This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft File: ym3NrZkpBFbG18GOscBY2UEIiAE.mft (raw, json) Hash identifier: z5p3M5oNhoU5H2yV7y1c78pMZTHEhXz91fb0jamxJSo= Subject key identifier: C8:AA:CA:84:0E:0E:4B:56:51:F7:1B:94:25:BD:10:52:E8:F2:FC:99 Authority key identifier: CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01 Certificate issuer: /CN=ca6dcdad99290456c6d7c18eb1c058d941088801 Certificate serial: 019C42B44830CA5F2A9551F402268A953EEF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft Manifest number: 17B3 Signing time: Mon 09 Feb 2026 14:00:37 +0000 Manifest this update: Mon 09 Feb 2026 14:00:37 +0000 Manifest next update: Tue 10 Feb 2026 14:00:37 +0000 Files and hashes: 1: BqLAw4i8RwTxiSET0W9t_-557cY.roa (hash: 3vmf1uaZgtPEqrsbNZ2vEk3NVigksfRtXsG72qUjM2Q=) 2: ym3NrZkpBFbG18GOscBY2UEIiAE.crl (hash: xeRAOzR3U7csheJdlzrjA7grPQ9EI+fT2N6aCVigUMQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:48:30:ca:5f:2a:95:51:f4:02:26:8a:95:3e:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca6dcdad99290456c6d7c18eb1c058d941088801 Validity Not Before: Feb 9 14:00:37 2026 GMT Not After : Feb 10 14:00:37 2026 GMT Subject: CN=c8aaca840e0e4b5651f71b9425bd1052e8f2fc99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ea:c7:ba:09:0e:2d:5e:f5:9b:ac:2a:3d:11: 7b:6a:ac:ce:9c:38:f2:b7:92:c5:f6:b3:82:c8:5e: b8:6a:53:cb:22:be:a2:b6:fb:c3:f6:93:f7:2a:15: 1e:a2:ec:02:63:51:d4:90:4a:63:85:9f:52:3a:1c: a4:7a:48:5a:ae:d7:fc:b6:64:68:89:09:e1:ac:bd: 76:5b:f0:d3:71:2c:6b:db:2e:f1:df:83:73:fc:b8: 48:f0:fc:14:f8:ef:7d:10:4e:76:e1:9b:6d:27:93: e2:53:e1:b8:7e:a9:dd:3f:2c:d5:8b:e8:0b:f2:5a: 8c:fd:ab:e7:74:35:7d:52:29:a6:40:65:ee:d2:fa: dd:01:2d:d5:f7:32:47:b4:0e:b0:fc:cb:77:7b:57: df:16:18:67:41:56:67:06:81:99:6d:44:24:70:ac: 88:0b:85:75:5d:3a:28:45:3b:85:83:03:6c:57:08: 62:f4:60:54:c2:1d:77:33:6a:01:ce:7d:64:96:51: 42:2a:4d:e8:bb:54:eb:66:44:d2:8e:1c:59:08:7b: c5:21:bc:70:04:bc:d3:d4:42:93:91:be:5b:4b:6f: 19:68:a9:6e:ff:a6:1e:60:36:b9:45:92:c7:04:f6: 6d:34:63:84:95:e7:a4:04:4a:4d:7c:ae:27:ab:4b: 29:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:AA:CA:84:0E:0E:4B:56:51:F7:1B:94:25:BD:10:52:E8:F2:FC:99 X509v3 Authority Key Identifier: keyid:CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:0a:d5:7b:24:bc:7a:1d:04:05:9a:bf:a8:c6:95:61:1a:63: ce:fe:ad:9f:80:bf:d5:cb:f2:bc:21:bb:90:b1:1f:35:59:72: 