This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/703358-b69b-4893-ab4e-e0699d304919/1/gY1FuJShqq5kDmhOV8_bUw36umk.mft File: gY1FuJShqq5kDmhOV8_bUw36umk.mft (raw, json) Hash identifier: m/kJDFrEOp3Mjn/7pEulPmttvEnaBd+kXJ0/fCg2dVg= Subject key identifier: 4E:30:53:DC:40:3F:A3:9F:91:5D:56:B9:42:64:AC:FF:78:79:F5:2F Authority key identifier: 81:8D:45:B8:94:A1:AA:AE:64:0E:68:4E:57:CF:DB:53:0D:FA:BA:69 Certificate issuer: /CN=818d45b894a1aaae640e684e57cfdb530dfaba69 Certificate serial: 019C41A21E078855A8B0F704B2A95880B527 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gY1FuJShqq5kDmhOV8_bUw36umk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/703358-b69b-4893-ab4e-e0699d304919/1/gY1FuJShqq5kDmhOV8_bUw36umk.mft Manifest number: 0C9D Signing time: Mon 09 Feb 2026 09:01:09 +0000 Manifest this update: Mon 09 Feb 2026 09:01:09 +0000 Manifest next update: Tue 10 Feb 2026 09:01:09 +0000 Files and hashes: 1: gY1FuJShqq5kDmhOV8_bUw36umk.crl (hash: Kc8jetcMPc68pyFD5pt22yzZhC0/qyaUATHFp/P6bfg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/703358-b69b-4893-ab4e-e0699d304919/1/gY1FuJShqq5kDmhOV8_bUw36umk.crl rsync://rpki.ripe.net/repository/DEFAULT/10/703358-b69b-4893-ab4e-e0699d304919/1/gY1FuJShqq5kDmhOV8_bUw36umk.mft rsync://rpki.ripe.net/repository/DEFAULT/gY1FuJShqq5kDmhOV8_bUw36umk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:1e:07:88:55:a8:b0:f7:04:b2:a9:58:80:b5:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=818d45b894a1aaae640e684e57cfdb530dfaba69 Validity Not Before: Feb 9 09:01:09 2026 GMT Not After : Feb 10 09:01:09 2026 GMT Subject: CN=4e3053dc403fa39f915d56b94264acff7879f52f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d7:79:f4:15:30:0e:d5:9f:df:29:6f:8a:45: e8:a8:d4:a9:cc:0f:ca:49:54:82:df:f4:6a:51:ed: c9:e1:d4:40:b9:bd:2f:05:7c:59:2f:71:d1:ce:26: 8a:59:61:0e:61:00:9e:63:79:3b:c4:7c:e8:c4:55: f4:92:a8:6a:ed:d9:2d:1f:27:be:14:c4:59:4d:b8: 35:d0:d4:8b:91:f9:29:92:8c:37:c6:d7:67:0f:d7: d8:58:d3:1f:00:83:69:76:ce:b4:56:17:c2:a7:36: 16:31:1f:bf:b3:8c:b4:93:d1:b5:25:64:f4:95:31: a8:95:cc:6b:33:91:dd:05:da:0e:0d:99:a9:27:58: 43:d0:80:0a:35:cb:d3:c9:45:e2:64:5d:80:58:35: e9:ca:b8:5a:2d:a8:9e:a5:34:d0:f6:f9:41:63:7e: 48:fd:71:62:de:6f:18:a6:b7:b3:60:fa:45:a5:a7: c2:d1:d2:a2:fa:e2:16:47:14:8a:ba:e5:9e:91:60: 3a:30:4b:20:96:90:7f:ed:6e:54:b1:76:75:b6:31: b0:59:39:30:ac:00:27:08:73:3c:46:2e:db:2f:60: ae:9d:59:1d:f4:6d:4b:c0:e5:69:33:b8:dd:90:9e: 4b:a0:42:ef:34:70:de:24:2a:72:c0:f0:e3:0a:02: 0b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:30:53:DC:40:3F:A3:9F:91:5D:56:B9:42:64:AC:FF:78:79:F5:2F X509v3 Authority Key Identifier: keyid:81:8D:45:B8:94:A1:AA:AE:64:0E:68:4E:57:CF:DB:53:0D:FA:BA:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gY1FuJShqq5kDmhOV8_bUw36umk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/703358-b69b-4893-ab4e-e0699d304919/1/gY1FuJShqq5kDmhOV8_bUw36umk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/703358-b69b-4893-ab4e-e0699d304919/1/gY1FuJShqq5kDmhOV8_bUw36umk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:de:1e:05:2d:19:97:90:50:11:da:4f:69:2d:4d:b3:b3:17: e7:50:24:bd:a3:54:7d:03:54:72:07:cd:73:a5:ec:7c:3a:48: 8c:82:c5:30:0f:a6:f0:e2:ed:ba:96:f9:61:11:93:1a:3c:02: 69:74:64:76:a4:4d:45:c8:9e:d0:38:eb:a2:88:05:65:58:76: de:0d:92:14:31:24:f0:13:3c:4a:c4:41:93:b1:e7:90:06:1f: b2:ca:b9:09:f3:5b:1e:4d:fb:f8:3c:60:26:ba:56:fe:f0:eb: 6e:44:96:bb:fe:e5:eb:61:6d:f2:fe:ab:be:84:76:ef:fc:a1: 50:46:67:94:67:fd:21:31:e1:05:f0:95:59:8c:85:a7:19:db: 7f:d7:89:87:3c:98:bd:d0:7c:64:2f:3a:2c:95:f7:26:2b:46: 95:57:c8:b0:ae:e0:30:6b:2e:85:7a:8e:01:6b:65:f4:d0:08: 5b:49:47:c9:4d:b8:a6:f1:04:ed:11:06:f5:db:e7:6b:8f:8a: ae:4c:f1:8d:68:6f:fe:22:57:0e:9e:3f:20:58:a6:19:36:a3: 45:63:4c:78:0a:0f:cb:2d:fa:ea:10:17:fc:21:77:61:f7:6d: 41:b0:f3:e0:82:32:e1:97:c0:51:be:11:63:94:7f:25:1e:60: f5:e1:b3:04 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoh4HiFWosPcEsqlYgLUnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxOGQ0NWI4OTRhMWFhYWU2NDBlNjg0ZTU3Y2ZkYjUzMGRm YWJhNjkwHhcNMjYwMjA5MDkwMTA5WhcNMjYwMjEwMDkwMTA5WjAzMTEwLwYDVQQD Eyg0ZTMwNTNkYzQwM2ZhMzlmOTE1ZDU2Yjk0MjY0YWNmZjc4NzlmNTJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6dd59BUwDtWf3ylvikXoqNSpzA/K SVSC3/RqUe3J4dRAub0vBXxZL3HRziaKWWEOYQCeY3k7xHzoxFX0kqhq7dktHye+ FMRZTbg10NSLkfkpkow3xtdnD9fYWNMfAINpds60VhfCpzYWMR+/s4y0k9G1JWT0 lTGolcxrM5HdBdoODZmpJ1hD0IAKNcvTyUXiZF2AWDXpyrhaLaiepTTQ9vlBY35I /XFi3m8YprezYPpFpafC0dKi+uIWRxSKuuWekWA6MEsglpB/7W5UsXZ1tjGwWTkw rAAnCHM8Ri7bL2CunVkd9G1LwOVpM7jdkJ5LoELvNHDeJCpywPDjCgILGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE4wU9xAP6OfkV1WuUJkrP94efUvMB8GA1UdIwQY MBaAFIGNRbiUoaquZA5oTlfP21MN+rppMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ1kxRnVKU2hxcTVrRG1oT1Y4X2JVdzM2dW1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC83MDMzNTgtYjY5Yi00ODkzLWFiNGUt ZTA2OTlkMzA0OTE5LzEvZ1kxRnVKU2hxcTVrRG1oT1Y4X2JVdzM2dW1rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC83MDMzNTgtYjY5Yi00ODkzLWFiNGUtZTA2OTlkMzA0OTE5 LzEvZ1kxRnVKU2hxcTVrRG1oT1Y4X2JVdzM2dW1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH94eBS0Z l5BQEdpPaS1Ns7MX51AkvaNUfQNUcgfNc6XsfDpIjILFMA+m8OLtupb5YRGTGjwC aXRkdqRNRcie0DjroogFZVh23g2SFDEk8BM8SsRBk7HnkAYfssq5CfNbHk37+Dxg JrpW/vDrbkSWu/7l62Ft8v6rvoR27/yhUEZnlGf9ITHhBfCVWYyFpxnbf9eJhzyY vdB8ZC86LJX3JitGlVfIsK7gMGsuhXqOAWtl9NAIW0lHyU24pvEE7REG9dvna4+K rkzxjWhv/iJXDp4/IFimGTajRWNMeAoPyy366hAX/CF3YfdtQbDz4IIy4ZfAUb4R Y5R/JR5g9eGzBA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:30:51 2026 by rpki-client