This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.mft File: YmJJH6XuZw3MLCvhaY436ZMXSSM.mft (raw, json) Hash identifier: N+YMyFby2ijXOdPQQ/gUDX0EVxEUmDj76XY8Em2fvRc= Subject key identifier: 5B:C3:FE:11:99:20:8A:85:F5:98:BF:CB:08:9D:6E:D6:09:32:EE:06 Authority key identifier: 62:62:49:1F:A5:EE:67:0D:CC:2C:2B:E1:69:8E:37:E9:93:17:49:23 Certificate issuer: /CN=6262491fa5ee670dcc2c2be1698e37e993174923 Certificate serial: 019C43C6D4BF8C4E92073F833D8587CA4502 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YmJJH6XuZw3MLCvhaY436ZMXSSM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.mft Manifest number: 02A2 Signing time: Mon 09 Feb 2026 19:00:29 +0000 Manifest this update: Mon 09 Feb 2026 19:00:29 +0000 Manifest next update: Tue 10 Feb 2026 19:00:29 +0000 Files and hashes: 1: YmJJH6XuZw3MLCvhaY436ZMXSSM.crl (hash: woyFpIGmo74KbWZ9o+Rrcvc2OLk6Q6zyeKyfi+jp7oA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.mft rsync://rpki.ripe.net/repository/DEFAULT/YmJJH6XuZw3MLCvhaY436ZMXSSM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:d4:bf:8c:4e:92:07:3f:83:3d:85:87:ca:45:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6262491fa5ee670dcc2c2be1698e37e993174923 Validity Not Before: Feb 9 19:00:29 2026 GMT Not After : Feb 10 19:00:29 2026 GMT Subject: CN=5bc3fe1199208a85f598bfcb089d6ed60932ee06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:36:38:81:55:64:dc:81:9d:e5:f4:48:e7:2c: fc:66:41:8f:52:e0:c0:91:70:ba:7b:ec:cc:b4:9c: c1:4d:bb:4f:bb:fc:26:da:bb:7a:5c:7c:11:c7:83: cb:21:6c:83:8b:e0:5c:aa:aa:3b:a4:33:cc:6b:25: 03:f6:39:31:3a:4d:0d:2e:8f:5c:fb:1e:6d:46:6f: 80:2a:0e:76:1e:77:27:88:b2:b7:91:4a:8f:a6:08: c8:36:c3:77:5d:9b:1e:cf:65:76:9c:29:73:39:91: 36:5f:07:a3:94:60:6f:a9:9f:fa:cc:e9:d0:32:7f: 31:f4:16:10:27:1c:14:43:52:e1:e9:9f:08:38:43: 9a:64:6b:44:ff:f9:d0:bb:dc:ef:58:48:81:f8:1b: 82:dc:96:4c:80:76:67:80:5d:0d:f3:5b:7d:fd:e2: 25:39:fa:9f:02:96:b2:ba:58:f6:f3:a1:ec:e2:56: df:1f:d0:a8:81:7c:d5:8e:3a:af:88:77:04:aa:ac: 19:77:de:64:26:32:fc:42:7f:8b:fe:1e:4c:84:5a: 6e:fe:32:ed:a4:0f:42:47:29:bd:00:aa:1b:5d:89: 7a:f2:9d:b7:56:29:e5:88:b8:04:f3:fc:3a:c7:65: 1c:c7:5a:a3:3b:19:fb:13:e1:59:ec:59:0e:25:62: 15:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:C3:FE:11:99:20:8A:85:F5:98:BF:CB:08:9D:6E:D6:09:32:EE:06 X509v3 Authority Key Identifier: keyid:62:62:49:1F:A5:EE:67:0D:CC:2C:2B:E1:69:8E:37:E9:93:17:49:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YmJJH6XuZw3MLCvhaY436ZMXSSM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:8f:d4:21:f0:1b:53:6b:24:5a:ff:2c:43:22:d3:ac:5d:1d: 