This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft File: YAluN0CSzDAL0LsGxBZAky7Pi0k.mft (raw, json) Hash identifier: O+0uCeAoNba2y+lKFsNJywH9rxWpivv7xPgWy8UHQ5Q= Subject key identifier: CD:36:82:C0:8E:ED:FB:DD:76:B4:F6:D5:11:E1:98:1F:9C:A1:C4:F4 Authority key identifier: 60:09:6E:37:40:92:CC:30:0B:D0:BB:06:C4:16:40:93:2E:CF:8B:49 Certificate issuer: /CN=60096e374092cc300bd0bb06c41640932ecf8b49 Certificate serial: 019C1DCC8CD5A2CA69BE0754B26C15E50E19 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft Manifest number: 178F Signing time: Mon 02 Feb 2026 10:01:10 +0000 Manifest this update: Mon 02 Feb 2026 10:01:10 +0000 Manifest next update: Tue 03 Feb 2026 10:01:10 +0000 Files and hashes: 1: 09iLJ-Mwt-oGGlQePzLwscf0h0A.roa (hash: q4J6TqoqIEXUXDGYbj1FaACI7n8SQOOCFeV3Q5IYWCQ=) 2: YAluN0CSzDAL0LsGxBZAky7Pi0k.crl (hash: QCnKSPiieTirYBd1jzidX7J0rdcFDf2NSfQWamFNsbo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.crl rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 10:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1d:cc:8c:d5:a2:ca:69:be:07:54:b2:6c:15:e5:0e:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60096e374092cc300bd0bb06c41640932ecf8b49 Validity Not Before: Feb 2 10:01:10 2026 GMT Not After : Feb 3 10:01:10 2026 GMT Subject: CN=cd3682c08eedfbdd76b4f6d511e1981f9ca1c4f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a6:5e:94:a5:1f:38:ec:21:1d:2e:d5:ba:44: 00:c5:21:8f:ff:d4:0e:d1:56:81:60:df:e5:52:d0: dc:96:19:7f:e5:0c:97:c0:17:fd:f1:e4:b5:25:4e: f7:ce:83:16:ba:b4:67:0f:aa:c1:1e:b6:9a:6b:6d: b8:46:aa:fc:7e:d3:d5:5d:14:7a:27:3a:72:6f:0d: bb:24:73:dc:f6:a3:a2:f6:b5:08:67:a6:e6:7e:bc: 12:ba:b4:09:17:e3:41:07:f6:46:f3:21:8a:78:2a: 28:36:9e:30:b3:8f:92:cc:6e:50:e7:ad:e8:b3:3a: 9b:92:90:82:b5:d7:73:cc:a8:f7:4c:e0:bc:f7:56: 2e:d1:ad:07:21:b9:e3:22:0c:af:50:e3:1d:93:56: 10:ff:1c:04:36:ef:ab:10:b7:2a:c2:bb:65:84:ef: de:78:98:f6:c6:ec:64:9b:5a:6d:ac:9a:67:d6:b8: 6a:92:26:5f:7a:52:1e:ab:ab:79:c8:7f:90:c9:ab: ad:3e:06:24:7d:6a:fe:2e:0e:77:cd:83:7b:93:6e: a4:8b:fd:cf:d1:6b:94:fd:03:a9:a3:fd:3f:91:c6: de:95:89:d4:de:d4:3d:1c:34:d6:23:c1:4c:45:d7: b0:83:c0:ee:17:86:eb:b4:7b:3b:09:2f:9b:a5:59: f5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:36:82:C0:8E:ED:FB:DD:76:B4:F6:D5:11:E1:98:1F:9C:A1:C4:F4 X509v3 Authority Key Identifier: keyid:60:09:6E:37:40:92:CC:30:0B:D0:BB:06:C4:16:40:93:2E:CF:8B:49 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:3c:0f:28:76:af:1a:d1:da:d2:cc:d4:eb:7c:18:e9:28:0c: 