This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/f327eb-d71a-4279-af22-b8d06f46aec3/1/yoaOeySqNaTdEKyVmfBkqpadAx0.mft File: yoaOeySqNaTdEKyVmfBkqpadAx0.mft (raw, json) Hash identifier: HC5msvEkouylLra7+VWFa4D2JB6d+8izC7b+sg8gO50= Subject key identifier: C3:97:FF:56:8A:1E:55:0A:18:3E:C4:80:38:76:E5:A1:1B:EE:1D:A9 Authority key identifier: CA:86:8E:7B:24:AA:35:A4:DD:10:AC:95:99:F0:64:AA:96:9D:03:1D Certificate issuer: /CN=ca868e7b24aa35a4dd10ac9599f064aa969d031d Certificate serial: 019C42466C82E0DA0FF667D673DAF2D23404 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yoaOeySqNaTdEKyVmfBkqpadAx0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/f327eb-d71a-4279-af22-b8d06f46aec3/1/yoaOeySqNaTdEKyVmfBkqpadAx0.mft Manifest number: 0481 Signing time: Mon 09 Feb 2026 12:00:37 +0000 Manifest this update: Mon 09 Feb 2026 12:00:37 +0000 Manifest next update: Tue 10 Feb 2026 12:00:37 +0000 Files and hashes: 1: yoaOeySqNaTdEKyVmfBkqpadAx0.crl (hash: VKCsAXE5mZBmwcznH+lrarW7rk304LbU84j+veLZFAk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/f327eb-d71a-4279-af22-b8d06f46aec3/1/yoaOeySqNaTdEKyVmfBkqpadAx0.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/f327eb-d71a-4279-af22-b8d06f46aec3/1/yoaOeySqNaTdEKyVmfBkqpadAx0.mft rsync://rpki.ripe.net/repository/DEFAULT/yoaOeySqNaTdEKyVmfBkqpadAx0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:6c:82:e0:da:0f:f6:67:d6:73:da:f2:d2:34:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca868e7b24aa35a4dd10ac9599f064aa969d031d Validity Not Before: Feb 9 12:00:37 2026 GMT Not After : Feb 10 12:00:37 2026 GMT Subject: CN=c397ff568a1e550a183ec4803876e5a11bee1da9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ea:16:b0:ea:1b:11:e2:9a:94:ef:6a:a5:44: ec:ef:80:dd:b1:c0:60:49:bc:39:09:71:eb:0b:f4: 89:91:e4:56:92:4e:f3:f3:c5:16:4e:83:58:2a:5a: c7:b8:63:2f:9e:7f:cd:6a:ff:be:41:90:fe:de:43: a3:14:1f:f1:7d:91:c3:e9:0e:d8:9a:e4:07:9b:d7: d2:f1:5a:54:33:34:73:46:24:1e:91:c4:db:f1:ff: aa:6f:b2:c8:8a:81:00:dd:77:89:4c:20:c3:65:fa: a3:61:a3:65:46:4d:7b:7b:d1:5a:6f:ff:ec:c9:db: 61:dd:a1:52:09:0a:34:6c:b1:b9:7a:39:f5:dd:27: 9a:9a:4d:5d:cb:0e:a1:b5:8b:38:10:2d:cc:e1:75: 7d:2f:03:0d:84:00:ef:bc:13:dc:64:4d:62:bd:e5: 75:95:cc:a1:b0:f9:71:8b:f3:2e:18:65:3f:60:82: cc:bc:e8:76:e0:70:0e:d8:3c:e0:05:0c:de:13:85: b6:52:ae:b8:37:c6:ec:76:36:12:33:b2:22:1e:b8: b0:20:f9:4c:b0:d0:3a:fe:52:aa:ab:65:1d:7e:f2: 3d:1a:68:b3:2f:a9:b3:a2:71:b5:d2:36:ac:c1:40: 61:8a:0c:27:37:c6:e4:81:b2:9c:4d:64:f5:89:b9: d2:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:97:FF:56:8A:1E:55:0A:18:3E:C4:80:38:76:E5:A1:1B:EE:1D:A9 X509v3 Authority Key Identifier: