This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/33c1c0-4cb8-44b9-a3e9-e9e9937b8dce/1/YcGgEMsk-ZbneJixJHJbVbY0OOA.mft File: YcGgEMsk-ZbneJixJHJbVbY0OOA.mft (raw, json) Hash identifier: 76RXMLACcRYKg5j8U8YSPz14/Hy2awf3om8YpessWvU= Subject key identifier: 42:41:46:BA:99:79:83:9C:63:FE:EE:DC:2D:54:DE:E4:2A:16:61:4A Authority key identifier: 61:C1:A0:10:CB:24:F9:96:E7:78:98:B1:24:72:5B:55:B6:34:38:E0 Certificate issuer: /CN=61c1a010cb24f996e77898b124725b55b63438e0 Certificate serial: 019C4322D9E100CA3DED409213BE62291A08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcGgEMsk-ZbneJixJHJbVbY0OOA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/33c1c0-4cb8-44b9-a3e9-e9e9937b8dce/1/YcGgEMsk-ZbneJixJHJbVbY0OOA.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 16:01:23 +0000 Manifest this update: Mon 09 Feb 2026 16:01:23 +0000 Manifest next update: Tue 10 Feb 2026 16:01:23 +0000 Files and hashes: 1: YcGgEMsk-ZbneJixJHJbVbY0OOA.crl (hash: m50OavaQJguGPFtvx7eYJ9mFJSNZrng4/rTJGuqhHz0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/33c1c0-4cb8-44b9-a3e9-e9e9937b8dce/1/YcGgEMsk-ZbneJixJHJbVbY0OOA.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/33c1c0-4cb8-44b9-a3e9-e9e9937b8dce/1/YcGgEMsk-ZbneJixJHJbVbY0OOA.mft rsync://rpki.ripe.net/repository/DEFAULT/YcGgEMsk-ZbneJixJHJbVbY0OOA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:d9:e1:00:ca:3d:ed:40:92:13:be:62:29:1a:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61c1a010cb24f996e77898b124725b55b63438e0 Validity Not Before: Feb 9 16:01:23 2026 GMT Not After : Feb 10 16:01:23 2026 GMT Subject: CN=424146ba9979839c63feeedc2d54dee42a16614a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:21:c4:74:f1:cd:05:0b:88:67:da:7e:bd:fc: 18:7d:9d:93:5c:d2:83:a1:09:66:7d:20:61:ac:5f: fe:75:01:8f:16:2c:6c:69:8a:83:57:d3:17:ba:b3: a3:e3:f2:d5:0e:3f:ab:6c:23:14:f8:79:53:5e:c8: cb:52:b9:ae:da:3f:95:ac:7d:f6:c5:a4:29:2b:3a: d3:f7:4b:8a:1d:ee:23:d5:0a:8a:cf:a6:bd:e7:5d: 1e:36:22:2d:c1:45:c5:68:ad:f5:08:fd:57:49:97: f9:7b:22:48:7a:a2:4f:b7:be:5b:37:0b:d3:22:e8: 22:cb:91:7e:6e:cb:4c:55:55:85:aa:e7:2e:c8:23: 5e:41:8a:c5:2d:18:57:9d:e5:f0:3d:ce:8e:85:a6: a9:78:0e:87:05:71:de:ec:6a:aa:25:0c:e4:47:68: 8b:67:9f:9f:07:ff:73:b6:ad:0d:bc:a7:21:86:37: d1:7b:4e:24:6c:12:3a:a2:38:d8:64:a6:e3:af:df: 4c:15:5d:2d:2d:7e:c9:17:3b:fb:23:0a:90:13:6b: 32:d4:bc:35:9d:7f:7b:80:38:50:1f:5c:61:d4:06: 30:25:51:3d:dd:79:40:3b:26:72:7c:a5:03:df:db: e0:54:c3:e5:fd:6d:5a:0b:e4:03:b8:9b:05:77:49: c9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:41:46:BA:99:79:83:9C:63:FE:EE:DC:2D:54:DE:E4:2A:16:61:4A X509v3 Authority Key Identifier: