This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft File: yS0-Y6HAGI17pgy4TXDk64m4rlE.mft (raw, json) Hash identifier: CTRLf8z1IYVtrPgaBSb7c8ijpoQ7SJGjl96+vr/cj18= Subject key identifier: DC:2A:5A:C9:64:DE:2E:22:F8:29:08:87:83:92:D7:5D:FE:61:E8:40 Authority key identifier: C9:2D:3E:63:A1:C0:18:8D:7B:A6:0C:B8:4D:70:E4:EB:89:B8:AE:51 Certificate issuer: /CN=c92d3e63a1c0188d7ba60cb84d70e4eb89b8ae51 Certificate serial: 019C43224ECAAAB999480714D3A6F5BE62C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yS0-Y6HAGI17pgy4TXDk64m4rlE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft Manifest number: 0898 Signing time: Mon 09 Feb 2026 16:00:47 +0000 Manifest this update: Mon 09 Feb 2026 16:00:47 +0000 Manifest next update: Tue 10 Feb 2026 16:00:47 +0000 Files and hashes: 1: yS0-Y6HAGI17pgy4TXDk64m4rlE.crl (hash: rghWbCcHpUK6Go7etAOgecZ3nwi0QxYJ/cxoieqzDpY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.crl rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft rsync://rpki.ripe.net/repository/DEFAULT/yS0-Y6HAGI17pgy4TXDk64m4rlE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:4e:ca:aa:b9:99:48:07:14:d3:a6:f5:be:62:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c92d3e63a1c0188d7ba60cb84d70e4eb89b8ae51 Validity Not Before: Feb 9 16:00:47 2026 GMT Not After : Feb 10 16:00:47 2026 GMT Subject: CN=dc2a5ac964de2e22f82908878392d75dfe61e840 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:74:46:11:96:1f:59:ba:4f:21:47:58:df:df: 15:d0:0f:6e:fd:4e:a4:e5:98:c9:ad:62:d0:9a:3d: 00:d6:e0:ba:90:81:e6:69:d3:ec:0e:90:1d:90:80: dc:83:00:4c:af:7e:4e:c1:58:9d:a7:ba:3d:05:99: f7:13:07:c6:71:07:fb:da:e4:8b:1d:9b:55:75:cb: a0:1a:6b:0d:95:33:81:21:bb:07:bb:21:34:ab:1e: cb:3f:13:ba:84:fd:fc:43:42:96:f5:30:30:8f:89: bf:62:0d:b7:0a:36:39:7a:78:af:1d:62:26:a4:d9: e1:97:98:fd:91:8c:3a:32:e1:0d:0b:7b:1e:04:ef: 19:e4:d0:53:69:d7:9c:1a:88:90:65:ca:f8:7d:6e: 46:88:d4:b1:d0:7c:90:81:5f:6e:6f:61:de:04:3d: 33:f1:de:0c:df:24:76:fe:dd:b6:dd:d5:26:08:dc: 4e:15:28:14:37:c5:6c:6b:ec:99:67:00:66:54:23: f0:6b:b5:f0:22:7b:3a:56:f0:39:fc:14:a9:f4:4c: 5c:59:6e:5d:78:f5:6d:71:27:88:9b:8e:30:89:1f: 80:7e:5b:75:86:45:db:a8:88:39:80:3d:05:e5:33: 00:46:2a:f1:f9:ba:1e:18:85:7e:8c:3a:07:a7:95: 1a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:2A:5A:C9:64:DE:2E:22:F8:29:08:87:83:92:D7:5D:FE:61:E8:40 X509v3 Authority Key Identifier: keyid:C9:2D:3E:63:A1:C0:18:8D:7B:A6:0C:B8:4D:70:E4:EB:89:B8:AE:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yS0-Y6HAGI17pgy4TXDk64m4rlE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:5c:81:9e:29:23:40:fd:9f:ed:7e:ec:c1:35:d7:92:de:c1: 