This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.mft File: Y6jKFmYgbSzxK1B4curQ9aeT0OA.mft (raw, json) Hash identifier: Rom9zajUr7DGWPYdTuIsjyvosfV9LOZ3BYgCHWp9DGY= Subject key identifier: 68:D1:71:C8:ED:A7:59:07:1E:1E:64:DF:1C:2C:D4:56:C9:56:4B:1F Authority key identifier: 63:A8:CA:16:66:20:6D:2C:F1:2B:50:78:72:EA:D0:F5:A7:93:D0:E0 Certificate issuer: /CN=63a8ca1666206d2cf12b507872ead0f5a793d0e0 Certificate serial: 019C43C6D94DC19DFA43AD8812503268CD5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y6jKFmYgbSzxK1B4curQ9aeT0OA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.mft Manifest number: 099B Signing time: Mon 09 Feb 2026 19:00:30 +0000 Manifest this update: Mon 09 Feb 2026 19:00:30 +0000 Manifest next update: Tue 10 Feb 2026 19:00:30 +0000 Files and hashes: 1: Y6jKFmYgbSzxK1B4curQ9aeT0OA.crl (hash: 8P59eXkznJDjmdYJWQCfFDeVd2YyoSAkV5n2MyQRADU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.crl rsync://rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.mft rsync://rpki.ripe.net/repository/DEFAULT/Y6jKFmYgbSzxK1B4curQ9aeT0OA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:d9:4d:c1:9d:fa:43:ad:88:12:50:32:68:cd:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63a8ca1666206d2cf12b507872ead0f5a793d0e0 Validity Not Before: Feb 9 19:00:30 2026 GMT Not After : Feb 10 19:00:30 2026 GMT Subject: CN=68d171c8eda759071e1e64df1c2cd456c9564b1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:56:c3:c0:03:18:67:b7:02:4d:ac:85:59:70: 38:56:9c:22:d8:b4:58:3a:2b:57:96:e8:3c:af:59: d9:e5:28:40:14:b5:de:05:18:6f:38:bd:da:81:86: 6d:19:43:cb:10:54:a0:88:e8:34:2e:05:af:84:9e: 2b:6d:6f:b7:f3:bc:e1:74:3f:ae:9e:99:71:27:ea: f3:dd:dd:3b:26:9a:9e:f6:fd:55:07:41:ed:06:ff: d8:bb:f2:42:41:61:da:f7:0f:21:e5:70:60:ee:df: 64:fa:0f:1d:4e:f2:7c:22:ba:2c:c8:ba:f8:bb:cf: 4e:95:05:36:9f:6f:a2:aa:09:68:b8:8b:12:e2:95: 05:4c:25:98:28:35:33:4b:6e:f2:ed:dc:59:03:47: 3a:6f:2f:f2:13:28:f1:8c:f9:67:fc:d3:3f:16:0a: 01:79:14:fb:ce:4c:43:f3:96:25:71:bf:56:af:bd: c1:3f:10:60:e9:7a:d9:02:15:ba:64:bb:18:45:02: b9:51:95:f4:03:39:56:78:c1:c5:83:e7:65:8d:93: 88:dd:52:7c:52:c2:82:07:80:8a:e7:e3:bc:1b:5d: e3:7d:24:f0:b9:06:73:2e:37:77:2e:ac:da:03:a6: be:6d:e1:5f:6e:56:25:c7:54:02:08:ad:60:6c:5d: ba:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:D1:71:C8:ED:A7:59:07:1E:1E:64:DF:1C:2C:D4:56:C9:56:4B:1F X509v3 Authority Key Identifier: keyid:63:A8:CA:16:66:20:6D:2C:F1:2B:50:78:72:EA:D0:F5:A7:93:D0:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y6jKFmYgbSzxK1B4curQ9aeT0OA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:4a:e2:e7:36:7d:60:e8:40:f1:04:aa:06:a2:6e:1a:71:11: 