This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft File: yFiMcrJRDxd7g18gHjNl7PnkWh0.mft (raw, json) Hash identifier: aq4ubFs5IzViCt6nZBsV/PcNwbe04WIdzOyQtQUGlZA= Subject key identifier: DC:BA:8F:95:38:0F:53:AC:C9:AF:0D:35:72:F3:44:1F:07:C9:14:D8 Authority key identifier: C8:58:8C:72:B2:51:0F:17:7B:83:5F:20:1E:33:65:EC:F9:E4:5A:1D Certificate issuer: /CN=c8588c72b2510f177b835f201e3365ecf9e45a1d Certificate serial: 019C41D87107E2212656B01AA1441BBC183C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yFiMcrJRDxd7g18gHjNl7PnkWh0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft Manifest number: 11C0 Signing time: Mon 09 Feb 2026 10:00:29 +0000 Manifest this update: Mon 09 Feb 2026 10:00:29 +0000 Manifest next update: Tue 10 Feb 2026 10:00:29 +0000 Files and hashes: 1: yFiMcrJRDxd7g18gHjNl7PnkWh0.crl (hash: 0BcorYkQ/z8OtLpoIxYKW2PmMTXJ6NtNMmPQHGmmJ/o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft rsync://rpki.ripe.net/repository/DEFAULT/yFiMcrJRDxd7g18gHjNl7PnkWh0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:71:07:e2:21:26:56:b0:1a:a1:44:1b:bc:18:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c8588c72b2510f177b835f201e3365ecf9e45a1d Validity Not Before: Feb 9 10:00:29 2026 GMT Not After : Feb 10 10:00:29 2026 GMT Subject: CN=dcba8f95380f53acc9af0d3572f3441f07c914d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:34:d1:5b:66:fe:d6:b2:46:ac:8c:57:46:29: f1:fa:bb:be:0e:dd:67:b0:9e:6c:d0:92:25:ca:5b: 18:07:50:92:a8:08:4b:1a:e6:2f:f3:f9:35:31:a9: b1:f9:69:0b:af:a1:03:b5:6f:3c:81:ff:ef:ef:c5: 4a:df:2e:7d:28:4c:81:3c:64:43:35:4d:10:32:fd: a2:9b:07:f4:2c:84:38:95:e9:fb:b8:d6:94:ae:dd: 88:12:05:81:2e:bc:4f:f5:88:6a:c1:10:c2:a2:b8: c5:5e:41:34:d7:f2:18:59:54:53:2c:0e:d7:72:85: 68:0a:d9:3c:ff:4e:4e:e9:de:a7:a4:19:c0:c1:3c: 46:ab:82:fe:bc:26:86:c1:d4:cf:2f:a8:f7:c1:46: db:b5:85:30:c9:1d:25:14:5a:61:95:e5:7e:e6:a3: d2:17:59:32:15:e9:f5:6f:ee:f6:64:6c:95:ea:03: 7d:04:77:a6:7c:70:b0:a6:cd:db:b6:8b:76:d9:a9: e1:3b:01:08:bd:22:5a:2c:7a:0c:b4:7c:71:97:b8: 74:da:ad:79:36:43:6d:22:da:ca:97:6f:46:fa:43: 79:b7:35:1b:1e:3f:bf:bf:43:40:ad:4a:df:0a:06: 2f:3f:26:2d:9e:a5:3d:17:87:9f:c5:5b:1b:55:e0: c7:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:BA:8F:95:38:0F:53:AC:C9:AF:0D:35:72:F3:44:1F:07:C9:14:D8 X509v3 Authority Key Identifier: keyid:C8:58:8C:72:B2:51:0F:17:7B:83:5F:20:1E:33:65:EC:F9:E4:5A:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yFiMcrJRDxd7g18gHjNl7PnkWh0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:c3:c7:d6:d9:91:2c:9a:42:e9:8a:e1:1c:35:5f:75:9b:86: 