This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.mft File: RYemiKiamJlJQWqBnMSoDepFTJ0.mft (raw, json) Hash identifier: jLCCUTZpHqLK9FgkTRJ6nGmnVcxAffbfDj4mFWMMx88= Subject key identifier: 2E:79:B0:A9:18:ED:31:18:84:F2:75:4B:6D:2B:F9:A1:8C:63:07:2D Authority key identifier: 45:87:A6:88:A8:9A:98:99:49:41:6A:81:9C:C4:A8:0D:EA:45:4C:9D Certificate issuer: /CN=4587a688a89a989949416a819cc4a80dea454c9d Certificate serial: 019C4390396E9899C86801A02429945A156D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RYemiKiamJlJQWqBnMSoDepFTJ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.mft Manifest number: 04CA Signing time: Mon 09 Feb 2026 18:00:51 +0000 Manifest this update: Mon 09 Feb 2026 18:00:51 +0000 Manifest next update: Tue 10 Feb 2026 18:00:51 +0000 Files and hashes: 1: RYemiKiamJlJQWqBnMSoDepFTJ0.crl (hash: QDBXZHJo4Q5KFv9zfytts11RjkEk2VLQULn/HyR0Bos=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.crl rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.mft rsync://rpki.ripe.net/repository/DEFAULT/RYemiKiamJlJQWqBnMSoDepFTJ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:39:6e:98:99:c8:68:01:a0:24:29:94:5a:15:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4587a688a89a989949416a819cc4a80dea454c9d Validity Not Before: Feb 9 18:00:51 2026 GMT Not After : Feb 10 18:00:51 2026 GMT Subject: CN=2e79b0a918ed311884f2754b6d2bf9a18c63072d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ea:14:9b:f8:d8:3d:fb:36:27:e2:c6:9e:89: fa:d8:55:c7:88:ac:d1:42:4c:20:33:69:1e:71:71: 49:26:2f:f6:3c:09:09:74:b2:9b:15:b2:af:67:d7: 49:eb:5b:d8:b2:c8:ec:6e:21:8a:14:40:58:2f:fc: b3:7e:d8:0e:cd:47:e9:72:42:09:14:a1:04:ce:17: 03:23:c0:86:53:2a:f5:d4:27:bf:37:6e:36:b2:8c: 06:5f:a9:2d:33:4f:d7:b5:2a:a3:cf:98:32:39:e4: cc:05:f5:c2:62:90:c3:a0:08:dc:73:00:7b:08:ea: 01:03:5d:43:2c:f2:16:d3:8d:94:78:cd:06:a9:4f: 2c:8a:af:aa:f0:3a:fe:4a:e1:c5:35:71:bb:c6:b5: f2:46:53:df:0c:85:61:64:c1:83:6b:ec:c5:2c:df: cc:a3:89:7b:69:1e:9a:fd:56:99:15:86:23:67:11: 43:88:8f:fb:8e:d7:40:39:d0:4c:4a:06:41:46:44: 82:f6:20:e0:76:2d:40:94:57:ef:21:31:55:64:9c: b9:6f:41:d2:47:a8:42:62:a2:c8:2e:c3:ae:68:32: a7:5d:c3:b9:23:7e:57:24:76:70:4b:fe:18:b6:45: 10:5a:7b:07:4b:1d:d0:a0:ec:82:9e:c9:64:3f:44: 23:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:79:B0:A9:18:ED:31:18:84:F2:75:4B:6D:2B:F9:A1:8C:63:07:2D X509v3 Authority Key Identifier: keyid:45:87:A6:88:A8:9A:98:99:49:41:6A:81:9C:C4:A8:0D:EA:45:4C:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RYemiKiamJlJQWqBnMSoDepFTJ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/96/61d2b3-79db-4899-8b80-2f725956148f/1/RYemiKiamJlJQWqBnMSoDepFTJ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:1b:96:12:24:96:d9:8f:74:82:1b:16:cd:03:47:e8:de:44: 