This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft File: y6AXGgLV5KdftAY1VFrgBkyMzK0.mft (raw, json) Hash identifier: qiI5K+jyys3GPm7lGupdao7NxZEfwxrH2ubuhhINcoI= Subject key identifier: 88:1F:FE:33:6B:79:CB:07:83:2E:4F:7B:8C:01:13:27:6B:C6:86:D0 Authority key identifier: CB:A0:17:1A:02:D5:E4:A7:5F:B4:06:35:54:5A:E0:06:4C:8C:CC:AD Certificate issuer: /CN=cba0171a02d5e4a75fb40635545ae0064c8cccad Certificate serial: 019C43595BEF9FF273B2AE36C71DB38E9032 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y6AXGgLV5KdftAY1VFrgBkyMzK0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft Manifest number: 151D Signing time: Mon 09 Feb 2026 17:00:55 +0000 Manifest this update: Mon 09 Feb 2026 17:00:55 +0000 Manifest next update: Tue 10 Feb 2026 17:00:55 +0000 Files and hashes: 1: UxOjp8XUs-Ky59G3Ao0aGxBbUxk.roa (hash: IG/Uj+pARjcg7xsZwOswZLWfcj4Zeh91EtnXY1KelO4=) 2: y6AXGgLV5KdftAY1VFrgBkyMzK0.crl (hash: jesujbybU2cLaoACCseOwsR6M5V6+/xcc2OZahyEsnI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft rsync://rpki.ripe.net/repository/DEFAULT/y6AXGgLV5KdftAY1VFrgBkyMzK0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:5b:ef:9f:f2:73:b2:ae:36:c7:1d:b3:8e:90:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cba0171a02d5e4a75fb40635545ae0064c8cccad Validity Not Before: Feb 9 17:00:55 2026 GMT Not After : Feb 10 17:00:55 2026 GMT Subject: CN=881ffe336b79cb07832e4f7b8c0113276bc686d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:82:af:da:d4:c3:b5:f6:2d:1c:a3:8c:52:d4: 63:8f:7e:58:5f:4e:2c:ef:ff:d0:e1:e3:2d:62:b9: 74:41:c0:66:b6:f5:aa:96:a0:0e:98:11:19:cf:3b: e2:39:c8:47:9d:bf:f4:f7:66:47:5f:25:4f:dc:bb: f5:45:02:51:c1:71:6b:07:f1:19:7f:1d:ec:a1:dc: b2:8f:b5:0b:c7:4f:c5:c8:80:30:2f:8b:d8:67:fa: 32:af:8d:61:b2:c7:c1:60:c6:5b:94:3e:cb:c3:d5: 0e:c3:86:3d:13:b7:84:8c:46:81:3d:ff:01:b1:47: 2f:c7:ee:66:9b:3c:a9:1e:3e:58:2a:66:9f:21:21: aa:87:fd:8e:7e:cc:06:f3:1c:ac:12:ee:50:de:2c: 7c:8e:ce:1e:f8:e3:d5:18:13:1d:81:c8:8a:0e:8c: e1:f4:ff:c0:bd:c3:51:16:9b:9d:59:7b:f3:94:00: dd:12:bb:d3:f3:b9:06:f8:2e:06:c6:6e:a3:a1:59: 1c:55:31:d8:39:0a:0f:5c:93:70:42:5c:f2:32:18: b6:29:fa:b3:a8:97:bf:4e:e9:6c:d8:1b:3a:9c:8f: 57:a0:cf:00:1a:c4:ad:d8:a2:37:39:61:ae:90:dd: 38:a3:79:a4:f1:1b:bb:28:9e:95:dd:54:38:a6:bd: f3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:1F:FE:33:6B:79:CB:07:83:2E:4F:7B:8C:01:13:27:6B:C6:86:D0 X509v3 Authority Key Identifier: keyid:CB:A0:17:1A:02:D5:E4:A7:5F:B4:06:35:54:5A:E0:06:4C:8C:CC:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y6AXGgLV5KdftAY1VFrgBkyMzK0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:3a:05:94:a6:10:cd:ce:04:49:cc:01:22:8a:fb:c4:02:b3: 