This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/814dd0-09e1-4273-873a-7463815a3f4e/1/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.mft File: y8Lr2jqwhRDr6aEOYL4jFgIoqUI.mft (raw, json) Hash identifier: fNFcVXqGGLWhdNYxQxWjbelpQEfGAUcRQmTU6Hg1r4k= Subject key identifier: 57:72:30:C1:DB:AA:9E:58:B6:63:AC:A0:EF:8B:7C:B0:28:09:E1:6F Authority key identifier: CB:C2:EB:DA:3A:B0:85:10:EB:E9:A1:0E:60:BE:23:16:02:28:A9:42 Certificate issuer: /CN=cbc2ebda3ab08510ebe9a10e60be23160228a942 Certificate serial: 019C432260A66B33DB4ED54ED3CD7EC11311 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/814dd0-09e1-4273-873a-7463815a3f4e/1/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 16:00:52 +0000 Manifest this update: Mon 09 Feb 2026 16:00:52 +0000 Manifest next update: Tue 10 Feb 2026 16:00:52 +0000 Files and hashes: 1: y8Lr2jqwhRDr6aEOYL4jFgIoqUI.crl (hash: xq1GqmXqoG+bOo0HnLXclpvxgmoUiPwDn3P/dUrB9CQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/814dd0-09e1-4273-873a-7463815a3f4e/1/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.crl rsync://rpki.ripe.net/repository/DEFAULT/17/814dd0-09e1-4273-873a-7463815a3f4e/1/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.mft rsync://rpki.ripe.net/repository/DEFAULT/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:60:a6:6b:33:db:4e:d5:4e:d3:cd:7e:c1:13:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cbc2ebda3ab08510ebe9a10e60be23160228a942 Validity Not Before: Feb 9 16:00:52 2026 GMT Not After : Feb 10 16:00:52 2026 GMT Subject: CN=577230c1dbaa9e58b663aca0ef8b7cb02809e16f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:d2:50:f4:6b:8c:16:58:cc:88:4b:5d:6f:79: c1:82:2f:b5:54:10:39:ca:83:ff:fd:81:0e:31:26: 7e:d9:56:f2:e4:18:74:c4:52:b2:de:97:02:d7:a8: 59:4f:93:53:da:ca:86:03:67:e8:5e:5f:4c:9c:a6: b2:51:f7:d6:69:d0:91:45:9b:fd:6a:62:ac:2b:7e: df:c7:c6:43:7e:0a:8f:da:86:93:d6:29:7d:e2:9d: 60:7a:65:34:2c:02:86:cd:b5:e4:78:15:bd:00:48: a1:03:90:f3:e1:79:75:3d:b3:72:df:74:84:f1:03: 0c:ff:31:3a:be:fd:f0:3f:22:0f:27:cc:4b:77:c1: ea:11:ae:68:49:7b:bd:8b:0b:6d:eb:f4:88:a6:bf: 06:c6:78:64:c3:9f:db:eb:22:5e:9a:5d:1f:55:5c: cc:eb:a4:5e:49:8f:24:bf:f3:25:74:74:f2:13:84: b1:83:8c:22:43:31:4f:ec:da:86:3b:a1:75:3b:7e: 36:76:13:33:fb:29:b3:87:9e:d2:e2:ca:3e:25:90: 89:17:29:23:83:fc:54:19:84:fe:80:a8:f5:9b:7b: e0:f7:5b:44:09:45:d3:1b:e1:fe:70:ad:72:01:6c: 2b:94:43:bb:8d:0f:cf:a5:56:8d:76:bb:0c:fa:1c: 54:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:72:30:C1:DB:AA:9E:58:B6:63:AC:A0:EF:8B:7C:B0:28:09:E1:6F X509v3 Authority Key Identifier: keyid:CB:C2:EB:DA:3A:B0:85:10:EB:E9:A1:0E:60:BE:23:16:02:28:A9:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/814dd0-09e1-4273-873a-7463815a3f4e/1/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/814dd0-09e1-4273-873a-7463815a3f4e/1/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ba:e7:b5:2e:20:3d:db:e8:46:01:d7:ab:fa:61:da:7b:9a:b4: 63:c2:25:1d:fb:93:bc:41:bc:ea:1c:d2:64:56:38:cb:6c:e1: 3b:08:a3:da:f4:72:92:13:83:49:77:b8:30:e2:9e:a3:ec:54: 40:2a:c0:3f:4c:0d:6e:91:b8:25:4c:28:16:e0:10:0b:79:0b: f9:ce:62:7f:a5:56:71:fb:1d:68:84:34:4e:23:42:1c:bb:ed: 2e:a3:15:17:06:46:46:e1:e1:71:bd:8f:f1:e4:24:3e:ef:3a: 36:65:89:e3:a5:7b:37:5b:6e:2b:06:82:bc:58:31:57:ae:db: c9:bf:a9:f8:1f:c2:25:47:3f:4d:b2:87:6b:91:97:a4:b7:d5: 40:c0:02:2d:56:ce:34:ac:5a:ca:bb:96:dc:7d:2a:50:51:b1: 5e:42:2c:42:f6:7b:a1:39:eb:43:a5:c4:52:db:e2:59:25:fc: 07:e6:bf:a5:13:59:d3:a2:51:bd:9a:2d:ea:e4:09:57:85:76: e0:db:93:80:27:ed:e4:93:8e:8f:09:4c:a1:00:61:29:ca:65: 47:3f:db:10:ba:84:48:a5:b8:5d:be:0b:fd:0e:7b:ca:92:c2: d0:e7:1f:f2:a1:fe:98:19:ca:05:c2:ec:6d:83:50:4c:03:6e: 1c:c2:43:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDImCmazPbTtVO081+wRMRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiYzJlYmRhM2FiMDg1MTBlYmU5YTEwZTYwYmUyMzE2MDIy OGE5NDIwHhcNMjYwMjA5MTYwMDUyWhcNMjYwMjEwMTYwMDUyWjAzMTEwLwYDVQQD Eyg1NzcyMzBjMWRiYWE5ZTU4YjY2M2FjYTBlZjhiN2NiMDI4MDllMTZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7dJQ9GuMFljMiEtdb3nBgi+1VBA5 yoP//YEOMSZ+2Vby5Bh0xFKy3pcC16hZT5NT2sqGA2foXl9MnKayUffWadCRRZv9 amKsK37fx8ZDfgqP2oaT1il94p1gemU0LAKGzbXkeBW9AEihA5Dz4Xl1PbNy33SE 8QMM/zE6vv3wPyIPJ8xLd8HqEa5oSXu9iwtt6/SIpr8Gxnhkw5/b6yJeml0fVVzM 66ReSY8kv/MldHTyE4Sxg4wiQzFP7NqGO6F1O342dhMz+ymzh57S4so+JZCJFykj g/xUGYT+gKj1m3vg91tECUXTG+H+cK1yAWwrlEO7jQ/PpVaNdrsM+hxUUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFdyMMHbqp5YtmOsoO+LfLAoCeFvMB8GA1UdIwQY MBaAFMvC69o6sIUQ6+mhDmC+IxYCKKlCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveThMcjJqcXdoUkRyNmFFT1lMNGpGZ0lvcVVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy84MTRkZDAtMDllMS00MjczLTg3M2Et NzQ2MzgxNWEzZjRlLzEveThMcjJqcXdoUkRyNmFFT1lMNGpGZ0lvcVVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy84MTRkZDAtMDllMS00MjczLTg3M2EtNzQ2MzgxNWEzZjRl LzEveThMcjJqcXdoUkRyNmFFT1lMNGpGZ0lvcVVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuue1LiA9 2+hGAder+mHae5q0Y8IlHfuTvEG86hzSZFY4y2zhOwij2vRykhODSXe4MOKeo+xU QCrAP0wNbpG4JUwoFuAQC3kL+c5if6VWcfsdaIQ0TiNCHLvtLqMVFwZGRuHhcb2P 8eQkPu86NmWJ46V7N1tuKwaCvFgxV67byb+p+B/CJUc/TbKHa5GXpLfVQMACLVbO NKxayruW3H0qUFGxXkIsQvZ7oTnrQ6XEUtviWSX8B+a/pRNZ06JRvZot6uQJV4V2 4NuTgCft5JOOjwlMoQBhKcplRz/bELqESKW4Xb4L/Q57ypLC0Ocf8qH+mBnKBcLs bYNQTANuHMJDKg== -----END CERTIFICATE-----Generated at Tue Feb 10 00:15:08 2026 by rpki-client