7f:ce:2c:73:d2:fa:d4:21:a8:3b:74:23:1f:dc:97:86:2a:5c: 9b:8e:3a:e9:ca:1c:19:a3:9d:e6:bb:44:7d:9f:3e:24:7d:ce: 3e:2d:54:b6:7b:84:6f:25:6c:67:d4:ca:03:3b:e0:4b:08:fb: 87:da:ae:e2:b1:0a:a9:66:bd:b0:53:36:2d:28:ed:97:4f:0d: b1:13:62:8f:61:c6:40:a5:c4:9a:de:7b:66:40:25:3e:6d:5d: 25:28:33:40:fd:cb:31:0e:05:1f:a2:0d:93:3b:ae:b5:de:07: 99:dd:99:56:35:20:df:90:4f:d9:d5:46:2c:01:66:30:cd:87: 9b:82:23:e8:1c:40:74:37:bc:0d:e0:2c:06:3c:20:ef:83:66: 2d:79:80:dd:58:55:13:f1:7b:bf:7b:aa:b3:c7:1c:c1:b9:f5: 23:13:99:c5:df:04:df:a5:d7:b7:20:01:32:c2:22:22:b4:ca: 45:9e:b3:87:d5:b1:90:3c:73:b0:b8:7b:30:67:fc:87:54:b1: 85:06:90:27:0e:32:90:b6:e9:84:43:40:03:98:f2:ff:a4:04: 92:d2:d9:69:ae:56:28:05:62:c3:3d:c0:ea:61:c9:34:65:e7: c9:8d:20:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkDlumJnIaAGgJCmUWhVtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1ODdhNjg4YTg5YTk4OTk0OTQxNmE4MTljYzRhODBkZWE0 NTRjOWQwHhcNMjYwMjA5MTgwMDUxWhcNMjYwMjEwMTgwMDUxWjAzMTEwLwYDVQQD EygyZTc5YjBhOTE4ZWQzMTE4ODRmMjc1NGI2ZDJiZjlhMThjNjMwNzJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv+oUm/jYPfs2J+LGnon62FXHiKzR QkwgM2kecXFJJi/2PAkJdLKbFbKvZ9dJ61vYssjsbiGKFEBYL/yzftgOzUfpckIJ FKEEzhcDI8CGUyr11Ce/N242sowGX6ktM0/XtSqjz5gyOeTMBfXCYpDDoAjccwB7 COoBA11DLPIW042UeM0GqU8siq+q8Dr+SuHFNXG7xrXyRlPfDIVhZMGDa+zFLN/M o4l7aR6a/VaZFYYjZxFDiI/7jtdAOdBMSgZBRkSC9iDgdi1AlFfvITFVZJy5b0HS R6hCYqLILsOuaDKnXcO5I35XJHZwS/4YtkUQWnsHSx3QoOyCnslkP0QjywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC55sKkY7TEYhPJ1S20r+aGMYwctMB8GA1UdIwQY MBaAFEWHpoiompiZSUFqgZzEqA3qRUydMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUlllbWlLaWFtSmxKUVdxQm5NU29EZXBGVEowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ni82MWQyYjMtNzlkYi00ODk5LThiODAt MmY3MjU5NTYxNDhmLzEvUlllbWlLaWFtSmxKUVdxQm5NU29EZXBGVEowLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ni82MWQyYjMtNzlkYi00ODk5LThiODAtMmY3MjU5NTYxNDhm LzEvUlllbWlLaWFtSmxKUVdxQm5NU29EZXBGVEowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGxuWEiSW 2Y90ghsWzQNH6N5Ef84sc9L61CGoO3QjH9yXhipcm4466cocGaOd5rtEfZ8+JH3O Pi1UtnuEbyVsZ9TKAzvgSwj7h9qu4rEKqWa9sFM2LSjtl08NsRNij2HGQKXEmt57 ZkAlPm1dJSgzQP3LMQ4FH6INkzuutd4Hmd2ZVjUg35BP2dVGLAFmMM2Hm4Ij6BxA dDe8DeAsBjwg74NmLXmA3VhVE/F7v3uqs8ccwbn1IxOZxd8E36XXtyABMsIiIrTK RZ6zh9WxkDxzsLh7MGf8h1SxhQaQJw4ykLbphENAA5jy/6QEktLZaa5WKAViwz3A 6mHJNGXnyY0ghQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:10 2026 by rpki-client