This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/14c8c5-9af5-41b0-9917-a0da45299c6e/1/YAsRPgYtF-ojCAazSiHetWJ7Z3Q.mft File: YAsRPgYtF-ojCAazSiHetWJ7Z3Q.mft (raw, json) Hash identifier: lCGr7FWQXLJjzRsyWZkWsJldprqg+sN+hh/O4RlQg6I= Subject key identifier: A8:4E:DF:05:10:42:99:60:1E:5F:38:FB:F5:6F:51:23:6A:98:87:43 Authority key identifier: 60:0B:11:3E:06:2D:17:EA:23:08:06:B3:4A:21:DE:B5:62:7B:67:74 Certificate issuer: /CN=600b113e062d17ea230806b34a21deb5627b6774 Certificate serial: 019C4322E2CF0013FAD72ADC3E8095569B79 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAsRPgYtF-ojCAazSiHetWJ7Z3Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/14c8c5-9af5-41b0-9917-a0da45299c6e/1/YAsRPgYtF-ojCAazSiHetWJ7Z3Q.mft Manifest number: 148D Signing time: Mon 09 Feb 2026 16:01:25 +0000 Manifest this update: Mon 09 Feb 2026 16:01:25 +0000 Manifest next update: Tue 10 Feb 2026 16:01:25 +0000 Files and hashes: 1: YAsRPgYtF-ojCAazSiHetWJ7Z3Q.crl (hash: VagDV6TTVqKVA70B9QfBEnuCPvK4mDcziT2Y1Js82kI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/14c8c5-9af5-41b0-9917-a0da45299c6e/1/YAsRPgYtF-ojCAazSiHetWJ7Z3Q.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/14c8c5-9af5-41b0-9917-a0da45299c6e/1/YAsRPgYtF-ojCAazSiHetWJ7Z3Q.mft rsync://rpki.ripe.net/repository/DEFAULT/YAsRPgYtF-ojCAazSiHetWJ7Z3Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:e2:cf:00:13:fa:d7:2a:dc:3e:80:95:56:9b:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=600b113e062d17ea230806b34a21deb5627b6774 Validity Not Before: Feb 9 16:01:25 2026 GMT Not After : Feb 10 16:01:25 2026 GMT Subject: CN=a84edf05104299601e5f38fbf56f51236a988743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:33:66:27:ad:ae:b7:5c:13:c0:2a:fe:48:2f: 55:42:45:e6:0d:2b:8b:e4:bc:47:d4:30:a1:9d:b3: 2c:8a:22:6e:82:fd:e4:7d:c2:91:8b:72:85:96:49: 88:81:c3:a5:ff:3d:f1:88:60:08:78:72:5b:eb:38: c2:ca:e4:34:66:18:03:a8:b3:e8:0f:2e:9d:f2:e3: 44:d7:08:63:fc:46:c1:42:7e:ae:a9:44:c7:93:98: 7b:bf:b2:b8:b6:e8:e4:05:b1:1d:78:3f:ce:a0:e4: be:84:3b:c8:d3:f9:b3:e7:57:41:cb:3e:e9:66:2e: cc:ad:76:3b:d2:90:4f:bc:98:39:0f:02:a0:fa:d8: d1:ff:bf:84:ce:7d:14:64:61:92:a5:76:63:d1:80: 17:53:65:c8:c1:6d:ae:6b:36:b1:22:c0:9a:e0:2c: 3d:e6:54:0a:dd:25:3d:fc:44:0b:5f:d8:63:2e:7c: b0:80:78:f9:b0:5d:2c:65:af:62:3d:36:44:07:fe: 46:ec:c1:5a:80:4f:97:5e:32:63:af:37:f0:23:51: 5d:1f:42:29:65:d8:27:35:c1:89:39:51:7c:c2:a0: 35:1b:fd:e8:c0:29:09:aa:b1:1c:3e:1f:c1:cb:6a: 8a:1c:6e:36:a0:86:01:25:ff:b3:f8:9f:58:0e:fb: 37:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:4E:DF:05:10:42:99:60:1E:5F:38:FB:F5:6F:51:23:6A:98:87:43 X509v3 Authority Key Identifier: keyid:60:0B:11:3E:06:2D:17:EA:23:08:06:B3:4A:21:DE:B5:62:7B:67:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAsRPgYtF-ojCAazSiHetWJ7Z3Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/14c8c5-9af5-41b0-9917-a0da45299c6e/1/YAsRPgYtF-ojCAazSiHetWJ7Z3Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/14c8c5-9af5-41b0-9917-a0da45299c6e/1/YAsRPgYtF-ojCAazSiHetWJ7Z3Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:bb:0d:17:c0:cf:84:a2:fe:05:85:ff:2d:1e:34:01:1c:1f: f9:50:0d:f7:50:19:dd:9e:97:b6:17:10:ce:01:34:10:76:bc: 44:bb:cd:ec:06:43:3a:1f:8c:f9:53:4a:c2:27:05:9a:cc:f4: 8b:42:ea:09:d1:b1:8f:ad:b1:4c:60:60:b3:2e:33:69:e9:60: 51:8a:4a:36:9d:ba:8a:aa:92:16:b9:3d:35:40:f4:49:91:d0: 05:08:9b:2a:72:8c:44:21:05:06:97:75:e5:62:60:a0:58:b9: 0b:c6:30:1b:0d:50:09:20:f9:8d:6a:39:d5:f0:5e:bc:c0:fc: 17:22:f3:5f:dc:62:f8:ce:a8:55:e0:74:1e:0a:4e:f0:d8:f1: d6:61:bf:73:b9:0c:43:28:29:bb:b4:03:59:19:39:6b:48:2f: 71:e6:97:63:79:28:ad:2e:b9:f3:54:fc:73:2e:f4:42:2c:8c: 4e:be:60:b8:ba:1c:e7:47:3b:d1:63:de:fa:3f:32:82:ae:c7: 3d:b8:d4:61:58:e1:fd:69:f9:22:fb:34:95:51:ac:4b:2c:6d: 42:1e:c6:b3:56:3f:41:66:6e:2d:44:2d:79:9e:cf:ea:f3:c2: e3:ec:57:03:1f:91:65:c2:09:e1:ef:23:42:f0:79:4f:cf:d6: 55:7a:93:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIuLPABP61yrcPoCVVpt5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwMGIxMTNlMDYyZDE3ZWEyMzA4MDZiMzRhMjFkZWI1NjI3 YjY3NzQwHhcNMjYwMjA5MTYwMTI1WhcNMjYwMjEwMTYwMTI1WjAzMTEwLwYDVQQD EyhhODRlZGYwNTEwNDI5OTYwMWU1ZjM4ZmJmNTZmNTEyMzZhOTg4NzQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlzNmJ62ut1wTwCr+SC9VQkXmDSuL 5LxH1DChnbMsiiJugv3kfcKRi3KFlkmIgcOl/z3xiGAIeHJb6zjCyuQ0ZhgDqLPo Dy6d8uNE1whj/EbBQn6uqUTHk5h7v7K4tujkBbEdeD/OoOS+hDvI0/mz51dByz7p Zi7MrXY70pBPvJg5DwKg+tjR/7+Ezn0UZGGSpXZj0YAXU2XIwW2uazaxIsCa4Cw9 5lQK3SU9/EQLX9hjLnywgHj5sF0sZa9iPTZEB/5G7MFagE+XXjJjrzfwI1FdH0Ip ZdgnNcGJOVF8wqA1G/3owCkJqrEcPh/By2qKHG42oIYBJf+z+J9YDvs3RQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKhO3wUQQplgHl84+/VvUSNqmIdDMB8GA1UdIwQY MBaAFGALET4GLRfqIwgGs0oh3rVie2d0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUFzUlBnWXRGLW9qQ0FhelNpSGV0V0o3WjNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8xNGM4YzUtOWFmNS00MWIwLTk5MTct YTBkYTQ1Mjk5YzZlLzEvWUFzUlBnWXRGLW9qQ0FhelNpSGV0V0o3WjNRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8xNGM4YzUtOWFmNS00MWIwLTk5MTctYTBkYTQ1Mjk5YzZl LzEvWUFzUlBnWXRGLW9qQ0FhelNpSGV0V0o3WjNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKbsNF8DP hKL+BYX/LR40ARwf+VAN91AZ3Z6XthcQzgE0EHa8RLvN7AZDOh+M+VNKwicFmsz0 i0LqCdGxj62xTGBgsy4zaelgUYpKNp26iqqSFrk9NUD0SZHQBQibKnKMRCEFBpd1 5WJgoFi5C8YwGw1QCSD5jWo51fBevMD8FyLzX9xi+M6oVeB0HgpO8Njx1mG/c7kM Qygpu7QDWRk5a0gvceaXY3korS6581T8cy70QiyMTr5guLoc50c70WPe+j8ygq7H PbjUYVjh/Wn5Ivs0lVGsSyxtQh7Gs1Y/QWZuLUQteZ7P6vPC4+xXAx+RZcIJ4e8j QvB5T8/WVXqTKg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:08:07 2026 by rpki-client