This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft File: yuDyZX221YxEden7gXNW4u3SzA8.mft (raw, json) Hash identifier: vHuzBemGViKfwafvUMhpnn6Cnj7835SPMH4zhGIE0mI= Subject key identifier: 84:62:B9:1E:14:32:64:15:36:0D:49:6F:99:F5:7B:D6:F0:7D:06:B3 Authority key identifier: CA:E0:F2:65:7D:B6:D5:8C:44:75:E9:FB:81:73:56:E2:ED:D2:CC:0F Certificate issuer: /CN=cae0f2657db6d58c4475e9fb817356e2edd2cc0f Certificate serial: 019C41A256A9465C86482A760A3ACEBE5021 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft Manifest number: 13EB Signing time: Mon 09 Feb 2026 09:01:23 +0000 Manifest this update: Mon 09 Feb 2026 09:01:23 +0000 Manifest next update: Tue 10 Feb 2026 09:01:23 +0000 Files and hashes: 1: yuDyZX221YxEden7gXNW4u3SzA8.crl (hash: ivX2Sg8oZmRTB6bITZ620z8aq0vhwsqDhSLeI31WlD0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.crl rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:56:a9:46:5c:86:48:2a:76:0a:3a:ce:be:50:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cae0f2657db6d58c4475e9fb817356e2edd2cc0f Validity Not Before: Feb 9 09:01:23 2026 GMT Not After : Feb 10 09:01:23 2026 GMT Subject: CN=8462b91e14326415360d496f99f57bd6f07d06b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:43:84:f3:e2:d6:b2:ff:45:0e:85:b5:30:5d: 95:b3:58:6f:60:df:39:e6:07:5d:29:69:a5:f6:6f: 63:74:40:70:c4:28:b7:20:1f:df:3b:c9:e5:bd:f7: dc:4b:c1:62:50:52:e1:16:21:4c:45:30:04:b9:78: ad:39:b3:e5:be:8e:4a:8b:9c:4f:44:2e:bf:c2:a3: 10:30:47:6d:cf:51:95:4e:9d:fd:02:c5:98:85:4f: c0:78:9f:c3:36:e6:cd:a4:83:af:72:4b:c5:8b:50: 0b:71:30:d3:e3:6f:98:4b:87:6e:06:d0:d5:10:56: b6:b2:57:ff:8b:74:1c:ca:0e:65:cd:88:74:6e:8d: be:3e:e0:a8:c4:63:ef:9a:15:0d:4a:3d:7e:02:37: 22:ec:0d:58:9b:3d:67:20:5d:d3:de:b5:f2:0c:b7: 11:45:1f:dd:ba:4a:70:92:bc:f8:a2:88:54:9f:6f: d4:80:34:1f:76:f9:6e:08:c2:96:a1:69:b7:a9:5e: 21:0b:66:50:dc:a3:46:1c:8b:15:4e:38:42:8c:a2: 74:50:62:a4:4a:a0:33:22:9a:a9:0f:ca:9c:a3:b0: 66:d9:63:7d:78:b8:2a:f7:2b:cf:ef:b9:75:90:2d: da:01:d3:ce:75:e1:40:fe:96:d5:2d:3f:de:0b:ad: 03:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:62:B9:1E:14:32:64:15:36:0D:49:6F:99:F5:7B:D6:F0:7D:06:B3 X509v3 Authority Key Identifier: keyid:CA:E0:F2:65:7D:B6:D5:8C:44:75:E9:FB:81:73:56:E2:ED:D2:CC:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:35:51:14:90:71:7e:bc:6d:54:ef:93:22:39:59:6f:c1:8b: 76:b5:f5:8b:74:9d:c8:77:81:60:96:ba:b1:6f:75:3f:4a:60: d0:92:27:57:f6:be:f5:4a:a8:05:8a:6c:c9:db:08:9b:fe:0b: 55:79:a9:24:df:ee:09:e5:b4:8a:ee:95:ca:87:90:31:e1:c9: bc:4f:7d:5e:53:ef:24:86:4f:58:6a:0e:59:63:c2:c3:93:4b: 43:82:58:3f:e6:bc:17:68:cb:0a:13:d9:c5:b0:90:ee:58:4c: 62:40:1b:bf:f5:ae:67:a2:6b:69:c4:9a:f3:92:7f:7a:de:42: c1:40:c8:d6:87:c0:e9:3e:44:06:e1:2e:e8:8e:a5:df:be:eb: a8:1b:b6:dc:af:11:7c:31:cc:6f:6f:7c:17:e7:ac:a1:c6:34: 4b:1c:2f:38:00:4f:5c:2e:d6:21:fd:f8:a9:17:39:a5:b3:8c: c7:0d:12:3e:d6:76:5a:01:4e:aa:eb:24:54:0b:a5:f5:3c:18: 53:f3:f5:ec:ec:84:4c:ef:c3:ae:db:4f:6c:91:99:4e:60:b9: 2d:38:41:9e:e3:ff:bc:ad:5f:27:31:21:75:7f:1d:14:7e:88: 6c:b7:43:4c:1c:da:80:fb:cb:cb:0f:85:c3:7b:79:49:c6:45: fb:0b:56:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBolapRlyGSCp2CjrOvlAhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhZTBmMjY1N2RiNmQ1OGM0NDc1ZTlmYjgxNzM1NmUyZWRk MmNjMGYwHhcNMjYwMjA5MDkwMTIzWhcNMjYwMjEwMDkwMTIzWjAzMTEwLwYDVQQD Eyg4NDYyYjkxZTE0MzI2NDE1MzYwZDQ5NmY5OWY1N2JkNmYwN2QwNmIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqkOE8+LWsv9FDoW1MF2Vs1hvYN85 5gddKWml9m9jdEBwxCi3IB/fO8nlvffcS8FiUFLhFiFMRTAEuXitObPlvo5Ki5xP RC6/wqMQMEdtz1GVTp39AsWYhU/AeJ/DNubNpIOvckvFi1ALcTDT42+YS4duBtDV EFa2slf/i3Qcyg5lzYh0bo2+PuCoxGPvmhUNSj1+Ajci7A1Ymz1nIF3T3rXyDLcR RR/dukpwkrz4oohUn2/UgDQfdvluCMKWoWm3qV4hC2ZQ3KNGHIsVTjhCjKJ0UGKk SqAzIpqpD8qco7Bm2WN9eLgq9yvP77l1kC3aAdPOdeFA/pbVLT/eC60DkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIRiuR4UMmQVNg1Jb5n1e9bwfQazMB8GA1UdIwQY MBaAFMrg8mV9ttWMRHXp+4FzVuLt0swPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveXVEeVpYMjIxWXhFZGVuN2dYTlc0dTNTekE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny8wMzdmZjEtNjliOS00NGI0LThjMGUt YTE5YTNiZWIxNWIyLzEveXVEeVpYMjIxWXhFZGVuN2dYTlc0dTNTekE4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny8wMzdmZjEtNjliOS00NGI0LThjMGUtYTE5YTNiZWIxNWIy LzEveXVEeVpYMjIxWXhFZGVuN2dYTlc0dTNTekE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYDVRFJBx frxtVO+TIjlZb8GLdrX1i3SdyHeBYJa6sW91P0pg0JInV/a+9UqoBYpsydsIm/4L VXmpJN/uCeW0iu6VyoeQMeHJvE99XlPvJIZPWGoOWWPCw5NLQ4JYP+a8F2jLChPZ xbCQ7lhMYkAbv/WuZ6JracSa85J/et5CwUDI1ofA6T5EBuEu6I6l377rqBu23K8R fDHMb298F+esocY0SxwvOABPXC7WIf34qRc5pbOMxw0SPtZ2WgFOquskVAul9TwY U/P17OyETO/DrttPbJGZTmC5LThBnuP/vK1fJzEhdX8dFH6IbLdDTBzagPvLyw+F w3t5ScZF+wtWnA== -----END CERTIFICATE-----Generated at Mon Feb 9 17:01:58 2026 by rpki-client