This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/c9234d-e133-4194-84ac-71a39db88a23/1/YhcForItk4GoI8l5xvTnc0I1I20.mft File: YhcForItk4GoI8l5xvTnc0I1I20.mft (raw, json) Hash identifier: fLTEwh4QHdraR4IzjKu4wTAXnqJQgaCLjc72coHvNiU= Subject key identifier: A8:E5:8B:9F:3E:8B:98:CC:41:83:F5:E9:DD:B3:AF:FA:F0:24:C4:C2 Authority key identifier: 62:17:05:A2:B2:2D:93:81:A8:23:C9:79:C6:F4:E7:73:42:35:23:6D Certificate issuer: /CN=621705a2b22d9381a823c979c6f4e7734235236d Certificate serial: 019C43FE023EE38FA1A2BF0F30034663612F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhcForItk4GoI8l5xvTnc0I1I20.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/c9234d-e133-4194-84ac-71a39db88a23/1/YhcForItk4GoI8l5xvTnc0I1I20.mft Manifest number: 10F2 Signing time: Mon 09 Feb 2026 20:00:45 +0000 Manifest this update: Mon 09 Feb 2026 20:00:45 +0000 Manifest next update: Tue 10 Feb 2026 20:00:45 +0000 Files and hashes: 1: YhcForItk4GoI8l5xvTnc0I1I20.crl (hash: rv7NVDpnC9hKwOXFmV6RVkMhX5gG2fp7Pk6W2Obmmco=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/c9234d-e133-4194-84ac-71a39db88a23/1/YhcForItk4GoI8l5xvTnc0I1I20.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/c9234d-e133-4194-84ac-71a39db88a23/1/YhcForItk4GoI8l5xvTnc0I1I20.mft rsync://rpki.ripe.net/repository/DEFAULT/YhcForItk4GoI8l5xvTnc0I1I20.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:02:3e:e3:8f:a1:a2:bf:0f:30:03:46:63:61:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=621705a2b22d9381a823c979c6f4e7734235236d Validity Not Before: Feb 9 20:00:45 2026 GMT Not After : Feb 10 20:00:45 2026 GMT Subject: CN=a8e58b9f3e8b98cc4183f5e9ddb3affaf024c4c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:09:91:dc:88:26:9b:2a:f0:3d:3a:d4:3a:ca: 28:7c:96:ee:da:82:c9:0e:c0:f9:f1:e2:fc:0b:75: b1:6c:42:c5:97:a6:73:cc:5f:8c:ab:0a:41:89:cc: f6:f8:9e:21:1f:d3:ec:9b:af:be:a2:e0:32:e5:85: 2e:62:47:c4:1f:e3:3d:cd:2d:39:2b:a4:12:da:3b: b1:b9:5a:8e:8b:4c:03:b7:64:41:53:41:cd:da:4d: 82:96:f4:e8:88:15:65:91:87:4b:c7:a4:50:74:d0: a5:39:60:c7:0c:72:5e:49:aa:2d:f5:75:8d:08:30: 3d:20:ec:7c:28:99:ff:65:47:45:16:8e:0d:42:bc: 64:82:b0:6d:62:54:4d:a3:c0:b1:99:06:05:94:a4: cf:a1:42:7c:d3:b6:c4:07:39:ef:05:6e:07:f4:fb: f9:fc:e0:5b:d6:e3:a5:bd:14:97:9c:b4:0e:06:0f: 14:3f:39:b2:e1:ec:e2:08:e4:a9:49:d2:f4:7e:77: 39:44:e4:8b:aa:94:5e:1c:71:40:cc:58:a4:f2:fe: c6:5d:9b:1c:20:51:75:29:13:6f:50:f4:04:fe:40: 71:54:db:ce:a1:61:4e:29:d7:5e:42:46:7f:48:5c: 73:d2:69:79:60:23:2c:92:2f:20:42:13:fc:8e:a9: fc:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:E5:8B:9F:3E:8B:98:CC:41:83:F5:E9:DD:B3:AF:FA:F0:24:C4:C2 X509v3 Authority Key Identifier: keyid:62:17:05:A2:B2:2D:93:81:A8:23:C9:79:C6:F4:E7:73:42:35:23:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhcForItk4GoI8l5xvTnc0I1I20.