This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.mft File: YPa89uKxCboqFKc7l1rZVEhLS6U.mft (raw, json) Hash identifier: GkJvsq+yBpab1KdYFM0kA8R4j4+RFj+eM16xdRVNB9w= Subject key identifier: B2:43:1E:87:0A:D1:D1:CE:C7:F8:1D:91:C8:83:98:50:D2:EA:19:69 Authority key identifier: 60:F6:BC:F6:E2:B1:09:BA:2A:14:A7:3B:97:5A:D9:54:48:4B:4B:A5 Certificate issuer: /CN=60f6bcf6e2b109ba2a14a73b975ad954484b4ba5 Certificate serial: 019C42EB1DA0BB16DC7E99C1C473871B2BF9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YPa89uKxCboqFKc7l1rZVEhLS6U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.mft Manifest number: 0C92 Signing time: Mon 09 Feb 2026 15:00:30 +0000 Manifest this update: Mon 09 Feb 2026 15:00:30 +0000 Manifest next update: Tue 10 Feb 2026 15:00:30 +0000 Files and hashes: 1: YPa89uKxCboqFKc7l1rZVEhLS6U.crl (hash: jr9noEE+S2fGIa70ZDid3he3rEsxmdqB7tSMAg8sJBE=) 2: iYF3KvUl8FH939niefVDnuUP2E0.roa (hash: hm0pJ2uzYWg+4xRBDq9krSLEFM5bGxPbKMQmAB2V7Wo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.crl rsync://rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.mft rsync://rpki.ripe.net/repository/DEFAULT/YPa89uKxCboqFKc7l1rZVEhLS6U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:1d:a0:bb:16:dc:7e:99:c1:c4:73:87:1b:2b:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60f6bcf6e2b109ba2a14a73b975ad954484b4ba5 Validity Not Before: Feb 9 15:00:30 2026 GMT Not After : Feb 10 15:00:30 2026 GMT Subject: CN=b2431e870ad1d1cec7f81d91c8839850d2ea1969 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3b:ec:6c:46:c4:47:89:47:2c:fa:00:45:9a: 97:7a:0d:86:bf:0d:33:84:a3:4f:74:04:c9:5d:05: 13:6b:a0:76:d6:49:1e:ba:8f:17:35:87:81:c7:4c: fa:4f:e8:3d:06:59:38:59:b0:1e:d3:93:4b:43:d2: ba:01:f6:f4:23:e4:dc:1d:eb:87:42:22:70:15:e0: e7:88:9d:61:f9:4b:69:42:48:5e:86:a5:f6:ce:4d: ae:d9:76:77:76:12:38:52:4c:af:a7:a7:3f:46:81: f7:29:41:b9:6e:b4:b1:53:39:1a:a2:70:50:f8:cf: 6d:75:31:ca:e6:48:32:a7:53:a3:55:19:ac:96:a9: e1:d7:37:67:6d:e6:ab:8b:1f:76:e1:e3:81:0b:04: 5a:0a:e4:3e:86:8f:28:8c:24:7a:c6:ab:c5:f4:eb: 54:e7:69:3e:5f:76:95:14:5e:88:0d:63:4b:69:ac: e6:98:fd:f8:e2:f3:00:e9:55:95:20:e1:88:75:8b: a7:96:00:64:59:44:c6:26:aa:1d:ec:8d:77:71:29: a5:8f:a8:15:ac:5b:6b:90:cd:ee:ce:db:27:1c:85: 8a:dc:37:2e:f3:c9:22:aa:6a:ff:2f:8a:35:72:57: 94:e3:3f:df:ac:02:cc:78:03:a2:92:17:cf:5f:7e: 16:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:43:1E:87:0A:D1:D1:CE:C7:F8:1D:91:C8:83:98:50:D2:EA:19:69 X509v3 Authority Key Identifier: keyid:60:F6:BC:F6:E2:B1:09:BA:2A:14:A7:3B:97:5A:D9:54:48:4B:4B:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YPa89uKxCboqFKc7l1rZVEhLS6U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:78:fa:ed:cb:8c:26:61:57:cf:28:55:2f:06:5b:38:e0:19: 9a:43:c8:38:01:d1:b3:ed:1e:3a:b8:65:31:31:42:ee:81:67: a4:cc:23:8d:3d:4c:ad:14:a3:50:bf:06:b0:30:56:b6:8e:32: 15:57:0e:54:1d:29:53:f8:46:71:ca:41:86:bc:e2:43:86:c0: 63:4f:e0:66:f4:76:20:e7:8b:df:58:ab:67:8e:88:69:0a:39: 36:65:9d:82:db:05:73:11:40:14:91:7f:4a:52:3a:c0:6c:21: 9d:a7:68:88:9a:ed:f1:88:97:8c:c4:74:8d:53:e1:00:ec:1b: 60:a5:7a:ff:c3:b2:b1:90:d7:93:12:6e:ca:06:d6:81:0d:1f: 2b:c8:b5:8f:48:a5:d1:37:31:10:f8:94:e5:f9:d9:5b:07:07: 6a:20:07:65:b3:07:b6:05:bd:4f:bd:a2:5e:ff:b1:da:03:dc: a5:b3:41:f5:4d:cf:3f:77:28:99:b7:73:70:3a:d9:12:bb:9b: ee:aa:59:6e:a6:cc:cb:c0:2b:9c:25:00:9c:1b:25:4c:e7:3b: 8c:25:2d:2e:aa:b1:14:87:68:17:fe:cb:ee:7a:69:c6:f9:65: 69:2f:2b:24:d1:e7:96:fd:e0:e7:34:96:b2:76:24:e1:55:92: 7b:d9:1a:dd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6x2guxbcfpnBxHOHGyv5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwZjZiY2Y2ZTJiMTA5YmEyYTE0YTczYjk3NWFkOTU0NDg0 YjRiYTUwHhcNMjYwMjA5MTUwMDMwWhcNMjYwMjEwMTUwMDMwWjAzMTEwLwYDVQQD EyhiMjQzMWU4NzBhZDFkMWNlYzdmODFkOTFjODgzOTg1MGQyZWExOTY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvjvsbEbER4lHLPoARZqXeg2Gvw0z hKNPdATJXQUTa6B21kkeuo8XNYeBx0z6T+g9Blk4WbAe05NLQ9K6Afb0I+TcHeuH QiJwFeDniJ1h+UtpQkhehqX2zk2u2XZ3dhI4Ukyvp6c/RoH3KUG5brSxUzkaonBQ +M9tdTHK5kgyp1OjVRmslqnh1zdnbearix924eOBCwRaCuQ+ho8ojCR6xqvF9OtU 52k+X3aVFF6IDWNLaazmmP344vMA6VWVIOGIdYunlgBkWUTGJqod7I13cSmlj6gV rFtrkM3uztsnHIWK3Dcu88kiqmr/L4o1cleU4z/frALMeAOikhfPX34WTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLJDHocK0dHOx/gdkciDmFDS6hlpMB8GA1UdIwQY MBaAFGD2vPbisQm6KhSnO5da2VRIS0ulMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVBhODl1S3hDYm9xRktjN2wxclpWRWhMUzZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS84M2FkYmItMzYyNy00Yjg3LTlmN2Qt YWI0MDI1M2I1ZTJiLzEvWVBhODl1S3hDYm9xRktjN2wxclpWRWhMUzZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS84M2FkYmItMzYyNy00Yjg3LTlmN2QtYWI0MDI1M2I1ZTJi LzEvWVBhODl1S3hDYm9xRktjN2wxclpWRWhMUzZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOnj67cuM JmFXzyhVLwZbOOAZmkPIOAHRs+0eOrhlMTFC7oFnpMwjjT1MrRSjUL8GsDBWto4y FVcOVB0pU/hGccpBhrziQ4bAY0/gZvR2IOeL31irZ46IaQo5NmWdgtsFcxFAFJF/ SlI6wGwhnadoiJrt8YiXjMR0jVPhAOwbYKV6/8OysZDXkxJuygbWgQ0fK8i1j0il 0TcxEPiU5fnZWwcHaiAHZbMHtgW9T72iXv+x2gPcpbNB9U3PP3combdzcDrZErub 7qpZbqbMy8ArnCUAnBslTOc7jCUtLqqxFIdoF/7L7nppxvllaS8rJNHnlv3g5zSW snYk4VWSe9ka3Q== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:56 2026 by rpki-client