This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft File: yjzk270E4HrOGTf4ChWvc5m4Aw4.mft (raw, json) Hash identifier: RTBzZQ+zs8YvdBk+Zs/ILoNNlTID85mKJBKBTn7++Vs= Subject key identifier: 93:41:E4:AC:71:0C:86:BD:7B:DF:51:C8:91:F5:1F:4B:3F:BD:99:36 Authority key identifier: CA:3C:E4:DB:BD:04:E0:7A:CE:19:37:F8:0A:15:AF:73:99:B8:03:0E Certificate issuer: /CN=ca3ce4dbbd04e07ace1937f80a15af7399b8030e Certificate serial: 019C4434CC1E1E3E0E3A73C26CB405930E5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjzk270E4HrOGTf4ChWvc5m4Aw4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft Manifest number: 07A7 Signing time: Mon 09 Feb 2026 21:00:36 +0000 Manifest this update: Mon 09 Feb 2026 21:00:36 +0000 Manifest next update: Tue 10 Feb 2026 21:00:36 +0000 Files and hashes: 1: yjzk270E4HrOGTf4ChWvc5m4Aw4.crl (hash: 8tAFwQk6IzOipONa1Um5ewOduLiLF4HYNu93EEiWqKs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft rsync://rpki.ripe.net/repository/DEFAULT/yjzk270E4HrOGTf4ChWvc5m4Aw4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:34:cc:1e:1e:3e:0e:3a:73:c2:6c:b4:05:93:0e:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca3ce4dbbd04e07ace1937f80a15af7399b8030e Validity Not Before: Feb 9 21:00:36 2026 GMT Not After : Feb 10 21:00:36 2026 GMT Subject: CN=9341e4ac710c86bd7bdf51c891f51f4b3fbd9936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:63:f2:07:7e:ce:bd:48:37:b4:bc:81:78:cb: a8:02:a0:46:3a:a2:08:af:63:92:14:7b:88:d6:b3: 65:48:19:d9:2c:23:d0:9a:a6:54:2c:e2:d0:97:8c: 4f:cd:22:13:e0:ce:dc:1c:56:4a:ca:1b:06:2d:54: 35:46:b6:80:5e:da:2a:37:9f:b3:61:60:ec:1f:6c: ef:2a:2c:5f:1f:1c:a7:e1:9c:83:73:e1:5d:36:6c: 86:ca:03:c9:e1:b4:64:a9:88:d0:e1:1e:de:d1:32: 2b:c8:59:80:e8:6f:cf:44:9e:fc:48:c1:55:21:23: 13:62:8a:1f:62:7e:b9:3d:b0:72:f8:3e:53:79:13: 31:70:b6:3c:6f:8d:a1:64:de:a1:73:f0:d0:9b:4b: 13:d3:e0:c4:cc:8c:5f:35:22:f6:10:5e:ae:bd:2f: e0:08:b8:0c:8d:1e:84:59:48:f9:9a:7a:76:87:cd: 4a:1f:21:96:1b:3f:53:f8:65:38:75:a8:17:31:d5: 0f:60:22:1a:f4:2b:21:d6:37:8f:73:2b:94:c0:4b: 2e:d6:6c:f2:7c:95:ff:38:c5:b9:c2:97:08:72:68: 8b:ab:b8:9b:07:ee:ae:c4:24:5b:b1:9f:c2:93:be: 75:af:68:39:23:d5:ab:b0:7e:5b:ec:0c:6d:1b:dc: 83:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:41:E4:AC:71:0C:86:BD:7B:DF:51:C8:91:F5:1F:4B:3F:BD:99:36 X509v3 Authority Key Identifier: keyid:CA:3C:E4:DB:BD:04:E0:7A:CE:19:37:F8:0A:15:AF:73:99:B8:03:0E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjzk270E4HrOGTf4ChWvc5m4Aw4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:b6:05:1f:fd:a8:d3:1d:86:76:0d:aa:06:82:2a:07:ea:2c: 