This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/a17ddf-9ba6-4395-aae6-566f6cf431c0/1/YNJSouMVOM2lhXutCYPIvfVYsXs.mft File: YNJSouMVOM2lhXutCYPIvfVYsXs.mft (raw, json) Hash identifier: BjQAz/J4rbft46ayCTSSOtWIzPBOrxWgoyFlmbwU4Nw= Subject key identifier: B8:59:FC:70:9C:F4:91:E5:2D:EC:AE:E6:4A:DB:8A:DE:69:F3:18:04 Authority key identifier: 60:D2:52:A2:E3:15:38:CD:A5:85:7B:AD:09:83:C8:BD:F5:58:B1:7B Certificate issuer: /CN=60d252a2e31538cda5857bad0983c8bdf558b17b Certificate serial: 019C4322580F3632BDC18851F321D59EFF91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YNJSouMVOM2lhXutCYPIvfVYsXs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/a17ddf-9ba6-4395-aae6-566f6cf431c0/1/YNJSouMVOM2lhXutCYPIvfVYsXs.mft Manifest number: 0B51 Signing time: Mon 09 Feb 2026 16:00:49 +0000 Manifest this update: Mon 09 Feb 2026 16:00:49 +0000 Manifest next update: Tue 10 Feb 2026 16:00:49 +0000 Files and hashes: 1: YNJSouMVOM2lhXutCYPIvfVYsXs.crl (hash: 2pkwTPFhAaX6AQ7QC0+v3SgKGceJG12Tg5wJMbU7jVw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/a17ddf-9ba6-4395-aae6-566f6cf431c0/1/YNJSouMVOM2lhXutCYPIvfVYsXs.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/a17ddf-9ba6-4395-aae6-566f6cf431c0/1/YNJSouMVOM2lhXutCYPIvfVYsXs.mft rsync://rpki.ripe.net/repository/DEFAULT/YNJSouMVOM2lhXutCYPIvfVYsXs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:58:0f:36:32:bd:c1:88:51:f3:21:d5:9e:ff:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60d252a2e31538cda5857bad0983c8bdf558b17b Validity Not Before: Feb 9 16:00:49 2026 GMT Not After : Feb 10 16:00:49 2026 GMT Subject: CN=b859fc709cf491e52decaee64adb8ade69f31804 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:b3:3c:ec:fb:d8:b8:8c:65:ba:73:c5:4f:82: 8f:f3:48:25:f8:ee:60:a6:e8:39:6b:f0:94:9f:4f: 9e:cf:27:f8:46:37:e5:df:78:3f:85:16:7f:c3:91: 71:c9:c4:58:15:68:3f:ea:9f:c1:dc:a7:eb:83:b2: 11:22:c9:dc:85:27:e1:0c:2a:b6:9c:5b:9e:95:25: 17:1b:d2:43:9b:38:5f:1b:33:24:65:7c:e1:b2:ef: 1c:e3:f1:e2:b2:fd:fa:83:c5:b6:2b:ea:2f:c6:b4: 31:58:30:91:46:9d:7f:39:ae:b4:1d:1d:88:ab:90: 55:27:c3:80:0d:06:9b:e1:be:e0:2c:95:fc:d4:ed: 2e:a0:fa:c1:c8:a1:e2:36:e7:1e:a5:bf:c2:1e:96: da:bb:28:b0:c4:a0:52:ea:fd:aa:49:8e:50:43:62: 3d:9a:2c:7e:09:71:f7:57:87:48:78:2c:a3:60:f6: 57:01:a6:cd:06:99:a1:b0:43:46:b5:c6:b2:a8:9e: 4c:35:96:79:bc:73:56:3d:50:6c:9c:50:3f:9d:88: 74:59:fa:77:61:5d:26:5f:be:5d:e4:02:ef:d5:78: 73:71:32:b4:2f:d1:b2:a2:63:14:9d:ac:df:c3:cc: cc:7a:88:0a:43:2b:22:16:55:15:eb:03:8a:aa:68: 16:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:59:FC:70:9C:F4:91:E5:2D:EC:AE:E6:4A:DB:8A:DE:69:F3:18:04 X509v3 Authority Key Identifier: keyid:60:D2:52:A2:E3:15:38:CD:A5:85:7B:AD:09:83:C8:BD:F5:58:B1:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YNJSouMVOM2lhXutCYPIvfVYsXs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/a17ddf-9ba6-4395-aae6-566f6cf431c0/1/YNJSouMVOM2lhXutCYPIvfVYsXs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/a17ddf-9ba6-4395-aae6-566f6cf431c0/1/YNJSouMVOM2lhXutCYPIvfVYsXs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bc:d1:7d:cd:e7:93:19:99:ea:42:b7:be:b8:97:52:a1:50:5a: 6c:55:a9:6f:3b:bd:ba:2d:16:bc:c0:9e:1d:36:89:aa:d1:22: 8e:51:03:69:a9:2f:1a:f7:f0:c2:7c:e5:24:5a:f2:6e:a3:e9: 99:95:dc:62:17:f8:6c:af:84:b8:12:aa:80:a1:2c:63:d1:32: 84:1c:97:f5:ab:48:83:88:e0:3e:06:11:c4:aa:4b:4b:f3:da: 1b:3a:ce:e6:72:4b:0b:d9:7e:9c:72:14:0f:e3:f7:1f:f8:cf: eb:98:f0:3b:8c:24:6a:cd:3a:1b:0d:c8:e5:27:a7:3f:0d:eb: 34:ab:56:1d:5e:ef:92:1f:53:3b:e0:82:4c:a9:c1:b2:a8:0f: 15:64:fe:d1:c3:64:a7:35:44:0a:9f:2f:18:45:a7:d5:0d:09: 63:40:af:63:b8:d9:20:ad:10:89:cc:9c:fe:21:7f:d6:d6:f5: be:7f:ca:72:f9:89:da:eb:3f:32:28:06:9e:f5:55:1d:58:b2: 85:5a:90:5b:0f:c8:76:ad:93:25:7b:1e:6f:d7:a9:7f:00:2d: 8e:b8:c3:09:64:50:6e:59:d9:06:be:06:77:64:14:9f:cf:00: 99:e5:82:77:5e:a1:d9:81:0f:cb:ac:1d:2b:fa:20:42:28:80: 80:ee:e4:4e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIlgPNjK9wYhR8yHVnv+RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwZDI1MmEyZTMxNTM4Y2RhNTg1N2JhZDA5ODNjOGJkZjU1 OGIxN2IwHhcNMjYwMjA5MTYwMDQ5WhcNMjYwMjEwMTYwMDQ5WjAzMTEwLwYDVQQD EyhiODU5ZmM3MDljZjQ5MWU1MmRlY2FlZTY0YWRiOGFkZTY5ZjMxODA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhrM87PvYuIxlunPFT4KP80gl+O5g pug5a/CUn0+ezyf4Rjfl33g/hRZ/w5FxycRYFWg/6p/B3Kfrg7IRIsnchSfhDCq2 nFuelSUXG9JDmzhfGzMkZXzhsu8c4/Hisv36g8W2K+ovxrQxWDCRRp1/Oa60HR2I q5BVJ8OADQab4b7gLJX81O0uoPrByKHiNucepb/CHpbauyiwxKBS6v2qSY5QQ2I9 mix+CXH3V4dIeCyjYPZXAabNBpmhsENGtcayqJ5MNZZ5vHNWPVBsnFA/nYh0Wfp3 YV0mX75d5ALv1XhzcTK0L9GyomMUnazfw8zMeogKQysiFlUV6wOKqmgWlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLhZ/HCc9JHlLeyu5krbit5p8xgEMB8GA1UdIwQY MBaAFGDSUqLjFTjNpYV7rQmDyL31WLF7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWU5KU291TVZPTTJsaFh1dENZUEl2ZlZZc1hzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi9hMTdkZGYtOWJhNi00Mzk1LWFhZTYt NTY2ZjZjZjQzMWMwLzEvWU5KU291TVZPTTJsaFh1dENZUEl2ZlZZc1hzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi9hMTdkZGYtOWJhNi00Mzk1LWFhZTYtNTY2ZjZjZjQzMWMw LzEvWU5KU291TVZPTTJsaFh1dENZUEl2ZlZZc1hzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvNF9zeeT GZnqQre+uJdSoVBabFWpbzu9ui0WvMCeHTaJqtEijlEDaakvGvfwwnzlJFrybqPp mZXcYhf4bK+EuBKqgKEsY9EyhByX9atIg4jgPgYRxKpLS/PaGzrO5nJLC9l+nHIU D+P3H/jP65jwO4wkas06Gw3I5SenPw3rNKtWHV7vkh9TO+CCTKnBsqgPFWT+0cNk pzVECp8vGEWn1Q0JY0CvY7jZIK0Qicyc/iF/1tb1vn/KcvmJ2us/MigGnvVVHViy hVqQWw/Idq2TJXseb9epfwAtjrjDCWRQblnZBr4Gd2QUn88AmeWCd16h2YEPy6wd K/ogQiiAgO7kTg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:48 2026 by rpki-client