keyid:61:C1:A0:10:CB:24:F9:96:E7:78:98:B1:24:72:5B:55:B6:34:38:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcGgEMsk-ZbneJixJHJbVbY0OOA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/33c1c0-4cb8-44b9-a3e9-e9e9937b8dce/1/YcGgEMsk-ZbneJixJHJbVbY0OOA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/33c1c0-4cb8-44b9-a3e9-e9e9937b8dce/1/YcGgEMsk-ZbneJixJHJbVbY0OOA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:bc:a2:ce:79:cb:ca:10:37:19:6e:ce:32:b2:93:dd:72:7f: f2:69:8d:9e:ea:97:ba:41:7b:8b:6a:c0:d6:d8:ad:26:98:fc: f8:30:d6:fe:4e:78:ad:b5:f7:7a:23:0f:b6:c0:f5:e5:f8:ab: 94:1e:f1:15:93:b9:cc:ac:e4:bb:10:6c:b5:1f:92:c8:e5:fb: 47:dd:a2:2d:f2:fa:b8:e5:d7:23:fb:d5:a5:5b:4d:48:fd:ae: 1a:bf:34:27:11:52:54:80:d3:69:a8:d3:66:2a:b2:a7:6c:3f: e0:82:15:98:49:7f:13:df:7f:3e:cd:e4:12:d4:fe:ab:20:8a: 4f:70:2a:d7:c8:ff:71:02:d0:8b:67:87:53:76:68:69:53:64: 6a:25:aa:70:8c:57:c5:68:04:c1:8e:50:ea:ea:bd:93:3f:a6: 29:89:f0:a7:df:c4:17:67:a3:96:75:19:ac:17:9e:6c:b4:d2: 56:ce:f0:ad:b5:2d:7d:24:56:1f:f6:d9:31:1c:8a:70:7a:9c: 52:36:e3:a1:71:14:d0:54:21:eb:fa:b3:55:c5:7f:c1:2e:1c: 54:fa:95:c2:a9:de:96:b0:43:7b:7f:f2:f6:82:c6:0a:f0:ae: 9b:3d:a2:a3:1c:d6:da:a9:7f:65:65:34:48:90:d7:78:4a:f6: 08:4b:5a:2f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDItnhAMo97UCSE75iKRoIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxYzFhMDEwY2IyNGY5OTZlNzc4OThiMTI0NzI1YjU1YjYz NDM4ZTAwHhcNMjYwMjA5MTYwMTIzWhcNMjYwMjEwMTYwMTIzWjAzMTEwLwYDVQQD Eyg0MjQxNDZiYTk5Nzk4MzljNjNmZWVlZGMyZDU0ZGVlNDJhMTY2MTRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuSHEdPHNBQuIZ9p+vfwYfZ2TXNKD oQlmfSBhrF/+dQGPFixsaYqDV9MXurOj4/LVDj+rbCMU+HlTXsjLUrmu2j+VrH32 xaQpKzrT90uKHe4j1QqKz6a9510eNiItwUXFaK31CP1XSZf5eyJIeqJPt75bNwvT Iugiy5F+bstMVVWFqucuyCNeQYrFLRhXneXwPc6OhaapeA6HBXHe7GqqJQzkR2iL Z5+fB/9ztq0NvKchhjfRe04kbBI6ojjYZKbjr99MFV0tLX7JFzv7IwqQE2sy1Lw1 nX97gDhQH1xh1AYwJVE93XlAOyZyfKUD39vgVMPl/W1aC+QDuJsFd0nJ6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEJBRrqZeYOcY/7u3C1U3uQqFmFKMB8GA1UdIwQY MBaAFGHBoBDLJPmW53iYsSRyW1W2NDjgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWNHZ0VNc2stWmJuZUppeEpISmJWYlkwT09BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8zM2MxYzAtNGNiOC00NGI5LWEzZTkt ZTllOTkzN2I4ZGNlLzEvWWNHZ0VNc2stWmJuZUppeEpISmJWYlkwT09BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi8zM2MxYzAtNGNiOC00NGI5LWEzZTktZTllOTkzN2I4ZGNl LzEvWWNHZ0VNc2stWmJuZUppeEpISmJWYlkwT09BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT7yiznnL yhA3GW7OMrKT3XJ/8mmNnuqXukF7i2rA1titJpj8+DDW/k54rbX3eiMPtsD15fir lB7xFZO5zKzkuxBstR+SyOX7R92iLfL6uOXXI/vVpVtNSP2uGr80JxFSVIDTaajT Ziqyp2w/4IIVmEl/E99/Ps3kEtT+qyCKT3Aq18j/cQLQi2eHU3ZoaVNkaiWqcIxX xWgEwY5Q6uq9kz+mKYnwp9/EF2ejlnUZrBeebLTSVs7wrbUtfSRWH/bZMRyKcHqc UjbjoXEU0FQh6/qzVcV/wS4cVPqVwqnelrBDe3/y9oLGCvCumz2ioxzW2ql/ZWU0 SJDXeEr2CEtaLw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:18:02 2026 by rpki-client