This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.mft File: yQDj7qi7474R-IxoK9E4wmUH99w.mft (raw, json) Hash identifier: hjTQ9fZbCcE2Y7xZ1kG9tymx/nkv5kspCV8gFBr1pyw= Subject key identifier: 2E:15:AC:D7:F6:E0:73:1B:F4:F6:FD:67:1B:65:09:4B:3B:0A:74:46 Authority key identifier: C9:00:E3:EE:A8:BB:E3:BE:11:F8:8C:68:2B:D1:38:C2:65:07:F7:DC Certificate issuer: /CN=c900e3eea8bbe3be11f88c682bd138c26507f7dc Certificate serial: 019C413421723D2C519701BFF9E8188D2EE5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yQDj7qi7474R-IxoK9E4wmUH99w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.mft Manifest number: 0EF4 Signing time: Mon 09 Feb 2026 07:01:01 +0000 Manifest this update: Mon 09 Feb 2026 07:01:01 +0000 Manifest next update: Tue 10 Feb 2026 07:01:01 +0000 Files and hashes: 1: yQDj7qi7474R-IxoK9E4wmUH99w.crl (hash: keq+WxIALBgMZcC+NdWD5AdTlV8II2C2qHUf8oDDbkA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.mft rsync://rpki.ripe.net/repository/DEFAULT/yQDj7qi7474R-IxoK9E4wmUH99w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:21:72:3d:2c:51:97:01:bf:f9:e8:18:8d:2e:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c900e3eea8bbe3be11f88c682bd138c26507f7dc Validity Not Before: Feb 9 07:01:01 2026 GMT Not After : Feb 10 07:01:01 2026 GMT Subject: CN=2e15acd7f6e0731bf4f6fd671b65094b3b0a7446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:c8:f7:36:19:af:b5:b3:e6:a5:62:cf:1d:1d: b6:62:38:fd:0f:f8:2d:bd:4a:e7:db:fd:5b:39:5c: 1c:f9:86:a1:8f:d9:24:74:15:4f:d7:4e:bc:db:9d: c2:b4:06:26:34:8d:fd:1d:65:92:10:dd:81:a3:fe: d2:52:52:52:b5:4c:ee:bc:d2:cb:ec:07:68:84:75: 5f:7a:d8:ff:b3:92:8a:f0:82:7d:01:9c:ff:f8:8f: 07:86:10:3a:14:2b:21:63:14:65:3e:b1:ad:74:ce: de:b3:87:b4:f4:04:1e:41:60:33:fb:11:e4:21:5c: 1f:d0:15:b2:99:84:85:f1:5a:6d:c4:5d:3b:17:4f: 1f:94:df:66:47:0f:22:c4:b6:ba:2b:b0:5e:6f:9c: 6c:b9:3f:6a:de:88:ec:e4:3f:8f:9f:5f:5c:3f:ff: 41:85:6c:03:88:a1:94:c7:c5:4e:f1:bc:f4:3e:d4: 9a:0c:77:9d:4e:f8:ae:3d:4c:96:62:c8:c9:df:5b: 04:29:4c:99:0a:da:95:1b:9f:86:3c:16:c4:3e:2c: 8a:08:f1:ee:0a:5c:28:c9:49:cc:31:00:9e:ab:99: d1:40:f2:f3:53:66:cb:41:09:ac:80:3c:ca:07:47: 22:d5:c6:e2:6e:13:09:59:c9:b9:c0:e8:d0:b4:9d: a5:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:15:AC:D7:F6:E0:73:1B:F4:F6:FD:67:1B:65:09:4B:3B:0A:74:46 X509v3 Authority Key Identifier: keyid:C9:00:E3:EE:A8:BB:E3:BE:11:F8:8C:68:2B:D1:38:C2:65:07:F7:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yQDj7qi7474R-IxoK9E4wmUH99w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:f5:67:79:51:95:61:17:77:6a:dd:92:38:b8:35:28:ca:e3: e9:26:74:23:20:27:dd:21:d9:23:1d:ff:82:f5:45:47:fd:d4: ed:76:c0:50:e1:27:e5:bb:c9:0e:b7:ce:f2:78:5b:16:11:b7: 20:a2:1f:b3:a7:59:b1:7c:9e:2b:38:35:01:13:3c:61:78:e1: cd:7a:d0:63:d9:46:de:e5:28:46:ae:41:0f:32:18:2a:b4:cc: 58:c2:f2:a7:75:e7:af:35:15:5c:79:21:c4:d8:6c:0b:44:67: e0:15:9a:95:2a:a1:1c:bc:e9:2a:a6:21:bc:b7:c5:ce:56:45: 57:77:63:88:9b:aa:ec:3c:95:f7:2e:df:7f:0a:30:45:29:ae: 3e:79:e9:24:e5:30:47:a7:22:3e:f1:b9:1c:0f:07:f4:dc:a7: 02:bd:8b:e3:d8:bd:f6:cb:e6:a2:be:42:ae:c1:7d:f8:f3:3e: 06:e3:c1:6e:d8:30:c6:bb:31:c7:c9:8f:ce:20:33:d9:4b:ea: 28:fb:d9:f3:c7:3b:70:99:25:60:61:23:3e:ad:47:55:4d:e3: 9a:cc:72:22:a2:fb:93:cf:8c:15:49:7b:cf:a7:cb:78:75:cf: 04:43:66:60:87:8e:c8:f9:b9:f5:7b:80:54:0b:53:cf:82:c2: 2d:5b:7f:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNCFyPSxRlwG/+egYjS7lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5MDBlM2VlYThiYmUzYmUxMWY4OGM2ODJiZDEzOGMyNjUw N2Y3ZGMwHhcNMjYwMjA5MDcwMTAxWhcNMjYwMjEwMDcwMTAxWjAzMTEwLwYDVQQD EygyZTE1YWNkN2Y2ZTA3MzFiZjRmNmZkNjcxYjY1MDk0YjNiMGE3NDQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAncj3NhmvtbPmpWLPHR22Yjj9D/gt vUrn2/1bOVwc+Yahj9kkdBVP1068253CtAYmNI39HWWSEN2Bo/7SUlJStUzuvNLL 7AdohHVfetj/s5KK8IJ9AZz/+I8HhhA6FCshYxRlPrGtdM7es4e09AQeQWAz+xHk IVwf0BWymYSF8VptxF07F08flN9mRw8ixLa6K7Beb5xsuT9q3ojs5D+Pn19cP/9B hWwDiKGUx8VO8bz0PtSaDHedTviuPUyWYsjJ31sEKUyZCtqVG5+GPBbEPiyKCPHu ClwoyUnMMQCeq5nRQPLzU2bLQQmsgDzKB0ci1cbibhMJWcm5wOjQtJ2lrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC4VrNf24HMb9Pb9ZxtlCUs7CnRGMB8GA1UdIwQY MBaAFMkA4+6ou+O+EfiMaCvROMJlB/fcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveVFEajdxaTc0NzRSLUl4b0s5RTR3bVVIOTl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS8xZjQzMWUtMzdjOC00MDgwLTliYjMt NDE2MjA0YTAyNzM3LzEveVFEajdxaTc0NzRSLUl4b0s5RTR3bVVIOTl3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS8xZjQzMWUtMzdjOC00MDgwLTliYjMtNDE2MjA0YTAyNzM3 LzEveVFEajdxaTc0NzRSLUl4b0s5RTR3bVVIOTl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD/VneVGV YRd3at2SOLg1KMrj6SZ0IyAn3SHZIx3/gvVFR/3U7XbAUOEn5bvJDrfO8nhbFhG3 IKIfs6dZsXyeKzg1ARM8YXjhzXrQY9lG3uUoRq5BDzIYKrTMWMLyp3XnrzUVXHkh xNhsC0Rn4BWalSqhHLzpKqYhvLfFzlZFV3djiJuq7DyV9y7ffwowRSmuPnnpJOUw R6ciPvG5HA8H9NynAr2L49i99svmor5CrsF9+PM+BuPBbtgwxrsxx8mPziAz2Uvq KPvZ88c7cJklYGEjPq1HVU3jmsxyIqL7k8+MFUl7z6fLeHXPBENmYIeOyPm59XuA VAtTz4LCLVt/FA== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:15 2026 by rpki-client