3e:83:3c:69:78:85:0e:14:c7:65:30:45:b4:7c:03:a3:55:b2: 09:d1:9a:45:59:db:8d:c2:84:e8:22:bd:1f:c6:cf:d2:55:2d: 63:f3:dd:96:72:72:89:88:8e:f4:4d:d5:53:e1:f8:60:ee:ad: b2:23:fd:7c:0e:06:f4:c7:29:a0:e9:c0:13:6b:1a:c2:58:01: a4:e3:d7:0a:5b:2f:b8:e1:33:e4:4e:6d:c4:ea:86:ab:0d:70: fc:4f:61:d9:2b:fe:75:3a:3c:e1:4b:c2:0c:c7:87:de:6d:f3: 4a:01:79:17:bc:ad:85:89:f8:07:d2:44:89:4f:00:61:f8:e3: e8:01:1f:aa:6e:26:7d:1c:58:9d:84:ac:64:7a:cc:8d:4d:fd: ae:42:c4:4b:9b:30:eb:f6:6e:fb:d6:1d:ff:1e:98:6f:90:22: 4e:64:3b:66:cd:32:ba:dc:1c:4e:4b:14:de:44:f5:4b:6e:e5: fb:c7:8f:52:a9:3a:3d:80:dc:32:a6:a8:93:c6:4b:56:5e:4d: 93:bf:9a:93:26:90:f6:09:d7:fc:72:cf:88:5f:53:0f:fe:08: d8:7b:81:b8:7d:f8:d8:9f:ac:b6:b7:31:cd:fd:10:f5:00:ac: be:05:f2:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxtS/jE6SBz+DPYWHykUCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyNjI0OTFmYTVlZTY3MGRjYzJjMmJlMTY5OGUzN2U5OTMx NzQ5MjMwHhcNMjYwMjA5MTkwMDI5WhcNMjYwMjEwMTkwMDI5WjAzMTEwLwYDVQQD Eyg1YmMzZmUxMTk5MjA4YTg1ZjU5OGJmY2IwODlkNmVkNjA5MzJlZTA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjY4gVVk3IGd5fRI5yz8ZkGPUuDA kXC6e+zMtJzBTbtPu/wm2rt6XHwRx4PLIWyDi+Bcqqo7pDPMayUD9jkxOk0NLo9c +x5tRm+AKg52HncniLK3kUqPpgjINsN3XZsez2V2nClzOZE2XwejlGBvqZ/6zOnQ Mn8x9BYQJxwUQ1Lh6Z8IOEOaZGtE//nQu9zvWEiB+BuC3JZMgHZngF0N81t9/eIl OfqfApayulj286Hs4lbfH9CogXzVjjqviHcEqqwZd95kJjL8Qn+L/h5MhFpu/jLt pA9CRym9AKobXYl68p23VinliLgE8/w6x2Ucx1qjOxn7E+FZ7FkOJWIV/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFvD/hGZIIqF9Zi/ywidbtYJMu4GMB8GA1UdIwQY MBaAFGJiSR+l7mcNzCwr4WmON+mTF0kjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWW1KSkg2WHVadzNNTEN2aGFZNDM2Wk1YU1NNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC85ZTkyNjItZDk1Ny00YzJmLTkwNzYt NmU4OWJjNmQ0MzNiLzEvWW1KSkg2WHVadzNNTEN2aGFZNDM2Wk1YU1NNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC85ZTkyNjItZDk1Ny00YzJmLTkwNzYtNmU4OWJjNmQ0MzNi LzEvWW1KSkg2WHVadzNNTEN2aGFZNDM2Wk1YU1NNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPY/UIfAb U2skWv8sQyLTrF0dPoM8aXiFDhTHZTBFtHwDo1WyCdGaRVnbjcKE6CK9H8bP0lUt Y/PdlnJyiYiO9E3VU+H4YO6tsiP9fA4G9McpoOnAE2sawlgBpOPXClsvuOEz5E5t xOqGqw1w/E9h2Sv+dTo84UvCDMeH3m3zSgF5F7ythYn4B9JEiU8AYfjj6AEfqm4m fRxYnYSsZHrMjU39rkLES5sw6/Zu+9Yd/x6Yb5AiTmQ7Zs0yutwcTksU3kT1S27l +8ePUqk6PYDcMqaok8ZLVl5Nk7+akyaQ9gnX/HLPiF9TD/4I2HuBuH342J+strcx zf0Q9QCsvgXynQ== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:08 2026 by rpki-client