40:e9:13:d9:92:cd:ae:57:d2:9a:a6:ac:6f:e8:b9:46:a8:3d: f4:30:cc:0f:e6:46:d6:b6:ff:3c:cf:f9:af:82:02:19:7e:b7: c8:b1:d4:a8:4b:ca:7c:f1:a4:91:76:1b:9b:1b:72:11:dc:e1: 6a:41:41:59:ea:78:20:09:37:9a:8d:d5:4d:3a:ee:af:bd:f6: 6e:52:d7:16:59:08:37:13:d6:4d:ee:00:fd:f9:e5:39:2c:5e: 00:81:0f:34:64:48:f5:ca:2c:06:25:a4:bc:a0:e4:a8:2c:5f: 7a:67:7f:bf:c4:39:ce:6c:ed:d7:ee:04:c5:1a:a4:92:e2:8c: bd:b7:37:84:36:b2:ea:3d:67:11:a7:35:da:8e:99:cc:9e:76: c5:10:e2:39:39:7c:eb:a7:74:51:11:97:dc:11:b5:47:38:5d: 35:fa:00:bc:c3:66:27:f5:f5:16:de:86:b9:b1:ca:27:6d:44: 31:e7:44:63:79:4d:53:f8:16:f8:1b:54:72:28:aa:3a:ce:53: cc:5c:b0:b0:22:5b:fc:48:7a:3b:f7:28:95:e0:f2:21:0d:69: 10:02:50:34:7d:04:48:4b:f4:5b:56:7b:0f:61:73:3d:c4:c7: b3:3c:7e:8d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwdzIzVosppvgdUsmwV5Q4ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwMDk2ZTM3NDA5MmNjMzAwYmQwYmIwNmM0MTY0MDkzMmVj ZjhiNDkwHhcNMjYwMjAyMTAwMTEwWhcNMjYwMjAzMTAwMTEwWjAzMTEwLwYDVQQD EyhjZDM2ODJjMDhlZWRmYmRkNzZiNGY2ZDUxMWUxOTgxZjljYTFjNGY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz6ZelKUfOOwhHS7VukQAxSGP/9QO 0VaBYN/lUtDclhl/5QyXwBf98eS1JU73zoMWurRnD6rBHraaa224Rqr8ftPVXRR6 Jzpybw27JHPc9qOi9rUIZ6bmfrwSurQJF+NBB/ZG8yGKeCooNp4ws4+SzG5Q563o szqbkpCCtddzzKj3TOC891Yu0a0HIbnjIgyvUOMdk1YQ/xwENu+rELcqwrtlhO/e eJj2xuxkm1ptrJpn1rhqkiZfelIeq6t5yH+QyautPgYkfWr+Lg53zYN7k26ki/3P 0WuU/QOpo/0/kcbelYnU3tQ9HDTWI8FMRdewg8DuF4brtHs7CS+bpVn18QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM02gsCO7fvddrT21RHhmB+cocT0MB8GA1UdIwQY MBaAFGAJbjdAkswwC9C7BsQWQJMuz4tJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUFsdU4wQ1N6REFMMExzR3hCWkFreTdQaTBrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC85MWNmZTctNWMyZC00NzRhLWI1ODct YzQ1ODUyYzdiZTIwLzEvWUFsdU4wQ1N6REFMMExzR3hCWkFreTdQaTBrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC85MWNmZTctNWMyZC00NzRhLWI1ODctYzQ1ODUyYzdiZTIw LzEvWUFsdU4wQ1N6REFMMExzR3hCWkFreTdQaTBrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhDwPKHav GtHa0szU63wY6SgMQOkT2ZLNrlfSmqasb+i5Rqg99DDMD+ZG1rb/PM/5r4ICGX63 yLHUqEvKfPGkkXYbmxtyEdzhakFBWep4IAk3mo3VTTrur732blLXFlkINxPWTe4A /fnlOSxeAIEPNGRI9cosBiWkvKDkqCxfemd/v8Q5zmzt1+4ExRqkkuKMvbc3hDay 6j1nEac12o6ZzJ52xRDiOTl866d0URGX3BG1RzhdNfoAvMNmJ/X1Ft6GubHKJ21E MedEY3lNU/gW+BtUciiqOs5TzFywsCJb/Eh6O/coleDyIQ1pEAJQNH0ESEv0W1Z7 D2FzPcTHszx+jQ== -----END CERTIFICATE-----Generated at Mon Feb 2 21:03:00 2026 by rpki-client