This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/497dd1-755e-442a-b31d-1c13250a6a3c/1/y_nNJDztaTe2vqVxAoFP-bpCZiE.mft File: y_nNJDztaTe2vqVxAoFP-bpCZiE.mft (raw, json) Hash identifier: dGfw9JkGy6S0JjLHC10q4p+Idw6ep6Xpo2ECqai98fk= Subject key identifier: D5:7D:40:AD:FA:9C:AC:6E:A7:AD:0A:E7:20:CF:A6:32:B2:01:09:E7 Authority key identifier: CB:F9:CD:24:3C:ED:69:37:B6:BE:A5:71:02:81:4F:F9:BA:42:66:21 Certificate issuer: /CN=cbf9cd243ced6937b6bea57102814ff9ba426621 Certificate serial: 019C43904223AF767C1CF302B63E0A6AF6E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y_nNJDztaTe2vqVxAoFP-bpCZiE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/497dd1-755e-442a-b31d-1c13250a6a3c/1/y_nNJDztaTe2vqVxAoFP-bpCZiE.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 18:00:53 +0000 Manifest this update: Mon 09 Feb 2026 18:00:53 +0000 Manifest next update: Tue 10 Feb 2026 18:00:53 +0000 Files and hashes: 1: y_nNJDztaTe2vqVxAoFP-bpCZiE.crl (hash: 2Uym6MH7Xv2lkFFWE5noMETNNmS+F1+UF6zAFuT19jk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/497dd1-755e-442a-b31d-1c13250a6a3c/1/y_nNJDztaTe2vqVxAoFP-bpCZiE.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/497dd1-755e-442a-b31d-1c13250a6a3c/1/y_nNJDztaTe2vqVxAoFP-bpCZiE.mft rsync://rpki.ripe.net/repository/DEFAULT/y_nNJDztaTe2vqVxAoFP-bpCZiE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:42:23:af:76:7c:1c:f3:02:b6:3e:0a:6a:f6:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cbf9cd243ced6937b6bea57102814ff9ba426621 Validity Not Before: Feb 9 18:00:53 2026 GMT Not After : Feb 10 18:00:53 2026 GMT Subject: CN=d57d40adfa9cac6ea7ad0ae720cfa632b20109e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:dc:c9:8e:bd:e9:69:24:01:ea:d7:9b:36:ea: 11:8d:52:6a:be:57:10:c8:f3:d4:40:20:3d:57:e2: 4f:1e:41:cf:ca:83:f6:fa:a1:8f:84:3f:f5:d9:5d: 16:d5:b8:bd:46:ac:f0:6e:fb:cc:d5:1b:ff:3c:64: be:19:26:cc:da:0e:ce:a6:d9:3b:e9:38:52:cc:01: 7f:b5:ef:35:c1:86:45:1c:a7:1f:5d:cb:d0:6d:a2: 20:11:23:1f:c3:6a:97:d8:72:3d:1f:02:55:d5:3d: b4:c4:20:de:57:15:62:94:a9:73:3b:35:7f:53:a9: e5:b1:b4:1f:54:32:81:28:f9:f6:fc:70:0f:86:46: 2a:98:c7:4d:c9:8a:c7:58:96:4d:90:2f:c0:98:d6: a0:32:85:1e:3d:df:2e:d2:4e:a0:28:7c:a3:22:a8: 49:8d:f9:81:29:87:48:e4:e5:b9:6f:6b:c9:41:ac: 96:2b:97:58:38:96:42:a3:97:b9:5a:24:1d:f4:08: e7:82:04:e7:e9:cf:44:e5:c5:44:bd:6c:b7:4c:aa: 3e:5c:01:74:21:81:80:d6:1f:17:ba:30:ae:f3:2f: 60:bf:a4:0e:94:23:c9:71:bd:1e:91:08:29:29:84: 3b:06:6e:74:89:6b:36:80:1a:f6:65:9b:c3:0e:cd: e9:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:7D:40:AD:FA:9C:AC:6E:A7:AD:0A:E7:20:CF:A6:32:B2:01:09:E7 X509v3 Authority Key Identifier: keyid:CB:F9:CD:24:3C:ED:69:37:B6:BE:A5:71:02:81:4F:F9:BA:42:66:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y_nNJDztaTe2vqVxAoFP-bpCZiE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/497dd1-755e-442a-b31d-1c13250a6a3c/1/y_nNJDztaTe2vqVxAoFP-bpCZiE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/497dd1-755e-442a-b31d-1c13250a6a3c/1/y_nNJDztaTe2vqVxAoFP-bpCZiE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:f3:5e:c7:2c:65:31:74:71:ea:dd:11:2c:08:44:f4:2a:c8: ee:a1:7f:37:5d:b7:49:e6:2f:51:9e:cb:82:2a:12:90:57:9f: ff:48:64:fb:59:58:9f:fe:65:a4:99:bc:44:84:03:7e:94:3c: 98:ac:4a:fd:34:65:2e:93:90:c7:e6:f2:cb:11:31:7b:61:16: c8:96:63:c6:77:71:79:16:a6:bc:b5:62:65:ab:b4:29:bb:d3: 76:3f:ea:e2:99:0c:06:b3:e9:13:03:8f:0c:71:2b:dd:23:43: 19:c9:5d:e7:cb:c1:76:10:ba:8d:c7:c0:44:61:0f:74:63:1d: 4f:f1:49:3e:a3:d5:f6:0a:41:0d:dc:05:a2:c7:99:e1:df:b1: 64:e6:f6:c9:92:dd:e4:df:e7:65:fb:77:79:91:a8:32:cc:e7: 6f:55:db:c7:35:ec:d9:64:e4:6a:53:56:b4:45:25:8b:98:83: 71:4e:19:7b:f1:c1:d7:e8:ff:89:07:b0:97:86:12:f8:50:fb: 6e:1c:f6:48:62:3b:04:df:5e:a7:93:14:de:cc:58:2e:73:89: 2d:62:39:46:38:e7:9e:bb:58:7e:08:cb:bb:4d:2f:dc:ad:29: fc:a5:8c:f1:90:fd:0a:37:10:b1:d7:92:78:fb:f8:ba:f2:0c: aa:63:f0:5d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkEIjr3Z8HPMCtj4KavbkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiZjljZDI0M2NlZDY5MzdiNmJlYTU3MTAyODE0ZmY5YmE0 MjY2MjEwHhcNMjYwMjA5MTgwMDUzWhcNMjYwMjEwMTgwMDUzWjAzMTEwLwYDVQQD EyhkNTdkNDBhZGZhOWNhYzZlYTdhZDBhZTcyMGNmYTYzMmIyMDEwOWU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh9zJjr3paSQB6tebNuoRjVJqvlcQ yPPUQCA9V+JPHkHPyoP2+qGPhD/12V0W1bi9RqzwbvvM1Rv/PGS+GSbM2g7Optk7 6ThSzAF/te81wYZFHKcfXcvQbaIgESMfw2qX2HI9HwJV1T20xCDeVxVilKlzOzV/ U6nlsbQfVDKBKPn2/HAPhkYqmMdNyYrHWJZNkC/AmNagMoUePd8u0k6gKHyjIqhJ jfmBKYdI5OW5b2vJQayWK5dYOJZCo5e5WiQd9AjnggTn6c9E5cVEvWy3TKo+XAF0 IYGA1h8XujCu8y9gv6QOlCPJcb0ekQgpKYQ7Bm50iWs2gBr2ZZvDDs3pOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNV9QK36nKxup60K5yDPpjKyAQnnMB8GA1UdIwQY MBaAFMv5zSQ87Wk3tr6lcQKBT/m6QmYhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveV9uTkpEenRhVGUydnFWeEFvRlAtYnBDWmlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy80OTdkZDEtNzU1ZS00NDJhLWIzMWQt MWMxMzI1MGE2YTNjLzEveV9uTkpEenRhVGUydnFWeEFvRlAtYnBDWmlFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy80OTdkZDEtNzU1ZS00NDJhLWIzMWQtMWMxMzI1MGE2YTNj LzEveV9uTkpEenRhVGUydnFWeEFvRlAtYnBDWmlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANPNexyxl MXRx6t0RLAhE9CrI7qF/N123SeYvUZ7LgioSkFef/0hk+1lYn/5lpJm8RIQDfpQ8 mKxK/TRlLpOQx+byyxExe2EWyJZjxndxeRamvLViZau0KbvTdj/q4pkMBrPpEwOP DHEr3SNDGcld58vBdhC6jcfARGEPdGMdT/FJPqPV9gpBDdwFoseZ4d+xZOb2yZLd 5N/nZft3eZGoMsznb1XbxzXs2WTkalNWtEUli5iDcU4Ze/HB1+j/iQewl4YS+FD7 bhz2SGI7BN9ep5MU3sxYLnOJLWI5RjjnnrtYfgjLu00v3K0p/KWM8ZD9CjcQsdeS ePv4uvIMqmPwXQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:00:55 2026 by rpki-client