This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/1af51b-7b17-4980-98c7-3c2fa8aaf031/1/YA09DkcUJu84PjkRODpJg78idkQ.mft File: YA09DkcUJu84PjkRODpJg78idkQ.mft (raw, json) Hash identifier: a5WUjFuwNhRqNWuZuuJgQ0NfQoYfLHpsUrM8sImc8U8= Subject key identifier: 06:E1:1A:56:FD:09:13:2D:9D:04:19:D8:B4:74:82:96:9D:4C:A0:D9 Authority key identifier: 60:0D:3D:0E:47:14:26:EF:38:3E:39:11:38:3A:49:83:BF:22:76:44 Certificate issuer: /CN=600d3d0e471426ef383e3911383a4983bf227644 Certificate serial: 019C427D7FEACF27916027A740198BAF28BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YA09DkcUJu84PjkRODpJg78idkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/1af51b-7b17-4980-98c7-3c2fa8aaf031/1/YA09DkcUJu84PjkRODpJg78idkQ.mft Manifest number: 04E1 Signing time: Mon 09 Feb 2026 13:00:46 +0000 Manifest this update: Mon 09 Feb 2026 13:00:46 +0000 Manifest next update: Tue 10 Feb 2026 13:00:46 +0000 Files and hashes: 1: YA09DkcUJu84PjkRODpJg78idkQ.crl (hash: A67rvcjFMhsqb5Ngivbc+7OQDmQ1JNzDsTg1lvTPjB4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/1af51b-7b17-4980-98c7-3c2fa8aaf031/1/YA09DkcUJu84PjkRODpJg78idkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/1af51b-7b17-4980-98c7-3c2fa8aaf031/1/YA09DkcUJu84PjkRODpJg78idkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/YA09DkcUJu84PjkRODpJg78idkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:7f:ea:cf:27:91:60:27:a7:40:19:8b:af:28:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=600d3d0e471426ef383e3911383a4983bf227644 Validity Not Before: Feb 9 13:00:46 2026 GMT Not After : Feb 10 13:00:46 2026 GMT Subject: CN=06e11a56fd09132d9d0419d8b47482969d4ca0d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:42:d3:2e:c5:8c:99:4f:2e:f9:52:45:80:a6: 9a:c0:54:0e:a0:4b:e6:39:34:7d:66:61:e4:3d:63: 13:24:fe:49:6e:83:13:4f:6a:3f:83:79:fe:58:b2: 74:e6:19:37:dd:d0:26:5d:04:cb:2b:41:20:78:93: 83:6d:e8:91:aa:84:35:64:ec:8e:82:09:cc:26:68: ff:c1:12:f9:dd:c2:9d:ff:46:33:18:be:b6:f6:7e: 9f:dc:50:db:c5:f3:6a:41:81:80:b9:02:ad:4b:6c: 2f:f4:73:4a:7d:ee:41:2e:91:54:80:4a:bb:6a:82: a5:97:cc:c2:e2:28:59:67:ba:7f:83:ae:24:76:68: 2b:ea:fe:a9:fe:0f:26:19:16:a6:fc:44:54:c7:b9: 37:b1:15:01:73:55:86:be:77:0c:00:38:e3:7e:e2: db:96:61:1e:2a:dc:90:80:dc:29:8c:03:f9:e4:c3: dc:28:13:10:57:a4:ff:60:73:6a:15:b9:77:23:7c: a6:53:e4:0e:01:07:33:72:55:00:84:01:a3:9e:35: 81:eb:65:a7:60:85:fc:a6:b0:db:da:30:0f:e1:3d: 11:1a:83:c6:cf:88:62:1c:6b:89:ec:3f:b5:af:36: 50:95:55:23:12:8f:bc:a1:b0:01:08:32:ab:03:0c: 3c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:E1:1A:56:FD:09:13:2D:9D:04:19:D8:B4:74:82:96:9D:4C:A0:D9 X509v3 Authority Key Identifier: