This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft File: YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft (raw, json) Hash identifier: Z8s1+FYlZSS8bi0gitIqYVXJFh8kUqw72UZerZ9+wjA= Subject key identifier: FC:C8:50:10:72:45:D7:52:4E:35:07:E8:38:FF:59:E7:CC:D7:33:75 Authority key identifier: 60:F3:1D:82:0C:32:40:0D:EC:0C:60:49:61:78:99:4D:57:75:2A:CC Certificate issuer: /CN=60f31d820c32400dec0c60496178994d57752acc Certificate serial: 019C4133F0F63F389343CE65B415360CF541 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft Manifest number: 180B Signing time: Mon 09 Feb 2026 07:00:48 +0000 Manifest this update: Mon 09 Feb 2026 07:00:48 +0000 Manifest next update: Tue 10 Feb 2026 07:00:48 +0000 Files and hashes: 1: YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl (hash: jq4TZE8E5qcrSb0JPGjQKRAmuw1QNcLjXuXf6IJbGPA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:f0:f6:3f:38:93:43:ce:65:b4:15:36:0c:f5:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60f31d820c32400dec0c60496178994d57752acc Validity Not Before: Feb 9 07:00:48 2026 GMT Not After : Feb 10 07:00:48 2026 GMT Subject: CN=fcc850107245d7524e3507e838ff59e7ccd73375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:d7:87:cb:31:46:5c:2e:f0:ed:aa:c7:3e:78: 02:0b:9e:db:dc:e4:19:70:af:41:16:6f:03:ff:be: 47:40:b5:42:a1:d0:c4:69:ad:7e:ba:8e:23:a8:a2: 4d:1a:c7:03:65:0e:62:b2:d7:ac:ac:e8:70:7a:3d: da:73:59:9e:9e:32:fb:35:23:e0:4d:c1:81:3c:55: 5d:05:dc:a5:ef:c6:d9:9c:90:cd:2d:36:4c:63:46: b9:db:27:e6:d3:31:34:df:9c:2c:37:f6:37:a2:c8: 5e:d0:42:a3:c8:68:8e:9d:6a:e2:20:8a:bb:b5:d6: f0:a6:7a:ee:1e:6a:43:0d:da:38:de:5c:e5:65:56: 9b:be:ce:cd:35:ca:46:7e:3e:00:2a:0f:8c:77:2b: 8e:a0:68:de:af:7c:75:88:ba:73:ef:c3:2b:c5:e1: f3:5b:4e:f5:c4:ea:9a:f7:32:0a:53:e9:ca:a7:34: 01:63:2d:4a:39:4b:2c:ee:50:fc:1b:25:6d:a0:ed: d4:94:e0:fc:b1:32:98:c9:ba:f1:4c:58:b7:04:ae: 07:61:4c:7d:4e:f5:18:64:66:f6:da:35:0b:c8:bf: 67:f0:d6:0b:30:57:e5:85:d5:c6:a4:99:57:b5:41: 1e:a0:2d:3a:13:06:a6:25:4d:1e:13:82:72:61:39: 20:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:C8:50:10:72:45:D7:52:4E:35:07:E8:38:FF:59:E7:CC:D7:33:75 X509v3 Authority Key Identifier: keyid:60:F3:1D:82:0C:32:40:0D:EC:0C:60:49:61:78:99:4D:57:75:2A:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:d2:d9:25:cf:1d:73:70:b8:b0:df:21:a4:51:55:6f:99:6b: 1f:eb:25:96:b4:bd:db:9f:85:7f:b7:82:d7:3c:95:77:9b:25: 