This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/64e20c-8f61-4351-8077-fc3b3e11161d/1/YDe79svKAic6peIbuIjj4exnZ98.mft File: YDe79svKAic6peIbuIjj4exnZ98.mft (raw, json) Hash identifier: 5R6kUArWfTFyX99z8bZKfNzGEkLRFGwA1GIsaELWcVc= Subject key identifier: 70:24:37:8E:A5:97:9E:0E:DE:C3:43:9F:9D:86:AB:AA:13:73:A1:12 Authority key identifier: 60:37:BB:F6:CB:CA:02:27:3A:A5:E2:1B:B8:88:E3:E1:EC:67:67:DF Certificate issuer: /CN=6037bbf6cbca02273aa5e21bb888e3e1ec6767df Certificate serial: 019C40FCE656A4FA949E8824619EDCE3410E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDe79svKAic6peIbuIjj4exnZ98.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/64e20c-8f61-4351-8077-fc3b3e11161d/1/YDe79svKAic6peIbuIjj4exnZ98.mft Manifest number: 0D30 Signing time: Mon 09 Feb 2026 06:00:41 +0000 Manifest this update: Mon 09 Feb 2026 06:00:41 +0000 Manifest next update: Tue 10 Feb 2026 06:00:41 +0000 Files and hashes: 1: YDe79svKAic6peIbuIjj4exnZ98.crl (hash: yLsKyV0dAN23aB2Z20fJ02mUXUMCrClsF3CYYKYbMdI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/64e20c-8f61-4351-8077-fc3b3e11161d/1/YDe79svKAic6peIbuIjj4exnZ98.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/64e20c-8f61-4351-8077-fc3b3e11161d/1/YDe79svKAic6peIbuIjj4exnZ98.mft rsync://rpki.ripe.net/repository/DEFAULT/YDe79svKAic6peIbuIjj4exnZ98.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fc:e6:56:a4:fa:94:9e:88:24:61:9e:dc:e3:41:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6037bbf6cbca02273aa5e21bb888e3e1ec6767df Validity Not Before: Feb 9 06:00:41 2026 GMT Not After : Feb 10 06:00:41 2026 GMT Subject: CN=7024378ea5979e0edec3439f9d86abaa1373a112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:3f:57:38:8f:c9:f8:93:d5:df:4c:c3:7f:96: 2d:eb:e5:01:3d:08:e0:1c:9d:25:97:73:5f:ce:2c: 37:0b:0c:d7:2f:83:86:ca:db:68:c2:d4:d8:34:b1: 46:1a:05:d6:da:84:02:1b:b0:8e:dd:ba:01:fb:87: 6b:2e:64:ec:1b:91:ef:28:83:c7:55:c6:18:72:15: f3:92:8e:f6:a9:17:0f:6f:6f:c4:e6:5b:40:9a:0d: 57:cd:34:f8:21:ba:af:1c:72:61:90:71:04:2d:f9: 29:6e:b9:9a:a2:cf:18:24:56:6c:02:11:0d:db:ae: 87:f4:c4:da:1c:81:9f:1c:dc:5a:87:fe:91:e9:25: ea:e9:9b:aa:8e:86:75:09:c7:58:7c:0e:05:db:94: f0:56:ea:9c:28:6b:b8:95:83:91:1a:96:b9:96:05: 59:51:63:d6:43:e3:21:47:79:cd:bd:36:8e:fc:a2: 59:d4:a2:f4:09:62:7e:39:6b:81:cb:84:26:96:52: 4b:81:1c:e0:b8:86:bc:db:47:93:ba:84:8e:0a:e5: 5e:21:18:eb:ad:f8:64:02:c4:ba:5b:6f:ce:0a:d1: 3d:a5:ba:15:38:8b:42:7e:d6:22:e2:e2:fd:61:83: 9f:a0:5b:9f:5e:92:60:cd:1b:03:16:e5:22:a5:8d: a3:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:24:37:8E:A5:97:9E:0E:DE:C3:43:9F:9D:86:AB:AA:13:73:A1:12 X509v3 Authority Key Identifier: keyid:60:37:BB:F6:CB:CA:02:27:3A:A5:E2:1B:B8:88:E3:E1:EC:67:67:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDe79svKAic6peIbuIjj4exnZ98.