This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft File: YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft (raw, json) Hash identifier: q7ziF7anf4maQuRNHX1ndP1trRSrT2xB3YTEAcC7WxE= Subject key identifier: 30:E6:5C:58:1C:97:2B:E3:54:71:15:6E:7F:8A:19:A4:0F:1D:B9:E6 Authority key identifier: 61:0F:8F:99:FC:A6:9A:A7:3F:88:A5:31:DB:46:D2:28:A7:E2:C3:D3 Certificate issuer: /CN=610f8f99fca69aa73f88a531db46d228a7e2c3d3 Certificate serial: 019C44A27E0DACCD91E2390DADDD1E1CDD7A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YQ-Pmfymmqc_iKUx20bSKKfiw9M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft Manifest number: 0ED6 Signing time: Mon 09 Feb 2026 23:00:25 +0000 Manifest this update: Mon 09 Feb 2026 23:00:25 +0000 Manifest next update: Tue 10 Feb 2026 23:00:25 +0000 Files and hashes: 1: YQ-Pmfymmqc_iKUx20bSKKfiw9M.crl (hash: OXnifKd19GjFD+gvHzWFtR1YPdGof1Kw1dYmjDdkmlo=) 2: ddYTOcOmB0o9lm0zE3zt2oO1U1g.roa (hash: hdKwDZDL26ytQwp0S8rV3Crlq4ka+0ODIpyfMgGOmSc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.crl rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft rsync://rpki.ripe.net/repository/DEFAULT/YQ-Pmfymmqc_iKUx20bSKKfiw9M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:a2:7e:0d:ac:cd:91:e2:39:0d:ad:dd:1e:1c:dd:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=610f8f99fca69aa73f88a531db46d228a7e2c3d3 Validity Not Before: Feb 9 23:00:25 2026 GMT Not After : Feb 10 23:00:25 2026 GMT Subject: CN=30e65c581c972be35471156e7f8a19a40f1db9e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:2b:88:55:d1:79:ad:bb:8e:12:8d:08:a6:02: 08:75:bc:76:00:09:61:0a:86:a2:02:5c:30:05:56: a1:bd:44:71:2b:68:d6:c8:27:c9:01:bb:24:00:cc: 52:5f:5d:e1:e0:36:23:95:1f:d1:7c:af:f4:5e:61: c5:d6:60:cb:3c:25:69:f8:53:91:4c:8c:38:e2:ab: 6a:bf:ad:69:c7:6a:cd:eb:fa:f4:e7:75:fc:73:0b: a5:9f:9e:d1:a7:49:e2:25:96:b8:85:b5:8f:0f:5d: 8e:e9:55:93:1a:32:a3:52:7a:e6:40:fe:b1:63:03: 3e:0e:45:dd:75:ca:ab:6d:94:1d:67:d3:2b:5c:f5: 0a:29:80:bb:9b:c3:03:15:9b:0e:d3:0b:fb:03:ee: 59:8e:31:76:64:3d:68:99:c0:c0:00:16:9a:af:42: 94:f2:e8:d7:1f:2b:7e:c9:e0:f9:2b:3c:12:91:12: 39:89:3e:70:61:b2:6d:84:21:10:83:35:35:72:6b: 72:27:fd:5f:c5:67:13:94:ad:e6:7a:31:61:53:41: 3b:15:62:fb:ad:a8:b1:06:28:eb:a2:8a:35:40:31: f5:5f:59:60:73:e7:0c:93:be:f7:77:92:3a:0f:14: 54:7c:2b:a5:41:27:f7:0e:9f:16:2d:b3:88:a9:3a: 9e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:E6:5C:58:1C:97:2B:E3:54:71:15:6E:7F:8A:19:A4:0F:1D:B9:E6 X509v3 Authority Key Identifier: keyid:61:0F:8F:99:FC:A6:9A:A7:3F:88:A5:31:DB:46:D2:28:A7:E2:C3:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQ-Pmfymmqc_iKUx20bSKKfiw9M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b7:3d:ad:d5:c8:3d:6a:bc:ab:55:bb:63:02:00:a3:c4:28:ac: 7c:0c:5d:69:b8:88:49:93:9a:5c:b3:32:a8:0a:15:c3:86:3c: 8e:b6:bf:f4:37:de:d1:9d:5c:01:73:ec:b2:d1:8a:14:a3:2c: 4a:50:a2:bc:b1:29:74:53:7d:58:cf:92:be:53:6f:1a:17:5a: 88:4e:82:60:5a:3e:8c:34:6e:b2:91:e2:a8:07:52:6d:68:20: a7:41:c8:a8:b7:69:2d:6c:a5:e0:39:cf:33:f6:0c:f7:99:73: 94:9d:f6:38:6c:65:e6:3b:44:13:b4:bb:fa:4c:43:46:05:7b: 75:6b:62:20:89:fd:13:d3:24:79:20:52:c5:d4:29:51:1e:63: 4f:27:1b:2c:77:cf:78:c8:03:80:ae:68:fb:2a:39:b5:4c:4c: b8:6c:a5:07:2e:6d:d1:ef:05:3b:31:16:4a:dc:13:29:88:3f: f9:08:a6:b0:8c:0b:63:22:02:bd:5e:58:b9:c1:e5:7b:f3:1f: dc:f9:0b:1b:80:13:4d:18:cb:5f:8b:0d:7f:ce:07:e0:44:60: 63:a7:7d:5c:1a:be:7e:b1:bc:0d:de:6b:d9:1b:64:9b:d6:93: c2:51:b5:6f:18:cb:15:ca:f4:73:a7:65:b5:86:8b:ff:44:2e: 1d:fe:f7:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEon4NrM2R4jkNrd0eHN16MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxMGY4Zjk5ZmNhNjlhYTczZjg4YTUzMWRiNDZkMjI4YTdl MmMzZDMwHhcNMjYwMjA5MjMwMDI1WhcNMjYwMjEwMjMwMDI1WjAzMTEwLwYDVQQD EygzMGU2NWM1ODFjOTcyYmUzNTQ3MTE1NmU3ZjhhMTlhNDBmMWRiOWU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3CuIVdF5rbuOEo0IpgIIdbx2AAlh CoaiAlwwBVahvURxK2jWyCfJAbskAMxSX13h4DYjlR/RfK/0XmHF1mDLPCVp+FOR TIw44qtqv61px2rN6/r053X8cwuln57Rp0niJZa4hbWPD12O6VWTGjKjUnrmQP6x YwM+DkXddcqrbZQdZ9MrXPUKKYC7m8MDFZsO0wv7A+5ZjjF2ZD1omcDAABaar0KU 8ujXHyt+yeD5KzwSkRI5iT5wYbJthCEQgzU1cmtyJ/1fxWcTlK3mejFhU0E7FWL7 raixBijrooo1QDH1X1lgc+cMk773d5I6DxRUfCulQSf3Dp8WLbOIqTqegQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDDmXFgclyvjVHEVbn+KGaQPHbnmMB8GA1UdIwQY MBaAFGEPj5n8ppqnP4ilMdtG0iin4sPTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVEtUG1meW1tcWNfaUtVeDIwYlNLS2ZpdzlNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9kOTQ2ODEtYWJlNi00ZTIzLTliOTgt NzlhMGE1MjhlMGE0LzEvWVEtUG1meW1tcWNfaUtVeDIwYlNLS2ZpdzlNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC9kOTQ2ODEtYWJlNi00ZTIzLTliOTgtNzlhMGE1MjhlMGE0 LzEvWVEtUG1meW1tcWNfaUtVeDIwYlNLS2ZpdzlNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtz2t1cg9 aryrVbtjAgCjxCisfAxdabiISZOaXLMyqAoVw4Y8jra/9Dfe0Z1cAXPsstGKFKMs SlCivLEpdFN9WM+SvlNvGhdaiE6CYFo+jDRuspHiqAdSbWggp0HIqLdpLWyl4DnP M/YM95lzlJ32OGxl5jtEE7S7+kxDRgV7dWtiIIn9E9MkeSBSxdQpUR5jTycbLHfP eMgDgK5o+yo5tUxMuGylBy5t0e8FOzEWStwTKYg/+QimsIwLYyICvV5YucHle/Mf 3PkLG4ATTRjLX4sNf84H4ERgY6d9XBq+frG8Dd5r2Rtkm9aTwlG1bxjLFcr0c6dl tYaL/0QuHf73uQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:31:29 2026 by rpki-client