1d:77:24:c0:b1:86:06:7d:f2:b7:c2:5a:6a:d7:e9:45:05:ae: 30:db:0b:da:eb:6f:41:bb:69:d0:2a:51:21:6f:cc:f1:61:a5: fb:1f:ef:8c:af:d2:a6:c2:a5:c2:20:da:18:f6:6c:9d:79:e2: 7b:a1:09:dd:e0:ad:b3:be:86:0b:88:33:fe:02:18:21:0e:53: c2:4f:38:d7:06:15:70:3f:e3:1d:a9:ce:eb:91:e4:36:d5:48: 2a:7b:5a:ad:f8:a0:a3:4b:24:52:f2:08:48:b3:d7:5b:bd:58: 19:10:58:83:3f:db:33:ab:a3:ac:b5:55:7f:fb:c5:ab:f9:5f: 4a:a5:f0:e4:aa:af:91:d1:d8:61:63:fc:81:83:b2:a6:0a:08: b6:87:a1:bd:14:35:d1:bd:83:bb:fc:01:9c:6f:54:69:5b:8a: 68:ec:b3:9a:57:33:36:cd:93:b2:a9:3f:e2:ad:cf:b8:86:2e: 75:dc:06:96:f5:18:d6:e7:f3:5d:5a:15:63:00:83:ff:18:97: 79:9a:ee:b3:5a:b4:49:54:43:9d:1e:e2:93:52:96:70:51:34: 46:26:bf:78 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM/D2PziTQ85ltBU2DPVBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwZjMxZDgyMGMzMjQwMGRlYzBjNjA0OTYxNzg5OTRkNTc3 NTJhY2MwHhcNMjYwMjA5MDcwMDQ4WhcNMjYwMjEwMDcwMDQ4WjAzMTEwLwYDVQQD EyhmY2M4NTAxMDcyNDVkNzUyNGUzNTA3ZTgzOGZmNTllN2NjZDczMzc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh9eHyzFGXC7w7arHPngCC57b3OQZ cK9BFm8D/75HQLVCodDEaa1+uo4jqKJNGscDZQ5istesrOhwej3ac1menjL7NSPg TcGBPFVdBdyl78bZnJDNLTZMY0a52yfm0zE035wsN/Y3oshe0EKjyGiOnWriIIq7 tdbwpnruHmpDDdo43lzlZVabvs7NNcpGfj4AKg+MdyuOoGjer3x1iLpz78MrxeHz W071xOqa9zIKU+nKpzQBYy1KOUss7lD8GyVtoO3UlOD8sTKYybrxTFi3BK4HYUx9 TvUYZGb22jULyL9n8NYLMFflhdXGpJlXtUEeoC06EwamJU0eE4JyYTkgHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPzIUBByRddSTjUH6Dj/WefM1zN1MB8GA1UdIwQY MBaAFGDzHYIMMkAN7AxgSWF4mU1XdSrMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVBNZGdnd3lRQTNzREdCSllYaVpUVmQxS3N3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy9hMjg1NTMtODk5Yy00MDY4LTk2NzMt ZGVkMjExM2I5MDYwLzEvWVBNZGdnd3lRQTNzREdCSllYaVpUVmQxS3N3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy9hMjg1NTMtODk5Yy00MDY4LTk2NzMtZGVkMjExM2I5MDYw LzEvWVBNZGdnd3lRQTNzREdCSllYaVpUVmQxS3N3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARdLZJc8d c3C4sN8hpFFVb5lrH+sllrS925+Ff7eC1zyVd5slHXckwLGGBn3yt8JaatfpRQWu MNsL2utvQbtp0CpRIW/M8WGl+x/vjK/SpsKlwiDaGPZsnXnie6EJ3eCts76GC4gz /gIYIQ5Twk841wYVcD/jHanO65HkNtVIKntarfigo0skUvIISLPXW71YGRBYgz/b M6ujrLVVf/vFq/lfSqXw5KqvkdHYYWP8gYOypgoItoehvRQ10b2Du/wBnG9UaVuK aOyzmlczNs2Tsqk/4q3PuIYuddwGlvUY1ufzXVoVYwCD/xiXeZrus1q0SVRDnR7i k1KWcFE0Ria/eA== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:24 2026 by rpki-client