This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft File: YQy4N7bSF3jkw9u5aWefDxxQtIo.mft (raw, json) Hash identifier: 4gInoIAynh6j7wcKgChdq9Ol+5I5y9I9aKqcLdTsJmg= Subject key identifier: 24:AB:E0:0C:8B:EB:5B:62:2B:93:A4:AF:59:F0:07:CF:29:16:56:D5 Authority key identifier: 61:0C:B8:37:B6:D2:17:78:E4:C3:DB:B9:69:67:9F:0F:1C:50:B4:8A Certificate issuer: /CN=610cb837b6d21778e4c3dbb969679f0f1c50b48a Certificate serial: 019C42EB9C9FE9E329160D4CD2940BA53ECB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft Manifest number: 1028 Signing time: Mon 09 Feb 2026 15:01:03 +0000 Manifest this update: Mon 09 Feb 2026 15:01:03 +0000 Manifest next update: Tue 10 Feb 2026 15:01:03 +0000 Files and hashes: 1: YQy4N7bSF3jkw9u5aWefDxxQtIo.crl (hash: PCSt4MmKbRhcJ4Tqw/Q0xdy91hil/vDzf+ktsu8drGg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:9c:9f:e9:e3:29:16:0d:4c:d2:94:0b:a5:3e:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=610cb837b6d21778e4c3dbb969679f0f1c50b48a Validity Not Before: Feb 9 15:01:03 2026 GMT Not After : Feb 10 15:01:03 2026 GMT Subject: CN=24abe00c8beb5b622b93a4af59f007cf291656d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e8:fe:f0:c0:3d:2f:8c:59:64:22:f1:e0:5c: 8d:0f:39:bb:61:19:f8:a2:e3:ef:e8:a2:1a:6a:24: 5f:e2:56:f9:b6:43:f1:52:3b:eb:bb:e5:e1:51:cd: 7e:c7:58:3c:4e:a6:03:d2:12:41:bd:2f:d4:3a:66: e8:6d:95:19:08:14:e5:6f:dc:74:ae:5e:e3:47:28: f2:5d:82:23:17:7a:39:0f:79:90:6d:d3:19:93:d7: 00:40:3f:a1:9f:9c:a7:a3:a1:c8:63:0b:12:34:3e: 09:5c:17:e6:0c:22:80:65:39:50:0d:e4:2b:3c:9e: 5d:f5:b8:1d:9a:4d:73:fc:4c:cb:15:89:cd:8a:e8: 37:f8:ab:94:f0:f5:d7:8d:ff:d8:eb:9a:2c:d9:5d: 7f:2a:a8:28:08:39:90:58:94:7f:94:19:e1:4b:ab: 43:5a:32:e6:82:c9:f3:2c:ea:fe:74:d4:9b:6b:5f: f8:8e:a2:54:4e:6c:2c:a1:bd:d3:78:3a:e9:b3:55: d0:2f:d0:d4:65:c6:fa:eb:20:b3:b9:ba:1f:f2:5e: ba:14:fd:a8:b8:45:69:f8:44:c4:0a:9f:ca:40:e2: 6c:38:8c:e4:70:a5:f6:9b:ee:4e:6a:47:83:76:11: 8a:ec:63:33:58:4c:a8:59:ef:f5:29:1d:d6:6f:96: 1e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:AB:E0:0C:8B:EB:5B:62:2B:93:A4:AF:59:F0:07:CF:29:16:56:D5 X509v3 Authority Key Identifier: keyid:61:0C:B8:37:B6:D2:17:78:E4:C3:DB:B9:69:67:9F:0F:1C:50:B4:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:4e:4a:f8:47:cf:3a:ab:69:47:f5:26:c0:a5:0f:0c:13:aa: 76:71:94:f9:59:ad:55:0a:02:70:39:64:cb:7e:ad:50:3a:ff: 