This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.mft File: YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.mft (raw, json) Hash identifier: oG0acTEhIH+RgA7DewjIR1BckPXaRLqhF1vO153DUGI= Subject key identifier: A4:61:82:FA:4A:86:83:C3:74:B6:FB:DD:5B:A3:20:96:C0:E5:F9:7F Authority key identifier: 60:62:B2:1F:B6:65:5B:89:79:23:E2:9D:6F:CB:64:4A:B1:0A:C5:30 Certificate issuer: /CN=6062b21fb6655b897923e29d6fcb644ab10ac530 Certificate serial: 019C420F7908C6BEEFCB918F02C5A4FE69A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 11:00:36 +0000 Manifest this update: Mon 09 Feb 2026 11:00:36 +0000 Manifest next update: Tue 10 Feb 2026 11:00:36 +0000 Files and hashes: 1: YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.crl (hash: CvOZfMR9cgzocV3dgM7m4dwLyd5QKj7FJeqJD+vBiIE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.crl rsync://rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.mft rsync://rpki.ripe.net/repository/DEFAULT/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:79:08:c6:be:ef:cb:91:8f:02:c5:a4:fe:69:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6062b21fb6655b897923e29d6fcb644ab10ac530 Validity Not Before: Feb 9 11:00:36 2026 GMT Not After : Feb 10 11:00:36 2026 GMT Subject: CN=a46182fa4a8683c374b6fbdd5ba32096c0e5f97f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2f:12:84:00:01:d1:41:7b:74:43:d3:04:ef: d6:70:11:1d:c7:be:27:9b:14:1c:f0:a4:ec:00:14: 6a:3f:ec:64:da:e8:59:66:ee:db:3d:18:84:c9:8a: 36:a2:89:63:9d:2f:56:0f:54:1c:4f:30:c5:cc:bc: d8:cb:2e:52:35:cb:31:80:3a:53:ca:8f:46:4f:92: 2f:0e:cb:61:10:7e:6a:28:00:dd:5d:e2:3b:fd:96: 99:61:09:e5:93:18:13:99:b4:13:f2:50:21:82:4e: d4:4c:c0:38:9b:fb:d8:2e:e9:40:7c:7f:08:98:bb: e7:14:12:a9:8b:c6:08:7f:d9:05:61:8d:cb:09:7e: 77:c4:5f:9e:cd:13:06:34:36:ef:d8:33:c2:0e:58: d5:b9:84:41:4d:0c:42:42:fb:da:56:4b:55:16:d8: a5:6a:f2:0c:7b:3b:67:8d:af:50:94:12:06:0a:b2: f0:3a:21:c1:7b:4a:22:39:ee:fd:5b:a4:ef:df:e7: e7:da:a5:e8:ba:f7:a6:d0:fd:d0:8e:3a:bc:55:95: 8c:13:ce:05:b1:c2:82:a1:22:cc:b2:23:02:73:fd: a5:d8:a6:eb:68:88:d5:2a:f9:ad:91:61:33:c6:bc: 35:4c:e3:21:c1:f2:a1:1f:96:11:38:38:5f:90:81: 10:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:61:82:FA:4A:86:83:C3:74:B6:FB:DD:5B:A3:20:96:C0:E5:F9:7F X509v3 Authority Key Identifier: keyid:60:62:B2:1F:B6:65:5B:89:79:23:E2:9D:6F:CB:64:4A:B1:0A:C5:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/05b974-fb18-40af-afa6-b520beda6626/1/YGKyH7ZlW4l5I-Kdb8tkSrEKxTA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:3f:81:9d:1d:93:39:1b:78:e1:12:ff:e4:0c:df:52:74:45: 