This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft File: yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft (raw, json) Hash identifier: NIGvNaHG00MynkgdlBeHGJSY70HZBSn33mkBfaok00Q= Subject key identifier: 76:15:18:B5:B8:B7:11:47:87:B1:2D:3F:E1:61:9C:0E:5E:84:A7:CC Authority key identifier: CA:23:1A:43:62:BC:1E:C0:FD:B4:34:99:01:B6:1C:CF:9D:67:9D:65 Certificate issuer: /CN=ca231a4362bc1ec0fdb4349901b61ccf9d679d65 Certificate serial: 019C438FBA4BBE95030679AD8C6876E93784 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft Manifest number: 0596 Signing time: Mon 09 Feb 2026 18:00:18 +0000 Manifest this update: Mon 09 Feb 2026 18:00:18 +0000 Manifest next update: Tue 10 Feb 2026 18:00:18 +0000 Files and hashes: 1: WxNi3FY5cr-Bjj8BRJGuFpl1ulQ.roa (hash: uM3IRzOQy7yokmWWB+yCvHyVpY0d0sa0ZM1vmaCKkO8=) 2: yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl (hash: 3gDGLdkVpiZFhX6GospLY6Fe3h94H0JdYeLH91+kW6Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:ba:4b:be:95:03:06:79:ad:8c:68:76:e9:37:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca231a4362bc1ec0fdb4349901b61ccf9d679d65 Validity Not Before: Feb 9 18:00:18 2026 GMT Not After : Feb 10 18:00:18 2026 GMT Subject: CN=761518b5b8b7114787b12d3fe1619c0e5e84a7cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:52:63:56:da:4d:ba:76:0f:eb:db:ff:7c:ee: 25:3f:48:f3:99:74:61:c6:3b:b6:42:22:a7:d1:8a: 46:06:18:2c:31:de:7f:98:9b:53:62:1c:7f:91:7a: 32:ae:5e:06:18:be:9b:51:ed:02:e2:e3:09:5a:de: e4:46:ad:56:fb:81:65:8e:d7:8e:ec:11:01:11:32: 8a:62:95:d3:9a:72:1a:17:e2:d1:6d:74:70:f3:db: 4c:de:6f:a3:3a:93:0f:aa:fc:38:b2:72:66:45:16: 8e:27:7b:0e:ed:0b:fb:93:24:c2:af:22:e0:1f:07: 4a:92:c1:48:e2:ce:90:ae:a9:c2:10:a2:74:55:37: 39:fa:18:eb:1e:a1:ac:59:6e:97:ef:53:86:2d:e1: 8b:9f:48:77:0b:b4:c8:eb:56:06:44:86:c5:b1:f0: d0:76:e1:47:33:03:38:e0:57:13:4e:fb:a7:bd:27: df:fc:a6:cb:18:e2:a9:5a:39:0d:a9:5a:fb:35:78: 1a:b6:89:46:e5:93:d2:20:b9:11:44:af:03:a1:5d: b3:d9:19:ae:7e:e7:96:81:19:61:55:a6:15:ca:63: a9:0c:33:5c:72:98:2e:bc:1f:32:01:98:1b:1f:31: d6:8d:25:5b:d8:9f:ba:27:99:e3:3f:d0:56:be:86: c1:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:15:18:B5:B8:B7:11:47:87:B1:2D:3F:E1:61:9C:0E:5E:84:A7:CC X509v3 Authority Key Identifier: keyid:CA:23:1A:43:62:BC:1E:C0:FD:B4:34:99:01:B6:1C:CF:9D:67:9D:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:3c:95:f3:89:46:27:77:c7:28:e5:98:b5:7a:ce:15:03:5f: 