This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/208c25-edce-4131-b31b-66a52c7c8c00/1/yGEQ5MdkHRgOjxkgrGX7788G18c.mft File: yGEQ5MdkHRgOjxkgrGX7788G18c.mft (raw, json) Hash identifier: /H57qqmRIMiPWSQSgXKorSSsDEFc5Y+7la2Tf0ZEXZI= Subject key identifier: 86:08:37:C5:7C:16:E6:EC:85:C4:FF:A3:B4:4F:4B:AE:56:54:03:E0 Authority key identifier: C8:61:10:E4:C7:64:1D:18:0E:8F:19:20:AC:65:FB:EF:CF:06:D7:C7 Certificate issuer: /CN=c86110e4c7641d180e8f1920ac65fbefcf06d7c7 Certificate serial: 019C42B473B4472D42844523CD6F9792E392 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yGEQ5MdkHRgOjxkgrGX7788G18c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/208c25-edce-4131-b31b-66a52c7c8c00/1/yGEQ5MdkHRgOjxkgrGX7788G18c.mft Manifest number: 02A3 Signing time: Mon 09 Feb 2026 14:00:48 +0000 Manifest this update: Mon 09 Feb 2026 14:00:48 +0000 Manifest next update: Tue 10 Feb 2026 14:00:48 +0000 Files and hashes: 1: yGEQ5MdkHRgOjxkgrGX7788G18c.crl (hash: +IzoLyK6EW4BQe7GYWjR66VYE/BeyWR6IXcRieulzMM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/208c25-edce-4131-b31b-66a52c7c8c00/1/yGEQ5MdkHRgOjxkgrGX7788G18c.crl rsync://rpki.ripe.net/repository/DEFAULT/8f/208c25-edce-4131-b31b-66a52c7c8c00/1/yGEQ5MdkHRgOjxkgrGX7788G18c.mft rsync://rpki.ripe.net/repository/DEFAULT/yGEQ5MdkHRgOjxkgrGX7788G18c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:73:b4:47:2d:42:84:45:23:cd:6f:97:92:e3:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c86110e4c7641d180e8f1920ac65fbefcf06d7c7 Validity Not Before: Feb 9 14:00:48 2026 GMT Not After : Feb 10 14:00:48 2026 GMT Subject: CN=860837c57c16e6ec85c4ffa3b44f4bae565403e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:59:b5:06:23:e3:de:b2:ef:fd:66:ca:9f:85: 3e:16:2c:6a:c8:fc:eb:0e:ad:97:f8:e3:45:8c:80: 2a:3f:3a:d6:41:6a:3a:94:56:9e:80:d6:31:c7:34: 87:e6:ee:d8:a0:a0:5c:7e:91:a1:6d:c8:00:6a:b7: 3b:db:cc:c9:2b:15:9f:7a:80:96:6e:af:ad:7d:27: f4:f7:25:f4:1c:bc:9e:de:b7:27:da:c6:88:64:19: a4:29:a0:9e:0c:cc:6c:69:8a:60:ef:36:d1:db:f3: 85:eb:33:9e:86:25:0d:7b:90:a6:1d:6c:8a:63:fb: 4c:c6:80:01:82:3b:d1:e8:8f:4f:a1:78:48:df:74: a4:eb:a8:af:af:64:8a:9f:b5:a3:5a:c7:e4:36:75: 14:72:54:89:45:3b:d2:53:2e:2b:4c:4b:ce:70:b3: ca:a4:e4:6e:1b:50:85:3e:c3:2d:4b:71:2b:42:96: 9f:35:72:e8:38:08:74:45:41:a6:1f:45:d0:05:35: 5f:c1:bf:da:a0:e1:54:e2:d1:6d:16:a6:c0:f7:18: 4c:d4:aa:65:e9:a1:d0:75:70:3b:18:84:f1:8f:70: 9d:e1:40:70:08:69:e0:49:9d:ab:3e:8b:60:18:ae: b9:9d:de:83:c5:e9:f5:e8:fa:6d:f6:5d:2f:5b:33: fe:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:08:37:C5:7C:16:E6:EC:85:C4:FF:A3:B4:4F:4B:AE:56:54:03:E0 X509v3 Authority Key Identifier: keyid:C8:61:10:E4:C7:64:1D:18:0E:8F:19:20:AC:65:FB:EF:CF:06:D7:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yGEQ5MdkHRgOjxkgrGX7788G18c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/208c25-edce-4131-b31b-66a52c7c8c00/1/yGEQ5MdkHRgOjxkgrGX7788G18c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/208c25-edce-4131-b31b-66a52c7c8c00/1/yGEQ5MdkHRgOjxkgrGX7788G18c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:c9:10:4d:f2:15:81:48:93:65:d2:ad:7f:91:40:cd:55:2c: 3e:d1:4c:5a:69:ac:f7:56:3e:5d:64:f4:f5:a6:cd:70:3f:e4: 58:5f:83:1b:66:9c:1e:3a:73:a8:da:78:76:25:d7:81:c1:e7: ee:df:cf:6d:0e:a0:c8:8a:af:27:ef:59:da:55:17:8f:1a:63: e4:67:1f:36:e5:16:c6:f2:d8:02:f8:54:8c:c2:59:d7:99:eb: 63:3a:7f:a1:89:1b:f4:e7:90:99:c2:b2:f2:33:8e:33:48:75: 09:ee:9f:ed:bb:e0:77:69:65:23:3f:c4:20:3c:31:c8:99:cd: 4b:e8:93:68:84:a8:b6:3d:62:32:8c:99:4e:90:02:dd:04:2e: 52:33:35:e9:bf:b6:e7:42:9e:9e:8d:8e:16:10:d9:af:0d:e5: bb:6b:e7:8b:50:25:26:09:68:27:f2:1b:52:dc:c2:93:3e:c0: 4e:e5:b4:e5:c1:50:ef:07:50:a1:0f:e0:46:c6:ec:33:87:c5: 3a:09:3c:14:84:50:7f:b9:d6:b3:3b:18:42:7f:95:bc:2e:91: 3e:73:6f:9e:b6:c4:69:e1:c9:04:c6:f4:da:fe:93:4e:76:b6: 39:be:2f:34:d7:19:28:4f:95:11:e6:45:98:c1:a2:b8:98:70: 04:03:64:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtHO0Ry1ChEUjzW+XkuOSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4NjExMGU0Yzc2NDFkMTgwZThmMTkyMGFjNjVmYmVmY2Yw NmQ3YzcwHhcNMjYwMjA5MTQwMDQ4WhcNMjYwMjEwMTQwMDQ4WjAzMTEwLwYDVQQD Eyg4NjA4MzdjNTdjMTZlNmVjODVjNGZmYTNiNDRmNGJhZTU2NTQwM2UwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApVm1BiPj3rLv/WbKn4U+FixqyPzr Dq2X+ONFjIAqPzrWQWo6lFaegNYxxzSH5u7YoKBcfpGhbcgAarc728zJKxWfeoCW bq+tfSf09yX0HLye3rcn2saIZBmkKaCeDMxsaYpg7zbR2/OF6zOehiUNe5CmHWyK Y/tMxoABgjvR6I9PoXhI33Sk66ivr2SKn7WjWsfkNnUUclSJRTvSUy4rTEvOcLPK pORuG1CFPsMtS3ErQpafNXLoOAh0RUGmH0XQBTVfwb/aoOFU4tFtFqbA9xhM1Kpl 6aHQdXA7GITxj3Cd4UBwCGngSZ2rPotgGK65nd6Dxen16Ppt9l0vWzP++wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIYIN8V8FubshcT/o7RPS65WVAPgMB8GA1UdIwQY MBaAFMhhEOTHZB0YDo8ZIKxl++/PBtfHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUdFUTVNZGtIUmdPanhrZ3JHWDc3ODhHMThjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi8yMDhjMjUtZWRjZS00MTMxLWIzMWIt NjZhNTJjN2M4YzAwLzEveUdFUTVNZGtIUmdPanhrZ3JHWDc3ODhHMThjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Zi8yMDhjMjUtZWRjZS00MTMxLWIzMWItNjZhNTJjN2M4YzAw LzEveUdFUTVNZGtIUmdPanhrZ3JHWDc3ODhHMThjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALskQTfIV gUiTZdKtf5FAzVUsPtFMWmms91Y+XWT09abNcD/kWF+DG2acHjpzqNp4diXXgcHn 7t/PbQ6gyIqvJ+9Z2lUXjxpj5GcfNuUWxvLYAvhUjMJZ15nrYzp/oYkb9OeQmcKy 8jOOM0h1Ce6f7bvgd2llIz/EIDwxyJnNS+iTaISotj1iMoyZTpAC3QQuUjM16b+2 50Keno2OFhDZrw3lu2vni1AlJgloJ/IbUtzCkz7ATuW05cFQ7wdQoQ/gRsbsM4fF Ogk8FIRQf7nWszsYQn+VvC6RPnNvnrbEaeHJBMb02v6TTna2Ob4vNNcZKE+VEeZF mMGiuJhwBANkzw== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:05 2026 by rpki-client