6f:bc:77:02:67:4f:58:53:aa:b3:58:9f:d7:05:7c:11:4b:bc: 1e:98:dc:a0:40:a0:ed:08:11:8d:bf:dc:c5:11:64:14:d9:40: 4d:8f:73:52:e4:6f:aa:ba:40:8a:2c:0e:c8:b5:63:03:85:f0: a2:73:9d:37:60:28:54:b5:33:b5:3e:48:5c:f6:1d:45:47:7d: c2:cd:30:6c:80:9c:df:61:b8:5e:72:f3:5c:e4:98:96:ad:0f: d5:6d:02:91:26:22:ec:19:7b:94:20:cf:9a:ea:17:40:4c:2f: e7:e0:14:f1:09:84:2f:8e:b6:50:39:dd:e7:13:11:51:51:29: 58:e8:d1:90:0f:dd:26:d6:3f:ca:32:80:46:4f:f3:db:82:74: 83:c1:60:57:e4:d7:4d:3e:6b:eb:2b:54:53:c3:3f:b4:f1:9d: 05:2c:fb:c7:b2:87:5a:66:0b:d7:62:2a:26:c5:3a:dd:bf:c7: cb:38:bd:c9:19:9f:f2:51:1d:dc:2e:d5:9a:99:4d:60:02:40: b2:6b:e8:52:3f:fe:36:3d:ff:70:ac:3a:99:4e:79:59:b3:21: 25:08:79:fc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtEgwyl8qlVH0AiaKlT7vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNmRjZGFkOTkyOTA0NTZjNmQ3YzE4ZWIxYzA1OGQ5NDEw ODg4MDEwHhcNMjYwMjA5MTQwMDM3WhcNMjYwMjEwMTQwMDM3WjAzMTEwLwYDVQQD EyhjOGFhY2E4NDBlMGU0YjU2NTFmNzFiOTQyNWJkMTA1MmU4ZjJmYzk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx+rHugkOLV71m6wqPRF7aqzOnDjy t5LF9rOCyF64alPLIr6itvvD9pP3KhUeouwCY1HUkEpjhZ9SOhykekhartf8tmRo iQnhrL12W/DTcSxr2y7x34Nz/LhI8PwU+O99EE524ZttJ5PiU+G4fqndPyzVi+gL 8lqM/avndDV9UimmQGXu0vrdAS3V9zJHtA6w/Mt3e1ffFhhnQVZnBoGZbUQkcKyI C4V1XTooRTuFgwNsVwhi9GBUwh13M2oBzn1kllFCKk3ou1TrZkTSjhxZCHvFIbxw BLzT1EKTkb5bS28ZaKlu/6YeYDa5RZLHBPZtNGOEleekBEpNfK4nq0spxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMiqyoQODktWUfcblCW9EFLo8vyZMB8GA1UdIwQY MBaAFMptza2ZKQRWxtfBjrHAWNlBCIgBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveW0zTnJaa3BCRmJHMThHT3NjQlkyVUVJaUFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi83Njc1OWUtMzk2NC00YzRmLTg3NmIt YmM0NzVkMDA4ODY5LzEveW0zTnJaa3BCRmJHMThHT3NjQlkyVUVJaUFFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi83Njc1OWUtMzk2NC00YzRmLTg3NmItYmM0NzVkMDA4ODY5 LzEveW0zTnJaa3BCRmJHMThHT3NjQlkyVUVJaUFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqArVeyS8 eh0EBZq/qMaVYRpjzv6tn4C/1cvyvCG7kLEfNVlyb7x3AmdPWFOqs1if1wV8EUu8 HpjcoECg7QgRjb/cxRFkFNlATY9zUuRvqrpAiiwOyLVjA4XwonOdN2AoVLUztT5I XPYdRUd9ws0wbICc32G4XnLzXOSYlq0P1W0CkSYi7Bl7lCDPmuoXQEwv5+AU8QmE L462UDnd5xMRUVEpWOjRkA/dJtY/yjKARk/z24J0g8FgV+TXTT5r6ytUU8M/tPGd BSz7x7KHWmYL12IqJsU63b/Hyzi9yRmf8lEd3C7VmplNYAJAsmvoUj/+Nj3/cKw6 mU55WbMhJQh5/A== -----END CERTIFICATE-----Generated at Tue Feb 10 01:07:11 2026 by rpki-client