8c:a9:7e:18:c1:3a:fc:10:26:2b:eb:84:90:5d:82:66:35:f1: b2:85:5a:d5:11:2b:aa:45:3c:89:99:04:71:9e:71:b7:45:22: 52:17:c1:2f:b1:a2:14:28:9b:0d:1d:da:13:5e:f5:ac:65:06: 1b:8e:7b:da:00:03:54:64:89:ff:df:07:6e:fd:57:06:d2:97: 1a:39:bc:98:63:82:6d:20:d3:75:f6:9d:8c:3e:91:92:69:04: 1e:8c:82:75:e8:12:29:cd:c7:41:f9:be:c2:65:70:64:c5:e6: 0a:c4:4a:1c:e6:e9:de:8b:58:0c:45:ea:4d:33:c2:75:45:cb: d5:ac:21:0a:2b:b2:42:7a:b2:0b:03:5c:a0:8a:14:d2:5e:97: a0:c1:6b:8d:bb:3a:d9:ab:05:c0:53:ba:08:2c:29:e9:f2:3b: 42:0d:4f:0e:ae:cf:c8:10:3c:3b:ba:b5:8b:63:c0:59:0a:f1: 42:b3:cb:df:c8:5a:2d:1a:64:dd:48:19:17:ce:e7:7b:b9:d4: dc:d3:2c:5d:a0:71:3c:0a:43:2b:3e:d7:91:36:bb:f3:b0:99: 6b:9d:d0:34:61:ed:1e:cd:ca:ba:28:37:a9:cf:21:c4:d7:0f: 0d:58:86:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD3kIxr7vy5GPAsWk/mmjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjJiMjFmYjY2NTViODk3OTIzZTI5ZDZmY2I2NDRhYjEw YWM1MzAwHhcNMjYwMjA5MTEwMDM2WhcNMjYwMjEwMTEwMDM2WjAzMTEwLwYDVQQD EyhhNDYxODJmYTRhODY4M2MzNzRiNmZiZGQ1YmEzMjA5NmMwZTVmOTdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzC8ShAAB0UF7dEPTBO/WcBEdx74n mxQc8KTsABRqP+xk2uhZZu7bPRiEyYo2ooljnS9WD1QcTzDFzLzYyy5SNcsxgDpT yo9GT5IvDsthEH5qKADdXeI7/ZaZYQnlkxgTmbQT8lAhgk7UTMA4m/vYLulAfH8I mLvnFBKpi8YIf9kFYY3LCX53xF+ezRMGNDbv2DPCDljVuYRBTQxCQvvaVktVFtil avIMeztnja9QlBIGCrLwOiHBe0oiOe79W6Tv3+fn2qXouvem0P3Qjjq8VZWME84F scKCoSLMsiMCc/2l2KbraIjVKvmtkWEzxrw1TOMhwfKhH5YRODhfkIEQfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKRhgvpKhoPDdLb73VujIJbA5fl/MB8GA1UdIwQY MBaAFGBish+2ZVuJeSPinW/LZEqxCsUwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdLeUg3WmxXNGw1SS1LZGI4dGtTckVLeFRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS8wNWI5NzQtZmIxOC00MGFmLWFmYTYt YjUyMGJlZGE2NjI2LzEvWUdLeUg3WmxXNGw1SS1LZGI4dGtTckVLeFRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS8wNWI5NzQtZmIxOC00MGFmLWFmYTYtYjUyMGJlZGE2NjI2 LzEvWUdLeUg3WmxXNGw1SS1LZGI4dGtTckVLeFRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMD+BnR2T ORt44RL/5AzfUnRFjKl+GME6/BAmK+uEkF2CZjXxsoVa1RErqkU8iZkEcZ5xt0Ui UhfBL7GiFCibDR3aE171rGUGG4572gADVGSJ/98Hbv1XBtKXGjm8mGOCbSDTdfad jD6RkmkEHoyCdegSKc3HQfm+wmVwZMXmCsRKHObp3otYDEXqTTPCdUXL1awhCiuy QnqyCwNcoIoU0l6XoMFrjbs62asFwFO6CCwp6fI7Qg1PDq7PyBA8O7q1i2PAWQrx QrPL38haLRpk3UgZF87ne7nU3NMsXaBxPApDKz7XkTa787CZa53QNGHtHs3Kuig3 qc8hxNcPDViGIA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:02 2026 by rpki-client