12:7b:52:60:85:ee:0e:16:3c:e2:2f:c6:53:c9:bb:5f:a7:e8: c9:4d:93:39:b3:79:26:2c:d2:3f:9b:da:d0:df:7e:ff:3d:57: 50:c2:4c:1b:4c:c0:37:48:32:58:5e:e4:44:3e:54:2c:80:90: 60:b6:21:21:67:6c:68:cb:7d:ff:da:2a:87:b6:94:31:20:e0: 9b:9f:91:70:9b:f7:bd:47:9e:a8:0e:4e:ab:8a:bc:a7:b3:e7: 13:0a:4a:70:46:dc:7c:94:41:f0:1f:46:50:00:3c:a9:e4:9f: c5:92:47:7c:04:ea:42:20:af:f0:c7:de:2c:24:53:de:ed:34: b4:8e:47:8b:38:49:10:bd:fe:0e:51:e8:d1:4e:a9:43:97:f4: 24:22:f5:58:5d:b5:96:68:67:b5:b5:f2:5f:e7:d5:de:52:58: c9:45:24:29:8b:b1:c4:be:40:68:dc:2a:be:dc:bb:e8:9f:80: 6f:4b:dd:d4:25:58:44:6f:9d:a0:0f:c4:1b:c3:be:24:90:0a: 40:6d:ec:f2:7a:fc:a9:68:01:d8:e9:41:40:5d:8a:f0:aa:7b: 86:fb:c7:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC65yf6eMpFg1M0pQLpT7LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxMGNiODM3YjZkMjE3NzhlNGMzZGJiOTY5Njc5ZjBmMWM1 MGI0OGEwHhcNMjYwMjA5MTUwMTAzWhcNMjYwMjEwMTUwMTAzWjAzMTEwLwYDVQQD EygyNGFiZTAwYzhiZWI1YjYyMmI5M2E0YWY1OWYwMDdjZjI5MTY1NmQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAquj+8MA9L4xZZCLx4FyNDzm7YRn4 ouPv6KIaaiRf4lb5tkPxUjvru+XhUc1+x1g8TqYD0hJBvS/UOmbobZUZCBTlb9x0 rl7jRyjyXYIjF3o5D3mQbdMZk9cAQD+hn5yno6HIYwsSND4JXBfmDCKAZTlQDeQr PJ5d9bgdmk1z/EzLFYnNiug3+KuU8PXXjf/Y65os2V1/KqgoCDmQWJR/lBnhS6tD WjLmgsnzLOr+dNSba1/4jqJUTmwsob3TeDrps1XQL9DUZcb66yCzubof8l66FP2o uEVp+ETECp/KQOJsOIzkcKX2m+5OakeDdhGK7GMzWEyoWe/1KR3Wb5YeXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCSr4AyL61tiK5Okr1nwB88pFlbVMB8GA1UdIwQY MBaAFGEMuDe20hd45MPbuWlnnw8cULSKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVF5NE43YlNGM2prdzl1NWFXZWZEeHhRdElvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy85OGU4MjUtYjU4Yy00NTZlLWFmMjgt N2IzNWEwNmFiNTRiLzEvWVF5NE43YlNGM2prdzl1NWFXZWZEeHhRdElvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy85OGU4MjUtYjU4Yy00NTZlLWFmMjgtN2IzNWEwNmFiNTRi LzEvWVF5NE43YlNGM2prdzl1NWFXZWZEeHhRdElvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHU5K+EfP OqtpR/UmwKUPDBOqdnGU+VmtVQoCcDlky36tUDr/EntSYIXuDhY84i/GU8m7X6fo yU2TObN5JizSP5va0N9+/z1XUMJMG0zAN0gyWF7kRD5ULICQYLYhIWdsaMt9/9oq h7aUMSDgm5+RcJv3vUeeqA5Oq4q8p7PnEwpKcEbcfJRB8B9GUAA8qeSfxZJHfATq QiCv8MfeLCRT3u00tI5HizhJEL3+DlHo0U6pQ5f0JCL1WF21lmhntbXyX+fV3lJY yUUkKYuxxL5AaNwqvty76J+Ab0vd1CVYRG+doA/EG8O+JJAKQG3s8nr8qWgB2OlB QF2K8Kp7hvvHtg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:13:24 2026 by rpki-client