:00:3f:0b:1c:97:bf:5c:a8:66: 7e:e3:76:22:af:32:18:3b:d5:33:df:17:fc:f0:4f:d8:2f:cd: 81:b2:f9:4f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIrk468GX1UmQ/PyyJmohMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyNzM5OGM5YjE2ZWE5OGQyMjJhNGMyOWNhZjdiMmViYzk4 NGYyODIwHhcNMjYwMjA5MTYwMTE0WhcNMjYwMjEwMTYwMTE0WjAzMTEwLwYDVQQD Eyg4MWE4OWZkZDU3YTc3MDc5YjgxYWNmMGE4OGQ0OGQyOWYyOTZiMDEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyu5RJrPvyfDYObp3LTUWGYCEG7GD 64nwCGBnB/FDo6x2ZBl6/UQT7ip1GtTwCaiJUBhvWbFdCNWgAWr4zIAsLwum6P6P gXxV7nK0op8eHTAEsqCayxgBRGPxtYPlIgOWpUQVf684E3s9uVa3EaFQD81i9LMY VHUs5J+pFSL/wu4KgOgYy1idLwkts7/az14nIcDwHwEgFYtdH7yuPaYy4iiBiu0o njqhtq4EUy7H9dRLdkSyVZOTZcK9xDd2QzJdA2vixFDXuS9Kx3nfWu9AVh8ogg/x Df/pzT7gfSlW+XFyX3O0vT4I1CYlZNB2UpboWsCRIByqrM8Vj4Mkfn4cRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIGon91Xp3B5uBrPCojUjSnylrAQMB8GA1UdIwQY MBaAFHJzmMmxbqmNIipMKcr3suvJhPKCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY25PWXliRnVxWTBpS2t3cHl2ZXk2OG1FOG9JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC8zYzYwNGUtZTZhOC00ZTRlLWI3Njkt NWEwN2UyNmZiODIyLzEvY25PWXliRnVxWTBpS2t3cHl2ZXk2OG1FOG9JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC8zYzYwNGUtZTZhOC00ZTRlLWI3NjktNWEwN2UyNmZiODIy LzEvY25PWXliRnVxWTBpS2t3cHl2ZXk2OG1FOG9JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEYzmnE8i 0SCZO68lIKqApQIVMoKS1/bZFgADGICaZrZcAImzChCabq2qob/pWVUr+D5EeJsI tWsTGtDv1Y0kUqocpCIdIU9fm1lj1OinycPNUpv5Fzb447w/2vNfmrtSKP69nxSq YM+sxYsPlrkzehnDb570UFLkj3QCewMKeh48IPayKJghBJr/vCZom5kgUbgqCyXc dd7tgi4MuQ7H2PPn+pBuYgg8ZdukE/1QvQmVNBKByRpw3guax0DAoIQULFwF9bKC ueY9CvtvOBmXB+6/fyJ4C0H7omJ7ZdTtu0kLAD8LHJe/XKhmfuN2Iq8yGDvVM98X /PBP2C/NgbL5Tw== -----END CERTIFICATE-----Generated at Tue Feb 10 00:12:45 2026 by rpki-client