This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.mft File: _ypds7oz42wW2_UmCy_idK5_siI.mft (raw, json) Hash identifier: WmJiTu7Gw5Nme4M1wkpe1tekBsXKdpJ8BVXcCBaAKAk= Subject key identifier: 4D:61:FF:05:E4:3A:11:51:6E:43:7D:0E:41:B1:EF:7D:0B:90:62:4F Authority key identifier: FF:2A:5D:B3:BA:33:E3:6C:16:DB:F5:26:0B:2F:E2:74:AE:7F:B2:22 Certificate issuer: /CN=ff2a5db3ba33e36c16dbf5260b2fe274ae7fb222 Certificate serial: 019C427E3099C8FB3708F9A2E07871D5EC8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ypds7oz42wW2_UmCy_idK5_siI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.mft Manifest number: 0EEF Signing time: Mon 09 Feb 2026 13:01:31 +0000 Manifest this update: Mon 09 Feb 2026 13:01:31 +0000 Manifest next update: Tue 10 Feb 2026 13:01:31 +0000 Files and hashes: 1: _ypds7oz42wW2_UmCy_idK5_siI.crl (hash: 2zlBusPK6/WKJEtN52Xfl3aqNQInr4+FS7/UBrU8iIs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.mft rsync://rpki.ripe.net/repository/DEFAULT/_ypds7oz42wW2_UmCy_idK5_siI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7e:30:99:c8:fb:37:08:f9:a2:e0:78:71:d5:ec:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ff2a5db3ba33e36c16dbf5260b2fe274ae7fb222 Validity Not Before: Feb 9 13:01:31 2026 GMT Not After : Feb 10 13:01:31 2026 GMT Subject: CN=4d61ff05e43a11516e437d0e41b1ef7d0b90624f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:26:fb:6e:a8:39:ac:56:a5:63:a4:fa:14:f6: e8:52:31:e9:74:af:94:e6:27:d7:1a:2b:1e:43:78: ff:01:09:2d:24:fb:58:b1:e8:41:72:0f:fc:5e:9d: 05:36:8f:78:3d:75:d5:d3:59:74:e0:a5:cc:4b:8d: 00:0d:df:d9:4b:2c:ff:ac:94:f3:db:20:82:44:35: e2:17:26:fe:7c:1d:d4:ce:7c:70:54:f3:17:7c:51: 1f:96:0f:4e:b5:bd:e8:76:c3:8a:80:07:25:c1:ca: a7:33:3c:18:7c:07:fe:6f:a1:c0:bc:87:cf:68:25: 8f:22:7c:9b:02:d7:ee:35:98:03:27:42:f6:e6:ac: 4c:e8:71:ae:22:3c:6e:1c:cf:ee:e1:d0:f1:a9:90: 80:58:6b:2f:85:0f:96:f6:dc:36:7b:f0:24:55:a1: 7d:11:d4:34:06:e2:73:b0:9c:15:ea:e2:fc:1b:83: a3:c1:7a:1c:4c:dd:0c:ae:d8:d1:08:57:97:ec:3f: e2:fd:37:2a:89:0b:ae:9a:ab:d4:dc:14:c2:43:ba: 49:82:f9:b7:7b:8c:6a:f2:ee:dd:5f:ef:21:4c:3c: 15:b7:fc:60:df:de:63:22:b0:45:d8:3c:34:26:a5: 75:2a:73:a4:f9:b9:9c:28:f2:3f:82:94:59:b5:5e: 56:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:61:FF:05:E4:3A:11:51:6E:43:7D:0E:41:B1:EF:7D:0B:90:62:4F X509v3 Authority Key Identifier: keyid:FF:2A:5D:B3:BA:33:E3:6C:16:DB:F5:26:0B:2F:E2:74:AE:7F:B2:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ypds7oz42wW2_UmCy_idK5_siI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/5df710-df86-42c0-8aa2-5260cd5c24c3/1/_ypds7oz42wW2_UmCy_idK5_siI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:29:c8:2e:a4:d9:4d:5a:8b:f2:3d:76:56:f0:5b:e8:13:fe: 