This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft File: YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft (raw, json) Hash identifier: u2zwrq81udlBZWK/soOF8Ok6PhFaC2E4Gk7lZL3Jp3U= Subject key identifier: 0A:84:C8:5F:1D:8D:AE:F8:99:EB:81:C5:E4:29:D3:96:50:03:87:7B Authority key identifier: 60:A4:34:FD:6B:FF:8B:6F:BB:0D:52:F8:DA:42:E9:1F:8A:5A:29:2F Certificate issuer: /CN=60a434fd6bff8b6fbb0d52f8da42e91f8a5a292f Certificate serial: 019C427DCF5BEE0ECAC4D2A2CEC587080E3D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YKQ0_Wv_i2-7DVL42kLpH4paKS8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft Manifest number: 09A9 Signing time: Mon 09 Feb 2026 13:01:07 +0000 Manifest this update: Mon 09 Feb 2026 13:01:07 +0000 Manifest next update: Tue 10 Feb 2026 13:01:07 +0000 Files and hashes: 1: YKQ0_Wv_i2-7DVL42kLpH4paKS8.crl (hash: 3GK8tmka0mJPriiqcueCiPeeIPMccKZePfY9zpjFaas=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft rsync://rpki.ripe.net/repository/DEFAULT/YKQ0_Wv_i2-7DVL42kLpH4paKS8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:cf:5b:ee:0e:ca:c4:d2:a2:ce:c5:87:08:0e:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60a434fd6bff8b6fbb0d52f8da42e91f8a5a292f Validity Not Before: Feb 9 13:01:07 2026 GMT Not After : Feb 10 13:01:07 2026 GMT Subject: CN=0a84c85f1d8daef899eb81c5e429d3965003877b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:38:7e:0d:13:7a:06:38:0a:b7:ae:c2:50:bd: 80:61:cf:b2:9a:0d:d0:d7:73:8f:5d:4a:d8:5b:38: 3d:13:43:39:d5:63:4f:d6:e1:10:e0:bc:54:a9:12: 26:47:57:d9:c3:5d:45:f8:56:18:ce:ca:14:6e:4b: 1a:a7:86:e4:ef:eb:72:61:e0:88:fb:ae:6d:0f:0d: d4:47:73:37:8f:58:b7:ad:07:35:07:3b:89:7e:03: 4b:cb:a5:30:cd:4c:90:e3:40:ce:b1:09:32:8b:77: 03:e8:4a:2f:94:ed:05:58:65:54:96:0c:74:37:9b: 42:dd:86:76:a3:c6:ab:1e:6f:58:10:f3:77:04:a9: 97:d6:37:0b:4f:3c:bc:0b:b0:51:e0:c3:45:b6:0d: 09:43:86:45:a3:28:6c:73:bc:75:b9:01:86:a3:3e: 06:ec:18:0c:f0:f6:7d:4d:a9:d4:1b:fb:df:2f:ad: f6:85:93:aa:02:ea:9f:eb:33:e3:b6:f1:db:f9:17: 6c:9d:82:14:fb:58:d4:74:d3:54:c9:0a:ad:64:ac: 42:fd:0c:7b:51:4a:50:0b:27:2f:b1:4d:f2:00:44: 99:e8:6d:75:c2:3c:6f:f9:de:c1:ba:ce:9a:85:c5: f3:71:a1:1c:53:0e:44:1e:d7:9b:82:8f:a5:1c:c5: 7b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:84:C8:5F:1D:8D:AE:F8:99:EB:81:C5:E4:29:D3:96:50:03:87:7B X509v3 Authority Key Identifier: keyid:60:A4:34:FD:6B:FF:8B:6F:BB:0D:52:F8:DA:42:E9:1F:8A:5A:29:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YKQ0_Wv_i2-7DVL42kLpH4paKS8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:21:e3:59:35:ad:84:62:cc:c8:ef:2f:5b:b8:72:5e:94:fc: 