This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft File: ydWxKeBvlSRoXnABAoQfctaRXDM.mft (raw, json) Hash identifier: lHMPVzHojqi5CFcHIL8QCCznuTQdm3gUumUGbN2Rpe4= Subject key identifier: C4:30:37:1E:A7:1F:4E:19:49:54:B3:90:34:94:83:E9:FA:8B:FB:D2 Authority key identifier: C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33 Certificate issuer: /CN=c9d5b129e06f9524685e700102841f72d6915c33 Certificate serial: 019C397AB0FE84AF0A22A3961FECF03BA9A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft Manifest number: 05EE Signing time: Sat 07 Feb 2026 19:01:07 +0000 Manifest this update: Sat 07 Feb 2026 19:01:07 +0000 Manifest next update: Sun 08 Feb 2026 19:01:07 +0000 Files and hashes: 1: kwFPG9hW2RnxD_y7iGiEkD7ds7s.roa (hash: oBOX2hL6Q0voGuCACiRactuFniCHTuH8t84KLSlEN9Y=) 2: ydWxKeBvlSRoXnABAoQfctaRXDM.crl (hash: Szar/6uJJTZOSD5Y8vjExkfuTwt7rVIPx7/o4hbqzR0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Feb 2026 18:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:39:7a:b0:fe:84:af:0a:22:a3:96:1f:ec:f0:3b:a9:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c9d5b129e06f9524685e700102841f72d6915c33 Validity Not Before: Feb 7 19:01:07 2026 GMT Not After : Feb 8 19:01:07 2026 GMT Subject: CN=c430371ea71f4e194954b390349483e9fa8bfbd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:57:ae:e4:f5:d8:a7:d4:b3:20:22:db:46:3d: 53:e3:5c:f8:94:70:b9:bb:fa:7c:a4:66:eb:13:aa: e0:2a:eb:32:52:bf:1e:fd:55:33:4a:28:a0:bc:a4: 77:d3:e3:01:e5:1e:db:32:9a:15:31:14:1f:55:95: 2e:52:37:2e:16:81:19:e8:28:23:08:9b:17:05:2a: 0e:fb:d4:6a:46:23:0e:bb:dd:6f:ec:f8:2d:51:69: 68:f3:26:65:0a:1e:f1:b5:f7:99:2a:b8:2d:e4:56: 03:ef:a8:ac:16:8c:b8:36:bc:24:d0:83:19:70:d3: e3:36:cd:b8:03:7b:36:b8:35:a9:a6:d0:3a:32:46: fd:18:8e:84:b5:47:e0:4a:b7:9a:a8:2d:9a:d9:ec: ed:9c:8e:25:ec:e8:41:09:df:74:84:db:c8:7b:0a: 40:d0:ff:23:a2:44:75:22:11:c2:a4:bc:63:68:3e: 02:ad:f6:1f:57:3a:ea:75:4b:0d:e0:aa:0e:2e:f7: 14:0e:7a:0c:68:3b:78:98:f6:d5:a1:b1:b5:1b:40: d9:92:c1:c9:c2:29:d1:31:d1:ff:da:8e:a7:72:91: 45:bf:15:97:77:fa:3f:71:f0:c4:50:1e:f5:77:13: 07:0f:61:6c:4d:d1:54:1a:4f:6b:dd:01:04:3f:69: 28:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:30:37:1E:A7:1F:4E:19:49:54:B3:90:34:94:83:E9:FA:8B:FB:D2 X509v3 Authority Key Identifier: keyid:C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:91:2d:6d:fe:be:c9:95:a2:31:69:74:ae:10:c6:67:d7:b6: 