This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft File: ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft (raw, json) Hash identifier: DzjtptHbeq/EYC0Nbx+joNw1rHOYidLPLf10p+ef478= Subject key identifier: 1D:C8:AD:08:29:B2:3C:EC:40:65:50:7F:F5:E6:87:50:7B:46:CE:F7 Authority key identifier: CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2 Certificate issuer: /CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2 Certificate serial: 019C4246B3EF170B0DB5AEC2074D836C0E80 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft Manifest number: 03C8 Signing time: Mon 09 Feb 2026 12:00:55 +0000 Manifest this update: Mon 09 Feb 2026 12:00:55 +0000 Manifest next update: Tue 10 Feb 2026 12:00:55 +0000 Files and hashes: 1: oige68hRBiXUkOK8iHHDWo8nk74.roa (hash: j1qWPqgO+nK+2rkNLUIphbABAHPc6uAzHBH1FOhC3L4=) 2: ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl (hash: L7+i6yngS036QBHlTbOxN2wKjOStap3s7MvNUNrPwXU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:b3:ef:17:0b:0d:b5:ae:c2:07:4d:83:6c:0e:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2 Validity Not Before: Feb 9 12:00:55 2026 GMT Not After : Feb 10 12:00:55 2026 GMT Subject: CN=1dc8ad0829b23cec4065507ff5e687507b46cef7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:6a:5e:0d:54:17:c4:6d:d0:87:46:13:66:13: d0:c6:24:9c:ef:4b:f5:e6:08:78:e2:0c:76:b3:fc: d6:69:b1:c2:19:5d:f9:3a:98:e8:9f:1b:97:69:7e: 44:17:92:89:5e:57:5b:6e:8b:4c:33:4e:dc:bc:3a: 01:06:df:05:7d:3a:ef:37:92:7a:79:45:68:19:0a: f9:9b:ba:e0:56:8f:94:b4:bc:eb:30:08:76:fe:2e: 0e:0a:fe:25:7c:7f:3d:c7:bb:00:b7:37:9f:22:d8: 6d:ab:26:76:35:73:dd:02:6a:01:cd:57:3d:5e:f3: 17:2b:5d:22:76:91:58:3e:8e:a7:84:1c:e5:49:da: b2:c3:32:11:9b:c7:24:d3:44:0a:7b:56:a5:a4:85: 2e:48:c3:4e:9c:e3:3a:ce:80:f8:12:94:06:8f:36: 70:93:51:8e:9e:45:e4:bd:a0:5d:d2:b3:79:18:35: 4d:f3:53:0b:5c:13:9d:37:99:58:db:e6:34:18:b0: d0:d7:6b:67:de:cc:04:9b:57:9d:ea:95:9c:d2:e3: 47:e3:fa:48:dd:f8:78:56:fb:b1:bc:78:26:f8:a0: f8:82:56:1b:02:b4:5e:e2:46:73:5d:7b:53:dd:a6: c4:61:66:aa:a1:ac:11:92:94:7a:8e:61:c4:72:43: 7f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:C8:AD:08:29:B2:3C:EC:40:65:50:7F:F5:E6:87:50:7B:46:CE:F7 X509v3 Authority Key Identifier: keyid:CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:4a:33:b0:72:64:da:fa:5e:d7:82:6a:09:00:03:de:6f:84: 5f:34:5c:63:7f:b2:fd:06:58:a3:1e:c5:7c:61:64:27:87:68: 63:56:ea:15:09:fb:59:b2:99:92:c4:23:47:25:56:81:9c:b1: 6b:22:dc:02:df:3f:4b:df:2e:ca:af:75:fd:5d:d7:20:2b:a9: 80:68:f5:be:e3:9c:f6:a9:7d:c2:99:55:e2:51:63:ae:8a:97: dd:6b:ed:c1:30:51:d0:ad:8d:10:4b:bd:6d:c9:10:c9:43:00: 64:8c:0e:81:d8:e7:de:bc:80:77:37:5b:cb:b6:20:26:41:04: 84:73:5e:a5:92:a2:1e:5b:7d:62:41:ce:f3:4b:5a:e3:1e:f2: 85:0a:49:9e:0d:dd:43:43:fc:6d:79:fd:fe:a5:91:8c:64:5c: ce:ba:e0:a6:30:b3:f3:ea:20:a4:fb:00:c3:d2:a9:8a:54:63: 0a:61:51:3d:ba:3a:a0:7c:82:20:ca:0e:34:18:14:ce:4a:48: d5:0c:a8:86:f3:c8:c0:59:28:77:54:b4:b8:b0:e7:56:1b:28: 97:48:37:8b:36:68:f6:78:a4:01:12:f5:19:09:c4:23:bd:99: 89:c1:43:71:4d:24:84:0d:5c:ef:00:cc:2f:3a:60:48:c8:21: a7:92:b1:b5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRrPvFwsNta7CB02DbA6AMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNDFmZGI3ZTAxNmQ5NjBlZmUyOWMwYjQ4OTRiODczYWE0 ZDIxZTIwHhcNMjYwMjA5MTIwMDU1WhcNMjYwMjEwMTIwMDU1WjAzMTEwLwYDVQQD EygxZGM4YWQwODI5YjIzY2VjNDA2NTUwN2ZmNWU2ODc1MDdiNDZjZWY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjWpeDVQXxG3Qh0YTZhPQxiSc70v1 5gh44gx2s/zWabHCGV35OpjonxuXaX5EF5KJXldbbotMM07cvDoBBt8FfTrvN5J6 eUVoGQr5m7rgVo+UtLzrMAh2/i4OCv4lfH89x7sAtzefIthtqyZ2NXPdAmoBzVc9 XvMXK10idpFYPo6nhBzlSdqywzIRm8ck00QKe1alpIUuSMNOnOM6zoD4EpQGjzZw k1GOnkXkvaBd0rN5GDVN81MLXBOdN5lY2+Y0GLDQ12tn3swEm1ed6pWc0uNH4/pI 3fh4VvuxvHgm+KD4glYbArRe4kZzXXtT3abEYWaqoawRkpR6jmHEckN/sQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB3IrQgpsjzsQGVQf/Xmh1B7Rs73MB8GA1UdIwQY MBaAFMpB/bfgFtlg7+KcC0iUuHOqTSHiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWtIOXQtQVcyV0R2NHB3TFNKUzRjNnBOSWVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8wMzEwNDctOGM3NC00YWVlLWIwNjUt NDgyODYyZGU3MzBlLzEveWtIOXQtQVcyV0R2NHB3TFNKUzRjNnBOSWVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi8wMzEwNDctOGM3NC00YWVlLWIwNjUtNDgyODYyZGU3MzBl LzEveWtIOXQtQVcyV0R2NHB3TFNKUzRjNnBOSWVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl0ozsHJk 2vpe14JqCQAD3m+EXzRcY3+y/QZYox7FfGFkJ4doY1bqFQn7WbKZksQjRyVWgZyx ayLcAt8/S98uyq91/V3XICupgGj1vuOc9ql9wplV4lFjroqX3WvtwTBR0K2NEEu9 bckQyUMAZIwOgdjn3ryAdzdby7YgJkEEhHNepZKiHlt9YkHO80ta4x7yhQpJng3d Q0P8bXn9/qWRjGRczrrgpjCz8+ogpPsAw9KpilRjCmFRPbo6oHyCIMoONBgUzkpI 1QyohvPIwFkod1S0uLDnVhsol0g3izZo9nikARL1GQnEI72ZicFDcU0khA1c7wDM LzpgSMghp5KxtQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:07 2026 by rpki-client