This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.mft File: yPGA3UiWddR5NSX-5s__Rpcv8zw.mft (raw, json) Hash identifier: ftZOZysnU9/9Lp7+am3f0EBwjAKXFaUbj9xmehlSZGc= Subject key identifier: B1:6F:63:34:22:0D:D6:B1:9C:84:24:E2:AE:FF:F3:5F:DA:FB:8C:D3 Authority key identifier: C8:F1:80:DD:48:96:75:D4:79:35:25:FE:E6:CF:FF:46:97:2F:F3:3C Certificate issuer: /CN=c8f180dd489675d4793525fee6cfff46972ff33c Certificate serial: 019C41A19D4C37B93E4FFDF12107C381F494 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yPGA3UiWddR5NSX-5s__Rpcv8zw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 09:00:36 +0000 Manifest this update: Mon 09 Feb 2026 09:00:36 +0000 Manifest next update: Tue 10 Feb 2026 09:00:36 +0000 Files and hashes: 1: yPGA3UiWddR5NSX-5s__Rpcv8zw.crl (hash: zsfZhIMRUN2fjO4saEKUcIiLwZPQ5b5YkVEjqeBvSyk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.mft rsync://rpki.ripe.net/repository/DEFAULT/yPGA3UiWddR5NSX-5s__Rpcv8zw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:9d:4c:37:b9:3e:4f:fd:f1:21:07:c3:81:f4:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c8f180dd489675d4793525fee6cfff46972ff33c Validity Not Before: Feb 9 09:00:36 2026 GMT Not After : Feb 10 09:00:36 2026 GMT Subject: CN=b16f6334220dd6b19c8424e2aefff35fdafb8cd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d0:0f:ec:28:82:fb:aa:05:a6:30:40:30:6b: 23:3e:8a:03:a8:9e:90:a4:48:4d:b1:a8:3f:e5:d7: 9f:74:0b:52:ff:2b:33:9c:77:c0:a2:25:23:3a:65: a6:0c:fc:45:f4:c6:a1:23:4c:68:aa:9e:1a:13:af: b6:05:c1:0f:9d:98:1e:2b:24:ea:0a:5e:00:d6:ac: f7:91:66:bc:a0:c6:bd:ab:d6:fe:fb:ad:75:cc:84: 5e:bb:c1:ab:8c:7b:23:9a:07:b8:40:1d:83:f3:a2: c3:83:cf:c0:b2:66:66:a3:50:c5:dc:ad:d6:fa:6c: c2:4e:0f:cf:01:95:33:47:0b:c1:bc:7c:93:f1:16: 81:b6:dc:c1:0a:a9:07:1a:70:44:f6:27:b3:f8:de: 95:a1:65:8e:47:59:6d:86:de:56:aa:23:5f:d3:e4: ae:e6:65:c9:5c:f8:fe:3f:30:ae:45:41:dd:f6:e2: 46:47:bc:fe:b0:96:ae:89:22:f6:4c:01:08:ef:4b: e9:14:e4:ce:83:44:d2:95:b3:79:a7:f9:2a:39:97: 32:80:5e:4e:91:0c:2d:52:9b:4c:5a:9d:4e:64:0a: 89:8b:39:d2:53:7b:53:81:56:26:55:e8:9f:42:3b: 8a:23:bc:b2:6c:b8:3a:04:6e:8d:0f:47:f7:e0:c8: 03:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:6F:63:34:22:0D:D6:B1:9C:84:24:E2:AE:FF:F3:5F:DA:FB:8C:D3 X509v3 Authority Key Identifier: keyid:C8:F1:80:DD:48:96:75:D4:79:35:25:FE:E6:CF:FF:46:97:2F:F3:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yPGA3UiWddR5NSX-5s__Rpcv8zw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:c1:dc:b0:99:f9:77:fc:bf:64:ba:07:36:d6:d0:88:3f:59: be:12:25:a0:74:aa:40:75:14:68:74:b7:ad:1e:7a:81:99:93: 70:ac:3a:7e:61:57:f5:5c:c3:f3:11:bc:55:54:96:5e:a8:13: d3:1f:a9:81:7b:4b:21:f9:e1:3d:18:94:b4:c0:89:28:77:98: 02:17:e2:f1:a8:bc:3a:d5:3e:37:b6:9f:08:4b:12:52:54:d7: 0a:71:6c:73:14:a5:b5:37:ca:41:fb:23:21:53:44:3b:fd:41: 3d:e8:eb:0c:89:e6:a0:84:81:e9:c7:3f:6c:d4:f9:c5:1f:6b: 5f:54:33:66:a9:17:6d:ec:73:9c:a4:2c:bc:bf:74:77:cc:21: 3b:b9:3c:91:ba:b8:1f:7f:f3:bf:94:43:11:af:d2:5f:31:7e: 66:b9:94:78:62:32:88:df:7b:53:4c:42:fb:ea:50:16:04:fa: 0d:44:26:ec:7b:e4:6c:07:48:ec:71:8a:4e:be:20:0e:94:b2: c3:01:dd:7b:a3:09:f0:3f:51:67:f6:3a:e4:76:22:27:43:52: d9:fa:74:f5:ae:b9:63:52:a8:fb:59:0c:1d:1e:d6:e3:fc:f8: 38:28:50:c9:f2:80:ec:13:bd:b1:09:82:a0:61:af:ab:e1:88: ce:e1:2b:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoZ1MN7k+T/3xIQfDgfSUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4ZjE4MGRkNDg5Njc1ZDQ3OTM1MjVmZWU2Y2ZmZjQ2OTcy ZmYzM2MwHhcNMjYwMjA5MDkwMDM2WhcNMjYwMjEwMDkwMDM2WjAzMTEwLwYDVQQD EyhiMTZmNjMzNDIyMGRkNmIxOWM4NDI0ZTJhZWZmZjM1ZmRhZmI4Y2QzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnNAP7CiC+6oFpjBAMGsjPooDqJ6Q pEhNsag/5defdAtS/ysznHfAoiUjOmWmDPxF9MahI0xoqp4aE6+2BcEPnZgeKyTq Cl4A1qz3kWa8oMa9q9b++611zIReu8GrjHsjmge4QB2D86LDg8/AsmZmo1DF3K3W +mzCTg/PAZUzRwvBvHyT8RaBttzBCqkHGnBE9iez+N6VoWWOR1ltht5WqiNf0+Su 5mXJXPj+PzCuRUHd9uJGR7z+sJauiSL2TAEI70vpFOTOg0TSlbN5p/kqOZcygF5O kQwtUptMWp1OZAqJiznSU3tTgVYmVeifQjuKI7yybLg6BG6ND0f34MgDjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLFvYzQiDdaxnIQk4q7/81/a+4zTMB8GA1UdIwQY MBaAFMjxgN1IlnXUeTUl/ubP/0aXL/M8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveVBHQTNVaVdkZFI1TlNYLTVzX19ScGN2OHp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS82N2YxYzUtODIyOS00MTczLTk5YzEt ZGJkNzYwMDQ1ZWI3LzEveVBHQTNVaVdkZFI1TlNYLTVzX19ScGN2OHp3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS82N2YxYzUtODIyOS00MTczLTk5YzEtZGJkNzYwMDQ1ZWI3 LzEveVBHQTNVaVdkZFI1TlNYLTVzX19ScGN2OHp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO8HcsJn5 d/y/ZLoHNtbQiD9ZvhIloHSqQHUUaHS3rR56gZmTcKw6fmFX9VzD8xG8VVSWXqgT 0x+pgXtLIfnhPRiUtMCJKHeYAhfi8ai8OtU+N7afCEsSUlTXCnFscxSltTfKQfsj IVNEO/1BPejrDInmoISB6cc/bNT5xR9rX1QzZqkXbexznKQsvL90d8whO7k8kbq4 H3/zv5RDEa/SXzF+ZrmUeGIyiN97U0xC++pQFgT6DUQm7HvkbAdI7HGKTr4gDpSy wwHde6MJ8D9RZ/Y65HYiJ0NS2fp09a65Y1Ko+1kMHR7W4/z4OChQyfKA7BO9sQmC oGGvq+GIzuErPg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:48 2026 by rpki-client