This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.mft File: YdOLN5gKDfrpz5osW1at6X-vUC4.mft (raw, json) Hash identifier: m64/KLnns5KLgOTAE00iHHDEK7NGAzu9/7+YXU/6tN8= Subject key identifier: 67:FE:B3:EE:6D:1C:CE:CE:C2:05:E2:29:E0:75:57:A1:39:5D:AE:0A Authority key identifier: 61:D3:8B:37:98:0A:0D:FA:E9:CF:9A:2C:5B:56:AD:E9:7F:AF:50:2E Certificate issuer: /CN=61d38b37980a0dfae9cf9a2c5b56ade97faf502e Certificate serial: 019C42EB560B195F173BE50FC6216D44F101 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YdOLN5gKDfrpz5osW1at6X-vUC4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.mft Manifest number: 0C9B Signing time: Mon 09 Feb 2026 15:00:44 +0000 Manifest this update: Mon 09 Feb 2026 15:00:44 +0000 Manifest next update: Tue 10 Feb 2026 15:00:44 +0000 Files and hashes: 1: YdOLN5gKDfrpz5osW1at6X-vUC4.crl (hash: PpHB9ojzMY5ZQpziJoct4syQ/fE18QzXxApty0J2sWA=) 2: kGLxA9onzrf8JLssDr-KbBw0Iso.roa (hash: iCYCJqbAYcmF46KnTkB1atw07n5B8BjwCirxzmxkzlg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.mft rsync://rpki.ripe.net/repository/DEFAULT/YdOLN5gKDfrpz5osW1at6X-vUC4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:56:0b:19:5f:17:3b:e5:0f:c6:21:6d:44:f1:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61d38b37980a0dfae9cf9a2c5b56ade97faf502e Validity Not Before: Feb 9 15:00:44 2026 GMT Not After : Feb 10 15:00:44 2026 GMT Subject: CN=67feb3ee6d1ccecec205e229e07557a1395dae0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3c:7d:ac:6b:25:62:c6:78:67:e4:58:ed:23: 3a:01:3b:91:35:37:11:52:bb:f5:56:45:37:3b:7e: d5:5f:7f:6a:7c:68:0c:4c:29:c8:7d:be:e1:c9:c9: 62:55:82:4f:77:1f:63:79:2a:4b:de:bf:fc:4c:78: cd:af:6e:f8:a5:7e:cd:a4:4d:c4:63:2d:8f:24:b7: 8e:9e:ee:59:59:99:82:07:1b:be:8b:ba:5a:bf:9d: 89:71:8f:ca:f3:f0:de:c3:e3:ac:3b:6f:a8:43:b1: 3b:06:79:76:f0:17:63:47:c3:ed:dc:fa:09:fa:2e: 27:01:e9:52:2b:54:de:7f:e7:e3:f1:b0:ea:32:90: 5b:ec:9d:93:16:2b:26:8a:f1:d5:bc:79:f4:69:b7: c1:65:a5:9b:e3:ff:fb:fd:87:6f:7c:1b:ed:80:91: ad:20:1d:dc:7e:94:58:55:9b:87:2b:d4:41:55:e5: d6:dd:26:94:73:da:6b:f6:da:78:62:c6:b2:95:75: 24:c3:18:43:af:e5:98:96:1d:12:6f:b5:b2:83:9f: 0d:47:6f:e5:38:ad:77:48:29:51:8d:62:70:2f:d9: d9:09:9c:38:99:c7:b9:f7:05:a3:5c:87:b5:66:30: fd:60:7d:22:97:49:77:ec:48:0e:ab:29:f3:df:f9: a0:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:FE:B3:EE:6D:1C:CE:CE:C2:05:E2:29:E0:75:57:A1:39:5D:AE:0A X509v3 Authority Key Identifier: keyid:61:D3:8B:37:98:0A:0D:FA:E9:CF:9A:2C:5B:56:AD:E9:7F:AF:50:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YdOLN5gKDfrpz5osW1at6X-vUC4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:5d:80:a2:4a:f8:0e:cd:8d:b1:59:46:b6:4f:1c:f5:e9:c1: ff:a2:fd:cc:b2:ea:0c:1c:2b:ff:b8:28:27:a3:d9:5e:3f:d3: 5a:0e:2d:62:5e:80:bf:0c:53:ca:2f:f1:6d:74:73:d2:dc:57: e5:3c:90:83:85:c6:9f:f2:6a:3a:63:5f:ff:b4:97:6b:b9:c5: 68:99:33:78:ca:2d:fd:8b:e9:b3:44:bb:14:42:b2:ed:00:30: 84:ab:37:72:15:cf:55:e8:23:95:89:a7:05:72:65:c1:58:91: f7:d2:92:fb:57:1a:3a:21:f1:18:43:ca:ad:ae:2d:c0:15:53: f9:2b:bd:a9:89:91:f2:19:ff:8e:be:17:69:61:16:ac:64:bd: ee:8f:f3:f5:4a:bd:72:60:c1:d2:cc:46:66:4d:f8:f0:11:77: a5:4d:d8:ff:1c:4d:1c:94:49:d5:ba:c4:89:1a:04:af:5a:b1: b9:19:57:ac:fc:09:46:61:78:0d:5d:7e:15:98:23:9d:09:b1: ee:a3:f5:6d:21:ce:66:39:57:41:02:a9:ff:d2:d0:35:ac:a0: 6b:24:df:56:bf:a0:48:6c:62:68:2e:22:20:65:32:70:1b:aa: 65:69:b9:08:6a:07:e4:81:9d:b3:0f:54:6e:bc:72:9c:fb:f2: aa:e2:83:b1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC61YLGV8XO+UPxiFtRPEBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxZDM4YjM3OTgwYTBkZmFlOWNmOWEyYzViNTZhZGU5N2Zh ZjUwMmUwHhcNMjYwMjA5MTUwMDQ0WhcNMjYwMjEwMTUwMDQ0WjAzMTEwLwYDVQQD Eyg2N2ZlYjNlZTZkMWNjZWNlYzIwNWUyMjllMDc1NTdhMTM5NWRhZTBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzx9rGslYsZ4Z+RY7SM6ATuRNTcR Urv1VkU3O37VX39qfGgMTCnIfb7hycliVYJPdx9jeSpL3r/8THjNr274pX7NpE3E Yy2PJLeOnu5ZWZmCBxu+i7pav52JcY/K8/Dew+OsO2+oQ7E7Bnl28BdjR8Pt3PoJ +i4nAelSK1Tef+fj8bDqMpBb7J2TFismivHVvHn0abfBZaWb4//7/YdvfBvtgJGt IB3cfpRYVZuHK9RBVeXW3SaUc9pr9tp4YsaylXUkwxhDr+WYlh0Sb7Wyg58NR2/l OK13SClRjWJwL9nZCZw4mce59wWjXIe1ZjD9YH0il0l37EgOqynz3/mgrwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGf+s+5tHM7OwgXiKeB1V6E5Xa4KMB8GA1UdIwQY MBaAFGHTizeYCg366c+aLFtWrel/r1AuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWRPTE41Z0tEZnJwejVvc1cxYXQ2WC12VUM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82OTc0NmMtNTAxYS00M2U4LWI4ODct N2Q0NDhiMzk2Nzc2LzEvWWRPTE41Z0tEZnJwejVvc1cxYXQ2WC12VUM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82OTc0NmMtNTAxYS00M2U4LWI4ODctN2Q0NDhiMzk2Nzc2 LzEvWWRPTE41Z0tEZnJwejVvc1cxYXQ2WC12VUM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp12Aokr4 Ds2NsVlGtk8c9enB/6L9zLLqDBwr/7goJ6PZXj/TWg4tYl6AvwxTyi/xbXRz0txX 5TyQg4XGn/JqOmNf/7SXa7nFaJkzeMot/Yvps0S7FEKy7QAwhKs3chXPVegjlYmn BXJlwViR99KS+1caOiHxGEPKra4twBVT+Su9qYmR8hn/jr4XaWEWrGS97o/z9Uq9 cmDB0sxGZk348BF3pU3Y/xxNHJRJ1brEiRoEr1qxuRlXrPwJRmF4DV1+FZgjnQmx 7qP1bSHOZjlXQQKp/9LQNaygayTfVr+gSGxiaC4iIGUycBuqZWm5CGoH5IGdsw9U brxynPvyquKDsQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:48:04 2026 by rpki-client