keyid:CA:86:8E:7B:24:AA:35:A4:DD:10:AC:95:99:F0:64:AA:96:9D:03:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yoaOeySqNaTdEKyVmfBkqpadAx0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/f327eb-d71a-4279-af22-b8d06f46aec3/1/yoaOeySqNaTdEKyVmfBkqpadAx0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/f327eb-d71a-4279-af22-b8d06f46aec3/1/yoaOeySqNaTdEKyVmfBkqpadAx0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:83:3d:42:68:c8:04:81:b2:10:84:20:1c:7f:8d:7f:7b:5b: 87:87:05:7b:c6:f6:1f:2c:61:36:37:df:95:fa:d9:4e:f4:7f: 2a:97:af:19:b6:d5:c5:a4:d0:83:73:cd:a9:09:f3:23:07:5d: b4:fa:36:cc:91:04:a0:af:f6:41:e8:7f:09:6b:76:52:43:a0: fb:67:95:8d:34:60:69:73:fa:84:c0:da:00:19:73:ad:ec:bf: 87:dc:bc:ad:82:45:c8:64:f7:e6:bc:05:44:71:06:75:d0:85: df:99:10:7b:b6:f5:4a:dc:79:98:b5:d9:94:c1:39:55:d7:f4: e8:13:2a:0e:27:90:d4:58:85:5c:e7:f1:27:9f:90:02:95:3e: 50:4c:71:d1:1e:0f:ac:58:57:ae:c4:cb:41:39:5f:06:39:dc: 56:39:ef:02:ab:bb:fb:fc:c6:f0:b6:c8:53:04:16:2a:63:35: fc:ee:d6:dc:d2:a0:99:88:5f:b7:8d:43:2f:53:71:3e:62:8a: 36:6c:c4:9a:1d:7d:36:2d:67:05:f0:38:86:8d:e7:28:4e:e1: 7b:65:07:7f:1f:ff:a1:60:97:4a:46:13:bd:e7:d8:c2:d0:4a: fa:91:93:c3:cd:a7:e9:9c:03:eb:ae:51:1b:bc:13:75:b0:95: 56:e5:b7:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRmyC4NoP9mfWc9ry0jQEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhODY4ZTdiMjRhYTM1YTRkZDEwYWM5NTk5ZjA2NGFhOTY5 ZDAzMWQwHhcNMjYwMjA5MTIwMDM3WhcNMjYwMjEwMTIwMDM3WjAzMTEwLwYDVQQD EyhjMzk3ZmY1NjhhMWU1NTBhMTgzZWM0ODAzODc2ZTVhMTFiZWUxZGE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmOoWsOobEeKalO9qpUTs74DdscBg Sbw5CXHrC/SJkeRWkk7z88UWToNYKlrHuGMvnn/Nav++QZD+3kOjFB/xfZHD6Q7Y muQHm9fS8VpUMzRzRiQekcTb8f+qb7LIioEA3XeJTCDDZfqjYaNlRk17e9Fab//s ydth3aFSCQo0bLG5ejn13Seamk1dyw6htYs4EC3M4XV9LwMNhADvvBPcZE1iveV1 lcyhsPlxi/MuGGU/YILMvOh24HAO2DzgBQzeE4W2Uq64N8bsdjYSM7IiHriwIPlM sNA6/lKqq2UdfvI9GmizL6mzonG10jaswUBhigwnN8bkgbKcTWT1ibnS0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMOX/1aKHlUKGD7EgDh25aEb7h2pMB8GA1UdIwQY MBaAFMqGjnskqjWk3RCslZnwZKqWnQMdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveW9hT2V5U3FOYVRkRUt5Vm1mQmtxcGFkQXgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9mMzI3ZWItZDcxYS00Mjc5LWFmMjIt YjhkMDZmNDZhZWMzLzEveW9hT2V5U3FOYVRkRUt5Vm1mQmtxcGFkQXgwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi9mMzI3ZWItZDcxYS00Mjc5LWFmMjItYjhkMDZmNDZhZWMz LzEveW9hT2V5U3FOYVRkRUt5Vm1mQmtxcGFkQXgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo4M9QmjI BIGyEIQgHH+Nf3tbh4cFe8b2HyxhNjfflfrZTvR/KpevGbbVxaTQg3PNqQnzIwdd tPo2zJEEoK/2Qeh/CWt2UkOg+2eVjTRgaXP6hMDaABlzrey/h9y8rYJFyGT35rwF RHEGddCF35kQe7b1Stx5mLXZlME5Vdf06BMqDieQ1FiFXOfxJ5+QApU+UExx0R4P rFhXrsTLQTlfBjncVjnvAqu7+/zG8LbIUwQWKmM1/O7W3NKgmYhft41DL1NxPmKK NmzEmh19Ni1nBfA4ho3nKE7he2UHfx//oWCXSkYTvefYwtBK+pGTw82n6ZwD665R G7wTdbCVVuW3qA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:48:20 2026 by rpki-client