This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft File: Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft (raw, json) Hash identifier: vk7yvIXhhjVF6y33cMMhBe/Klgp+xjMapzAmJqzamYo= Subject key identifier: 07:F4:38:24:C1:7F:28:1F:93:20:BA:0E:DE:A7:E4:CB:01:08:F0:C1 Authority key identifier: 62:3D:8F:99:DF:A3:09:2D:1F:67:57:EF:AC:B4:9F:9E:00:E6:D4:B9 Certificate issuer: /CN=623d8f99dfa3092d1f6757efacb49f9e00e6d4b9 Certificate serial: 019C42EB42A78FFDC88C5751ED088180342F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft Manifest number: 08F9 Signing time: Mon 09 Feb 2026 15:00:40 +0000 Manifest this update: Mon 09 Feb 2026 15:00:40 +0000 Manifest next update: Tue 10 Feb 2026 15:00:40 +0000 Files and hashes: 1: Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.crl (hash: tyQuY7R4MWmQsqGgD/5H+2ALXn5OgtvISfJn5MKe7rU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.crl rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft rsync://rpki.ripe.net/repository/DEFAULT/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:42:a7:8f:fd:c8:8c:57:51:ed:08:81:80:34:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=623d8f99dfa3092d1f6757efacb49f9e00e6d4b9 Validity Not Before: Feb 9 15:00:40 2026 GMT Not After : Feb 10 15:00:40 2026 GMT Subject: CN=07f43824c17f281f9320ba0edea7e4cb0108f0c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ee:cd:6f:3b:96:05:07:03:3a:a7:c6:73:f2: 7d:28:e8:ac:e7:1b:3c:10:80:6b:f1:bd:10:c2:89: 28:7b:7c:ec:31:59:22:dc:a0:35:00:59:c1:8a:62: bf:36:71:ab:33:61:5c:c3:93:d7:4a:7a:75:ed:60: 87:07:89:ee:51:6c:77:79:af:30:c4:68:5f:40:27: 89:b5:d8:a2:18:d5:c1:08:84:9c:48:2a:8c:63:0d: be:89:0d:33:15:b7:d6:00:dd:58:72:f6:23:5e:5b: dc:91:46:aa:75:3e:b4:ab:aa:d0:cf:76:d1:23:90: eb:4d:5b:72:2f:38:11:06:9f:15:1d:5d:d6:52:a0: 47:89:26:3c:40:a4:eb:26:7c:53:6e:01:72:df:b9: 09:cd:01:38:d2:c4:bf:37:1e:1c:7d:05:75:ca:69: e1:25:01:27:0e:8e:42:df:8d:54:f7:b6:b9:0a:3d: 80:00:1f:47:a9:de:dc:32:22:fd:a6:cf:95:4c:3e: 09:31:52:bb:26:e6:02:0c:e9:7a:c7:43:0f:74:4e: 75:ac:21:80:41:3c:12:4d:13:74:ac:f0:39:c4:a9: 85:8b:b6:c5:5a:17:d3:71:96:79:8a:83:b6:42:cb: 63:0f:49:c4:71:04:79:90:f5:f7:30:28:42:66:c2: 59:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:F4:38:24:C1:7F:28:1F:93:20:BA:0E:DE:A7:E4:CB:01:08:F0:C1 X509v3 Authority Key Identifier: keyid:62:3D:8F:99:DF:A3:09:2D:1F:67:57:EF:AC:B4:9F:9E:00:E6:D4:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:22:9d:41:4c:b6:7d:a9:7d:4f:49:61:c6:73:4a:71:26:ba: 