This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft File: YbGV0TBQ_zxGihSXeHELU1giUdk.mft (raw, json) Hash identifier: R48YOQPWrWNstW5sikus4JAL1lRVUngNY+Br2FNInag= Subject key identifier: EA:D6:6F:65:15:5F:D1:BA:31:07:0E:3D:65:6C:B3:9A:99:23:60:21 Authority key identifier: 61:B1:95:D1:30:50:FF:3C:46:8A:14:97:78:71:0B:53:58:22:51:D9 Certificate issuer: /CN=61b195d13050ff3c468a149778710b53582251d9 Certificate serial: 019C43FE09A8DA1E1CD9F3116E18341E521B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft Manifest number: 1815 Signing time: Mon 09 Feb 2026 20:00:47 +0000 Manifest this update: Mon 09 Feb 2026 20:00:47 +0000 Manifest next update: Tue 10 Feb 2026 20:00:47 +0000 Files and hashes: 1: TK8zghqg8mRUl2FKqWZ3fkqCPjo.roa (hash: gdusYks5Qp51cXZtG8mOxw07u8NyV/fdE9i7uOexEq8=) 2: YbGV0TBQ_zxGihSXeHELU1giUdk.crl (hash: Skd4JbUXfn0ywGMU8d8jGwH3Rtp6qGjYud+/hrUvsg4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.crl rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:09:a8:da:1e:1c:d9:f3:11:6e:18:34:1e:52:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b195d13050ff3c468a149778710b53582251d9 Validity Not Before: Feb 9 20:00:47 2026 GMT Not After : Feb 10 20:00:47 2026 GMT Subject: CN=ead66f65155fd1ba31070e3d656cb39a99236021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:7d:32:40:d6:9d:00:76:2d:30:3d:a7:f8:a4: d1:d2:9e:79:44:40:12:a1:5a:44:54:76:8c:82:52: d2:c2:73:35:41:d2:d1:99:cb:9e:fd:b2:dc:b4:fb: 75:1e:dd:30:6b:e1:47:97:30:2e:ef:49:11:42:f9: de:36:da:b2:bc:61:a6:e4:17:62:65:81:f3:1b:e8: 8f:77:e4:a3:d9:e0:fa:9c:e6:e4:f5:58:a9:a3:3f: d2:2c:6b:b3:59:b8:49:a5:41:43:a4:18:82:a7:63: 2c:2f:a1:2d:aa:7d:42:cb:bc:8a:f1:af:14:a2:d9: b4:ad:89:ad:da:a1:52:31:28:4d:8d:0a:38:21:f1: 4d:ec:81:10:c7:23:aa:c4:88:d8:1f:18:28:fc:c5: 8b:dd:48:40:e6:bf:59:18:d7:6b:a0:a8:51:78:e5: 8c:2b:c6:22:fa:f3:6c:ab:a1:a2:74:e5:05:c5:b4: 49:3d:95:ae:65:fe:58:ca:b5:2b:d8:79:be:fa:68: cb:c9:2b:f6:c6:31:c8:2a:ed:b9:17:28:b1:a5:c0: b9:3a:6e:c6:b9:5a:b6:42:c0:5c:f8:e5:05:4a:6f: 07:6b:a9:b5:e1:9a:32:ae:70:76:42:1f:ac:22:2c: 90:ce:43:26:6c:22:2f:d8:05:6a:48:4e:3b:a3:f0: 52:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:D6:6F:65:15:5F:D1:BA:31:07:0E:3D:65:6C:B3:9A:99:23:60:21 X509v3 Authority Key Identifier: keyid:61:B1:95:D1:30:50:FF:3C:46:8A:14:97:78:71:0B:53:58:22:51:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:87:1f:6d:ea:1c:79:6a:73:e5:19:f7:66:17:c9:0e:61:c0: 