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/c9234d-e133-4194-84ac-71a39db88a23/1/YhcForItk4GoI8l5xvTnc0I1I20.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/c9234d-e133-4194-84ac-71a39db88a23/1/YhcForItk4GoI8l5xvTnc0I1I20.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:2d:7e:89:41:d7:d4:d0:85:06:a2:42:fe:cc:d8:38:2e:75: 49:ed:65:70:50:d4:12:61:2d:07:7d:bf:83:aa:40:d2:d5:50: 6c:e0:0a:b3:b1:ef:d5:a5:28:9c:c4:28:35:5a:43:08:77:05: b6:2a:8a:9f:f1:a9:ba:10:a9:b5:4b:a8:e3:78:11:a5:50:d0: a6:e5:53:9e:25:fa:f0:02:84:d7:c1:e4:ca:85:1a:ab:ed:ca: 2c:1a:39:f6:8e:4e:f7:97:27:99:10:05:ab:f4:eb:2a:f2:12: 42:4c:2b:19:b1:6c:6c:b4:d6:6d:01:e6:5b:a6:ef:8b:ee:58: 16:14:af:e6:7b:94:84:4c:bd:37:8d:15:41:5f:43:39:8a:2b: 37:a5:f9:77:07:e6:9b:4d:85:5f:34:82:6d:5f:88:ee:e9:47: a1:5d:7e:3d:10:32:00:ff:ff:6f:e1:97:b0:a4:49:b2:85:d1: fa:7c:cd:4b:7b:4d:82:df:e8:09:44:82:b7:23:e0:56:60:1d: ba:dd:5d:8a:c0:07:2d:58:35:d8:ec:c0:f1:31:49:2c:84:63: 3e:19:27:fd:1d:32:7d:93:bf:89:25:0b:b9:63:53:9e:f2:48: 11:9e:19:46:65:b8:d5:08:cf:54:e2:01:9a:ad:f9:86:e5:4a: 92:cd:99:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/gI+44+hor8PMANGY2EvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMTcwNWEyYjIyZDkzODFhODIzYzk3OWM2ZjRlNzczNDIz NTIzNmQwHhcNMjYwMjA5MjAwMDQ1WhcNMjYwMjEwMjAwMDQ1WjAzMTEwLwYDVQQD EyhhOGU1OGI5ZjNlOGI5OGNjNDE4M2Y1ZTlkZGIzYWZmYWYwMjRjNGMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkgmR3IgmmyrwPTrUOsoofJbu2oLJ DsD58eL8C3WxbELFl6ZzzF+MqwpBicz2+J4hH9Psm6++ouAy5YUuYkfEH+M9zS05 K6QS2juxuVqOi0wDt2RBU0HN2k2ClvToiBVlkYdLx6RQdNClOWDHDHJeSaot9XWN CDA9IOx8KJn/ZUdFFo4NQrxkgrBtYlRNo8CxmQYFlKTPoUJ807bEBznvBW4H9Pv5 /OBb1uOlvRSXnLQOBg8UPzmy4eziCOSpSdL0fnc5ROSLqpReHHFAzFik8v7GXZsc IFF1KRNvUPQE/kBxVNvOoWFOKddeQkZ/SFxz0ml5YCMski8gQhP8jqn8iwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKjli58+i5jMQYP16d2zr/rwJMTCMB8GA1UdIwQY MBaAFGIXBaKyLZOBqCPJecb053NCNSNtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWhjRm9ySXRrNEdvSThsNXh2VG5jMEkxSTIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy9jOTIzNGQtZTEzMy00MTk0LTg0YWMt NzFhMzlkYjg4YTIzLzEvWWhjRm9ySXRrNEdvSThsNXh2VG5jMEkxSTIwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy9jOTIzNGQtZTEzMy00MTk0LTg0YWMtNzFhMzlkYjg4YTIz LzEvWWhjRm9ySXRrNEdvSThsNXh2VG5jMEkxSTIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASy1+iUHX 1NCFBqJC/szYOC51Se1lcFDUEmEtB32/g6pA0tVQbOAKs7Hv1aUonMQoNVpDCHcF tiqKn/GpuhCptUuo43gRpVDQpuVTniX68AKE18HkyoUaq+3KLBo59o5O95cnmRAF q/TrKvISQkwrGbFsbLTWbQHmW6bvi+5YFhSv5nuUhEy9N40VQV9DOYorN6X5dwfm m02FXzSCbV+I7ulHoV1+PRAyAP//b+GXsKRJsoXR+nzNS3tNgt/oCUSCtyPgVmAd ut1disAHLVg12OzA8TFJLIRjPhkn/R0yfZO/iSULuWNTnvJIEZ4ZRmW41QjPVOIB mq35huVKks2Zmw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:06:32 2026 by rpki-client