This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.mft File: YDRE4ZlioZHv0vIWoSji9M_io94.mft (raw, json) Hash identifier: OdY9czdzDmIp3CrfAhukFjEqexYVzb26H9yS8WvEoJo= Subject key identifier: F9:AD:F0:91:69:F8:B4:55:34:97:AA:86:25:4E:8E:45:3F:6C:9D:8F Authority key identifier: 60:34:44:E1:99:62:A1:91:EF:D2:F2:16:A1:28:E2:F4:CF:E2:A3:DE Certificate issuer: /CN=603444e19962a191efd2f216a128e2f4cfe2a3de Certificate serial: 019C43228085C8F747B69C2DDAD6E552DB5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDRE4ZlioZHv0vIWoSji9M_io94.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.mft Manifest number: 082A Signing time: Mon 09 Feb 2026 16:01:00 +0000 Manifest this update: Mon 09 Feb 2026 16:01:00 +0000 Manifest next update: Tue 10 Feb 2026 16:01:00 +0000 Files and hashes: 1: YDRE4ZlioZHv0vIWoSji9M_io94.crl (hash: 54tRlPzGf3FtJXJxJVHsvLTUJLk7fVQTVD3+BUXGy5w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.mft rsync://rpki.ripe.net/repository/DEFAULT/YDRE4ZlioZHv0vIWoSji9M_io94.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:80:85:c8:f7:47:b6:9c:2d:da:d6:e5:52:db:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=603444e19962a191efd2f216a128e2f4cfe2a3de Validity Not Before: Feb 9 16:01:00 2026 GMT Not After : Feb 10 16:01:00 2026 GMT Subject: CN=f9adf09169f8b4553497aa86254e8e453f6c9d8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a3:a0:88:92:d7:9b:69:93:fb:f3:a9:75:d1: 2a:b9:c7:ba:b1:3f:4c:83:28:fa:c1:4c:a0:b6:7c: cd:1e:ce:ef:a5:7c:34:bb:20:a5:82:a4:aa:bf:ff: b4:4a:07:fa:2d:31:fc:f1:c2:9c:d1:84:41:34:4b: 87:ce:f8:cd:0c:fe:79:a1:1d:34:54:e8:cb:5c:b3: 93:01:b8:f2:51:4e:95:26:03:5d:44:3f:43:79:61: 6b:b7:c0:ff:96:4a:f8:b1:8c:6b:2e:88:ce:80:9b: 4c:ce:b2:c4:14:4d:13:61:b2:d6:52:43:40:9a:5a: ad:ef:65:c5:96:7b:a0:1e:93:39:db:15:33:96:02: 68:f6:7f:b5:97:27:28:ad:b0:b6:d7:53:55:7d:f3: 92:73:80:9c:f4:45:50:b6:41:ab:31:3e:d2:5c:49: 93:46:76:78:63:59:cb:aa:41:39:0a:01:04:4a:2a: 0d:86:a8:bb:43:47:e8:01:0f:e1:9a:da:33:30:1a: 03:79:7b:98:85:d6:f1:9d:d4:40:98:d3:68:d6:51: 64:28:09:88:4e:97:5a:10:97:d5:8c:5d:a3:a7:54: d1:fa:c5:cd:c0:a2:e2:d7:99:b2:4d:04:3f:0e:3a: 6d:d9:a4:4b:78:36:d8:32:62:15:31:2d:bb:10:3e: ef:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:AD:F0:91:69:F8:B4:55:34:97:AA:86:25:4E:8E:45:3F:6C:9D:8F X509v3 Authority Key Identifier: keyid:60:34:44:E1:99:62:A1:91:EF:D2:F2:16:A1:28:E2:F4:CF:E2:A3:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDRE4ZlioZHv0vIWoSji9M_io94.