17:b3:a9:3f:9a:e6:19:35:ea:ea:90:3c:be:21:00:89:21:97: 74:12:82:18:68:83:c1:18:8f:22:b2:70:af:08:d0:cd:00:9d: 58:b1:5f:af:81:38:3c:bf:d9:89:2b:47:a8:f9:2d:08:a2:ac: 36:cc:78:af:48:c3:00:0e:be:65:aa:7e:ae:a7:46:37:10:93: c9:ca:87:bb:61:b7:95:a4:b1:0b:28:73:b5:a3:10:9d:fc:85: d0:2b:a1:8b:ce:37:03:c8:2c:68:ef:b9:63:0c:14:19:0f:46: e5:80:e0:ec:da:0d:8a:8b:41:86:c2:7e:68:0f:ff:bd:2f:69: 32:c9:45:d3:27:25:5f:7d:dd:91:c0:64:90:c4:17:d2:26:78: af:8f:3d:68:e3:82:aa:70:c5:7a:76:81:fa:9f:78:00:ad:c9: db:ef:85:94:b7:5d:14:66:80:02:ce:ba:68:d7:52:78:aa:5a: 57:3d:71:8c:39:68:e7:c9:a5:f2:01:b2:16:05:3f:af:2e:c2: 5c:35:74:fc:6e:ff:69:bc:b6:b0:e9:cc:1d:fd:f0:17:ef:eb: 44:86:9d:99:b7:22:b7:43:ae:15:ee:a5:2e:d8:47:6c:14:fb: dc:8d:d9:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZw5erD+hK8KIqOWH+zwO6mkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5ZDViMTI5ZTA2Zjk1MjQ2ODVlNzAwMTAyODQxZjcyZDY5 MTVjMzMwHhcNMjYwMjA3MTkwMTA3WhcNMjYwMjA4MTkwMTA3WjAzMTEwLwYDVQQD EyhjNDMwMzcxZWE3MWY0ZTE5NDk1NGIzOTAzNDk0ODNlOWZhOGJmYmQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA71eu5PXYp9SzICLbRj1T41z4lHC5 u/p8pGbrE6rgKusyUr8e/VUzSiigvKR30+MB5R7bMpoVMRQfVZUuUjcuFoEZ6Cgj CJsXBSoO+9RqRiMOu91v7PgtUWlo8yZlCh7xtfeZKrgt5FYD76isFoy4Nrwk0IMZ cNPjNs24A3s2uDWpptA6Mkb9GI6EtUfgSreaqC2a2eztnI4l7OhBCd90hNvIewpA 0P8jokR1IhHCpLxjaD4CrfYfVzrqdUsN4KoOLvcUDnoMaDt4mPbVobG1G0DZksHJ winRMdH/2o6ncpFFvxWXd/o/cfDEUB71dxMHD2FsTdFUGk9r3QEEP2kosQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMQwNx6nH04ZSVSzkDSUg+n6i/vSMB8GA1UdIwQY MBaAFMnVsSngb5UkaF5wAQKEH3LWkVwzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWRXeEtlQnZsU1JvWG5BQkFvUWZjdGFSWERNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS8xOWY5ZDctNDQzOC00ZDYxLWJlNzct YzJlYWRkNWVmM2YxLzEveWRXeEtlQnZsU1JvWG5BQkFvUWZjdGFSWERNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS8xOWY5ZDctNDQzOC00ZDYxLWJlNzctYzJlYWRkNWVmM2Yx LzEveWRXeEtlQnZsU1JvWG5BQkFvUWZjdGFSWERNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAipEtbf6+ yZWiMWl0rhDGZ9e2F7OpP5rmGTXq6pA8viEAiSGXdBKCGGiDwRiPIrJwrwjQzQCd WLFfr4E4PL/ZiStHqPktCKKsNsx4r0jDAA6+Zap+rqdGNxCTycqHu2G3laSxCyhz taMQnfyF0Cuhi843A8gsaO+5YwwUGQ9G5YDg7NoNiotBhsJ+aA//vS9pMslF0ycl X33dkcBkkMQX0iZ4r489aOOCqnDFenaB+p94AK3J2++FlLddFGaAAs66aNdSeKpa Vz1xjDlo58ml8gGyFgU/ry7CXDV0/G7/aby2sOnMHf3wF+/rRIadmbcit0OuFe6l LthHbBT73I3Z1g== -----END CERTIFICATE-----Generated at Sat Feb 7 21:54:31 2026 by rpki-client