73:e7:ff:15:1f:10:ca:7c:86:a5:35:5e:38:94:e4:55:30:97: e0:cd:ae:c0:96:a3:e4:40:60:a1:3c:17:5d:14:3d:65:d4:cf: 22:37:94:72:ba:f1:55:4f:c1:90:08:1f:d9:0b:cb:b9:fb:a8: eb:db:ac:6b:ca:02:fd:b3:26:77:18:c5:7c:fe:6e:c4:b8:db: 3e:48:b2:7b:bf:73:ec:8e:7f:49:6e:2e:96:41:4b:78:6e:44: e9:65:c7:60:04:17:99:5d:4c:b6:c8:47:53:b0:66:f6:08:de: 98:c6:8c:f3:e2:a2:ad:f1:dc:93:7c:f9:2d:b8:f7:6b:ec:7b: b8:a7:15:5a:1a:5e:99:07:2e:a9:2b:4a:27:01:79:c9:32:02: 0d:07:f2:97:dd:a8:5a:ac:4c:24:b2:0f:0d:27:4b:f3:fa:25: 04:6f:9e:36:8d:ff:e0:26:00:fe:39:18:a3:43:6b:0e:2a:10: 02:5f:49:89:eb:85:72:4c:6c:93:dd:ef:33:51:79:d5:1e:86: b1:34:c8:0f:30:1e:38:80:ed:33:ba:97:67:7d:75:bb:2c:30: 4d:8f:cb:43:e1:e0:c9:e3:45:1f:ea:a5:03:c8:b2:16:6d:c5: 1d:e7:a9:b5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxENMweHj4OOnPCbLQFkw5bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhM2NlNGRiYmQwNGUwN2FjZTE5MzdmODBhMTVhZjczOTli ODAzMGUwHhcNMjYwMjA5MjEwMDM2WhcNMjYwMjEwMjEwMDM2WjAzMTEwLwYDVQQD Eyg5MzQxZTRhYzcxMGM4NmJkN2JkZjUxYzg5MWY1MWY0YjNmYmQ5OTM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn2PyB37OvUg3tLyBeMuoAqBGOqII r2OSFHuI1rNlSBnZLCPQmqZULOLQl4xPzSIT4M7cHFZKyhsGLVQ1RraAXtoqN5+z YWDsH2zvKixfHxyn4ZyDc+FdNmyGygPJ4bRkqYjQ4R7e0TIryFmA6G/PRJ78SMFV ISMTYoofYn65PbBy+D5TeRMxcLY8b42hZN6hc/DQm0sT0+DEzIxfNSL2EF6uvS/g CLgMjR6EWUj5mnp2h81KHyGWGz9T+GU4dagXMdUPYCIa9Csh1jePcyuUwEsu1mzy fJX/OMW5wpcIcmiLq7ibB+6uxCRbsZ/Ck751r2g5I9WrsH5b7AxtG9yD1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJNB5KxxDIa9e99RyJH1H0s/vZk2MB8GA1UdIwQY MBaAFMo85Nu9BOB6zhk3+AoVr3OZuAMOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWp6azI3MEU0SHJPR1RmNENoV3ZjNW00QXc0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9hNWQ5YTMtYzQ1NC00YjdlLTgwMGQt NjE3Y2QzZGYzOTViLzEveWp6azI3MEU0SHJPR1RmNENoV3ZjNW00QXc0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS9hNWQ5YTMtYzQ1NC00YjdlLTgwMGQtNjE3Y2QzZGYzOTVi LzEveWp6azI3MEU0SHJPR1RmNENoV3ZjNW00QXc0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD7YFH/2o 0x2Gdg2qBoIqB+osc+f/FR8QynyGpTVeOJTkVTCX4M2uwJaj5EBgoTwXXRQ9ZdTP IjeUcrrxVU/BkAgf2QvLufuo69usa8oC/bMmdxjFfP5uxLjbPkiye79z7I5/SW4u lkFLeG5E6WXHYAQXmV1MtshHU7Bm9gjemMaM8+KirfHck3z5Lbj3a+x7uKcVWhpe mQcuqStKJwF5yTICDQfyl92oWqxMJLIPDSdL8/olBG+eNo3/4CYA/jkYo0NrDioQ Al9JieuFckxsk93vM1F51R6GsTTIDzAeOIDtM7qXZ311uywwTY/LQ+HgyeNFH+ql A8iyFm3FHeeptQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:34:12 2026 by rpki-client