This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.mft File: Y1mmSbA2ED6Ao86PPRsBOKYFgdc.mft (raw, json) Hash identifier: FjCA3Rd/8OMSn/WT8ahjOjILh2osA5YdCxFkzyEeW6Y= Subject key identifier: 89:E7:CD:3A:97:87:AE:0D:8C:A2:7F:30:8F:29:7A:F6:9C:AC:0F:E3 Authority key identifier: 63:59:A6:49:B0:36:10:3E:80:A3:CE:8F:3D:1B:01:38:A6:05:81:D7 Certificate issuer: /CN=6359a649b036103e80a3ce8f3d1b0138a60581d7 Certificate serial: 019C421001B9FBF0154CDF52362EBD631758 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.mft Manifest number: 0C20 Signing time: Mon 09 Feb 2026 11:01:11 +0000 Manifest this update: Mon 09 Feb 2026 11:01:11 +0000 Manifest next update: Tue 10 Feb 2026 11:01:11 +0000 Files and hashes: 1: T4MHAA0kaBLSaNbR8DoNuRmsGR8.roa (hash: VtgvY+pr4Qh9U0W3p9dUNdOupQfVK9H5yjxhbie2llY=) 2: Y1mmSbA2ED6Ao86PPRsBOKYFgdc.crl (hash: ywDCnDoSThpU2Yj+b5lwHcQwwZp6UD+dqOwP4JHd4YI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.crl rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.mft rsync://rpki.ripe.net/repository/DEFAULT/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:01:b9:fb:f0:15:4c:df:52:36:2e:bd:63:17:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6359a649b036103e80a3ce8f3d1b0138a60581d7 Validity Not Before: Feb 9 11:01:11 2026 GMT Not After : Feb 10 11:01:11 2026 GMT Subject: CN=89e7cd3a9787ae0d8ca27f308f297af69cac0fe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0f:d5:24:1b:4d:3b:12:2c:48:12:cc:90:bd: 07:75:d3:43:f9:0d:e3:fa:9e:81:60:0d:10:41:02: 4e:24:80:2f:99:bb:2e:ad:03:a6:5f:57:4a:ea:c0: b3:e9:95:77:ab:cf:84:78:14:f5:49:b4:a4:e6:7d: 69:e1:31:06:1d:ac:9e:ba:bf:1b:3f:4a:4c:bf:1c: 3c:a0:6e:04:bd:27:51:50:87:5c:d3:34:4c:f6:f3: 50:0e:8d:03:c1:1c:5d:e2:6e:88:43:8d:d6:1a:e5: 6e:e2:10:12:e7:01:7a:47:60:d1:af:24:9e:89:03: fb:19:30:42:5a:cc:fa:68:81:7b:24:c4:b3:ed:f5: 60:9d:81:d6:8a:66:13:17:a6:fa:91:e0:38:02:2b: a1:09:c1:70:cb:8f:32:c7:56:ed:5c:65:bf:89:63: 3b:c3:0e:3c:89:b4:3a:95:b0:79:07:3f:ce:68:0c: b7:6c:32:44:2a:ed:c8:bb:21:fd:bd:e7:2d:5d:96: 76:3c:2d:d2:f7:4d:cb:36:6b:8b:bb:42:97:c2:23: ef:ab:93:da:55:74:07:cb:71:2a:29:b1:5a:f7:06: ba:78:d7:26:97:9c:6e:8f:4c:7c:6f:60:d0:45:e3: 53:61:dd:12:e9:ee:f2:05:d4:ec:c8:7a:05:b7:91: c5:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:E7:CD:3A:97:87:AE:0D:8C:A2:7F:30:8F:29:7A:F6:9C:AC:0F:E3 X509v3 Authority Key Identifier: keyid:63:59:A6:49:B0:36:10:3E:80:A3:CE:8F:3D:1B:01:38:A6:05:81:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:a1:e9:b3:02:87:a8:d0:f5:fe:7f:3d:21:be:c2:46:5f:61: 