This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/c0e385-cbe5-47f3-808d-e68767c18f02/1/ypfglEx3smswKXwtScO-ausnNxE.mft File: ypfglEx3smswKXwtScO-ausnNxE.mft (raw, json) Hash identifier: 8Y2CnNmFhjecbpUxmU3r4p6kPGHNEIVboBSPIpN4q+8= Subject key identifier: 9E:D9:7D:92:AC:4E:73:A1:27:54:0A:4A:FA:5D:30:D0:A0:C7:4B:8F Authority key identifier: CA:97:E0:94:4C:77:B2:6B:30:29:7C:2D:49:C3:BE:6A:EB:27:37:11 Certificate issuer: /CN=ca97e0944c77b26b30297c2d49c3be6aeb273711 Certificate serial: 019C4510D0B4ED94BB9C6857C55B2CF5749A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypfglEx3smswKXwtScO-ausnNxE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/c0e385-cbe5-47f3-808d-e68767c18f02/1/ypfglEx3smswKXwtScO-ausnNxE.mft Manifest number: 0526 Signing time: Tue 10 Feb 2026 01:00:55 +0000 Manifest this update: Tue 10 Feb 2026 01:00:55 +0000 Manifest next update: Wed 11 Feb 2026 01:00:55 +0000 Files and hashes: 1: ypfglEx3smswKXwtScO-ausnNxE.crl (hash: +nBg3bja0g3A24r6oxhoQJbCWh/23oTiIN6bJXC6050=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/c0e385-cbe5-47f3-808d-e68767c18f02/1/ypfglEx3smswKXwtScO-ausnNxE.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/c0e385-cbe5-47f3-808d-e68767c18f02/1/ypfglEx3smswKXwtScO-ausnNxE.mft rsync://rpki.ripe.net/repository/DEFAULT/ypfglEx3smswKXwtScO-ausnNxE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:10:d0:b4:ed:94:bb:9c:68:57:c5:5b:2c:f5:74:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca97e0944c77b26b30297c2d49c3be6aeb273711 Validity Not Before: Feb 10 01:00:55 2026 GMT Not After : Feb 11 01:00:55 2026 GMT Subject: CN=9ed97d92ac4e73a127540a4afa5d30d0a0c74b8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9d:68:13:91:f4:83:f4:96:81:4d:15:21:85: 18:0e:6d:37:3c:af:c3:09:0a:13:0d:59:af:b1:c0: ed:1f:cd:ef:bf:7c:27:22:d2:6e:36:1e:07:22:4d: dc:19:44:1e:db:36:a0:09:92:16:3c:58:b5:d3:49: 2f:07:57:a9:49:da:e0:eb:20:91:e6:18:3f:dd:50: 1d:a3:94:3c:08:d7:44:cb:d4:3e:72:10:a5:31:04: 12:d4:cf:fe:26:1d:91:0a:44:33:a4:86:4e:92:18: b8:e3:e7:17:c1:f6:b6:10:32:90:fa:3c:a2:14:c6: 96:4e:e0:aa:ca:26:a3:51:2e:10:0e:5e:80:0e:3c: c6:48:60:5f:9b:dd:9a:b6:73:87:86:55:a0:53:c0: a0:8c:a6:75:92:c3:29:eb:b0:d0:71:0c:d7:5d:58: dc:b0:09:ed:ce:6f:22:46:6b:3b:94:b8:cc:14:63: 27:74:9e:db:77:fe:05:16:6a:8c:90:90:af:75:3d: 32:f3:53:e0:ea:04:73:68:d5:33:84:9c:af:58:48: cc:20:2d:4f:0d:d1:1e:92:4f:3f:66:0f:08:c3:0c: 95:f1:6f:7a:79:fb:10:4c:d4:51:40:e2:32:27:c3: c3:cf:2e:0b:3c:73:20:ff:be:12:ef:0e:b9:30:3d: b8:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:D9:7D:92:AC:4E:73:A1:27:54:0A:4A:FA:5D:30:D0:A0:C7:4B:8F X509v3 Authority Key Identifier: keyid:CA:97:E0:94:4C:77:B2:6B:30:29:7C:2D:49:C3:BE:6A:EB:27:37:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypfglEx3smswKXwtScO-ausnNxE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/c0e385-cbe5-47f3-808d-e68767c18f02/1/ypfglEx3smswKXwtScO-ausnNxE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/c0e385-cbe5-47f3-808d-e68767c18f02/1/ypfglEx3smswKXwtScO-ausnNxE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:ad:9e:44:6b:6c:a1:e8:32:f7:ae:c0:e7:bd:fa:2a:70:51: c3:b9:c5:e0:92:77:33:a8:31:bb:13:79:c4:b4:be:c1:e6:f5: 67:e0:9f:75:95:8e:fc:13:e6:3a:91:6e:73:75:8b:5c:1e:92: ab:49:6a:d9:31:21:7f:08:84:20:56:f9:27:ac:5b:8c:e9:d0: a8:b7:b1:a1:47:32:84:38:a6:21:94:f1:01:28:e7:e1:f6:be: cf:0b:a1:e6:f6:8e:56:8f:26:52:10:78:fe:f0:97:ff:d4:97: 96:8e:88:4e:c9:48:78:fb:bf:c7:3c:7c:52:4d:8c:4a:41:d4: c1:5d:67:84:20:51:6e:12:80:1b:6a:8a:3c:98:9b:30:c1:4a: 0a:75:7e:4d:0f:95:16:e0:a2:fc:78:78:5f:18:24:c5:84:0e: 35:53:6c:6c:50:7d:e4:9b:d9:af:46:6c:a4:94:01:ab:0f:ee: b4:65:5d:c5:a6:92:84:4c:8f:f9:e0:9c:3b:73:ed:f6:a0:9c: e7:61:1c:9a:06:ba:96:be:f8:39:cd:a7:33:9a:5d:14:d1:3e: 94:ac:29:d0:e1:89:2e:95:79:b1:b5:98:53:11:ff:13:5d:5c: d7:d8:fa:5a:4d:cd:ad:b5:a5:96:84:a9:9e:7b:8c:3d:95:5d: 2b:27:2f:bc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFENC07ZS7nGhXxVss9XSaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhOTdlMDk0NGM3N2IyNmIzMDI5N2MyZDQ5YzNiZTZhZWIy NzM3MTEwHhcNMjYwMjEwMDEwMDU1WhcNMjYwMjExMDEwMDU1WjAzMTEwLwYDVQQD Eyg5ZWQ5N2Q5MmFjNGU3M2ExMjc1NDBhNGFmYTVkMzBkMGEwYzc0YjhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Z1oE5H0g/SWgU0VIYUYDm03PK/D CQoTDVmvscDtH83vv3wnItJuNh4HIk3cGUQe2zagCZIWPFi100kvB1epSdrg6yCR 5hg/3VAdo5Q8CNdEy9Q+chClMQQS1M/+Jh2RCkQzpIZOkhi44+cXwfa2EDKQ+jyi FMaWTuCqyiajUS4QDl6ADjzGSGBfm92atnOHhlWgU8CgjKZ1ksMp67DQcQzXXVjc sAntzm8iRms7lLjMFGMndJ7bd/4FFmqMkJCvdT0y81Pg6gRzaNUzhJyvWEjMIC1P DdEekk8/Zg8IwwyV8W96efsQTNRRQOIyJ8PDzy4LPHMg/74S7w65MD24DwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ7ZfZKsTnOhJ1QKSvpdMNCgx0uPMB8GA1UdIwQY MBaAFMqX4JRMd7JrMCl8LUnDvmrrJzcRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveXBmZ2xFeDNzbXN3S1h3dFNjTy1hdXNuTnhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi9jMGUzODUtY2JlNS00N2YzLTgwOGQt ZTY4NzY3YzE4ZjAyLzEveXBmZ2xFeDNzbXN3S1h3dFNjTy1hdXNuTnhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi9jMGUzODUtY2JlNS00N2YzLTgwOGQtZTY4NzY3YzE4ZjAy LzEveXBmZ2xFeDNzbXN3S1h3dFNjTy1hdXNuTnhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM62eRGts oegy967A5736KnBRw7nF4JJ3M6gxuxN5xLS+web1Z+CfdZWO/BPmOpFuc3WLXB6S q0lq2TEhfwiEIFb5J6xbjOnQqLexoUcyhDimIZTxASjn4fa+zwuh5vaOVo8mUhB4 /vCX/9SXlo6ITslIePu/xzx8Uk2MSkHUwV1nhCBRbhKAG2qKPJibMMFKCnV+TQ+V FuCi/Hh4XxgkxYQONVNsbFB95JvZr0ZspJQBqw/utGVdxaaShEyP+eCcO3Pt9qCc 52Ecmga6lr74Oc2nM5pdFNE+lKwp0OGJLpV5sbWYUxH/E11c19j6Wk3NrbWlloSp nnuMPZVdKycvvA== -----END CERTIFICATE-----Generated at Tue Feb 10 03:15:38 2026 by rpki-client