This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft File: lYj7Sw-weytS4w2SGYmPKM-8mi0.mft (raw, json) Hash identifier: AsorhCcEmw6XS4+xCQKhhBvYnJZTZXsKL9YW0ElgP+c= Subject key identifier: D9:FC:0A:9A:3E:9E:B1:BA:FB:3D:25:A8:9A:E3:DE:9D:5D:C1:80:61 Authority key identifier: 95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D Certificate issuer: /CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d Certificate serial: 019C4322A15A76367AE426723885730847AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft Manifest number: 158D Signing time: Mon 09 Feb 2026 16:01:08 +0000 Manifest this update: Mon 09 Feb 2026 16:01:08 +0000 Manifest next update: Tue 10 Feb 2026 16:01:08 +0000 Files and hashes: 1: lYj7Sw-weytS4w2SGYmPKM-8mi0.crl (hash: Xm2orftyvpj0fuKMQ29xPg5tsMnefXd6wiz/P4mFf98=) 2: nwCKURFvKAdbQU38fWCHq9Su4qo.roa (hash: C9xiWCIHazX19G/OBW1EkzJey6ARQXArUE2/+FTm9Z4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:a1:5a:76:36:7a:e4:26:72:38:85:73:08:47:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d Validity Not Before: Feb 9 16:01:08 2026 GMT Not After : Feb 10 16:01:08 2026 GMT Subject: CN=d9fc0a9a3e9eb1bafb3d25a89ae3de9d5dc18061 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:26:2e:68:0c:fe:a5:41:1d:19:ab:c2:ac:09: b4:6a:62:69:02:a4:dc:51:b6:e5:6d:8c:e8:08:f4: 3d:b7:be:eb:95:f1:ad:97:bd:36:3f:5c:98:d2:fe: fd:f8:89:58:67:e8:ed:73:19:b1:67:f7:6e:c0:9c: 3d:35:f4:19:c1:03:fa:d7:ce:32:14:c2:ae:72:e4: 84:b9:01:fb:b3:64:66:41:02:69:8c:e9:8f:e7:25: 67:3c:bb:4a:fc:c2:d3:34:5e:31:83:fe:0a:4b:37: c6:e2:81:f8:ff:44:20:a2:df:37:00:7e:22:61:b0: 4b:c2:18:3b:bd:91:9f:bb:58:e9:34:b7:af:60:80: ad:45:11:80:8e:72:8b:60:6e:8c:f0:7f:38:c5:7c: 27:ad:9e:77:10:19:70:56:a5:0a:c9:ae:ee:b4:ab: b7:58:f2:ca:19:7d:e2:5e:61:50:58:32:b6:53:25: 2f:1b:60:b7:6d:9f:34:e0:54:63:c8:97:8d:4d:59: 6e:7a:d6:61:e0:dc:9c:ee:08:63:28:23:08:cd:58: d5:ae:47:25:6a:b6:e6:e7:68:e5:8d:0f:62:cd:56: 70:fb:ec:d4:95:5a:2b:49:91:59:14:4c:50:5e:dc: a3:85:c8:ef:6d:25:c9:9b:42:48:4c:76:db:a5:ca: 6b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:FC:0A:9A:3E:9E:B1:BA:FB:3D:25:A8:9A:E3:DE:9D:5D:C1:80:61 X509v3 Authority Key Identifier: keyid:95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:53:3a:be:26:ca:b8:09:00:62:79:e3:6c:e2:81:01:8a:96: fa:48:77:05:f6:3f:13:a6:43:c1:a2:7c:87:87:4e:41:60:42: 