2a:a4:bb:db:5d:9d:68:29:08:3e:de:b5:fe:9b:97:04:c7:56: a0:95:04:d1:f7:92:25:75:38:81:7a:19:e2:56:6b:dc:11:e0: 4f:c4:c5:64:8b:fc:21:44:20:1a:fa:94:84:fe:46:a5:94:bf: 4b:9d:d7:81:4a:fc:eb:c2:e9:40:27:7e:59:2c:7c:6d:a6:19: 63:2f:70:ed:8b:60:71:8e:38:00:f2:e1:66:a6:34:a7:69:b2: db:ba:a2:82:23:be:df:44:c0:ad:d2:ec:cc:81:e7:50:bb:ba: 0c:be:4e:75:39:d6:70:ac:c0:85:37:19:3d:97:66:9a:ee:20: cc:01:81:39:fd:71:2e:1d:04:87:5c:2b:f8:15:d6:83:3e:08: 1b:d8:b2:c6:4c:e7:49:55:fb:b2:b7:53:ec:c2:58:dc:a3:4e: cc:4e:e0:85:8a:06:d6:d1:ab:64:3b:e8:48:05:0b:c3:1a:75: b4:f6:4d:e9:a5:6c:f1:15:6c:27:4f:63:29:7c:2d:bb:84:69: 97:3a:30:08:93:34:c5:e3:9d:2a:82:0d:17:7d:34:bb:50:93: e8:01:4d:d2:1a:ea:fc:32:1a:5a:89:18:2e:00:93:9e:d6:0d: 45:72:15:22 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWVvvn/Jzsq42xx2zjpAyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiYTAxNzFhMDJkNWU0YTc1ZmI0MDYzNTU0NWFlMDA2NGM4 Y2NjYWQwHhcNMjYwMjA5MTcwMDU1WhcNMjYwMjEwMTcwMDU1WjAzMTEwLwYDVQQD Eyg4ODFmZmUzMzZiNzljYjA3ODMyZTRmN2I4YzAxMTMyNzZiYzY4NmQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlYKv2tTDtfYtHKOMUtRjj35YX04s 7//Q4eMtYrl0QcBmtvWqlqAOmBEZzzviOchHnb/092ZHXyVP3Lv1RQJRwXFrB/EZ fx3sodyyj7ULx0/FyIAwL4vYZ/oyr41hssfBYMZblD7Lw9UOw4Y9E7eEjEaBPf8B sUcvx+5mmzypHj5YKmafISGqh/2OfswG8xysEu5Q3ix8js4e+OPVGBMdgciKDozh 9P/AvcNRFpudWXvzlADdErvT87kG+C4Gxm6joVkcVTHYOQoPXJNwQlzyMhi2Kfqz qJe/Tuls2Bs6nI9XoM8AGsSt2KI3OWGukN04o3mk8Ru7KJ6V3VQ4pr3zmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIgf/jNrecsHgy5Pe4wBEydrxobQMB8GA1UdIwQY MBaAFMugFxoC1eSnX7QGNVRa4AZMjMytMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTZBWEdnTFY1S2RmdEFZMVZGcmdCa3lNekswLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC82NTQ0MzMtZTMyMC00MmFlLWJiNjEt NTcwYjE0ODMzNTM0LzEveTZBWEdnTFY1S2RmdEFZMVZGcmdCa3lNekswLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC82NTQ0MzMtZTMyMC00MmFlLWJiNjEtNTcwYjE0ODMzNTM0 LzEveTZBWEdnTFY1S2RmdEFZMVZGcmdCa3lNekswLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAazoFlKYQ zc4EScwBIor7xAKzKqS7212daCkIPt61/puXBMdWoJUE0feSJXU4gXoZ4lZr3BHg T8TFZIv8IUQgGvqUhP5GpZS/S53XgUr868LpQCd+WSx8baYZYy9w7YtgcY44APLh ZqY0p2my27qigiO+30TArdLszIHnULu6DL5OdTnWcKzAhTcZPZdmmu4gzAGBOf1x Lh0Eh1wr+BXWgz4IG9iyxkznSVX7srdT7MJY3KNOzE7ghYoG1tGrZDvoSAULwxp1 tPZN6aVs8RVsJ09jKXwtu4RplzowCJM0xeOdKoINF300u1CT6AFN0hrq/DIaWokY LgCTntYNRXIVIg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:22:10 2026 by rpki-client