93:47:cf:bd:9a:82:89:64:6d:cc:8c:b4:91:41:8b:3b:61:80: 0f:51:70:29:c1:b7:f2:12:8d:68:4a:0d:36:d6:3c:38:21:b4: c9:b8:d0:bf:4f:6d:51:e4:97:f5:4e:18:fc:b2:99:0c:ca:e5: d1:d5:91:81:0f:e2:47:69:7c:8a:29:8b:d0:d1:61:9e:cb:8b: 7c:29:d2:d5:e6:45:8d:28:29:58:c6:30:bd:76:fa:17:71:ce: b0:87:0c:d3:f2:25:97:94:7c:ba:ac:c6:b4:a5:cd:19:4e:8d: b1:24:ad:c6:14:b7:2a:f3:85:36:39:f8:e9:02:3e:03:bd:26: 59:f8:72:65:b5:25:66:a1:0e:77:0b:49:72:57:85:18:8b:08: f5:a8:44:77:e0:9a:50:9b:6c:63:e6:e3:bd:a2:24:3e:ca:2e: b9:04:c2:7f:de:c9:d2:5a:4e:52:4d:ed:21:0f:09:4b:44:4c: 81:66:77:ab:3e:64:f3:52:bb:94:7f:b4:a2:42:bd:59:03:4f: 14:bd:7c:19:89:73:8e:9a:4e:da:75:37:ee:38:2a:3e:ec:c6: 2e:9c:73:c8:98:f3:d3:5f:02:45:0f:e9:e4:6b:fd:75:c2:d8: d6:2c:4e:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2HEH4iEmVrAaoUQbvBg8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4NTg4YzcyYjI1MTBmMTc3YjgzNWYyMDFlMzM2NWVjZjll NDVhMWQwHhcNMjYwMjA5MTAwMDI5WhcNMjYwMjEwMTAwMDI5WjAzMTEwLwYDVQQD EyhkY2JhOGY5NTM4MGY1M2FjYzlhZjBkMzU3MmYzNDQxZjA3YzkxNGQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojTRW2b+1rJGrIxXRinx+ru+Dt1n sJ5s0JIlylsYB1CSqAhLGuYv8/k1Mamx+WkLr6EDtW88gf/v78VK3y59KEyBPGRD NU0QMv2imwf0LIQ4len7uNaUrt2IEgWBLrxP9YhqwRDCorjFXkE01/IYWVRTLA7X coVoCtk8/05O6d6npBnAwTxGq4L+vCaGwdTPL6j3wUbbtYUwyR0lFFphleV+5qPS F1kyFen1b+72ZGyV6gN9BHemfHCwps3btot22anhOwEIvSJaLHoMtHxxl7h02q15 NkNtItrKl29G+kN5tzUbHj+/v0NArUrfCgYvPyYtnqU9F4efxVsbVeDH+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNy6j5U4D1Osya8NNXLzRB8HyRTYMB8GA1UdIwQY MBaAFMhYjHKyUQ8Xe4NfIB4zZez55FodMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUZpTWNySlJEeGQ3ZzE4Z0hqTmw3UG5rV2gwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi85M2IzOGUtNjQwMC00ZTZkLWEwZWIt MDQ5Y2MxZmNlMzdlLzEveUZpTWNySlJEeGQ3ZzE4Z0hqTmw3UG5rV2gwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi85M2IzOGUtNjQwMC00ZTZkLWEwZWItMDQ5Y2MxZmNlMzdl LzEveUZpTWNySlJEeGQ3ZzE4Z0hqTmw3UG5rV2gwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVMPH1tmR LJpC6YrhHDVfdZuGk0fPvZqCiWRtzIy0kUGLO2GAD1FwKcG38hKNaEoNNtY8OCG0 ybjQv09tUeSX9U4Y/LKZDMrl0dWRgQ/iR2l8iimL0NFhnsuLfCnS1eZFjSgpWMYw vXb6F3HOsIcM0/Ill5R8uqzGtKXNGU6NsSStxhS3KvOFNjn46QI+A70mWfhyZbUl ZqEOdwtJcleFGIsI9ahEd+CaUJtsY+bjvaIkPsouuQTCf97J0lpOUk3tIQ8JS0RM gWZ3qz5k81K7lH+0okK9WQNPFL18GYlzjppO2nU37jgqPuzGLpxzyJjz018CRQ/p 5Gv9dcLY1ixOuQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:59:22 2026 by rpki-client