This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft File: YHZWuPfoG1FJtIYPgSex1OO0h9w.mft (raw, json) Hash identifier: FV4Fg10jgpUwAO83VlKuVKs0Qz+ugR4OGNHbVOfeaUg= Subject key identifier: 17:FE:31:08:D5:23:F4:39:2F:3F:1E:EB:C5:79:54:D2:B2:DD:37:C7 Authority key identifier: 60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC Certificate issuer: /CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc Certificate serial: 019C41D857F16B27958EDB199469A601F7EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft Manifest number: 0E21 Signing time: Mon 09 Feb 2026 10:00:23 +0000 Manifest this update: Mon 09 Feb 2026 10:00:23 +0000 Manifest next update: Tue 10 Feb 2026 10:00:23 +0000 Files and hashes: 1: UUfjp8DsgnyXyAKHpxYY24nPV9k.roa (hash: z2A5oacpxbaOodlp6c1sfM8uFMWqz0u+N2Xu9qkatg0=) 2: YHZWuPfoG1FJtIYPgSex1OO0h9w.crl (hash: xaucSJ0oV+JJ0+VfeZ//pVVOVQPKDF+SfUz86RRSr1w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:57:f1:6b:27:95:8e:db:19:94:69:a6:01:f7:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc Validity Not Before: Feb 9 10:00:23 2026 GMT Not After : Feb 10 10:00:23 2026 GMT Subject: CN=17fe3108d523f4392f3f1eebc57954d2b2dd37c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a5:93:65:8d:8f:25:22:fa:11:f5:54:08:25: 40:7a:b1:cb:7b:c2:a3:90:21:60:9d:5b:57:98:94: d7:de:47:aa:8c:4d:0a:4f:e1:4f:a7:6a:8c:09:ad: 4f:32:d8:9a:0a:6a:2e:c3:70:94:e8:c5:1d:9d:fe: d5:b2:70:ac:28:7d:53:7b:74:2d:6c:e8:d6:f9:aa: d9:83:7d:74:22:63:85:33:23:64:78:b1:91:1a:1c: be:6c:7f:4b:ac:0e:a2:fc:b8:b8:11:a6:a5:fc:92: d0:c4:8b:f3:e5:d6:bc:b4:67:35:87:5a:d6:95:97: 14:82:80:15:e1:80:e4:ad:79:f5:ce:9e:2a:f8:aa: bf:a4:b5:58:c6:bb:bd:b3:25:3a:fc:41:fe:03:65: d0:c4:29:dd:f0:43:d5:7a:04:02:99:5c:cc:dc:02: 05:6c:6c:fa:67:a9:01:5c:64:dd:0b:c5:27:5c:a2: ec:c6:58:0a:0b:46:a2:9d:2e:0d:1a:79:2e:75:73: 64:97:ed:05:56:84:9f:e7:78:0a:6f:b6:19:8d:a4: 4f:89:ea:57:d3:b5:18:c2:ac:4c:03:55:11:12:c6: b5:6f:bc:ee:ff:34:2f:8c:90:ef:10:cc:6a:c6:b1: 27:76:d7:59:ac:09:80:07:8a:27:fb:89:8d:4e:1a: 85:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:FE:31:08:D5:23:F4:39:2F:3F:1E:EB:C5:79:54:D2:B2:DD:37:C7 X509v3 Authority Key Identifier: keyid:60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:09:8b:8f:31:62:07:f0:34:4a:bb:8e:f1:07:e7:17:0e:ef: ce:e9:f2:9c:93:03:75:a0:9f:eb:24:43:c7:49:cc:65:9d:96: ce:34:b1:bb:1c:c6:1a:41:c3:5f:d7:58:2b:22:4e:77:3b:36: f8:85:d3:b4:e4:dc:66:0e:8d:cc:44:50:92:89:81:84:3b:74: fe:f3:c2:74:48:90:1f:06:a5:2d:d6:13:1e:d5:ce:a8:5a:06: 54:31:a6:3e:44:ab:0a:6e:a4:c3:64:b6:7b:b5:31:df:04:33: c2:40:d4:a7:cf:34:b5:47:08:9d:b5:9b:7d:63:15:01:08:94: 91:0e:84:fc:7b:85:ac:0a:51:2a:e5:91:a2:00:f4:04:d6:a8: 71:46:33:9d:c1:b6:56:3e:46:a1:f1:5b:3f:69:63:0a:86:39: 9b:ce:e7:2b:b9:5d:56:cc:73:6d:59:e6:4e:8f:27:a1:90:30: da:7b:67:70:a1:e1:c5:91:15:e1:e7:78:78:ff:c9:a4:1a:1c: 16:9b:4e:78:c9:69:eb:c9:e9:cd:27:0f:41:2a:13:89:24:90: 5e:ae:28:84:e2:51:74:19:66:60:35:7c:3e:6d:0b:06:af:3f: e7:e2:b0:f7:be:6c:d4:2e:40:14:20:c8:61:fc:d5:d0:42:f3: 3d:48:3e:26 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2FfxayeVjtsZlGmmAffqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNzY1NmI4ZjdlODFiNTE0OWI0ODYwZjgxMjdiMWQ0ZTNi NDg3ZGMwHhcNMjYwMjA5MTAwMDIzWhcNMjYwMjEwMTAwMDIzWjAzMTEwLwYDVQQD EygxN2ZlMzEwOGQ1MjNmNDM5MmYzZjFlZWJjNTc5NTRkMmIyZGQzN2M3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtqWTZY2PJSL6EfVUCCVAerHLe8Kj kCFgnVtXmJTX3keqjE0KT+FPp2qMCa1PMtiaCmouw3CU6MUdnf7VsnCsKH1Te3Qt bOjW+arZg310ImOFMyNkeLGRGhy+bH9LrA6i/Li4Eaal/JLQxIvz5da8tGc1h1rW lZcUgoAV4YDkrXn1zp4q+Kq/pLVYxru9syU6/EH+A2XQxCnd8EPVegQCmVzM3AIF bGz6Z6kBXGTdC8UnXKLsxlgKC0ainS4NGnkudXNkl+0FVoSf53gKb7YZjaRPiepX 07UYwqxMA1UREsa1b7zu/zQvjJDvEMxqxrEndtdZrAmAB4on+4mNThqFRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBf+MQjVI/Q5Lz8e68V5VNKy3TfHMB8GA1UdIwQY MBaAFGB2Vrj36BtRSbSGD4EnsdTjtIfcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUhaV3VQZm9HMUZKdElZUGdTZXgxT08waDl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9jZWU1NWQtOTg1YS00ZTM2LThlMzkt ODJiYzhhMzE4MGM2LzEvWUhaV3VQZm9HMUZKdElZUGdTZXgxT08waDl3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi9jZWU1NWQtOTg1YS00ZTM2LThlMzktODJiYzhhMzE4MGM2 LzEvWUhaV3VQZm9HMUZKdElZUGdTZXgxT08waDl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABQmLjzFi B/A0SruO8QfnFw7vzunynJMDdaCf6yRDx0nMZZ2WzjSxuxzGGkHDX9dYKyJOdzs2 +IXTtOTcZg6NzERQkomBhDt0/vPCdEiQHwalLdYTHtXOqFoGVDGmPkSrCm6kw2S2 e7Ux3wQzwkDUp880tUcInbWbfWMVAQiUkQ6E/HuFrApRKuWRogD0BNaocUYzncG2 Vj5GofFbP2ljCoY5m87nK7ldVsxzbVnmTo8noZAw2ntncKHhxZEV4ed4eP/JpBoc FptOeMlp68npzScPQSoTiSSQXq4ohOJRdBlmYDV8Pm0LBq8/5+Kw975s1C5AFCDI YfzV0ELzPUg+Jg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:59:40 2026 by rpki-client