25:a0:57:e5:eb:3a:70:dd:61:0e:be:ff:3b:e7:e3:89:30:58: 59:5e:a9:9e:9b:2f:81:af:24:f3:27:c8:f6:32:6a:d9:d6:91: 54:8e:bc:c7:c2:3e:6c:36:7b:1b:0c:04:ed:b3:27:12:f6:43: 88:2b:96:d6:69:7f:9a:b3:a3:cf:c9:06:83:f2:92:99:5b:76: 5c:5e:7d:91:b7:a8:59:05:14:47:df:8f:ff:19:dc:e9:25:a8: 75:47:15:19:3c:b3:33:d8:02:1c:af:be:4c:05:f3:96:72:95: 91:ee:8c:e2:82:03:46:9b:be:59:6d:ae:30:6a:63:25:89:78: db:a2:ce:5f:4d:e7:18:80:cc:68:79:83:de:40:ea:f3:36:13: 23:5c:be:df:73:72:11:99:40:a6:67:47:83:86:41:52:d2:eb: 49:3e:72:04:bb:54:d2:75:aa:fd:d3:3d:cc:f3:0c:9f:6e:51: ad:f9:a0:c4:94:20:9c:33:e7:eb:56:f0:73:d8:53:f9:60:58: 0b:c6:1d:67:0d:7d:d2:98:8e:61:dc:a7:26:71:3f:32:15:74: 31:1e:a7:4e:3c:75:c6:46:6b:05:6f:31:df:97:31:60:59:e0: ee:e8:c3:02 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIk7KqrmZSAcU06b1vmLJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5MmQzZTYzYTFjMDE4OGQ3YmE2MGNiODRkNzBlNGViODli OGFlNTEwHhcNMjYwMjA5MTYwMDQ3WhcNMjYwMjEwMTYwMDQ3WjAzMTEwLwYDVQQD EyhkYzJhNWFjOTY0ZGUyZTIyZjgyOTA4ODc4MzkyZDc1ZGZlNjFlODQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu3RGEZYfWbpPIUdY398V0A9u/U6k 5ZjJrWLQmj0A1uC6kIHmadPsDpAdkIDcgwBMr35OwVidp7o9BZn3EwfGcQf72uSL HZtVdcugGmsNlTOBIbsHuyE0qx7LPxO6hP38Q0KW9TAwj4m/Yg23CjY5enivHWIm pNnhl5j9kYw6MuENC3seBO8Z5NBTadecGoiQZcr4fW5GiNSx0HyQgV9ub2HeBD0z 8d4M3yR2/t223dUmCNxOFSgUN8Vsa+yZZwBmVCPwa7XwIns6VvA5/BSp9ExcWW5d ePVtcSeIm44wiR+Aflt1hkXbqIg5gD0F5TMARirx+boeGIV+jDoHp5UaLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNwqWslk3i4i+CkIh4OS113+YehAMB8GA1UdIwQY MBaAFMktPmOhwBiNe6YMuE1w5OuJuK5RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveVMwLVk2SEFHSTE3cGd5NFRYRGs2NG00cmxFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9hN2MzOWMtNjFjNy00MWQ2LWE4MTYt N2ZlZjIzZjk3YTM0LzEveVMwLVk2SEFHSTE3cGd5NFRYRGs2NG00cmxFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny9hN2MzOWMtNjFjNy00MWQ2LWE4MTYtN2ZlZjIzZjk3YTM0 LzEveVMwLVk2SEFHSTE3cGd5NFRYRGs2NG00cmxFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARVyBnikj QP2f7X7swTXXkt7BJaBX5es6cN1hDr7/O+fjiTBYWV6pnpsvga8k8yfI9jJq2daR VI68x8I+bDZ7GwwE7bMnEvZDiCuW1ml/mrOjz8kGg/KSmVt2XF59kbeoWQUUR9+P /xnc6SWodUcVGTyzM9gCHK++TAXzlnKVke6M4oIDRpu+WW2uMGpjJYl426LOX03n GIDMaHmD3kDq8zYTI1y+33NyEZlApmdHg4ZBUtLrST5yBLtU0nWq/dM9zPMMn25R rfmgxJQgnDPn61bwc9hT+WBYC8YdZw190piOYdynJnE/MhV0MR6nTjx1xkZrBW8x 35cxYFng7ujDAg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:16 2026 by rpki-client