32:8f:e4:fb:24:23:b2:a5:c3:93:28:91:00:e4:3e:d7:58:0e: 76:ae:d9:63:ee:9e:ba:87:7c:5b:a0:02:66:50:af:e0:e6:4b: 72:61:39:c5:9e:f9:b5:79:3e:37:87:6e:42:66:db:aa:7b:1d: dc:64:88:18:a1:9a:a9:6c:35:7d:36:dc:b0:09:8c:b0:eb:2b: c7:63:16:09:f9:fc:e8:44:6d:22:09:34:f8:19:5b:90:7d:26: 7f:e9:1c:f0:93:8e:65:52:b5:f9:a5:28:45:4f:63:d3:58:b6: 01:a7:1d:85:25:9c:4b:df:77:c9:a9:11:58:0a:2f:66:14:4a: 64:7a:b4:8e:c6:c5:07:3c:9f:a7:fd:d0:cb:7e:9d:29:59:30: 02:e8:af:7b:51:c9:b1:1c:e6:56:55:35:ea:de:01:7b:f2:d7: 1c:41:fc:9e:48:e2:be:d5:70:26:8f:7a:b9:0b:98:06:13:17: 3b:ec:5a:ce:f1:b2:af:c9:22:c0:66:2d:cc:d3:e2:ef:07:75: 21:03:18:08:ca:7f:1b:c3:a1:b9:20:6f:94:a4:ce:31:bf:71: 2b:8f:d7:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIqFadjZ65CZyOIVzCEesMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1ODhmYjRiMGZiMDdiMmI1MmUzMGQ5MjE5ODk4ZjI4Y2Zi YzlhMmQwHhcNMjYwMjA5MTYwMTA4WhcNMjYwMjEwMTYwMTA4WjAzMTEwLwYDVQQD EyhkOWZjMGE5YTNlOWViMWJhZmIzZDI1YTg5YWUzZGU5ZDVkYzE4MDYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwiYuaAz+pUEdGavCrAm0amJpAqTc UbblbYzoCPQ9t77rlfGtl702P1yY0v79+IlYZ+jtcxmxZ/duwJw9NfQZwQP6184y FMKucuSEuQH7s2RmQQJpjOmP5yVnPLtK/MLTNF4xg/4KSzfG4oH4/0Qgot83AH4i YbBLwhg7vZGfu1jpNLevYICtRRGAjnKLYG6M8H84xXwnrZ53EBlwVqUKya7utKu3 WPLKGX3iXmFQWDK2UyUvG2C3bZ804FRjyJeNTVluetZh4Nyc7ghjKCMIzVjVrkcl arbm52jljQ9izVZw++zUlVorSZFZFExQXtyjhcjvbSXJm0JITHbbpcprowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNn8Cpo+nrG6+z0lqJrj3p1dwYBhMB8GA1UdIwQY MBaAFJWI+0sPsHsrUuMNkhmJjyjPvJotMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFlqN1N3LXdleXRTNHcyU0dZbVBLTS04bWkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy9mYjg1ZDMtNjY2MC00MzBlLTlhYzct ODZkMmMzMTFkYjE3LzEvbFlqN1N3LXdleXRTNHcyU0dZbVBLTS04bWkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy9mYjg1ZDMtNjY2MC00MzBlLTlhYzctODZkMmMzMTFkYjE3 LzEvbFlqN1N3LXdleXRTNHcyU0dZbVBLTS04bWkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWlM6vibK uAkAYnnjbOKBAYqW+kh3BfY/E6ZDwaJ8h4dOQWBCMo/k+yQjsqXDkyiRAOQ+11gO dq7ZY+6euod8W6ACZlCv4OZLcmE5xZ75tXk+N4duQmbbqnsd3GSIGKGaqWw1fTbc sAmMsOsrx2MWCfn86ERtIgk0+BlbkH0mf+kc8JOOZVK1+aUoRU9j01i2AacdhSWc S993yakRWAovZhRKZHq0jsbFBzyfp/3Qy36dKVkwAuive1HJsRzmVlU16t4Be/LX HEH8nkjivtVwJo96uQuYBhMXO+xazvGyr8kiwGYtzNPi7wd1IQMYCMp/G8OhuSBv lKTOMb9xK4/X9A== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:50 2026 by rpki-client