This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/f3e494-ea53-413c-ae14-a1f859517c1b/1/y1bGreHiphfnx3VXuV8GlU2TkLo.mft File: y1bGreHiphfnx3VXuV8GlU2TkLo.mft (raw, json) Hash identifier: gaxK9pwZrDJ19d6+VExuwK6mv7AUrjtZcz5ulpwq4Cw= Subject key identifier: 57:38:A1:9E:FA:55:FA:29:53:63:5F:C9:EE:B4:1E:AD:8B:B3:51:C5 Authority key identifier: CB:56:C6:AD:E1:E2:A6:17:E7:C7:75:57:B9:5F:06:95:4D:93:90:BA Certificate issuer: /CN=cb56c6ade1e2a617e7c77557b95f06954d9390ba Certificate serial: 019C41A20AD7C878B7968A71A57EB05F3793 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y1bGreHiphfnx3VXuV8GlU2TkLo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/f3e494-ea53-413c-ae14-a1f859517c1b/1/y1bGreHiphfnx3VXuV8GlU2TkLo.mft Manifest number: 1C Signing time: Mon 09 Feb 2026 09:01:04 +0000 Manifest this update: Mon 09 Feb 2026 09:01:04 +0000 Manifest next update: Tue 10 Feb 2026 09:01:04 +0000 Files and hashes: 1: 3P0VzD1dKCF2UiQ8qkWCmQrm2Gw.roa (hash: gjopDXHjONuosWi6hy78AAJGtkv7Tbfx273i024Q360=) 2: y1bGreHiphfnx3VXuV8GlU2TkLo.crl (hash: tpxCpDH1QOOhCEv+iJ4ama0njYejsQl2up38TJsIwQU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/f3e494-ea53-413c-ae14-a1f859517c1b/1/y1bGreHiphfnx3VXuV8GlU2TkLo.crl rsync://rpki.ripe.net/repository/DEFAULT/73/f3e494-ea53-413c-ae14-a1f859517c1b/1/y1bGreHiphfnx3VXuV8GlU2TkLo.mft rsync://rpki.ripe.net/repository/DEFAULT/y1bGreHiphfnx3VXuV8GlU2TkLo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:0a:d7:c8:78:b7:96:8a:71:a5:7e:b0:5f:37:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cb56c6ade1e2a617e7c77557b95f06954d9390ba Validity Not Before: Feb 9 09:01:04 2026 GMT Not After : Feb 10 09:01:04 2026 GMT Subject: CN=5738a19efa55fa2953635fc9eeb41ead8bb351c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:88:f8:7b:13:58:ca:6a:55:73:ec:66:7f:7f: c8:ec:b2:dc:55:4f:36:e6:65:c5:d3:74:96:1b:ea: 42:6c:24:d8:9f:45:c0:d9:21:d6:43:4c:66:cd:22: 2d:68:b6:42:4b:8c:ba:39:3c:44:56:8c:da:5f:36: ec:66:41:2d:1d:0d:f8:4c:5e:d9:69:28:0c:ae:54: 03:64:bc:7f:8a:ff:ff:c2:b4:4d:63:63:56:d0:c7: b8:2e:dd:18:fd:38:a2:8e:4b:36:83:b1:09:a0:8b: fb:e7:c5:d8:c9:4e:49:fc:0e:e7:1b:ee:a3:99:02: 85:e1:77:67:2e:54:d0:be:bb:96:af:61:28:8d:57: 00:6e:05:23:9f:88:58:35:c7:1b:8f:89:0f:2e:05: 87:02:6d:10:ac:6c:8a:b2:98:5f:20:5c:3e:7a:69: 74:48:6e:a2:9d:1b:08:47:7d:ad:25:61:19:dc:51: c5:67:de:45:4d:e5:b1:2c:5c:b7:b6:f6:9f:d8:18: ca:a7:34:11:07:d5:f4:0e:a0:58:88:b4:bf:77:02: d7:5c:20:c6:34:e9:e6:4e:82:ca:c2:9a:0f:67:97: 17:97:08:97:59:7c:f1:19:1b:7f:3d:f0:2f:3c:07: 1a:90:41:5b:d0:e7:10:65:2d:af:45:a4:87:49:6e: a7:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:38:A1:9E:FA:55:FA:29:53:63:5F:C9:EE:B4:1E:AD:8B:B3:51:C5 X509v3 Authority Key Identifier: keyid:CB:56:C6:AD:E1:E2:A6:17:E7:C7:75:57:B9:5F:06:95:4D:93:90:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y1bGreHiphfnx3VXuV8GlU2TkLo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f3e494-ea53-413c-ae14-a1f859517c1b/1/y1bGreHiphfnx3VXuV8GlU2TkLo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f3e494-ea53-413c-ae14-a1f859517c1b/1/y1bGreHiphfnx3VXuV8GlU2TkLo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:ce:ff:4a:96:3f:37:5a:9d:91:40:3b:89:1b:c6:3a:23:07: 38:6f:08:e7:3e:b3:0c:1b:d2:1b:3a:ea:df:8c:53:9c:f7:18: 02:d0:03:04:26:33:43:8a:45:25:0e:f5:da:06:60:98:2e:23: 1d:47:ea:f8:e8:02:72:c2:bc:da:3c:a9:99:56:be:62:48:15: 00:b4:8a:dc:72:c8:b3:95:b4:9c:0d:26:ba:e8:63:52:d2:98: 8a:49:5e:6b:e7:32:37:0f:fa:17:04:b6:ad:2d:2b:87:9b:fc: a8:c8:b3:aa:97:f3:58:04:91:35:4d:3e:d1:80:93:11:0c:0c: 78:9e:e5:39:92:14:6a:1f:f0:e6:9e:fa:be:83:a5:91:b0:44: a4:64:34:10:15:d0:1d:d6:8e:62:13:a3:76:76:a1:38:6c:eb: 00:4e:96:95:51:5d:ce:44:29:3d:24:64:06:d5:33:43:71:b3: 36:fc:b6:97:99:1c:ee:5b:53:d1:a9:ad:46:2d:42:b4:94:c0: 5f:66:1c:3a:1c:94:16:e7:b4:84:cc:c4:ee:19:23:4c:61:c1: 42:a1:36:ac:b3:3d:ea:f5:9f:f8:36:72:b5:6e:98:d1:43:e5: 0c:a9:8f:bc:d5:34:60:30:9e:f3:05:f0:92:8d:cf:0a:a5:f0: bb:92:db:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBogrXyHi3lopxpX6wXzeTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiNTZjNmFkZTFlMmE2MTdlN2M3NzU1N2I5NWYwNjk1NGQ5 MzkwYmEwHhcNMjYwMjA5MDkwMTA0WhcNMjYwMjEwMDkwMTA0WjAzMTEwLwYDVQQD Eyg1NzM4YTE5ZWZhNTVmYTI5NTM2MzVmYzllZWI0MWVhZDhiYjM1MWM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Ij4exNYympVc+xmf3/I7LLcVU82 5mXF03SWG+pCbCTYn0XA2SHWQ0xmzSItaLZCS4y6OTxEVozaXzbsZkEtHQ34TF7Z aSgMrlQDZLx/iv//wrRNY2NW0Me4Lt0Y/Tiijks2g7EJoIv758XYyU5J/A7nG+6j mQKF4XdnLlTQvruWr2EojVcAbgUjn4hYNccbj4kPLgWHAm0QrGyKsphfIFw+eml0 SG6inRsIR32tJWEZ3FHFZ95FTeWxLFy3tvaf2BjKpzQRB9X0DqBYiLS/dwLXXCDG NOnmToLKwpoPZ5cXlwiXWXzxGRt/PfAvPAcakEFb0OcQZS2vRaSHSW6nowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFc4oZ76VfopU2Nfye60Hq2Ls1HFMB8GA1UdIwQY MBaAFMtWxq3h4qYX58d1V7lfBpVNk5C6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTFiR3JlSGlwaGZueDNWWHVWOEdsVTJUa0xvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9mM2U0OTQtZWE1My00MTNjLWFlMTQt YTFmODU5NTE3YzFiLzEveTFiR3JlSGlwaGZueDNWWHVWOEdsVTJUa0xvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My9mM2U0OTQtZWE1My00MTNjLWFlMTQtYTFmODU5NTE3YzFi LzEveTFiR3JlSGlwaGZueDNWWHVWOEdsVTJUa0xvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP87/SpY/ N1qdkUA7iRvGOiMHOG8I5z6zDBvSGzrq34xTnPcYAtADBCYzQ4pFJQ712gZgmC4j HUfq+OgCcsK82jypmVa+YkgVALSK3HLIs5W0nA0muuhjUtKYiklea+cyNw/6FwS2 rS0rh5v8qMizqpfzWASRNU0+0YCTEQwMeJ7lOZIUah/w5p76voOlkbBEpGQ0EBXQ HdaOYhOjdnahOGzrAE6WlVFdzkQpPSRkBtUzQ3GzNvy2l5kc7ltT0amtRi1CtJTA X2YcOhyUFue0hMzE7hkjTGHBQqE2rLM96vWf+DZytW6Y0UPlDKmPvNU0YDCe8wXw ko3PCqXwu5Lbsg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:22:42 2026 by rpki-client