This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft File: YcaCaHQ-gj4OHIcAYMChQiPxUes.mft (raw, json) Hash identifier: CFI238ok3hXgZDaEhlLuDj8dpP7VEKMBGt44ucXkZeA= Subject key identifier: 00:AA:B2:E1:5F:83:79:E0:99:43:55:4C:88:67:74:0B:09:5B:69:AC Authority key identifier: 61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB Certificate issuer: /CN=61c68268743e823e0e1c870060c0a14223f151eb Certificate serial: 019C439000CF5D3139B485C1F7633EAD79C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 18:00:36 +0000 Manifest this update: Mon 09 Feb 2026 18:00:36 +0000 Manifest next update: Tue 10 Feb 2026 18:00:36 +0000 Files and hashes: 1: YcaCaHQ-gj4OHIcAYMChQiPxUes.crl (hash: /Q0aOdsPmN/zFMZvGOD/+p2gbiGl0mgFThrIUPy4p+U=) 2: b8CCvMj6XsXWpjo1kqL4lHdDIeI.roa (hash: ORCFwxYaf4vPg6tOj10K2FmfsSRr15XuWRZrPrnhk3A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.crl rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:00:cf:5d:31:39:b4:85:c1:f7:63:3e:ad:79:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61c68268743e823e0e1c870060c0a14223f151eb Validity Not Before: Feb 9 18:00:36 2026 GMT Not After : Feb 10 18:00:36 2026 GMT Subject: CN=00aab2e15f8379e09943554c8867740b095b69ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:80:80:e9:a1:a9:e2:03:ce:73:45:2b:fe:21: 38:f7:5a:32:c2:dd:0a:17:9f:57:3b:cb:96:9a:db: c4:6f:f1:f5:12:df:f5:71:cf:c9:fa:b5:47:3a:aa: 65:d4:67:56:0a:bc:c1:14:c4:43:00:83:dd:da:4d: 5b:23:21:65:2b:99:b4:9a:db:92:47:2e:a8:b9:c9: 4b:50:08:5c:4a:42:8a:a8:ec:f7:b6:ce:e5:5b:42: 78:e0:14:f8:c0:38:82:df:b6:57:35:e8:ab:2a:c8: c5:2f:d5:66:4d:f9:f6:9e:3c:32:d5:4a:03:1c:8f: f4:e6:80:73:90:69:cf:d9:22:bf:1c:c1:8d:0c:8c: 7a:e4:03:a6:01:45:9f:01:3b:43:f9:9e:65:59:e1: c2:15:a5:2b:dd:27:be:ad:86:0e:ad:13:77:67:fa: 8f:90:c7:50:50:ce:fa:10:d6:33:4e:78:e5:c0:fa: 15:47:fa:5a:6c:f4:52:05:49:0f:39:c4:f1:08:f3: b4:b2:81:d3:d2:19:8a:05:99:8f:60:39:8b:3d:ca: 82:9c:55:b4:db:ff:7b:4c:38:64:9f:b7:23:ca:af: 42:97:d9:6a:56:2f:3b:2c:38:47:75:77:ca:92:a4: 6f:d6:ac:d8:2a:91:4a:ee:8b:dd:30:b0:2b:54:28: f4:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:AA:B2:E1:5F:83:79:E0:99:43:55:4C:88:67:74:0B:09:5B:69:AC X509v3 Authority Key Identifier: keyid:61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:38:3c:43:55:5f:75:00:4b:7d:6c:c1:09:75:1f:e0:36:5c: d4:41:9f:ee:2b:ff:0f:43:f0:b7:76:68:2a:7b:50:47:8f:65: ec:30:5a:1c:44:8c:28:ac:ba:b1:9d:3b:78:9f:6a:f2:bc:62: d7:db:ec:39:d7:39:2e:d6:75:7c:15:92:cf:8d:0b:07:c0:0f: 85:0b:7e:6a:ff:b3:17:5c:f1:79:4f:ea:92:2c:d7:91:c3:5c: de:47:84:5a:19:03:5b:06:de:a0:92:e2:a0:53:0a:0f:69:30: 38:96:57:97:ff:c4:b3:da:d0:38:ea:62:05:96:18:c2:e5:e1: 71:c6:66:2f:c2:cd:e1:83:bd:3a:85:c9:1d:55:16:5e:df:2f: 23:1f:90:48:7d:de:88:18:c0:e7:64:af:e9:3e:ff:3c:e3:69: db:05:59:f3:2e:8f:9c:7c:6c:e3:b9:db:45:8b:6a:67:48:86: ae:72:a0:a3:89:e6:69:75:4c:d8:0c:e7:a5:1b:2e:4e:1c:fe: 26:a8:8b:c0:0e:98:fd:cc:46:3c:96:8a:06:ba:3b:c2:1b:72: 2b:d0:3b:91:23:f3:d1:89:67:3f:04:97:69:cd:6e:d5:b6:ad: 67:35:24:8f:bb:a6:58:e8:0e:ba:ca:c4:79:6e:f1:c3:ca:a3: d6:cb:00:2c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkADPXTE5tIXB92M+rXnIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxYzY4MjY4NzQzZTgyM2UwZTFjODcwMDYwYzBhMTQyMjNm MTUxZWIwHhcNMjYwMjA5MTgwMDM2WhcNMjYwMjEwMTgwMDM2WjAzMTEwLwYDVQQD EygwMGFhYjJlMTVmODM3OWUwOTk0MzU1NGM4ODY3NzQwYjA5NWI2OWFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkYCA6aGp4gPOc0Ur/iE491oywt0K F59XO8uWmtvEb/H1Et/1cc/J+rVHOqpl1GdWCrzBFMRDAIPd2k1bIyFlK5m0mtuS Ry6ouclLUAhcSkKKqOz3ts7lW0J44BT4wDiC37ZXNeirKsjFL9VmTfn2njwy1UoD HI/05oBzkGnP2SK/HMGNDIx65AOmAUWfATtD+Z5lWeHCFaUr3Se+rYYOrRN3Z/qP kMdQUM76ENYzTnjlwPoVR/pabPRSBUkPOcTxCPO0soHT0hmKBZmPYDmLPcqCnFW0 2/97TDhkn7cjyq9Cl9lqVi87LDhHdXfKkqRv1qzYKpFK7ovdMLArVCj0PwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFACqsuFfg3ngmUNVTIhndAsJW2msMB8GA1UdIwQY MBaAFGHGgmh0PoI+DhyHAGDAoUIj8VHrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWNhQ2FIUS1najRPSEljQVlNQ2hRaVB4VWVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi82MjY0MWMtMzQ0NC00NDI1LWJmNTEt NmQwNWMwZDBkYTZmLzEvWWNhQ2FIUS1najRPSEljQVlNQ2hRaVB4VWVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi82MjY0MWMtMzQ0NC00NDI1LWJmNTEtNmQwNWMwZDBkYTZm LzEvWWNhQ2FIUS1najRPSEljQVlNQ2hRaVB4VWVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIDg8Q1Vf dQBLfWzBCXUf4DZc1EGf7iv/D0Pwt3ZoKntQR49l7DBaHESMKKy6sZ07eJ9q8rxi 19vsOdc5LtZ1fBWSz40LB8APhQt+av+zF1zxeU/qkizXkcNc3keEWhkDWwbeoJLi oFMKD2kwOJZXl//Es9rQOOpiBZYYwuXhccZmL8LN4YO9OoXJHVUWXt8vIx+QSH3e iBjA52Sv6T7/PONp2wVZ8y6PnHxs47nbRYtqZ0iGrnKgo4nmaXVM2AznpRsuThz+ JqiLwA6Y/cxGPJaKBro7whtyK9A7kSPz0YlnPwSXac1u1batZzUkj7umWOgOusrE eW7xw8qj1ssALA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:14 2026 by rpki-client