This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft File: y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft (raw, json) Hash identifier: Sve7iBOqKSUqixyKBKSdBuqETOkNaGN4TOMiLSLnjjU= Subject key identifier: 99:1C:6F:0C:81:9F:4F:2F:8B:FD:24:F7:83:8C:28:18:FF:74:9A:C8 Authority key identifier: CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86 Certificate issuer: /CN=cb645bc0fdb8626bce2c0425c4087b54e150d386 Certificate serial: 019C4358E1D602801E4BB11EBBE100AB9C1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft Manifest number: 13AF Signing time: Mon 09 Feb 2026 17:00:24 +0000 Manifest this update: Mon 09 Feb 2026 17:00:24 +0000 Manifest next update: Tue 10 Feb 2026 17:00:24 +0000 Files and hashes: 1: g8srjClL_WgGHUbPNnBUFgTpuTk.roa (hash: gDJAvf7gVoC2n87omYhiXK7E56pj3nGGaW/bXZGo4II=) 2: y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl (hash: 5vJuv4K6tagId6h/6d35rO14QU0mFXwiDs8OcVjlq+E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:e1:d6:02:80:1e:4b:b1:1e:bb:e1:00:ab:9c:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cb645bc0fdb8626bce2c0425c4087b54e150d386 Validity Not Before: Feb 9 17:00:24 2026 GMT Not After : Feb 10 17:00:24 2026 GMT Subject: CN=991c6f0c819f4f2f8bfd24f7838c2818ff749ac8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fc:00:ec:59:5b:0f:39:0a:20:c5:d0:6f:d6: a9:1d:48:35:cc:52:ea:83:a0:c3:d6:56:f9:3d:03: 25:25:45:33:e0:d9:ad:90:15:e3:d4:d1:f3:92:2c: 00:35:10:15:aa:f2:2b:fb:7e:94:0f:e2:71:fa:3e: ce:ad:e6:6d:cf:68:7d:9e:3a:5b:d1:9f:17:c3:29: c9:6b:8d:28:88:a4:e6:6b:65:42:26:87:0b:57:cb: 66:f4:88:96:d6:11:66:54:48:33:07:27:5c:3c:18: 5c:90:29:af:96:d0:3a:0d:8a:f1:58:83:95:85:a4: 90:ec:8a:42:40:c3:08:39:ff:33:86:1c:46:08:9c: ef:55:1f:24:2e:c5:4d:2e:f7:b6:93:ee:fb:a8:76: a8:7d:0b:2c:9c:f0:fe:82:d6:c9:6c:09:da:39:31: 83:ab:55:b3:9c:eb:c3:25:e3:50:18:7e:8a:b9:5b: 54:ed:f8:cd:23:48:04:d8:c7:38:7d:0b:9e:f1:53: e1:23:4d:aa:ea:30:69:bb:63:04:09:0f:61:c4:1a: 37:96:8a:65:db:18:7c:54:f1:67:8d:e6:87:11:c3: 16:29:b4:75:e7:c8:76:0c:4a:4b:91:66:59:de:c5: 5d:b5:69:a4:bd:01:0b:db:9c:5c:33:0c:d9:b0:de: 62:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:1C:6F:0C:81:9F:4F:2F:8B:FD:24:F7:83:8C:28:18:FF:74:9A:C8 X509v3 Authority Key Identifier: keyid:CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:7e:3b:2d:84:e2:71:54:61:ee:ce:7b:d6:1f:fa:cb:0a:7e: