This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/5fbb69-9b7e-43be-8904-19de2c183c05/1/ykV-EXPE6FG5LTyO6ZZxUZSKmuk.mft File: ykV-EXPE6FG5LTyO6ZZxUZSKmuk.mft (raw, json) Hash identifier: eg8yo8/TJikfENiK1v61nY5SGlaBn/82Fhna04lkU6M= Subject key identifier: E8:55:76:59:E9:86:DE:73:1A:65:50:4C:60:B2:17:A7:78:7D:77:67 Authority key identifier: CA:45:7E:11:73:C4:E8:51:B9:2D:3C:8E:E9:96:71:51:94:8A:9A:E9 Certificate issuer: /CN=ca457e1173c4e851b92d3c8ee9967151948a9ae9 Certificate serial: 019C41D851C6EC487104D09C9FA884D81C5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykV-EXPE6FG5LTyO6ZZxUZSKmuk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/5fbb69-9b7e-43be-8904-19de2c183c05/1/ykV-EXPE6FG5LTyO6ZZxUZSKmuk.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 10:00:21 +0000 Manifest this update: Mon 09 Feb 2026 10:00:21 +0000 Manifest next update: Tue 10 Feb 2026 10:00:21 +0000 Files and hashes: 1: ykV-EXPE6FG5LTyO6ZZxUZSKmuk.crl (hash: UbbjS3bjxRbtO2qwISDBz+ycq5T3Fpc+hP4o1FTVChs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/5fbb69-9b7e-43be-8904-19de2c183c05/1/ykV-EXPE6FG5LTyO6ZZxUZSKmuk.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/5fbb69-9b7e-43be-8904-19de2c183c05/1/ykV-EXPE6FG5LTyO6ZZxUZSKmuk.mft rsync://rpki.ripe.net/repository/DEFAULT/ykV-EXPE6FG5LTyO6ZZxUZSKmuk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:51:c6:ec:48:71:04:d0:9c:9f:a8:84:d8:1c:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca457e1173c4e851b92d3c8ee9967151948a9ae9 Validity Not Before: Feb 9 10:00:21 2026 GMT Not After : Feb 10 10:00:21 2026 GMT Subject: CN=e8557659e986de731a65504c60b217a7787d7767 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:45:b0:9b:6e:4e:f0:3e:8b:a2:55:6f:c8:05: 56:87:13:7d:37:78:7f:3c:f4:c9:bb:1e:89:e0:20: 04:82:4c:a3:11:e7:d4:28:ed:eb:6a:d5:57:65:8c: c1:90:7c:56:11:c5:7b:10:71:f7:de:ce:f3:c0:03: ac:0d:2f:00:16:eb:68:25:32:1a:4f:68:93:2e:04: 0a:1a:a6:3b:ff:d2:74:ef:06:00:f6:e0:e5:b3:48: e4:f6:78:67:3e:8a:84:d5:c1:a9:3e:d7:2e:38:76: fb:3c:c5:c9:fd:8e:60:4b:a1:f2:02:63:1e:f5:8c: 77:75:c5:70:0b:87:ca:6e:90:af:83:63:25:17:a7: 5d:ff:3b:7b:69:78:89:59:ea:e7:3d:c3:4f:a2:cc: 3f:f0:91:ab:03:1e:5d:b1:be:55:50:c2:32:bb:6f: 8b:9c:c6:d9:c7:b7:f5:55:6c:f3:cc:ed:bd:69:36: ad:00:2e:51:db:ac:d4:c0:cc:e5:4f:12:45:52:50: 0a:70:a4:b6:3a:72:b0:33:0c:78:ef:d1:38:1e:86: 79:0a:92:7d:57:3c:21:e3:04:a2:01:94:d1:71:44: d0:5e:45:c7:e6:21:ae:3b:d2:7e:1b:ed:62:cb:79: 94:71:81:85:84:3e:af:1c:ef:72:09:9f:28:ea:35: ed:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:55:76:59:E9:86:DE:73:1A:65:50:4C:60:B2:17:A7:78:7D:77:67 X509v3 Authority Key Identifier: keyid:CA:45:7E:11:73:C4:E8:51:B9:2D:3C:8E:E9:96:71:51:94:8A:9A:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykV-EXPE6FG5LTyO6ZZxUZSKmuk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/5fbb69-9b7e-43be-8904-19de2c183c05/1/ykV-EXPE6FG5LTyO6ZZxUZSKmuk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/5fbb69-9b7e-43be-8904-19de2c183c05/1/ykV-EXPE6FG5LTyO6ZZxUZSKmuk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:6a:f6:05:3f:a4:ca:7c:29:4e:24:24:8f:f2:ae:22:fd:64: 88:e5:1a:a1:73:89:ff:58:c6:1d:f6:b3:d9:a5:cd:58:e9:1e: aa:3d:aa:a9:09:53:ed:ec:18:0e:51:8d:d9:65:d8:86:c4:ce: 87:3b:27:75:f6:1a:e9:97:68:2d:44:02:33:10:a2:63:a9:43: c6:e5:a4:8d:14:9d:18:24:d1:86:a7:07:e9:4d:85:88:ce:78: dd:71:9e:27:28:ef:0e:cc:be:1a:59:a3:50:26:d2:70:c4:b7: 5e:a6:57:9c:6d:d7:46:1a:42:4f:f9:cd:10:a2:98:aa:ba:ae: 66:ec:4f:9e:ff:a5:12:1d:83:99:9b:e5:fd:5e:09:e8:bc:28: 4a:42:b7:c4:be:23:a1:d4:37:fb:b8:e4:10:e4:e2:08:0a:90: 39:08:a2:c2:51:ee:ec:ae:5d:59:f8:70:c3:fe:18:5a:75:c3: 00:07:ed:b6:7a:2e:a4:39:15:03:18:97:6b:35:79:10:94:74: 0c:6d:40:28:f4:18:ce:29:8e:0a:2f:3a:79:ed:1b:09:4b:60: 86:40:f5:67:57:d6:1a:a2:b8:a2:2a:34:0d:b5:9d:3a:4f:6e: 04:b4:83:e6:ff:90:04:d0:9f:b0:aa:ca:56:da:d8:8e:47:81: fd:4a:e9:5f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2FHG7EhxBNCcn6iE2BxbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNDU3ZTExNzNjNGU4NTFiOTJkM2M4ZWU5OTY3MTUxOTQ4 YTlhZTkwHhcNMjYwMjA5MTAwMDIxWhcNMjYwMjEwMTAwMDIxWjAzMTEwLwYDVQQD EyhlODU1NzY1OWU5ODZkZTczMWE2NTUwNGM2MGIyMTdhNzc4N2Q3NzY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyEWwm25O8D6LolVvyAVWhxN9N3h/ PPTJux6J4CAEgkyjEefUKO3ratVXZYzBkHxWEcV7EHH33s7zwAOsDS8AFutoJTIa T2iTLgQKGqY7/9J07wYA9uDls0jk9nhnPoqE1cGpPtcuOHb7PMXJ/Y5gS6HyAmMe 9Yx3dcVwC4fKbpCvg2MlF6dd/zt7aXiJWernPcNPosw/8JGrAx5dsb5VUMIyu2+L nMbZx7f1VWzzzO29aTatAC5R26zUwMzlTxJFUlAKcKS2OnKwMwx479E4HoZ5CpJ9 Vzwh4wSiAZTRcUTQXkXH5iGuO9J+G+1iy3mUcYGFhD6vHO9yCZ8o6jXtkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOhVdlnpht5zGmVQTGCyF6d4fXdnMB8GA1UdIwQY MBaAFMpFfhFzxOhRuS08jumWcVGUiprpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWtWLUVYUEU2Rkc1TFR5TzZaWnhVWlNLbXVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS81ZmJiNjktOWI3ZS00M2JlLTg5MDQt MTlkZTJjMTgzYzA1LzEveWtWLUVYUEU2Rkc1TFR5TzZaWnhVWlNLbXVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS81ZmJiNjktOWI3ZS00M2JlLTg5MDQtMTlkZTJjMTgzYzA1 LzEveWtWLUVYUEU2Rkc1TFR5TzZaWnhVWlNLbXVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANWr2BT+k ynwpTiQkj/KuIv1kiOUaoXOJ/1jGHfaz2aXNWOkeqj2qqQlT7ewYDlGN2WXYhsTO hzsndfYa6ZdoLUQCMxCiY6lDxuWkjRSdGCTRhqcH6U2FiM543XGeJyjvDsy+Glmj UCbScMS3XqZXnG3XRhpCT/nNEKKYqrquZuxPnv+lEh2DmZvl/V4J6LwoSkK3xL4j odQ3+7jkEOTiCAqQOQiiwlHu7K5dWfhww/4YWnXDAAfttnoupDkVAxiXazV5EJR0 DG1AKPQYzimOCi86ee0bCUtghkD1Z1fWGqK4oio0DbWdOk9uBLSD5v+QBNCfsKrK VtrYjkeB/UrpXw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:10 2026 by rpki-client