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:dd:04:5f:a4:d6:b6:0c:20:0d:2d:b1:1d:27:ce:76:48:59: 9f:eb:17:e1:fb:d3:81:16:5e:cc:38:92:5d:c5:b6:80:df:f2: 49:1d:bc:17:07:ae:4f:c3:2b:cc:0e:21:19:a1:eb:ed:f3:82: 4a:8a:c3:22:14:66:62:a8:8f:48:b7:ac:ea:e1:b4:d1:fc:1e: 7c:92:80:c4:aa:4d:02:7b:d6:99:8e:b9:87:c3:6c:92:5f:5f: b2:ac:21:9b:a6:cd:be:5f:8e:42:85:4f:97:ac:b2:7b:99:e5: 77:fb:68:60:42:69:39:30:21:ed:56:9e:07:27:23:5e:43:68: 2d:02:62:18:e6:1e:7b:e7:90:9a:c2:7e:ce:b0:39:99:1a:6b: aa:b0:c6:ea:ee:5d:cc:24:0e:60:da:76:ac:ad:64:df:99:b7: 89:11:07:d4:ce:1a:f5:27:ce:db:42:92:60:12:bd:bb:f4:05: 68:d3:a4:2e:ef:5b:2c:98:73:77:e0:a7:d9:83:a2:42:d5:2c: c2:05:65:42:40:4c:ad:c3:5e:55:4b:d3:c4:32:af:1c:0f:62: b8:3f:e0:c9:7a:a0:44:76:b8:48:94:1c:3e:3a:f0:b2:dc:3a: 81:16:4a:e3:f4:e7:be:41:c9:02:d8:fd:52:a3:f5:ea:b5:5d: f0:2b:d3:d1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIoCFyPdHtpwt2tblUttbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwMzQ0NGUxOTk2MmExOTFlZmQyZjIxNmExMjhlMmY0Y2Zl MmEzZGUwHhcNMjYwMjA5MTYwMTAwWhcNMjYwMjEwMTYwMTAwWjAzMTEwLwYDVQQD EyhmOWFkZjA5MTY5ZjhiNDU1MzQ5N2FhODYyNTRlOGU0NTNmNmM5ZDhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt6OgiJLXm2mT+/OpddEquce6sT9M gyj6wUygtnzNHs7vpXw0uyClgqSqv/+0Sgf6LTH88cKc0YRBNEuHzvjNDP55oR00 VOjLXLOTAbjyUU6VJgNdRD9DeWFrt8D/lkr4sYxrLojOgJtMzrLEFE0TYbLWUkNA mlqt72XFlnugHpM52xUzlgJo9n+1lycorbC211NVffOSc4Cc9EVQtkGrMT7SXEmT RnZ4Y1nLqkE5CgEESioNhqi7Q0foAQ/hmtozMBoDeXuYhdbxndRAmNNo1lFkKAmI TpdaEJfVjF2jp1TR+sXNwKLi15myTQQ/Djpt2aRLeDbYMmIVMS27ED7v/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPmt8JFp+LRVNJeqhiVOjkU/bJ2PMB8GA1UdIwQY MBaAFGA0ROGZYqGR79LyFqEo4vTP4qPeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWURSRTRabGlvWkh2MHZJV29Tamk5TV9pbzk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC8xZjMyY2ItZGFiMi00YTlmLWFlNzct ODQ0N2UyOWMxNTI0LzEvWURSRTRabGlvWkh2MHZJV29Tamk5TV9pbzk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC8xZjMyY2ItZGFiMi00YTlmLWFlNzctODQ0N2UyOWMxNTI0 LzEvWURSRTRabGlvWkh2MHZJV29Tamk5TV9pbzk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGd0EX6TW tgwgDS2xHSfOdkhZn+sX4fvTgRZezDiSXcW2gN/ySR28FweuT8MrzA4hGaHr7fOC SorDIhRmYqiPSLes6uG00fwefJKAxKpNAnvWmY65h8Nskl9fsqwhm6bNvl+OQoVP l6yye5nld/toYEJpOTAh7VaeBycjXkNoLQJiGOYee+eQmsJ+zrA5mRprqrDG6u5d zCQOYNp2rK1k35m3iREH1M4a9SfO20KSYBK9u/QFaNOkLu9bLJhzd+Cn2YOiQtUs wgVlQkBMrcNeVUvTxDKvHA9iuD/gyXqgRHa4SJQcPjrwstw6gRZK4/TnvkHJAtj9 UqP16rVd8CvT0Q== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:09 2026 by rpki-client