84:dc:b2:5f:73:89:ec:46:5c:87:c1:0d:84:4a:65:0c:08:ee: b9:9c:c0:f9:52:bb:2a:91:ad:83:da:05:97:11:eb:4e:89:c3: 83:c8:fd:07:2f:ab:0a:e6:cc:74:0a:d6:6b:13:38:fa:2e:31: 38:d9:11:cc:84:7a:0e:56:e4:f3:9f:29:4d:a0:df:b6:e0:61: 29:26:60:a7:42:f1:5a:17:7f:99:b0:62:19:6e:36:9e:8f:a6: a4:b6:61:6c:ac:0d:0b:3f:95:08:4a:56:84:a1:41:aa:57:c0: 26:7e:b0:73:20:d8:cc:c7:90:10:d2:ae:68:93:09:d1:65:a5: 01:0e:44:72:8e:e7:95:e0:74:2e:81:ae:cf:bd:1a:6a:3f:1d: a9:06:91:ab:de:9b:43:9a:85:5c:41:c8:25:e2:08:d0:63:26: 78:f1:09:2d:aa:59:1e:d2:7d:65:8b:68:ca:6d:51:4c:47:3b: 4a:d5:89:b8:7a:9e:ec:e8:2f:9f:3d:85:fc:ab:4d:9f:d9:cf: c8:72:82:35:a2:ee:4a:2a:9c:a3:6c:c3:c3:f8:f6:9a:98:94: 0b:fe:1f:44:eb:3f:d6:cd:87:bb:3f:a7:01:da:ec:60:ee:22: 45:96:ec:50 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxtlNwZ36Q62IElAyaM1fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzYThjYTE2NjYyMDZkMmNmMTJiNTA3ODcyZWFkMGY1YTc5 M2QwZTAwHhcNMjYwMjA5MTkwMDMwWhcNMjYwMjEwMTkwMDMwWjAzMTEwLwYDVQQD Eyg2OGQxNzFjOGVkYTc1OTA3MWUxZTY0ZGYxYzJjZDQ1NmM5NTY0YjFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnlbDwAMYZ7cCTayFWXA4Vpwi2LRY OitXlug8r1nZ5ShAFLXeBRhvOL3agYZtGUPLEFSgiOg0LgWvhJ4rbW+387zhdD+u nplxJ+rz3d07Jpqe9v1VB0HtBv/Yu/JCQWHa9w8h5XBg7t9k+g8dTvJ8IrosyLr4 u89OlQU2n2+iqglouIsS4pUFTCWYKDUzS27y7dxZA0c6by/yEyjxjPln/NM/FgoB eRT7zkxD85Ylcb9Wr73BPxBg6XrZAhW6ZLsYRQK5UZX0AzlWeMHFg+dljZOI3VJ8 UsKCB4CK5+O8G13jfSTwuQZzLjd3LqzaA6a+beFfblYlx1QCCK1gbF26nQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGjRccjtp1kHHh5k3xws1FbJVksfMB8GA1UdIwQY MBaAFGOoyhZmIG0s8StQeHLq0PWnk9DgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTZqS0ZtWWdiU3p4SzFCNGN1clE5YWVUME9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8wNDQ2YjEtZGYyZi00MjYxLWExYmEt NzVhYjIxZjNiM2QwLzEvWTZqS0ZtWWdiU3p4SzFCNGN1clE5YWVUME9BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS8wNDQ2YjEtZGYyZi00MjYxLWExYmEtNzVhYjIxZjNiM2Qw LzEvWTZqS0ZtWWdiU3p4SzFCNGN1clE5YWVUME9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqUri5zZ9 YOhA8QSqBqJuGnERhNyyX3OJ7EZch8ENhEplDAjuuZzA+VK7KpGtg9oFlxHrTonD g8j9By+rCubMdArWaxM4+i4xONkRzIR6Dlbk858pTaDftuBhKSZgp0LxWhd/mbBi GW42no+mpLZhbKwNCz+VCEpWhKFBqlfAJn6wcyDYzMeQENKuaJMJ0WWlAQ5Eco7n leB0LoGuz70aaj8dqQaRq96bQ5qFXEHIJeII0GMmePEJLapZHtJ9ZYtoym1RTEc7 StWJuHqe7Ogvnz2F/KtNn9nPyHKCNaLuSiqco2zDw/j2mpiUC/4fROs/1s2Huz+n AdrsYO4iRZbsUA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:45:24 2026 by rpki-client