This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft File: yKQR5q7CPK13xDcrTXsLH8gtXcA.mft (raw, json) Hash identifier: 4gcjQXED/sw4SgCu7+qDQs7XUxYpHe0T97A7hhvs0Gw= Subject key identifier: D4:0D:38:81:1C:AE:07:9D:9D:7C:BA:53:58:4C:3C:44:3B:65:00:73 Authority key identifier: C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0 Certificate issuer: /CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0 Certificate serial: 019C41D87B62EDA6E0652463B0FBD2CC8537 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 10:00:32 +0000 Manifest this update: Mon 09 Feb 2026 10:00:32 +0000 Manifest next update: Tue 10 Feb 2026 10:00:32 +0000 Files and hashes: 1: yKQR5q7CPK13xDcrTXsLH8gtXcA.crl (hash: DzR8b9xMT3uEfinfOV0/Wwj5iHHtx2UFaF/GMuNugpo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:7b:62:ed:a6:e0:65:24:63:b0:fb:d2:cc:85:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0 Validity Not Before: Feb 9 10:00:32 2026 GMT Not After : Feb 10 10:00:32 2026 GMT Subject: CN=d40d38811cae079d9d7cba53584c3c443b650073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:81:a8:aa:00:bf:cb:bc:f4:2c:ed:60:3f:6a: cb:4f:8b:60:64:6b:fb:bf:63:1e:8d:dc:57:ad:35: 69:2a:da:ac:62:da:b6:5e:85:8e:f8:45:be:9b:25: 14:77:6c:ec:73:c1:99:ca:b7:69:0f:44:26:69:39: 7d:c7:cd:9e:7a:ff:71:1c:ab:70:5e:c0:35:12:d8: 70:b9:72:bd:9f:bb:62:25:63:b7:8a:50:e8:3f:c4: bc:9d:f8:44:2b:04:51:ae:28:d2:32:d4:9e:da:d7: d6:8f:2f:ac:76:87:fc:77:8a:7d:15:35:8a:c4:43: 46:40:db:fd:e8:ba:45:62:4f:e4:40:2d:5b:d8:e2: 61:da:69:9d:1d:a6:79:5b:a6:91:72:b6:ae:3a:19: 4b:60:13:75:2b:55:ec:7d:50:d6:a0:28:13:b6:14: 73:0a:c9:ab:98:9d:78:ba:2a:da:e5:93:c8:74:1c: 71:4e:f0:53:2d:47:eb:73:c5:76:3f:4e:86:46:10: 43:9a:06:fd:89:2f:f7:35:5c:c2:be:84:ba:ef:d2: 8f:10:33:7d:db:79:d4:3a:4e:b9:a3:9f:53:b4:67: 3d:80:4e:0f:d1:2c:9b:28:a3:e5:98:fc:ad:a0:ee: 4d:83:48:0d:6a:35:89:65:86:a0:73:36:24:bf:8a: d5:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:0D:38:81:1C:AE:07:9D:9D:7C:BA:53:58:4C:3C:44:3B:65:00:73 X509v3 Authority Key Identifier: keyid:C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:13:7d:40:c5:1f:3e:19:61:28:30:d7:1c:e2:8b:02:f7:bc: 31:0c:86:3e:12:b5:75:6e:ff:a2:74:3b:0e:58:12:49:04:cd: bd:37:9f:bc:df:37:e6:92:2c:23:26:fb:95:47:1f:50:bc:e3: d8:c3:7b:dd:56:17:03:03:20:36:09:bc:d4:1a:af:97:35:dd: 74:96:d2:bd:49:43:dc:59:f8:60:ce:ce:0c:eb:cf:b1:b8:14: 1b:fe:80:c9:8c:ef:f9:2e:35:ec:ff:4a:4a:2b:f4:50:31:0b: 09:76:59:dc:a4:2c:02:3e:27:4e:e0:8b:f3:24:f0:48:e2:35: 2b:36:91:95:31:f6:3d:cf:a2:3e:63:82:3e:85:ae:eb:08:21: b9:8c:90:2e:81:1d:86:12:38:5b:90:be:2a:34:b9:69:43:ce: 0f:99:70:19:93:cb:10:5d:d8:ed:85:b5:1c:b4:19:9a:6f:bf: 14:a4:f8:6c:31:3d:cb:c1:e2:4c:de:3d:7c:57:64:0e:aa:2c: fb:94:56:b7:fd:3c:3d:f2:6c:0c:f0:69:df:e8:35:f2:5b:96: 12:29:21:c4:4d:6c:ae:b8:34:45:d7:30:6b:98:a0:da:f1:98: f6:13:86:f0:da:18:73:88:07:3b:f6:ee:62:21:d1:2c:86:5a: 5f:ec:a1:98 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2Hti7abgZSRjsPvSzIU3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4YTQxMWU2YWVjMjNjYWQ3N2M0MzcyYjRkN2IwYjFmYzgy ZDVkYzAwHhcNMjYwMjA5MTAwMDMyWhcNMjYwMjEwMTAwMDMyWjAzMTEwLwYDVQQD EyhkNDBkMzg4MTFjYWUwNzlkOWQ3Y2JhNTM1ODRjM2M0NDNiNjUwMDczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6oGoqgC/y7z0LO1gP2rLT4tgZGv7 v2MejdxXrTVpKtqsYtq2XoWO+EW+myUUd2zsc8GZyrdpD0QmaTl9x82eev9xHKtw XsA1EthwuXK9n7tiJWO3ilDoP8S8nfhEKwRRrijSMtSe2tfWjy+sdof8d4p9FTWK xENGQNv96LpFYk/kQC1b2OJh2mmdHaZ5W6aRcrauOhlLYBN1K1XsfVDWoCgTthRz CsmrmJ14uira5ZPIdBxxTvBTLUfrc8V2P06GRhBDmgb9iS/3NVzCvoS679KPEDN9 23nUOk65o59TtGc9gE4P0SybKKPlmPytoO5Ng0gNajWJZYagczYkv4rVEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNQNOIEcrgednXy6U1hMPEQ7ZQBzMB8GA1UdIwQY MBaAFMikEeauwjytd8Q3K017Cx/ILV3AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUtRUjVxN0NQSzEzeERjclRYc0xIOGd0WGNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy83YjU0MGYtYjgzYS00MGI5LWFlNmQt Y2RjZWUyM2E4M2IwLzEveUtRUjVxN0NQSzEzeERjclRYc0xIOGd0WGNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy83YjU0MGYtYjgzYS00MGI5LWFlNmQtY2RjZWUyM2E4M2Iw LzEveUtRUjVxN0NQSzEzeERjclRYc0xIOGd0WGNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARxN9QMUf PhlhKDDXHOKLAve8MQyGPhK1dW7/onQ7DlgSSQTNvTefvN835pIsIyb7lUcfULzj 2MN73VYXAwMgNgm81BqvlzXddJbSvUlD3Fn4YM7ODOvPsbgUG/6AyYzv+S417P9K Siv0UDELCXZZ3KQsAj4nTuCL8yTwSOI1KzaRlTH2Pc+iPmOCPoWu6wghuYyQLoEd hhI4W5C+KjS5aUPOD5lwGZPLEF3Y7YW1HLQZmm+/FKT4bDE9y8HiTN49fFdkDqos +5RWt/08PfJsDPBp3+g18luWEikhxE1srrg0Rdcwa5ig2vGY9hOG8NoYc4gHO/bu YiHRLIZaX+yhmA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:04 2026 by rpki-client