This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft File: YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft (raw, json) Hash identifier: 3rI9t0h7BJCwzlMnddrb5ZUgln1FSVB2bmF6okmG10g= Subject key identifier: 13:BF:97:BA:D3:88:C5:AB:A5:83:9A:DF:BF:1F:AC:59:99:1F:B6:BA Authority key identifier: 61:2C:1C:53:F6:C1:D9:96:23:6C:BB:37:BA:32:47:67:03:99:A6:2D Certificate issuer: /CN=612c1c53f6c1d996236cbb37ba3247670399a62d Certificate serial: 019C427E17DB0E93AEA86492165A77061F30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft Manifest number: 0F36 Signing time: Mon 09 Feb 2026 13:01:25 +0000 Manifest this update: Mon 09 Feb 2026 13:01:25 +0000 Manifest next update: Tue 10 Feb 2026 13:01:25 +0000 Files and hashes: 1: U9pPpVserKeOyR7cf6mDMG3akbI.roa (hash: hACJJYL/ibjkbFYfmPGmA0g3KxmvcYZIZ/l3HP0kGcc=) 2: YSwcU_bB2ZYjbLs3ujJHZwOZpi0.crl (hash: QdnfQZvMqSpCDt0xZJNC+9bsNRaXQfxhByrOEpCt2gg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft rsync://rpki.ripe.net/repository/DEFAULT/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7e:17:db:0e:93:ae:a8:64:92:16:5a:77:06:1f:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=612c1c53f6c1d996236cbb37ba3247670399a62d Validity Not Before: Feb 9 13:01:25 2026 GMT Not After : Feb 10 13:01:25 2026 GMT Subject: CN=13bf97bad388c5aba5839adfbf1fac59991fb6ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:31:d7:ca:d6:fb:4a:7c:d1:f6:6a:67:e2:68: df:30:04:f6:f3:b2:8e:d0:a4:84:f0:47:d8:ad:d2: 7d:10:ef:f9:6e:fe:57:ed:99:19:0c:d2:09:45:33: 5a:be:61:af:02:3d:e5:e7:88:33:15:11:76:9f:3f: c3:18:63:f1:e2:83:f7:26:81:e9:72:fc:1e:67:77: 79:0a:26:86:12:ef:01:99:88:7a:42:1e:62:a3:5d: c5:0c:c6:56:f9:e9:5c:06:7e:8d:e0:df:bd:8b:07: 83:ff:45:01:20:e8:64:8d:d5:1d:eb:6c:b2:56:50: 90:85:20:b0:d7:66:f4:95:80:b2:e3:af:38:c5:d0: 68:48:e8:47:b7:81:79:ca:0c:97:09:7c:a1:ad:63: 41:70:c7:48:dd:6b:ae:a3:1b:7f:f1:d1:7a:f1:e3: bd:ff:f6:c1:4f:0a:4b:31:5f:ff:b1:bd:ce:fc:08: cd:5f:dc:78:f4:47:31:31:a1:02:72:24:a6:45:1d: 71:bd:a3:7e:bb:35:cd:29:6a:50:a9:e9:06:9f:e9: 82:c4:61:8e:b3:da:8a:16:bf:e2:05:47:3d:86:c7: c8:73:5e:51:75:44:a1:b7:5a:d7:2a:f4:fc:39:7f: 5a:fc:33:1c:32:4e:84:ad:f8:d6:13:6a:a6:fb:b0: c1:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:BF:97:BA:D3:88:C5:AB:A5:83:9A:DF:BF:1F:AC:59:99:1F:B6:BA X509v3 Authority Key Identifier: keyid:61:2C:1C:53:F6:C1:D9:96:23:6C:BB:37:BA:32:47:67:03:99:A6:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:e0:d7:c3:e6:8d:0d:02:73:bb:2f:f8:e5:0f:39:fe:51:56: c4:5d:84:64:b0:3c:d5:81:0d:1b:b8:0d:95:18:4a:e4:17:95: d5:0d:20:28:d8:60:bd:73:78:26:29:95:da:95:52:21:34:cd: 84:26:30:9d:a1:1f:44:7f:4e:a7:ff:a3:40:2b:83:9e:5e:fa: 1d:7e:f4:f0:76:18:8d:54:43:f6:6c:60:06:85:75:8e:39:e6: ed:b2:80:3b:f1:18:30:69:09:48:7c:40:66:3a:3b:24:88:56: f7:4c:f7:48:75:f8:77:6a:5a:0c:59:e6:4d:0a:1c:92:e2:45: b5:7c:c7:d6:ee:dd:78:54:ea:25:ac:eb:df:ad:ed:57:ca:48: 36:d0:d7:41:35:6f:78:d4:6b:2a:b7:1a:de:ac:19:e7:a9:d1: e0:a9:92:87:66:66:97:b6:83:de:91:cc:cd:39:ee:47:cc:ea: 80:a2:e7:42:02:f4:55:9f:57:0b:1a:30:07:fa:9a:2f:e6:a0: a4:72:c4:4e:88:2e:19:8e:5f:cb:99:9b:c8:ab:de:12:8f:32: dd:1e:50:65:83:9a:ab:a0:9d:43:db:d6:30:b6:c9:9f:03:02: 55:34:e2:ae:69:71:c9:09:53:c2:4a:47:b0:3a:a8:f3:ab:85: c6:e0:bd:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfhfbDpOuqGSSFlp3Bh8wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxMmMxYzUzZjZjMWQ5OTYyMzZjYmIzN2JhMzI0NzY3MDM5 OWE2MmQwHhcNMjYwMjA5MTMwMTI1WhcNMjYwMjEwMTMwMTI1WjAzMTEwLwYDVQQD EygxM2JmOTdiYWQzODhjNWFiYTU4MzlhZGZiZjFmYWM1OTk5MWZiNmJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1THXytb7SnzR9mpn4mjfMAT287KO 0KSE8EfYrdJ9EO/5bv5X7ZkZDNIJRTNavmGvAj3l54gzFRF2nz/DGGPx4oP3JoHp cvweZ3d5CiaGEu8BmYh6Qh5io13FDMZW+elcBn6N4N+9iweD/0UBIOhkjdUd62yy VlCQhSCw12b0lYCy4684xdBoSOhHt4F5ygyXCXyhrWNBcMdI3Wuuoxt/8dF68eO9 //bBTwpLMV//sb3O/AjNX9x49EcxMaECciSmRR1xvaN+uzXNKWpQqekGn+mCxGGO s9qKFr/iBUc9hsfIc15RdUSht1rXKvT8OX9a/DMcMk6ErfjWE2qm+7DBRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBO/l7rTiMWrpYOa378frFmZH7a6MB8GA1UdIwQY MBaAFGEsHFP2wdmWI2y7N7oyR2cDmaYtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVN3Y1VfYkIyWllqYkxzM3VqSkhad09acGkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9mMDA3OGUtZDBjNy00MjhlLTk1MjQt ZWNhZjU3OGEzNGUzLzEvWVN3Y1VfYkIyWllqYkxzM3VqSkhad09acGkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi9mMDA3OGUtZDBjNy00MjhlLTk1MjQtZWNhZjU3OGEzNGUz LzEvWVN3Y1VfYkIyWllqYkxzM3VqSkhad09acGkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQeDXw+aN DQJzuy/45Q85/lFWxF2EZLA81YENG7gNlRhK5BeV1Q0gKNhgvXN4JimV2pVSITTN hCYwnaEfRH9Op/+jQCuDnl76HX708HYYjVRD9mxgBoV1jjnm7bKAO/EYMGkJSHxA Zjo7JIhW90z3SHX4d2paDFnmTQockuJFtXzH1u7deFTqJazr363tV8pINtDXQTVv eNRrKrca3qwZ56nR4KmSh2Zml7aD3pHMzTnuR8zqgKLnQgL0VZ9XCxowB/qaL+ag pHLEToguGY5fy5mbyKveEo8y3R5QZYOaq6CdQ9vWMLbJnwMCVTTirmlxyQlTwkpH sDqo86uFxuC9NQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:19:38 2026 by rpki-client