bd:33:9a:30:00:b4:5e:37:61:7c:04:f8:d2:be:0f:c9:29:b9: 9b:48:de:a3:aa:1f:bb:64:df:b8:79:a6:c8:74:55:8e:4f:03: 28:a1:90:ca:38:39:ec:1a:97:5d:bb:1a:1f:b2:ad:a5:48:c7: d1:76:96:18:cf:e6:43:3d:7d:0b:80:c9:4c:56:7d:3c:be:78: 82:1f:05:7e:5d:45:11:93:63:05:f1:59:1c:ab:37:3a:31:62: b0:b1:ec:b0:97:a2:92:bd:89:94:55:88:bb:c6:1f:23:45:0b: d1:19:22:9a:91:b9:98:15:0f:16:17:0f:98:ad:54:92:1f:dc: 0a:1d:de:1d:f5:13:9b:ab:5e:9f:12:ca:45:00:59:db:1f:e8: 79:ec:c1:55:26:4c:c6:ac:71:46:82:d0:79:30:af:6c:13:ec: d8:0c:e8:17:fc:83:cd:7c:ba:7b:d2:6c:55:11:d1:a1:c6:c2: 8b:f3:f7:bc:7b:05:75:1a:f7:e5:e2:cf:b8:3e:f0:1f:c8:12: 61:e4:8f:fe:30:8f:5a:7d:5a:ac:24:08:ca:a7:8d:82:f0:28: bf:93:ab:a6:12:13:63:b9:b6:96:f0:a1:b5:bb:7c:e1:c1:d4: 3d:a1:77:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWOHWAoAeS7Eeu+EAq5waMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiNjQ1YmMwZmRiODYyNmJjZTJjMDQyNWM0MDg3YjU0ZTE1 MGQzODYwHhcNMjYwMjA5MTcwMDI0WhcNMjYwMjEwMTcwMDI0WjAzMTEwLwYDVQQD Eyg5OTFjNmYwYzgxOWY0ZjJmOGJmZDI0Zjc4MzhjMjgxOGZmNzQ5YWM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxPwA7FlbDzkKIMXQb9apHUg1zFLq g6DD1lb5PQMlJUUz4NmtkBXj1NHzkiwANRAVqvIr+36UD+Jx+j7OreZtz2h9njpb 0Z8XwynJa40oiKTma2VCJocLV8tm9IiW1hFmVEgzBydcPBhckCmvltA6DYrxWIOV haSQ7IpCQMMIOf8zhhxGCJzvVR8kLsVNLve2k+77qHaofQssnPD+gtbJbAnaOTGD q1WznOvDJeNQGH6KuVtU7fjNI0gE2Mc4fQue8VPhI02q6jBpu2MECQ9hxBo3lopl 2xh8VPFnjeaHEcMWKbR158h2DEpLkWZZ3sVdtWmkvQEL25xcMwzZsN5iqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJkcbwyBn08vi/0k94OMKBj/dJrIMB8GA1UdIwQY MBaAFMtkW8D9uGJrziwEJcQIe1ThUNOGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTJSYndQMjRZbXZPTEFRbHhBaDdWT0ZRMDRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC81N2JmODktZmUzYi00YzIxLThmZmIt ZTg3NTRkMDA1ZWJlLzEveTJSYndQMjRZbXZPTEFRbHhBaDdWT0ZRMDRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC81N2JmODktZmUzYi00YzIxLThmZmItZTg3NTRkMDA1ZWJl LzEveTJSYndQMjRZbXZPTEFRbHhBaDdWT0ZRMDRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOH47LYTi cVRh7s571h/6ywp+vTOaMAC0XjdhfAT40r4PySm5m0jeo6ofu2TfuHmmyHRVjk8D KKGQyjg57BqXXbsaH7KtpUjH0XaWGM/mQz19C4DJTFZ9PL54gh8Ffl1FEZNjBfFZ HKs3OjFisLHssJeikr2JlFWIu8YfI0UL0RkimpG5mBUPFhcPmK1Ukh/cCh3eHfUT m6tenxLKRQBZ2x/oeezBVSZMxqxxRoLQeTCvbBPs2AzoF/yDzXy6e9JsVRHRocbC i/P3vHsFdRr35eLPuD7wH8gSYeSP/jCPWn1arCQIyqeNgvAov5OrphITY7m2lvCh tbt84cHUPaF3wA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:40:53 2026 by rpki-client