This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft File: Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft (raw, json) Hash identifier: DWxRNUBdbGz6Oaw3DnA4B75ZGiG16Xomp5beiK09mRY= Subject key identifier: 5E:F6:1B:F8:1F:2B:00:77:87:16:02:B1:66:7A:06:0A:09:B9:92:59 Authority key identifier: 63:3B:68:95:FE:49:93:39:7B:66:23:2B:B0:A2:D3:E3:C6:25:CC:1B Certificate issuer: /CN=633b6895fe4993397b66232bb0a2d3e3c625cc1b Certificate serial: 019C427D8FB13536B13D26FD48A4816853E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yztolf5Jkzl7ZiMrsKLT48YlzBs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft Manifest number: 122B Signing time: Mon 09 Feb 2026 13:00:50 +0000 Manifest this update: Mon 09 Feb 2026 13:00:50 +0000 Manifest next update: Tue 10 Feb 2026 13:00:50 +0000 Files and hashes: 1: YS4KfdF48rW5SEIpeCeYxOP-Du0.roa (hash: FKGkIDKaHogWgazEiZbFbdSEfBT5S7dX/PkphiCX2e8=) 2: Yztolf5Jkzl7ZiMrsKLT48YlzBs.crl (hash: Klc3KJX+L0s9jdV1OBOk3R5JGiseDqA0g5G9yTqB9V8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft rsync://rpki.ripe.net/repository/DEFAULT/Yztolf5Jkzl7ZiMrsKLT48YlzBs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:8f:b1:35:36:b1:3d:26:fd:48:a4:81:68:53:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=633b6895fe4993397b66232bb0a2d3e3c625cc1b Validity Not Before: Feb 9 13:00:50 2026 GMT Not After : Feb 10 13:00:50 2026 GMT Subject: CN=5ef61bf81f2b0077871602b1667a060a09b99259 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3a:c6:b3:45:39:c7:f2:53:f6:ab:37:81:ba: 4e:80:64:86:14:88:81:67:4a:00:b3:b3:94:00:c6: 07:28:4a:44:18:0f:05:c7:7d:40:a5:23:f1:38:5f: 6f:b9:16:e9:40:ad:e9:fa:e8:17:2a:66:9f:38:e9: 72:b8:eb:4e:08:9a:c5:7d:87:fd:7a:14:13:e0:7e: 81:21:fb:63:d8:47:bd:ae:5e:39:b6:91:5a:8e:76: aa:15:13:73:1b:0d:8c:48:7f:3d:77:ba:9e:f4:d1: 17:f2:ba:67:c7:cc:db:72:78:bd:43:61:81:62:25: 75:db:c8:6a:a5:eb:23:5e:3d:67:5c:6b:c6:20:5f: d4:8d:41:50:b9:00:4f:5d:b8:5a:1a:c5:aa:b5:e8: 63:19:b4:4d:52:37:ae:5f:0f:e0:ac:ce:87:67:47: e5:52:03:c0:8c:c5:61:bb:bc:2a:f1:85:98:ef:90: 61:49:66:f4:3d:22:c1:28:c0:e9:ca:5a:62:90:8e: 35:49:94:1a:e9:68:84:34:1e:5c:bd:d1:da:fe:e6: 59:1b:b3:6c:d2:36:d6:0d:b6:fa:65:0e:c0:5b:16: 63:b0:32:50:9f:00:b1:92:6f:da:bf:79:d7:95:e1: a2:a5:07:79:db:b0:33:71:3c:b4:67:68:3f:5e:f3: f5:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:F6:1B:F8:1F:2B:00:77:87:16:02:B1:66:7A:06:0A:09:B9:92:59 X509v3 Authority Key Identifier: keyid:63:3B:68:95:FE:49:93:39:7B:66:23:2B:B0:A2:D3:E3:C6:25:CC:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yztolf5Jkzl7ZiMrsKLT48YlzBs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2fc40a-55e3-4aba-91b5-70b8871b8e20/1/Yztolf5Jkzl7ZiMrsKLT48YlzBs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:1f:25:0c:d6:ff:8d:57:e1:96:7a:65:e9:ca:ce:e8:91:3d: 3a:56:e2:3d:44:4e:71:4f:4d:e9:60:e7:ef:ed:2b:cc:41:46: 0f:91:7a:3f:15:6e:da:37:8e:e9:b1:67:78:02:89:52:81:de: 35:1b:35:d7:93:62:b3:88:5f:b1:a8:b2:47:fc:08:2a:c1:31: a3:2c:b2:5a:90:e9:1b:07:e1:66:f0:90:c8:3e:21:03:e9:c7: f9:33:ab:b2:fb:8c:c2:03:54:69:a7:f2:2b:98:9e:59:6e:4c: 35:ce:ea:f8:bb:9c:8e:31:99:ed:5a:7a:6f:ff:03:0a:29:b6: 17:e5:e0:c4:36:09:86:0f:0d:f5:db:3d:c0:0b:c1:a1:ad:ca: 3e:76:03:d2:64:70:c3:e3:23:67:42:57:01:6f:28:9d:d9:0c: c5:9d:a8:17:9c:35:7e:65:84:be:14:f3:22:cf:ad:f0:6a:aa: f9:0d:b1:c9:d2:33:a7:6f:78:e9:72:95:e0:89:1f:4b:5c:e3: 88:73:d3:3a:cc:ba:d1:bf:db:45:39:54:36:84:11:f8:64:c2: c7:07:47:be:1c:92:4e:91:38:e9:79:09:bc:31:99:72:a8:11: 37:4e:7d:d2:41:78:85:5c:dd:77:15:6a:20:7b:f5:a1:83:38: 61:ba:f9:16 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfY+xNTaxPSb9SKSBaFPjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzM2I2ODk1ZmU0OTkzMzk3YjY2MjMyYmIwYTJkM2UzYzYy NWNjMWIwHhcNMjYwMjA5MTMwMDUwWhcNMjYwMjEwMTMwMDUwWjAzMTEwLwYDVQQD Eyg1ZWY2MWJmODFmMmIwMDc3ODcxNjAyYjE2NjdhMDYwYTA5Yjk5MjU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwjrGs0U5x/JT9qs3gbpOgGSGFIiB Z0oAs7OUAMYHKEpEGA8Fx31ApSPxOF9vuRbpQK3p+ugXKmafOOlyuOtOCJrFfYf9 ehQT4H6BIftj2Ee9rl45tpFajnaqFRNzGw2MSH89d7qe9NEX8rpnx8zbcni9Q2GB YiV128hqpesjXj1nXGvGIF/UjUFQuQBPXbhaGsWqtehjGbRNUjeuXw/grM6HZ0fl UgPAjMVhu7wq8YWY75BhSWb0PSLBKMDpylpikI41SZQa6WiENB5cvdHa/uZZG7Ns 0jbWDbb6ZQ7AWxZjsDJQnwCxkm/av3nXleGipQd527AzcTy0Z2g/XvP1DQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF72G/gfKwB3hxYCsWZ6BgoJuZJZMB8GA1UdIwQY MBaAFGM7aJX+SZM5e2YjK7Ci0+PGJcwbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXp0b2xmNUpremw3WmlNcnNLTFQ0OFlsekJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yZmM0MGEtNTVlMy00YWJhLTkxYjUt NzBiODg3MWI4ZTIwLzEvWXp0b2xmNUpremw3WmlNcnNLTFQ0OFlsekJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yZmM0MGEtNTVlMy00YWJhLTkxYjUtNzBiODg3MWI4ZTIw LzEvWXp0b2xmNUpremw3WmlNcnNLTFQ0OFlsekJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASx8lDNb/ jVfhlnpl6crO6JE9OlbiPUROcU9N6WDn7+0rzEFGD5F6PxVu2jeO6bFneAKJUoHe NRs115Nis4hfsaiyR/wIKsExoyyyWpDpGwfhZvCQyD4hA+nH+TOrsvuMwgNUaafy K5ieWW5MNc7q+LucjjGZ7Vp6b/8DCim2F+XgxDYJhg8N9ds9wAvBoa3KPnYD0mRw w+MjZ0JXAW8ondkMxZ2oF5w1fmWEvhTzIs+t8Gqq+Q2xydIzp2946XKV4IkfS1zj iHPTOsy60b/bRTlUNoQR+GTCxwdHvhySTpE46XkJvDGZcqgRN0590kF4hVzddxVq IHv1oYM4Ybr5Fg== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:18 2026 by rpki-client