This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft File: YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft (raw, json) Hash identifier: Wf6O/M3JhmqRyeUiXrcpeVGDdp0W03o7qqahIBQ899o= Subject key identifier: 79:18:00:85:1F:16:BF:66:65:58:20:7D:4F:5E:7F:C7:F9:E3:7E:68 Authority key identifier: 61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C Certificate issuer: /CN=6117d6158043150b0ad224a0648df0185706019c Certificate serial: 019C4133FB7EC4D1733C5D9EA01EC8C7EA60 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft Manifest number: 129D Signing time: Mon 09 Feb 2026 07:00:51 +0000 Manifest this update: Mon 09 Feb 2026 07:00:51 +0000 Manifest next update: Tue 10 Feb 2026 07:00:51 +0000 Files and hashes: 1: YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl (hash: 8NP+RYn/yyMy82zb72LdyZeXqu9QV3aKeeutNzhYLmk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:fb:7e:c4:d1:73:3c:5d:9e:a0:1e:c8:c7:ea:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6117d6158043150b0ad224a0648df0185706019c Validity Not Before: Feb 9 07:00:51 2026 GMT Not After : Feb 10 07:00:51 2026 GMT Subject: CN=791800851f16bf666558207d4f5e7fc7f9e37e68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:18:e4:88:17:bc:24:34:bf:dd:3a:34:19:b6: b7:26:59:1f:ae:38:99:26:3e:55:e4:11:38:cc:57: b1:33:01:c4:c2:a8:f1:3a:4e:44:df:4f:d2:7d:4e: 67:b4:3f:6b:8d:d8:3d:cd:85:7f:3f:7d:7b:16:d7: 39:71:04:b4:b4:00:a6:66:2b:d0:28:f7:57:1b:83: 1f:4a:97:24:03:1c:36:17:c9:41:33:1c:c2:bd:10: 45:5f:4b:98:d2:b1:b2:76:26:5d:9e:a4:2c:92:cb: 9a:ce:36:bc:20:af:51:bd:80:d9:19:6e:70:ee:6d: 44:98:93:de:0a:cc:63:cd:08:58:a1:51:a5:3f:88: f7:c5:93:2d:a4:2d:01:4c:76:44:0d:f5:40:20:a5: 34:2f:63:04:04:d3:4b:74:d4:5e:83:2b:6a:e0:d4: 3d:be:e0:cf:c7:13:4f:12:c4:d3:63:fd:69:5a:7d: 43:f5:aa:01:1c:84:c4:65:3b:f9:ef:b4:e0:93:22: 1f:25:3a:83:73:0a:7a:04:bc:44:83:82:d1:27:38: 91:03:9b:8d:92:a2:f4:8f:3a:90:87:df:48:1d:5c: c0:12:e4:77:0a:ed:a5:01:e5:a9:ec:aa:86:bd:22: c6:9c:b6:27:8f:7c:9a:ff:9a:dd:ff:76:e7:e6:23: 3a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:18:00:85:1F:16:BF:66:65:58:20:7D:4F:5E:7F:C7:F9:E3:7E:68 X509v3 Authority Key Identifier: keyid:61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:ff:0a:a9:65:1b:11:7e:fa:7d:ae:24:42:3a:fa:70:51:2b: 4b:a2:1a:90:22:c5:43:1f:73:27:36:9f:c1:a5:69:3f:16:b9: 97:ab:8b:5a:80:a5:db:56:b3:b9:97:10:44:57:7e:5f:eb:17: c9:b0:3e:60:5a:88:55:49:83:03:03:49:61:9b:ad:35:76:15: 27:98:64:bb:cf:a2:2d:db:2b:56:c7:b4:86:1d:4b:37:19:91: f0:3e:d6:9c:6a:05:9f:03:fe:87:d7:d1:3f:d6:a9:93:94:36: 6b:ba:99:53:6b:84:80:4d:0c:45:dc:55:13:6c:62:c2:ee:de: 71:1c:3f:22:f3:ed:49:a5:d6:14:8e:30:0e:60:02:1a:21:bb: 01:32:22:46:51:49:48:f7:9e:98:86:70:0b:08:13:0e:d5:5f: 39:58:59:90:d0:24:ae:a2:d6:cb:61:d6:fc:12:33:6b:cf:b7: e6:07:f9:00:45:e2:a7:cd:d5:24:d7:8f:ab:98:5f:48:b7:e8: b2:03:ef:54:32:58:1a:55:e8:65:ae:bc:44:a6:86:2e:51:89: c2:eb:d2:2e:7f:8e:21:7c:78:81:31:b9:23:23:ac:7b:20:1d: 8c:a1:c6:67:2a:69:0c:20:24:0f:44:ed:7c:34:16:6d:08:ae: 94:b4:52:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM/t+xNFzPF2eoB7Ix+pgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxMTdkNjE1ODA0MzE1MGIwYWQyMjRhMDY0OGRmMDE4NTcw NjAxOWMwHhcNMjYwMjA5MDcwMDUxWhcNMjYwMjEwMDcwMDUxWjAzMTEwLwYDVQQD Eyg3OTE4MDA4NTFmMTZiZjY2NjU1ODIwN2Q0ZjVlN2ZjN2Y5ZTM3ZTY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+hjkiBe8JDS/3To0Gba3JlkfrjiZ Jj5V5BE4zFexMwHEwqjxOk5E30/SfU5ntD9rjdg9zYV/P317Ftc5cQS0tACmZivQ KPdXG4MfSpckAxw2F8lBMxzCvRBFX0uY0rGydiZdnqQsksuazja8IK9RvYDZGW5w 7m1EmJPeCsxjzQhYoVGlP4j3xZMtpC0BTHZEDfVAIKU0L2MEBNNLdNRegytq4NQ9 vuDPxxNPEsTTY/1pWn1D9aoBHITEZTv577TgkyIfJTqDcwp6BLxEg4LRJziRA5uN kqL0jzqQh99IHVzAEuR3Cu2lAeWp7KqGvSLGnLYnj3ya/5rd/3bn5iM6kQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHkYAIUfFr9mZVggfU9ef8f5435oMB8GA1UdIwQY MBaAFGEX1hWAQxULCtIkoGSN8BhXBgGcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVJmV0ZZQkRGUXNLMGlTZ1pJM3dHRmNHQVp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9jOTY0MjYtNDgzYS00Y2JmLTlhYTMt OTQ3MzU4MGJjODUwLzEvWVJmV0ZZQkRGUXNLMGlTZ1pJM3dHRmNHQVp3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS9jOTY0MjYtNDgzYS00Y2JmLTlhYTMtOTQ3MzU4MGJjODUw LzEvWVJmV0ZZQkRGUXNLMGlTZ1pJM3dHRmNHQVp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUP8KqWUb EX76fa4kQjr6cFErS6IakCLFQx9zJzafwaVpPxa5l6uLWoCl21azuZcQRFd+X+sX ybA+YFqIVUmDAwNJYZutNXYVJ5hku8+iLdsrVse0hh1LNxmR8D7WnGoFnwP+h9fR P9apk5Q2a7qZU2uEgE0MRdxVE2xiwu7ecRw/IvPtSaXWFI4wDmACGiG7ATIiRlFJ SPeemIZwCwgTDtVfOVhZkNAkrqLWy2HW/BIza8+35gf5AEXip83VJNePq5hfSLfo sgPvVDJYGlXoZa68RKaGLlGJwuvSLn+OIXx4gTG5IyOseyAdjKHGZyppDCAkD0Tt fDQWbQiulLRSPA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:47 2026 by rpki-client