This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/89234b-20c5-4f5b-b806-9ec28ae65745/1/yHfSSx1xwCFHafEZ33KY_wz4l7A.mft File: yHfSSx1xwCFHafEZ33KY_wz4l7A.mft (raw, json) Hash identifier: 3CH2mYYxBmweQaRJLtlNQOHOCQQJRAgLsDi745xKCmc= Subject key identifier: 19:FB:5C:AD:B1:C9:A6:E2:0E:37:34:03:01:A9:62:0B:6E:77:36:D9 Authority key identifier: C8:77:D2:4B:1D:71:C0:21:47:69:F1:19:DF:72:98:FF:0C:F8:97:B0 Certificate issuer: /CN=c877d24b1d71c0214769f119df7298ff0cf897b0 Certificate serial: 019C420FB72FB6CB697F2EF77E5062F5B2FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHfSSx1xwCFHafEZ33KY_wz4l7A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/89234b-20c5-4f5b-b806-9ec28ae65745/1/yHfSSx1xwCFHafEZ33KY_wz4l7A.mft Manifest number: 0C79 Signing time: Mon 09 Feb 2026 11:00:52 +0000 Manifest this update: Mon 09 Feb 2026 11:00:52 +0000 Manifest next update: Tue 10 Feb 2026 11:00:52 +0000 Files and hashes: 1: yHfSSx1xwCFHafEZ33KY_wz4l7A.crl (hash: +IGtqoxeekp66h7mwmnfXP6YUFtk+sTSE7amq3LumuY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/89234b-20c5-4f5b-b806-9ec28ae65745/1/yHfSSx1xwCFHafEZ33KY_wz4l7A.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/89234b-20c5-4f5b-b806-9ec28ae65745/1/yHfSSx1xwCFHafEZ33KY_wz4l7A.mft rsync://rpki.ripe.net/repository/DEFAULT/yHfSSx1xwCFHafEZ33KY_wz4l7A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:b7:2f:b6:cb:69:7f:2e:f7:7e:50:62:f5:b2:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c877d24b1d71c0214769f119df7298ff0cf897b0 Validity Not Before: Feb 9 11:00:52 2026 GMT Not After : Feb 10 11:00:52 2026 GMT Subject: CN=19fb5cadb1c9a6e20e37340301a9620b6e7736d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:e4:75:c2:c0:72:30:16:a7:d1:9f:da:3c:3c: 99:45:d1:b6:93:ad:b4:f1:98:8a:7a:cc:1d:82:78: c1:08:8f:d7:69:17:df:f4:d5:80:ec:f1:8e:b4:04: 4a:ed:ce:3c:7d:e2:58:76:bc:be:88:37:18:61:b2: f4:0f:88:c1:39:0c:62:16:7d:a4:a0:0d:af:18:3f: a6:a3:99:1e:0d:62:1d:05:27:ce:c3:a2:60:b3:4b: c4:5c:38:6f:6f:ac:07:69:15:3b:7f:43:80:d5:92: da:a9:a7:a2:12:7f:00:11:7a:ff:ff:71:37:f2:62: 98:47:bf:fe:92:ab:1c:b1:af:d7:bb:33:4b:d1:ad: 3c:9b:aa:21:96:59:bf:72:0a:a9:8a:47:58:71:1b: d6:5d:91:7e:0e:ff:c4:33:61:a7:a7:3a:0a:e9:6d: f8:2c:d5:da:e0:3e:a8:e8:19:6e:3a:9b:0f:2b:a5: 20:30:ed:34:e1:3c:97:42:1f:20:5e:e8:1a:a5:4b: 78:a5:ee:af:37:46:93:a5:7c:f9:cc:6d:59:fb:59: 41:f5:b0:95:51:2d:03:56:5b:62:e0:a2:a0:d0:db: d7:7b:79:3f:ef:47:84:0a:8a:29:28:b8:41:f5:c9: 6d:92:ab:c6:29:88:a2:97:fc:e2:c1:82:bb:d7:59: 9f:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:FB:5C:AD:B1:C9:A6:E2:0E:37:34:03:01:A9:62:0B:6E:77:36:D9 X509v3 Authority Key Identifier: keyid:C8:77:D2:4B:1D:71:C0:21:47:69:F1:19:DF:72:98:FF:0C:F8:97:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHfSSx1xwCFHafEZ33KY_wz4l7A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/89234b-20c5-4f5b-b806-9ec28ae65745/1/yHfSSx1xwCFHafEZ33KY_wz4l7A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/89234b-20c5-4f5b-b806-9ec28ae65745/1/yHfSSx1xwCFHafEZ33KY_wz4l7A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:04:86:11:f8:91:c3:6f:bc:06:83:a9:c6:0d:18:eb:9a:88: b2:83:45:de:46:5d:b5:d9:40:90:f0:38:cf:92:7f:60:fc:a0: 8f:5b:7e:b2:25:06:fa:1d:2f:f6:27:26:bf:55:4c:a6:2b:f8: 4c:eb:db:a7:ad:72:03:6e:a6:f5:2d:a4:51:48:e7:28:51:a8: 2b:e7:e9:66:dc:27:65:71:8d:9e:86:fe:e6:d7:e1:5a:8f:06: a2:cf:e3:74:05:06:59:85:d6:ab:a9:58:ce:e6:79:8e:a1:75: 0e:14:26:b3:a3:ed:39:fc:92:b4:8c:c1:26:23:a0:c8:6d:6a: 72:e2:e2:25:9d:9d:d0:52:5f:43:31:41:c2:f4:c7:98:a4:9c: c6:ce:69:1f:a2:0f:16:38:5c:83:77:8c:96:d2:32:06:9a:32: 0c:22:9e:4d:12:4c:b8:20:f1:c0:26:1b:db:e1:5a:8d:ee:38: b7:6b:ea:f7:de:2a:94:72:bf:23:bc:af:f0:7b:33:34:f1:16: 91:ff:03:fa:1a:87:d4:a7:7f:5a:d4:2a:f1:4d:e5:cc:fc:f1: 5d:a4:9f:b1:eb:e9:13:ea:56:20:12:a4:92:25:06:36:05:86: 9e:00:17:72:ef:49:77:c1:83:ad:ac:df:22:1d:14:a1:68:d7: 82:2c:2d:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD7cvtstpfy73flBi9bL7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4NzdkMjRiMWQ3MWMwMjE0NzY5ZjExOWRmNzI5OGZmMGNm ODk3YjAwHhcNMjYwMjA5MTEwMDUyWhcNMjYwMjEwMTEwMDUyWjAzMTEwLwYDVQQD EygxOWZiNWNhZGIxYzlhNmUyMGUzNzM0MDMwMWE5NjIwYjZlNzczNmQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAieR1wsByMBan0Z/aPDyZRdG2k620 8ZiKeswdgnjBCI/XaRff9NWA7PGOtARK7c48feJYdry+iDcYYbL0D4jBOQxiFn2k oA2vGD+mo5keDWIdBSfOw6Jgs0vEXDhvb6wHaRU7f0OA1ZLaqaeiEn8AEXr//3E3 8mKYR7/+kqscsa/XuzNL0a08m6ohllm/cgqpikdYcRvWXZF+Dv/EM2GnpzoK6W34 LNXa4D6o6BluOpsPK6UgMO004TyXQh8gXugapUt4pe6vN0aTpXz5zG1Z+1lB9bCV US0DVlti4KKg0NvXe3k/70eECoopKLhB9cltkqvGKYiil/ziwYK711mfnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBn7XK2xyabiDjc0AwGpYgtudzbZMB8GA1UdIwQY MBaAFMh30ksdccAhR2nxGd9ymP8M+JewMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUhmU1N4MXh3Q0ZIYWZFWjMzS1lfd3o0bDdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC84OTIzNGItMjBjNS00ZjViLWI4MDYt OWVjMjhhZTY1NzQ1LzEveUhmU1N4MXh3Q0ZIYWZFWjMzS1lfd3o0bDdBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC84OTIzNGItMjBjNS00ZjViLWI4MDYtOWVjMjhhZTY1NzQ1 LzEveUhmU1N4MXh3Q0ZIYWZFWjMzS1lfd3o0bDdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHASGEfiR w2+8BoOpxg0Y65qIsoNF3kZdtdlAkPA4z5J/YPygj1t+siUG+h0v9icmv1VMpiv4 TOvbp61yA26m9S2kUUjnKFGoK+fpZtwnZXGNnob+5tfhWo8Gos/jdAUGWYXWq6lY zuZ5jqF1DhQms6PtOfyStIzBJiOgyG1qcuLiJZ2d0FJfQzFBwvTHmKScxs5pH6IP Fjhcg3eMltIyBpoyDCKeTRJMuCDxwCYb2+Faje44t2vq994qlHK/I7yv8HszNPEW kf8D+hqH1Kd/WtQq8U3lzPzxXaSfsevpE+pWIBKkkiUGNgWGngAXcu9Jd8GDrazf Ih0UoWjXgiwt7Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:04 2026 by rpki-client