03:77:98:61:c0:80:db:61:13:34:0a:f2:ce:1c:f8:e1:61:68: 6d:b2:b0:83:cd:b0:0e:a6:46:51:42:94:67:4c:28:a2:4d:d8: 50:7f:36:3f:4d:b0:08:7a:09:6f:26:e1:79:ad:14:57:1a:24: 21:2b:1a:bf:f3:7d:82:57:31:e9:d8:11:e8:ca:b8:1f:aa:4d: 0b:50:bd:cc:19:a6:17:b4:14:10:b8:9e:3b:b0:62:3e:c6:58: 60:51:1e:26:52:6a:1a:bc:c3:2d:23:dc:a4:ab:c9:9b:5b:2e: 0b:fe:02:59:50:df:92:23:52:66:02:99:a2:7b:a2:23:32:b4: 7d:55:59:34:c2:99:8f:2d:9d:02:fd:a7:1d:70:70:e1:c0:30: 7d:f4:4a:5a:25:07:41:59:ce:21:1d:e0:48:e5:33:1e:51:84: ee:ad:27:63:be:1c:a3:d0:78:81:9a:3e:f6:7a:85:05:86:b7: dd:a0:12:69:e9:d3:0a:ef:49:51:09:8a:27:40:65:51:6c:5e: fc:08:e4:01:ae:9f:6d:ea:0d:9e:68:ff:d2:04:50:0f:c9:e3: dc:59:48:12:62:6c:0c:24:6e:88:5a:db:35:5d:f5:09:ed:03: 19:bd:1d:4f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj7pLvpUDBnmtjGh26TeEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhMjMxYTQzNjJiYzFlYzBmZGI0MzQ5OTAxYjYxY2NmOWQ2 NzlkNjUwHhcNMjYwMjA5MTgwMDE4WhcNMjYwMjEwMTgwMDE4WjAzMTEwLwYDVQQD Eyg3NjE1MThiNWI4YjcxMTQ3ODdiMTJkM2ZlMTYxOWMwZTVlODRhN2NjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt1JjVtpNunYP69v/fO4lP0jzmXRh xju2QiKn0YpGBhgsMd5/mJtTYhx/kXoyrl4GGL6bUe0C4uMJWt7kRq1W+4FljteO 7BEBETKKYpXTmnIaF+LRbXRw89tM3m+jOpMPqvw4snJmRRaOJ3sO7Qv7kyTCryLg HwdKksFI4s6QrqnCEKJ0VTc5+hjrHqGsWW6X71OGLeGLn0h3C7TI61YGRIbFsfDQ duFHMwM44FcTTvunvSff/KbLGOKpWjkNqVr7NXgatolG5ZPSILkRRK8DoV2z2Rmu fueWgRlhVaYVymOpDDNccpguvB8yAZgbHzHWjSVb2J+6J5njP9BWvobBFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHYVGLW4txFHh7EtP+FhnA5ehKfMMB8GA1UdIwQY MBaAFMojGkNivB7A/bQ0mQG2HM+dZ51lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWlNYVEySzhIc0Q5dERTWkFiWWN6NTFubldVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS84NTZjMDUtZDdiMi00OTlhLWFmMzkt MzlkZmE0OGVhNmI5LzEveWlNYVEySzhIc0Q5dERTWkFiWWN6NTFubldVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS84NTZjMDUtZDdiMi00OTlhLWFmMzktMzlkZmE0OGVhNmI5 LzEveWlNYVEySzhIc0Q5dERTWkFiWWN6NTFubldVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArjyV84lG J3fHKOWYtXrOFQNfA3eYYcCA22ETNAryzhz44WFobbKwg82wDqZGUUKUZ0wook3Y UH82P02wCHoJbybhea0UVxokISsav/N9glcx6dgR6Mq4H6pNC1C9zBmmF7QUELie O7BiPsZYYFEeJlJqGrzDLSPcpKvJm1suC/4CWVDfkiNSZgKZonuiIzK0fVVZNMKZ jy2dAv2nHXBw4cAwffRKWiUHQVnOIR3gSOUzHlGE7q0nY74co9B4gZo+9nqFBYa3 3aASaenTCu9JUQmKJ0BlUWxe/AjkAa6fbeoNnmj/0gRQD8nj3FlIEmJsDCRuiFrb NV31Ce0DGb0dTw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:35:49 2026 by rpki-client