2b:eb:08:eb:db:41:4c:53:28:04:6a:09:d5:b5:f1:50:88:89: 4f:59:73:2c:99:42:b2:ba:b8:81:38:f3:42:c6:75:f2:37:ec: de:66:22:e0:96:83:64:8f:04:f1:1c:b9:55:f8:66:9a:e9:62: 05:e8:ea:fd:fb:87:7d:c7:26:71:17:f0:5d:fa:85:1d:e9:50: 20:53:c3:aa:8b:1a:2c:67:2a:7c:11:7d:86:19:c7:31:7e:50: 68:b8:39:9c:fd:01:c3:8a:08:4b:b9:e3:0e:06:5b:2d:1a:3f: 85:78:3d:a1:8e:51:80:5e:d6:f3:08:21:31:02:41:d9:b8:3a: fe:ed:b1:d3:a8:96:aa:2e:6e:8f:14:a1:10:cb:52:25:7b:01: 1b:6f:41:1e:ac:29:51:16:40:6e:1b:db:88:28:af:1d:7f:12: 22:b6:0b:50:32:c1:32:ec:5d:38:cb:bb:2b:f0:b6:be:b7:70: 40:ba:cd:05:23:fb:8f:33:9c:53:17:0c:30:13:98:19:b7:12: 71:4c:e6:fd:d6:e8:34:9d:cf:72:40:9e:1f:95:e3:6e:ef:7c: 45:fa:42:59:9f:91:dc:72:55:69:38:7c:53:23:c0:fa:f2:71: e7:93:be:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC60Knj/3IjFdR7QiBgDQvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyM2Q4Zjk5ZGZhMzA5MmQxZjY3NTdlZmFjYjQ5ZjllMDBl NmQ0YjkwHhcNMjYwMjA5MTUwMDQwWhcNMjYwMjEwMTUwMDQwWjAzMTEwLwYDVQQD EygwN2Y0MzgyNGMxN2YyODFmOTMyMGJhMGVkZWE3ZTRjYjAxMDhmMGMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtO7NbzuWBQcDOqfGc/J9KOis5xs8 EIBr8b0Qwokoe3zsMVki3KA1AFnBimK/NnGrM2Fcw5PXSnp17WCHB4nuUWx3ea8w xGhfQCeJtdiiGNXBCIScSCqMYw2+iQ0zFbfWAN1YcvYjXlvckUaqdT60q6rQz3bR I5DrTVtyLzgRBp8VHV3WUqBHiSY8QKTrJnxTbgFy37kJzQE40sS/Nx4cfQV1ymnh JQEnDo5C341U97a5Cj2AAB9Hqd7cMiL9ps+VTD4JMVK7JuYCDOl6x0MPdE51rCGA QTwSTRN0rPA5xKmFi7bFWhfTcZZ5ioO2QstjD0nEcQR5kPX3MChCZsJZPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAf0OCTBfygfkyC6Dt6n5MsBCPDBMB8GA1UdIwQY MBaAFGI9j5nfowktH2dX76y0n54A5tS5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWoyUG1kLWpDUzBmWjFmdnJMU2ZuZ0RtMUxrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC85ZTM2YjItM2YyZC00NDRmLTlkM2Et NDBiY2I3NGU0YzI4LzEvWWoyUG1kLWpDUzBmWjFmdnJMU2ZuZ0RtMUxrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OC85ZTM2YjItM2YyZC00NDRmLTlkM2EtNDBiY2I3NGU0YzI4 LzEvWWoyUG1kLWpDUzBmWjFmdnJMU2ZuZ0RtMUxrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUSKdQUy2 fal9T0lhxnNKcSa6K+sI69tBTFMoBGoJ1bXxUIiJT1lzLJlCsrq4gTjzQsZ18jfs 3mYi4JaDZI8E8Ry5VfhmmuliBejq/fuHfccmcRfwXfqFHelQIFPDqosaLGcqfBF9 hhnHMX5QaLg5nP0Bw4oIS7njDgZbLRo/hXg9oY5RgF7W8wghMQJB2bg6/u2x06iW qi5ujxShEMtSJXsBG29BHqwpURZAbhvbiCivHX8SIrYLUDLBMuxdOMu7K/C2vrdw QLrNBSP7jzOcUxcMMBOYGbcScUzm/dboNJ3PckCeH5Xjbu98RfpCWZ+R3HJVaTh8 UyPA+vJx55O+Yw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:26:24 2026 by rpki-client