keyid:60:0D:3D:0E:47:14:26:EF:38:3E:39:11:38:3A:49:83:BF:22:76:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YA09DkcUJu84PjkRODpJg78idkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/1af51b-7b17-4980-98c7-3c2fa8aaf031/1/YA09DkcUJu84PjkRODpJg78idkQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/1af51b-7b17-4980-98c7-3c2fa8aaf031/1/YA09DkcUJu84PjkRODpJg78idkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:74:6c:52:64:76:13:18:6e:35:f3:34:e2:20:fd:3a:70:3e: 7b:6a:e5:63:d6:b9:be:26:9d:bd:b9:66:0b:de:ae:1e:00:82: a5:55:79:c0:da:b1:b3:57:99:79:e4:be:68:d7:c8:bb:b0:99: 34:e8:41:91:c2:f8:60:67:7e:de:60:60:8c:be:75:12:98:cf: 46:01:5b:22:4a:a6:6d:49:f0:62:8b:91:b1:5d:dc:91:02:1e: b0:60:11:1a:24:9a:d7:65:a7:58:d6:4b:e1:bb:98:71:03:a2: 23:fd:e5:5f:89:9c:9b:33:94:82:f3:d0:12:d5:02:f6:33:34: 05:55:2a:8d:ef:97:13:23:7a:ae:49:0d:57:2d:29:5f:96:a3: ca:91:0f:fa:b4:af:68:49:0d:0f:f4:db:7f:42:02:2a:52:b2: f2:d5:49:fe:7a:b9:70:21:48:26:49:6e:6e:01:fa:68:d1:77: 55:04:10:77:89:69:10:4c:eb:d2:28:42:2f:00:72:ea:d5:f6: 41:48:b7:bf:31:18:be:16:dc:5c:11:dd:26:50:0f:fc:21:fe: c0:13:2f:88:4f:c2:e3:0c:e7:67:2c:c9:f7:21:c1:94:af:82: 32:b4:af:9c:eb:8f:80:36:d6:bc:30:de:e5:3d:50:8e:71:bd: 40:7e:05:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfX/qzyeRYCenQBmLryi6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwMGQzZDBlNDcxNDI2ZWYzODNlMzkxMTM4M2E0OTgzYmYy Mjc2NDQwHhcNMjYwMjA5MTMwMDQ2WhcNMjYwMjEwMTMwMDQ2WjAzMTEwLwYDVQQD EygwNmUxMWE1NmZkMDkxMzJkOWQwNDE5ZDhiNDc0ODI5NjlkNGNhMGQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1kLTLsWMmU8u+VJFgKaawFQOoEvm OTR9ZmHkPWMTJP5JboMTT2o/g3n+WLJ05hk33dAmXQTLK0EgeJODbeiRqoQ1ZOyO ggnMJmj/wRL53cKd/0YzGL629n6f3FDbxfNqQYGAuQKtS2wv9HNKfe5BLpFUgEq7 aoKll8zC4ihZZ7p/g64kdmgr6v6p/g8mGRam/ERUx7k3sRUBc1WGvncMADjjfuLb lmEeKtyQgNwpjAP55MPcKBMQV6T/YHNqFbl3I3ymU+QOAQczclUAhAGjnjWB62Wn YIX8prDb2jAP4T0RGoPGz4hiHGuJ7D+1rzZQlVUjEo+8obABCDKrAww8yQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAbhGlb9CRMtnQQZ2LR0gpadTKDZMB8GA1UdIwQY MBaAFGANPQ5HFCbvOD45ETg6SYO/InZEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUEwOURrY1VKdTg0UGprUk9EcEpnNzhpZGtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8xYWY1MWItN2IxNy00OTgwLTk4Yzct M2MyZmE4YWFmMDMxLzEvWUEwOURrY1VKdTg0UGprUk9EcEpnNzhpZGtRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS8xYWY1MWItN2IxNy00OTgwLTk4YzctM2MyZmE4YWFmMDMx LzEvWUEwOURrY1VKdTg0UGprUk9EcEpnNzhpZGtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMnRsUmR2 ExhuNfM04iD9OnA+e2rlY9a5viadvblmC96uHgCCpVV5wNqxs1eZeeS+aNfIu7CZ NOhBkcL4YGd+3mBgjL51EpjPRgFbIkqmbUnwYouRsV3ckQIesGARGiSa12WnWNZL 4buYcQOiI/3lX4mcmzOUgvPQEtUC9jM0BVUqje+XEyN6rkkNVy0pX5ajypEP+rSv aEkND/Tbf0ICKlKy8tVJ/nq5cCFIJklubgH6aNF3VQQQd4lpEEzr0ihCLwBy6tX2 QUi3vzEYvhbcXBHdJlAP/CH+wBMviE/C4wznZyzJ9yHBlK+CMrSvnOuPgDbWvDDe 5T1QjnG9QH4F1A== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:47 2026 by rpki-client