9d:17:af:5a:50:06:38:ff:b7:ab:d0:14:e7:b4:d8:6e:7d:a2: 13:9e:46:47:13:8d:e5:83:dc:82:b4:04:75:ab:5b:d4:6e:c6: 0d:1c:ea:95:4c:3a:0b:de:8f:07:51:ff:4f:54:ba:5a:f2:04: 1f:f9:01:b7:49:d2:3d:94:82:11:35:00:08:fa:a8:7e:fe:a4: 17:7b:c4:42:8e:54:c9:31:71:6a:60:5d:ed:a8:bc:79:b2:6c: bf:e9:4a:31:38:64:a2:84:10:ba:e6:49:6e:a5:bf:07:14:dd: 83:05:92:ad:84:1c:31:61:59:3b:65:0d:40:cb:fa:55:48:7a: d4:88:c1:e3:9e:39:76:be:8e:79:27:d5:d6:4c:f3:87:3d:57: 15:e3:ba:ee:5c:00:45:5a:c0:55:a9:2d:e5:30:d4:61:20:8d: 49:66:d8:e5:f1:1f:86:52:e6:91:c7:6c:89:c4:82:2a:81:a7: ea:d3:dc:13:ee:01:bd:a9:26:9a:1a:84:fc:c3:0d:2e:51:0a: 15:61:0d:02:67:03:c8:d1:09:19:a9:18:fe:b9:d7:0d:7f:92: 33:fb:b9:fb:c5:c9:89:b1:ea:60:18:98:fa:f1:f1:f0:7e:cc: 88:7b:55:88 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/gmo2h4c2fMRbhg0HlIbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxYjE5NWQxMzA1MGZmM2M0NjhhMTQ5Nzc4NzEwYjUzNTgy MjUxZDkwHhcNMjYwMjA5MjAwMDQ3WhcNMjYwMjEwMjAwMDQ3WjAzMTEwLwYDVQQD EyhlYWQ2NmY2NTE1NWZkMWJhMzEwNzBlM2Q2NTZjYjM5YTk5MjM2MDIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApX0yQNadAHYtMD2n+KTR0p55REAS oVpEVHaMglLSwnM1QdLRmcue/bLctPt1Ht0wa+FHlzAu70kRQvneNtqyvGGm5Bdi ZYHzG+iPd+Sj2eD6nObk9Vipoz/SLGuzWbhJpUFDpBiCp2MsL6Etqn1Cy7yK8a8U otm0rYmt2qFSMShNjQo4IfFN7IEQxyOqxIjYHxgo/MWL3UhA5r9ZGNdroKhReOWM K8Yi+vNsq6GidOUFxbRJPZWuZf5YyrUr2Hm++mjLySv2xjHIKu25FyixpcC5Om7G uVq2QsBc+OUFSm8Ha6m14ZoyrnB2Qh+sIiyQzkMmbCIv2AVqSE47o/BSdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOrWb2UVX9G6MQcOPWVss5qZI2AhMB8GA1UdIwQY MBaAFGGxldEwUP88RooUl3hxC1NYIlHZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWJHVjBUQlFfenhHaWhTWGVIRUxVMWdpVWRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8yZjNjMTktNTZkNS00OTI0LThiY2It YmFjNDcyYWI3YjZhLzEvWWJHVjBUQlFfenhHaWhTWGVIRUxVMWdpVWRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS8yZjNjMTktNTZkNS00OTI0LThiY2ItYmFjNDcyYWI3YjZh LzEvWWJHVjBUQlFfenhHaWhTWGVIRUxVMWdpVWRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALYcfbeoc eWpz5Rn3ZhfJDmHAnRevWlAGOP+3q9AU57TYbn2iE55GRxON5YPcgrQEdatb1G7G DRzqlUw6C96PB1H/T1S6WvIEH/kBt0nSPZSCETUACPqofv6kF3vEQo5UyTFxamBd 7ai8ebJsv+lKMThkooQQuuZJbqW/BxTdgwWSrYQcMWFZO2UNQMv6VUh61IjB4545 dr6OeSfV1kzzhz1XFeO67lwARVrAVakt5TDUYSCNSWbY5fEfhlLmkcdsicSCKoGn 6tPcE+4BvakmmhqE/MMNLlEKFWENAmcDyNEJGakY/rnXDX+SM/u5+8XJibHqYBiY +vHx8H7MiHtViA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:07:15 2026 by rpki-client