This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft File: Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft (raw, json) Hash identifier: X3una2dSch+bduKGFtRIqDlOKWD3QfCt8pUUz8/2C4E= Subject key identifier: AB:37:8D:16:64:80:1D:0B:55:E7:C4:EC:E2:04:0E:95:33:49:55:84 Authority key identifier: 63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90 Certificate issuer: /CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890 Certificate serial: 019C40FCEC0CB9E425DC934AD6E4BE46F0E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft Manifest number: 0DF2 Signing time: Mon 09 Feb 2026 06:00:43 +0000 Manifest this update: Mon 09 Feb 2026 06:00:43 +0000 Manifest next update: Tue 10 Feb 2026 06:00:43 +0000 Files and hashes: 1: Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl (hash: 6v4r6cVmDFd4JVqQGcMCneWwjvfb01KnMiKr64eSN1U=) 2: aRuatR-K8nQ9ZXL9FpjwSLceO4A.roa (hash: Vt5YWGyW9wbAPKP7kNgM97gFfWqXrRoxA2e6gMj6LNc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fc:ec:0c:b9:e4:25:dc:93:4a:d6:e4:be:46:f0:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890 Validity Not Before: Feb 9 06:00:43 2026 GMT Not After : Feb 10 06:00:43 2026 GMT Subject: CN=ab378d1664801d0b55e7c4ece2040e9533495584 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:65:84:d7:98:84:01:36:5b:93:14:2b:d8:ba: 3f:8c:08:80:eb:1a:da:36:80:82:5b:25:a0:52:c0: 21:51:b1:e2:95:48:ab:2f:29:94:e0:4d:08:7f:e1: e4:0e:b9:87:0d:91:c4:93:3b:36:05:bb:06:f6:31: 54:46:6d:5b:e2:3d:6f:36:cf:77:72:01:a2:26:db: 13:5a:4a:3f:b8:86:2f:d2:5c:05:93:f6:b8:67:a5: b9:91:a0:44:5c:ee:08:17:f2:82:bc:55:83:3c:56: 0e:46:80:f4:65:17:0d:28:ae:9e:74:5c:83:77:72: 15:d1:b3:05:af:50:a4:36:49:f5:e0:7a:f6:4f:29: f2:ef:a9:57:31:40:77:1b:a8:2c:10:90:af:78:34: 23:a3:fd:64:4d:21:00:b9:1d:76:02:e8:4c:48:46: d0:51:21:2e:92:49:2f:4b:f0:ca:4e:7f:19:35:32: 12:c2:3f:69:e9:90:10:be:0b:c6:4f:98:3e:97:20: 07:f6:5d:21:f2:1b:99:19:d5:b7:1c:e3:87:4b:fb: b3:82:04:3e:b4:ee:04:2d:34:31:4f:2d:79:cf:3e: 9f:02:46:1e:9f:18:c7:6d:9b:43:b8:9b:7b:d1:dd: e4:5e:c0:20:c3:62:8e:33:3e:61:11:96:6b:02:a4: 42:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:37:8D:16:64:80:1D:0B:55:E7:C4:EC:E2:04:0E:95:33:49:55:84 X509v3 Authority Key Identifier: keyid:63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:90:b8:df:c1:8b:8a:0b:e7:86:03:d3:d4:5d:ad:08:93:4e: a6:81:c0:de:7f:08:70:3e:34:39:54:46:58:6c:12:1c:d8:bd: 23:a3:03:06:12:d5:b2:a0:a7:49:0e:75:d5:f3:79:45:bc:a7: 22:58:05:a4:d9:47:0f:8e:d4:5e:7d:f0:5b:75:99:d9:14:5f: b5:9f:4f:ef:ba:62:5b:41:ca:35:7e:bc:f1:d3:55:5d:92:3d: 0d:77:28:71:a3:41:45:97:80:98:e1:a9:c8:f7:63:d5:40:cc: 97:5d:e7:a4:9e:c7:ab:47:55:82:05:14:e6:40:26:46:f6:98: f1:49:da:d0:13:8b:79:8b:f8:e2:51:4b:36:91:7b:53:a1:e0: b6:da:00:8e:66:5d:9b:9f:93:1c:df:01:02:0d:65:89:49:a0: 65:55:95:71:8c:1d:07:53:bd:bf:ce:44:f0:28:3a:a0:33:10: 53:72:02:5e:cc:99:8c:6a:5a:a7:b2:96:01:e0:4b:53:d5:3b: 13:55:cc:d0:5d:23:ad:34:6e:0c:2e:65:ac:8b:57:dd:e9:2d: 76:94:fa:d7:30:96:db:4e:31:f3:bd:26:ce:d6:4c:2e:4f:3a: cc:45:2a:0f:f6:82:a0:c8:c1:ff:26:c4:a1:1d:ae:94:7d:1b: d8:12:28:86 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/OwMueQl3JNK1uS+RvDpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzOGM4M2Y5YTNhM2QyMTYwYTAxNzhjYTE5Y2NiNDNhMGQy ZjE4OTAwHhcNMjYwMjA5MDYwMDQzWhcNMjYwMjEwMDYwMDQzWjAzMTEwLwYDVQQD EyhhYjM3OGQxNjY0ODAxZDBiNTVlN2M0ZWNlMjA0MGU5NTMzNDk1NTg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3WWE15iEATZbkxQr2Lo/jAiA6xra NoCCWyWgUsAhUbHilUirLymU4E0If+HkDrmHDZHEkzs2BbsG9jFURm1b4j1vNs93 cgGiJtsTWko/uIYv0lwFk/a4Z6W5kaBEXO4IF/KCvFWDPFYORoD0ZRcNKK6edFyD d3IV0bMFr1CkNkn14Hr2Tyny76lXMUB3G6gsEJCveDQjo/1kTSEAuR12AuhMSEbQ USEukkkvS/DKTn8ZNTISwj9p6ZAQvgvGT5g+lyAH9l0h8huZGdW3HOOHS/uzggQ+ tO4ELTQxTy15zz6fAkYenxjHbZtDuJt70d3kXsAgw2KOMz5hEZZrAqRCAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKs3jRZkgB0LVefE7OIEDpUzSVWEMB8GA1UdIwQY MBaAFGOMg/mjo9IWCgF4yhnMtDoNLxiQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTR5RC1hT2owaFlLQVhqS0djeTBPZzB2R0pBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9jYzNjMjgtN2IxMy00MzQzLWFmMzct MjU1NTBiYTI5MTI3LzEvWTR5RC1hT2owaFlLQVhqS0djeTBPZzB2R0pBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC9jYzNjMjgtN2IxMy00MzQzLWFmMzctMjU1NTBiYTI5MTI3 LzEvWTR5RC1hT2owaFlLQVhqS0djeTBPZzB2R0pBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgZC438GL igvnhgPT1F2tCJNOpoHA3n8IcD40OVRGWGwSHNi9I6MDBhLVsqCnSQ511fN5Rbyn IlgFpNlHD47UXn3wW3WZ2RRftZ9P77piW0HKNX688dNVXZI9DXcocaNBRZeAmOGp yPdj1UDMl13npJ7Hq0dVggUU5kAmRvaY8Una0BOLeYv44lFLNpF7U6HgttoAjmZd m5+THN8BAg1liUmgZVWVcYwdB1O9v85E8Cg6oDMQU3ICXsyZjGpap7KWAeBLU9U7 E1XM0F0jrTRuDC5lrItX3ektdpT61zCW204x870mztZMLk86zEUqD/aCoMjB/ybE oR2ulH0b2BIohg== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:28 2026 by rpki-client