44:e6:7c:b4:d4:a9:b8:4f:81:ea:ed:2f:70:10:4f:e1:d7:ee: 3a:46:17:8c:b6:52:88:70:e8:c2:4e:19:f7:5e:ce:8b:13:4a: b7:ba:75:86:89:3c:92:e0:14:cc:ec:47:41:8a:3c:c4:76:97: c6:40:72:c1:fa:0a:b8:34:c4:47:6e:22:4a:9b:46:41:b1:04: 57:49:5a:6d:b2:3c:54:5a:5f:b0:f3:a2:5a:05:e8:82:8d:c2: 38:70:ac:ba:7a:c3:4e:55:7f:c8:40:a5:c0:aa:de:48:11:9d: 92:39:1e:2e:cd:e4:46:23:34:c5:4f:59:72:09:06:c0:0d:ba: 08:35:d8:3e:ed:27:e6:2d:02:4c:9a:c3:85:c3:7a:be:50:b7: f0:1c:cb:9c:7c:d4:92:ea:d6:44:3b:c0:74:48:de:b2:08:cd: a5:be:a5:b3:1c:e4:c0:c2:5d:d1:59:2d:7c:62:79:cd:2f:3d: e7:63:ed:ab:32:1d:19:b5:0e:92:f6:60:bc:cd:b7:e0:10:31: 95:1b:5f:c3:a9:f2:73:33:6b:84:bd:e7:bf:9a:7b:50:89:38: c6:ec:bd:ef:c6:5e:d6:a6:8d:e5:21:6e:af:ec:62:06:53:cc: 31:f9:3a:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfc9b7g7KxNKizsWHCA49MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwYTQzNGZkNmJmZjhiNmZiYjBkNTJmOGRhNDJlOTFmOGE1 YTI5MmYwHhcNMjYwMjA5MTMwMTA3WhcNMjYwMjEwMTMwMTA3WjAzMTEwLwYDVQQD EygwYTg0Yzg1ZjFkOGRhZWY4OTllYjgxYzVlNDI5ZDM5NjUwMDM4NzdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Th+DRN6BjgKt67CUL2AYc+ymg3Q 13OPXUrYWzg9E0M51WNP1uEQ4LxUqRImR1fZw11F+FYYzsoUbksap4bk7+tyYeCI +65tDw3UR3M3j1i3rQc1BzuJfgNLy6UwzUyQ40DOsQkyi3cD6EovlO0FWGVUlgx0 N5tC3YZ2o8arHm9YEPN3BKmX1jcLTzy8C7BR4MNFtg0JQ4ZFoyhsc7x1uQGGoz4G 7BgM8PZ9TanUG/vfL632hZOqAuqf6zPjtvHb+RdsnYIU+1jUdNNUyQqtZKxC/Qx7 UUpQCycvsU3yAESZ6G11wjxv+d7Bus6ahcXzcaEcUw5EHtebgo+lHMV7pQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAqEyF8dja74meuBxeQp05ZQA4d7MB8GA1UdIwQY MBaAFGCkNP1r/4tvuw1S+NpC6R+KWikvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUtRMF9Xdl9pMi03RFZMNDJrTHBINHBhS1M4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi82ODAxYzktZGQxNy00ZGNhLTgxMDAt NmEzZjAxZDljYjUwLzEvWUtRMF9Xdl9pMi03RFZMNDJrTHBINHBhS1M4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi82ODAxYzktZGQxNy00ZGNhLTgxMDAtNmEzZjAxZDljYjUw LzEvWUtRMF9Xdl9pMi03RFZMNDJrTHBINHBhS1M4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYyHjWTWt hGLMyO8vW7hyXpT8ROZ8tNSpuE+B6u0vcBBP4dfuOkYXjLZSiHDowk4Z917OixNK t7p1hok8kuAUzOxHQYo8xHaXxkBywfoKuDTER24iSptGQbEEV0labbI8VFpfsPOi WgXogo3COHCsunrDTlV/yEClwKreSBGdkjkeLs3kRiM0xU9ZcgkGwA26CDXYPu0n 5i0CTJrDhcN6vlC38BzLnHzUkurWRDvAdEjesgjNpb6lsxzkwMJd0VktfGJ5zS89 52PtqzIdGbUOkvZgvM234BAxlRtfw6nyczNrhL3nv5p7UIk4xuy978Ze1qaN5SFu r+xiBlPMMfk6MQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:06 2026 by rpki-client