8a:35:66:6d:5e:fa:88:f9:57:f6:fa:15:c5:16:5c:5a:dc:66: 3d:d8:6e:07:b4:63:e3:5f:92:f9:be:21:89:fe:17:9c:42:39: 2e:76:f6:19:63:18:2a:ea:1c:23:5f:82:60:c8:90:39:96:f6: 4d:18:a8:89:44:ee:86:2c:84:89:4a:85:93:4b:25:54:41:e4: 77:d0:c6:fd:70:a0:9d:67:e1:ab:83:71:8a:9a:df:e6:b8:03: e0:2a:40:d7:a9:fa:0f:1b:55:d2:01:76:8f:c2:0b:5b:c4:72: 89:c6:5d:cb:bc:d5:9e:bb:49:98:eb:1b:8d:de:d9:ae:8e:ba: 99:3e:6d:22:d7:c4:29:8d:7c:69:56:f3:87:29:7c:a6:87:ef: 03:15:40:0c:8e:56:ad:ea:97:2e:3a:1f:ef:37:26:78:33:1f: cd:c1:fd:51:a4:0b:79:22:de:22:84:40:77:2f:44:cd:10:d9: 1d:0e:4b:dc:23:63:ff:dd:6f:9b:43:cf:e8:dc:b4:14:bc:67: 7c:b7:5c:16:66:cc:49:4d:96:97:fb:0b:47:e7:95:8e:11:83: 8c:3c:2e:3e:7f:06:c0:1d:6b:ec:c5:43:42:2e:80:c9:f4:41: e0:49:64:71 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfjCZyPs3CPmi4Hhx1eyMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmMmE1ZGIzYmEzM2UzNmMxNmRiZjUyNjBiMmZlMjc0YWU3 ZmIyMjIwHhcNMjYwMjA5MTMwMTMxWhcNMjYwMjEwMTMwMTMxWjAzMTEwLwYDVQQD Eyg0ZDYxZmYwNWU0M2ExMTUxNmU0MzdkMGU0MWIxZWY3ZDBiOTA2MjRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuib7bqg5rFalY6T6FPboUjHpdK+U 5ifXGiseQ3j/AQktJPtYsehBcg/8Xp0FNo94PXXV01l04KXMS40ADd/ZSyz/rJTz 2yCCRDXiFyb+fB3UznxwVPMXfFEflg9Otb3odsOKgAclwcqnMzwYfAf+b6HAvIfP aCWPInybAtfuNZgDJ0L25qxM6HGuIjxuHM/u4dDxqZCAWGsvhQ+W9tw2e/AkVaF9 EdQ0BuJzsJwV6uL8G4OjwXocTN0MrtjRCFeX7D/i/TcqiQuumqvU3BTCQ7pJgvm3 e4xq8u7dX+8hTDwVt/xg395jIrBF2Dw0JqV1KnOk+bmcKPI/gpRZtV5WqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE1h/wXkOhFRbkN9DkGx730LkGJPMB8GA1UdIwQY MBaAFP8qXbO6M+NsFtv1Jgsv4nSuf7IiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX3lwZHM3b3o0MndXMl9VbUN5X2lkSzVfc2lJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC81ZGY3MTAtZGY4Ni00MmMwLThhYTIt NTI2MGNkNWMyNGMzLzEvX3lwZHM3b3o0MndXMl9VbUN5X2lkSzVfc2lJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC81ZGY3MTAtZGY4Ni00MmMwLThhYTItNTI2MGNkNWMyNGMz LzEvX3lwZHM3b3o0MndXMl9VbUN5X2lkSzVfc2lJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABSnILqTZ TVqL8j12VvBb6BP+ijVmbV76iPlX9voVxRZcWtxmPdhuB7Rj41+S+b4hif4XnEI5 Lnb2GWMYKuocI1+CYMiQOZb2TRioiUTuhiyEiUqFk0slVEHkd9DG/XCgnWfhq4Nx iprf5rgD4CpA16n6DxtV0gF2j8ILW8RyicZdy7zVnrtJmOsbjd7Zro66mT5tItfE KY18aVbzhyl8pofvAxVADI5WreqXLjof7zcmeDMfzcH9UaQLeSLeIoRAdy9EzRDZ HQ5L3CNj/91vm0PP6Ny0FLxnfLdcFmbMSU2Wl/sLR+eVjhGDjDwuPn8GwB1r7MVD Qi6AyfRB4ElkcQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:57 2026 by rpki-client