This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/3ae863-690e-4631-9120-a53b5e979131/1/YTChAogFFzqiJUSk67mECskbyNA.mft File: YTChAogFFzqiJUSk67mECskbyNA.mft (raw, json) Hash identifier: dAQQ+7refDJwKuiu3jaNGYJ81jeeMuRi0cHwDoWP+Zk= Subject key identifier: C9:73:0F:6A:C4:31:0F:F9:18:C8:01:94:D4:41:74:01:44:CD:41:1E Authority key identifier: 61:30:A1:02:88:05:17:3A:A2:25:44:A4:EB:B9:84:0A:C9:1B:C8:D0 Certificate issuer: /CN=6130a1028805173aa22544a4ebb9840ac91bc8d0 Certificate serial: 019C43224F518D736F2455DBAB14B772F0F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YTChAogFFzqiJUSk67mECskbyNA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/3ae863-690e-4631-9120-a53b5e979131/1/YTChAogFFzqiJUSk67mECskbyNA.mft Manifest number: 0F70 Signing time: Mon 09 Feb 2026 16:00:47 +0000 Manifest this update: Mon 09 Feb 2026 16:00:47 +0000 Manifest next update: Tue 10 Feb 2026 16:00:47 +0000 Files and hashes: 1: YTChAogFFzqiJUSk67mECskbyNA.crl (hash: jbnfM8k7jSaq4Qlo3UrigM5HyinN/tKRxvk2sVruXHc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/3ae863-690e-4631-9120-a53b5e979131/1/YTChAogFFzqiJUSk67mECskbyNA.crl rsync://rpki.ripe.net/repository/DEFAULT/05/3ae863-690e-4631-9120-a53b5e979131/1/YTChAogFFzqiJUSk67mECskbyNA.mft rsync://rpki.ripe.net/repository/DEFAULT/YTChAogFFzqiJUSk67mECskbyNA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:4f:51:8d:73:6f:24:55:db:ab:14:b7:72:f0:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6130a1028805173aa22544a4ebb9840ac91bc8d0 Validity Not Before: Feb 9 16:00:47 2026 GMT Not After : Feb 10 16:00:47 2026 GMT Subject: CN=c9730f6ac4310ff918c80194d441740144cd411e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6c:05:94:42:ae:75:dc:df:c1:15:8b:85:05: 55:e3:7d:aa:00:8c:a7:36:92:85:8f:23:6b:c8:4e: f0:05:e5:36:78:96:c5:5c:6f:b9:bc:17:ed:ec:8c: 85:55:0d:ad:82:e5:a0:e6:a9:2c:6b:6c:22:92:1e: 7c:55:0b:6d:87:e1:3d:9c:4a:94:54:d2:4a:68:e1: 58:89:83:2c:c4:2d:35:c2:1e:40:23:58:d7:3f:0a: 86:d0:c6:40:5d:1a:23:39:75:5b:ca:55:57:d0:36: d9:92:8a:3a:ef:d3:c8:64:6f:07:4d:70:14:24:aa: e4:74:41:94:c6:a4:e4:87:86:a1:e4:bc:63:17:fe: 7e:56:04:a2:f9:9a:bc:a6:dd:a2:73:9e:6d:86:59: 0b:fa:86:24:55:64:08:b8:87:2e:3b:9c:87:21:ee: 53:0e:0e:1b:b1:c9:e6:d5:80:b7:88:8b:3a:4e:cf: e9:15:5f:41:39:25:f8:26:14:bb:33:25:38:74:4a: 59:6a:39:8e:db:39:40:81:e5:8a:d5:f4:90:30:cf: a5:19:e5:f1:9d:e1:74:c2:9f:05:74:a3:f1:b3:c5: 8f:73:f0:40:87:fc:ab:b1:95:2a:71:db:9f:78:cd: 4a:86:46:d9:5c:b4:57:9d:b4:da:ea:ab:50:c9:06: c4:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:73:0F:6A:C4:31:0F:F9:18:C8:01:94:D4:41:74:01:44:CD:41:1E X509v3 Authority Key Identifier: keyid:61:30:A1:02:88:05:17:3A:A2:25:44:A4:EB:B9:84:0A:C9:1B:C8:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YTChAogFFzqiJUSk67mECskbyNA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/3ae863-690e-4631-9120-a53b5e979131/1/YTChAogFFzqiJUSk67mECskbyNA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/3ae863-690e-4631-9120-a53b5e979131/1/YTChAogFFzqiJUSk67mECskbyNA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:94:ff:0d:0e:22:25:37:6d:50:58:5c:05:49:22:e1:7f:01: 8c:1e:53:78:63:13:80:01:71:48:55:3c:a1:82:7b:cd:a8:50: 7a:73:86:99:a3:d3:39:af:2f:88:f5:4a:a4:0e:b2:52:1f:04: f6:97:c0:73:bd:3f:13:b7:1e:e0:67:d4:a6:1a:ab:65:22:52: 9e:d0:8b:0f:6f:e2:f6:ef:47:32:80:3e:83:31:fb:d2:24:bc: 5d:93:6d:cd:9c:cc:38:e4:d8:be:b4:72:23:4e:2e:0c:61:7e: 3c:2c:70:f9:dc:9a:a9:e7:f4:18:c4:be:a4:19:7c:ed:91:6a: b5:5a:15:5c:ac:ea:9b:9f:18:c5:5d:1d:f3:5c:73:c7:a5:85: 91:58:51:a9:dc:a2:19:07:1b:99:7e:ca:b0:dc:84:cd:16:d0: ad:ca:08:a4:b0:54:1b:b8:4a:76:a7:46:71:6a:e1:36:ef:70: fa:b0:95:ab:c2:ab:c4:32:1c:d0:b8:03:e2:bd:f0:bf:56:27: 7d:1d:e3:8f:cf:cd:de:e7:10:58:1a:25:b6:b0:aa:a5:e0:94: 99:b3:a3:f6:d4:1d:74:b4:e0:fc:f4:93:cb:81:e1:39:9d:f9: 2f:b4:50:b6:7f:db:24:9c:08:e7:52:9e:ad:fe:1c:c2:84:9c: d9:b9:08:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIk9RjXNvJFXbqxS3cvD2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxMzBhMTAyODgwNTE3M2FhMjI1NDRhNGViYjk4NDBhYzkx YmM4ZDAwHhcNMjYwMjA5MTYwMDQ3WhcNMjYwMjEwMTYwMDQ3WjAzMTEwLwYDVQQD EyhjOTczMGY2YWM0MzEwZmY5MThjODAxOTRkNDQxNzQwMTQ0Y2Q0MTFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw2wFlEKuddzfwRWLhQVV432qAIyn NpKFjyNryE7wBeU2eJbFXG+5vBft7IyFVQ2tguWg5qksa2wikh58VQtth+E9nEqU VNJKaOFYiYMsxC01wh5AI1jXPwqG0MZAXRojOXVbylVX0DbZkoo679PIZG8HTXAU JKrkdEGUxqTkh4ah5LxjF/5+VgSi+Zq8pt2ic55thlkL+oYkVWQIuIcuO5yHIe5T Dg4bscnm1YC3iIs6Ts/pFV9BOSX4JhS7MyU4dEpZajmO2zlAgeWK1fSQMM+lGeXx neF0wp8FdKPxs8WPc/BAh/yrsZUqcdufeM1KhkbZXLRXnbTa6qtQyQbEHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMlzD2rEMQ/5GMgBlNRBdAFEzUEeMB8GA1UdIwQY MBaAFGEwoQKIBRc6oiVEpOu5hArJG8jQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVRDaEFvZ0ZGenFpSlVTazY3bUVDc2tieU5BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS8zYWU4NjMtNjkwZS00NjMxLTkxMjAt YTUzYjVlOTc5MTMxLzEvWVRDaEFvZ0ZGenFpSlVTazY3bUVDc2tieU5BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS8zYWU4NjMtNjkwZS00NjMxLTkxMjAtYTUzYjVlOTc5MTMx LzEvWVRDaEFvZ0ZGenFpSlVTazY3bUVDc2tieU5BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH5T/DQ4i JTdtUFhcBUki4X8BjB5TeGMTgAFxSFU8oYJ7zahQenOGmaPTOa8viPVKpA6yUh8E 9pfAc70/E7ce4GfUphqrZSJSntCLD2/i9u9HMoA+gzH70iS8XZNtzZzMOOTYvrRy I04uDGF+PCxw+dyaqef0GMS+pBl87ZFqtVoVXKzqm58YxV0d81xzx6WFkVhRqdyi GQcbmX7KsNyEzRbQrcoIpLBUG7hKdqdGcWrhNu9w+rCVq8KrxDIc0LgD4r3wv1Yn fR3jj8/N3ucQWBoltrCqpeCUmbOj9tQddLTg/PSTy4HhOZ35L7RQtn/bJJwI51Ke rf4cwoSc2bkIIw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:09:56 2026 by rpki-client