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/64e20c-8f61-4351-8077-fc3b3e11161d/1/YDe79svKAic6peIbuIjj4exnZ98.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/64e20c-8f61-4351-8077-fc3b3e11161d/1/YDe79svKAic6peIbuIjj4exnZ98.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:d0:57:58:3a:45:77:1b:a7:2f:30:79:d2:71:96:de:b0:5c: 39:9f:0f:c3:67:7d:99:84:d4:c5:45:d6:46:aa:6e:3e:63:32: 6e:b7:2c:ec:e9:72:1e:4e:ba:3f:3f:45:52:31:b4:24:4a:44: d4:99:36:17:96:48:58:5d:8b:74:f5:ea:6c:6a:9d:f1:52:27: c1:11:af:f7:ca:21:67:c2:2e:72:e9:13:24:65:65:7b:38:d9: 4f:16:b0:3a:86:8e:a0:33:b8:c9:16:de:a4:0d:4a:3c:2a:b0: 75:2e:a6:2d:a1:5d:4b:c9:54:00:53:54:e3:8b:63:85:ab:0c: 36:b2:ef:f5:42:23:9c:47:68:2b:a8:9c:b8:69:73:c9:c3:7a: f6:d9:19:ab:90:db:fc:93:81:e8:98:d7:2f:0a:82:50:8e:02: 9d:de:e4:02:e8:c5:05:26:7b:01:bc:f4:57:3a:40:c1:73:1f: 5f:3d:f4:58:20:92:fa:0e:c6:ed:5d:6b:60:5b:02:97:54:bf: 6a:85:be:86:91:d9:26:80:81:4f:be:91:10:d7:99:67:06:8b: c5:a2:2b:24:04:4c:98:ea:c0:e8:58:26:1b:11:2c:11:12:9e: 0c:6b:5a:a4:65:2e:e4:fb:5e:fe:03:71:a1:5d:41:ac:30:6d: 35:65:38:5b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/OZWpPqUnogkYZ7c40EOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwMzdiYmY2Y2JjYTAyMjczYWE1ZTIxYmI4ODhlM2UxZWM2 NzY3ZGYwHhcNMjYwMjA5MDYwMDQxWhcNMjYwMjEwMDYwMDQxWjAzMTEwLwYDVQQD Eyg3MDI0Mzc4ZWE1OTc5ZTBlZGVjMzQzOWY5ZDg2YWJhYTEzNzNhMTEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3D9XOI/J+JPV30zDf5Yt6+UBPQjg HJ0ll3Nfziw3CwzXL4OGyttowtTYNLFGGgXW2oQCG7CO3boB+4drLmTsG5HvKIPH VcYYchXzko72qRcPb2/E5ltAmg1XzTT4IbqvHHJhkHEELfkpbrmaos8YJFZsAhEN 266H9MTaHIGfHNxah/6R6SXq6ZuqjoZ1CcdYfA4F25TwVuqcKGu4lYORGpa5lgVZ UWPWQ+MhR3nNvTaO/KJZ1KL0CWJ+OWuBy4QmllJLgRzguIa820eTuoSOCuVeIRjr rfhkAsS6W2/OCtE9pboVOItCftYi4uL9YYOfoFufXpJgzRsDFuUipY2jcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHAkN46ll54O3sNDn52Gq6oTc6ESMB8GA1UdIwQY MBaAFGA3u/bLygInOqXiG7iI4+HsZ2ffMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWURlNzlzdktBaWM2cGVJYnVJamo0ZXhuWjk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC82NGUyMGMtOGY2MS00MzUxLTgwNzct ZmMzYjNlMTExNjFkLzEvWURlNzlzdktBaWM2cGVJYnVJamo0ZXhuWjk4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC82NGUyMGMtOGY2MS00MzUxLTgwNzctZmMzYjNlMTExNjFk LzEvWURlNzlzdktBaWM2cGVJYnVJamo0ZXhuWjk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXtBXWDpF dxunLzB50nGW3rBcOZ8Pw2d9mYTUxUXWRqpuPmMybrcs7OlyHk66Pz9FUjG0JEpE 1Jk2F5ZIWF2LdPXqbGqd8VInwRGv98ohZ8IucukTJGVlezjZTxawOoaOoDO4yRbe pA1KPCqwdS6mLaFdS8lUAFNU44tjhasMNrLv9UIjnEdoK6icuGlzycN69tkZq5Db /JOB6JjXLwqCUI4Cnd7kAujFBSZ7Abz0VzpAwXMfXz30WCCS+g7G7V1rYFsCl1S/ aoW+hpHZJoCBT76RENeZZwaLxaIrJARMmOrA6FgmGxEsERKeDGtapGUu5Pte/gNx oV1BrDBtNWU4Ww== -----END CERTIFICATE-----Generated at Mon Feb 9 16:57:10 2026 by rpki-client