21:ab:3f:23:97:01:cf:40:d4:23:5f:d6:7e:ca:94:05:05:75: 2a:b7:b2:aa:c6:3e:e7:1d:ee:d6:0e:be:6c:cf:9f:b9:60:64: 28:b8:eb:e0:de:6a:21:cb:da:d9:b1:80:48:05:1d:23:2e:7b: 32:80:4a:58:50:6b:16:43:f8:2c:d9:ed:e6:41:24:a4:d1:52: 2a:ba:3f:4a:5e:39:e1:28:5e:8f:11:97:b1:9d:3f:1f:ac:36: ad:89:05:f1:06:e6:1c:73:9c:3c:c0:3d:ee:b1:f8:ba:01:a0: 9a:14:0e:b1:9b:73:d3:7f:46:8e:49:5b:7e:23:e9:09:44:27: c1:17:fd:70:a4:92:9d:68:9e:fb:6d:33:a9:2a:54:4f:73:8e: bb:45:33:61:5d:34:7a:2e:27:da:e5:cb:75:9b:cb:c1:4d:17: 4d:a6:b3:52:0b:94:70:28:28:70:14:2f:d7:7a:b3:ee:cb:68: 15:fb:4f:34:91:fa:43:d0:3d:05:cb:1a:8c:8b:98:70:1b:f5: bc:a4:1a:40:7e:b8:9e:89:e3:f4:26:02:43:8a:26:1e:59:0f: 12:4f:14:2b:59:82:d9:a4:f3:6c:73:be:f7:59:c3:89:0d:3d: 47:40:f7:40 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEAG5+/AVTN9SNi69YxdYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNTlhNjQ5YjAzNjEwM2U4MGEzY2U4ZjNkMWIwMTM4YTYw NTgxZDcwHhcNMjYwMjA5MTEwMTExWhcNMjYwMjEwMTEwMTExWjAzMTEwLwYDVQQD Eyg4OWU3Y2QzYTk3ODdhZTBkOGNhMjdmMzA4ZjI5N2FmNjljYWMwZmUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2w/VJBtNOxIsSBLMkL0HddND+Q3j +p6BYA0QQQJOJIAvmbsurQOmX1dK6sCz6ZV3q8+EeBT1SbSk5n1p4TEGHayeur8b P0pMvxw8oG4EvSdRUIdc0zRM9vNQDo0DwRxd4m6IQ43WGuVu4hAS5wF6R2DRrySe iQP7GTBCWsz6aIF7JMSz7fVgnYHWimYTF6b6keA4AiuhCcFwy48yx1btXGW/iWM7 ww48ibQ6lbB5Bz/OaAy3bDJEKu3IuyH9vectXZZ2PC3S903LNmuLu0KXwiPvq5Pa VXQHy3EqKbFa9wa6eNcml5xuj0x8b2DQReNTYd0S6e7yBdTsyHoFt5HF5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFInnzTqXh64NjKJ/MI8pevacrA/jMB8GA1UdIwQY MBaAFGNZpkmwNhA+gKPOjz0bATimBYHXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTFtbVNiQTJFRDZBbzg2UFBSc0JPS1lGZ2RjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi80NTc0YmMtMjk2ZC00YTU4LWFlZjct ZDJiYmQ5NDljNDUyLzEvWTFtbVNiQTJFRDZBbzg2UFBSc0JPS1lGZ2RjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi80NTc0YmMtMjk2ZC00YTU4LWFlZjctZDJiYmQ5NDljNDUy LzEvWTFtbVNiQTJFRDZBbzg2UFBSc0JPS1lGZ2RjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATqHpswKH qND1/n89Ib7CRl9hIas/I5cBz0DUI1/WfsqUBQV1KreyqsY+5x3u1g6+bM+fuWBk KLjr4N5qIcva2bGASAUdIy57MoBKWFBrFkP4LNnt5kEkpNFSKro/Sl454ShejxGX sZ0/H6w2rYkF8QbmHHOcPMA97rH4ugGgmhQOsZtz039GjklbfiPpCUQnwRf9cKSS nWie+20zqSpUT3OOu0UzYV00ei4n2uXLdZvLwU0XTaazUguUcCgocBQv13qz7sto FftPNJH6Q9A9BcsajIuYcBv1vKQaQH64nonj9CYCQ4omHlkPEk8UK1mC2aTzbHO+ 91nDiQ09R0D3QA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:37 2026 by rpki-client