This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft File: ylmb3Bz8eujML7oV_NgMoRc3hGc.mft (raw, json) Hash identifier: Bbc5kFXOBbLN6l90UH9ZNhj1YxIkgPA5mleOnLbd0CY= Subject key identifier: 55:48:5C:84:88:01:77:56:5E:F8:FD:F9:CA:B3:15:F8:FD:3B:F4:24 Authority key identifier: CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67 Certificate issuer: /CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467 Certificate serial: 019C1C14B8327D991397FD9DA72E635092C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft Manifest number: 0414 Signing time: Mon 02 Feb 2026 02:00:45 +0000 Manifest this update: Mon 02 Feb 2026 02:00:45 +0000 Manifest next update: Tue 03 Feb 2026 02:00:45 +0000 Files and hashes: 1: hLDJZ-V17lQ1uYy4Yb_7EyNt5EY.roa (hash: 0stvy4uT+ZzDa9Ceq2lwui9WwwpxCgyyC5wsX5cUjjE=) 2: ylmb3Bz8eujML7oV_NgMoRc3hGc.crl (hash: O7cPJTWulrFg0talqDWFW5Qukzlk2H41nCjVaieoRIQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 02:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1c:14:b8:32:7d:99:13:97:fd:9d:a7:2e:63:50:92:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467 Validity Not Before: Feb 2 02:00:45 2026 GMT Not After : Feb 3 02:00:45 2026 GMT Subject: CN=55485c84880177565ef8fdf9cab315f8fd3bf424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:86:02:e5:29:88:41:59:a0:c3:15:e0:4b:1a: 65:f2:a7:a7:2f:85:9c:77:e2:84:6b:e9:b6:8c:a3: d6:3d:d1:dc:0b:aa:be:0a:09:7c:ed:17:81:55:c2: 5a:de:5b:a5:15:72:41:9d:c5:d4:29:47:92:9c:91: 59:a3:16:57:2d:c8:df:11:5a:0e:75:01:d8:40:9f: ed:61:f0:5b:f0:e9:10:a8:86:39:be:ad:f9:3e:19: 83:d0:d6:af:c7:d0:4a:87:9d:07:64:98:42:fd:4a: 6f:a7:48:89:f4:c2:98:c0:cc:9c:58:d7:b5:97:3d: cc:d7:0e:a8:b1:dd:87:14:7d:e7:35:e1:b6:ee:79: d9:3e:9f:eb:51:4e:d6:de:bf:4f:c4:80:e8:f2:6f: b2:cf:b5:82:a1:37:81:1b:e3:8f:c5:b4:2f:89:f3: 5e:39:59:ef:49:b3:f3:54:13:d4:9b:6b:0b:16:73: bc:ba:a8:2c:79:7d:c0:07:b4:b2:80:56:9a:20:ae: 84:7e:6d:59:5a:9c:9b:db:bb:b5:68:cb:26:32:28: 7e:95:d3:53:e2:90:31:ab:6e:e5:e8:b7:34:0b:cd: ac:be:d9:1d:05:7b:1f:a6:bc:9d:ab:00:be:c5:33: 49:26:72:31:ef:d6:f0:2f:7b:ec:fc:24:1f:93:10: d1:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:48:5C:84:88:01:77:56:5E:F8:FD:F9:CA:B3:15:F8:FD:3B:F4:24 X509v3 Authority Key Identifier: keyid:CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:db:4c:c9:4a:93:2c:b1:aa:01:c5:cb:d4:35:32:ea:f4:a5: 1f:5a:14:8d:00:46:4a:98:36:1d:b6:43:bd:3d:0b:bc:3c:81: ed:c6:46:a8:4c:86:ca:cd:85:c3:57:80:f7:db:a6:36:de:74: a5:89:92:49:00:3a:90:6c:25:58:09:25:d9:ca:93:ef:43:76: 61:0b:f6:c7:4f:84:82:97:a6:ff:a3:6e:c4:3f:bb:5d:53:8d: 37:07:20:58:8f:cd:f4:cd:50:fa:63:ab:00:d4:54:97:51:5b: 31:87:ee:72:9a:06:08:a9:2f:fa:3e:28:a0:16:ee:96:85:4e: 25:7d:9f:d7:e3:3a:93:e6:d5:4d:e6:61:92:16:05:19:0b:9b: 1b:64:52:d9:a4:18:0f:06:cd:a2:64:ec:1a:9e:40:fd:d7:7d: 43:7c:ec:b3:80:55:26:38:43:2c:5f:2e:fc:85:56:ae:a9:e2: 95:8e:1f:70:5c:88:c7:c2:14:f4:3f:f4:4d:50:72:db:25:af: 7b:85:3c:65:d8:e8:04:61:81:10:81:08:a6:ca:a3:5f:be:89: 3b:c6:38:d4:97:8e:10:ee:60:35:52:b7:ed:a6:61:60:06:47: 6d:66:4d:f2:1d:4e:da:7a:b5:78:5a:3a:3c:db:d8:aa:2d:97: 58:4a:c3:5d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwcFLgyfZkTl/2dpy5jUJLFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNTk5YmRjMWNmYzdhZThjYzJmYmExNWZjZDgwY2ExMTcz Nzg0NjcwHhcNMjYwMjAyMDIwMDQ1WhcNMjYwMjAzMDIwMDQ1WjAzMTEwLwYDVQQD Eyg1NTQ4NWM4NDg4MDE3NzU2NWVmOGZkZjljYWIzMTVmOGZkM2JmNDI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwoYC5SmIQVmgwxXgSxpl8qenL4Wc d+KEa+m2jKPWPdHcC6q+Cgl87ReBVcJa3lulFXJBncXUKUeSnJFZoxZXLcjfEVoO dQHYQJ/tYfBb8OkQqIY5vq35PhmD0Navx9BKh50HZJhC/Upvp0iJ9MKYwMycWNe1 lz3M1w6osd2HFH3nNeG27nnZPp/rUU7W3r9PxIDo8m+yz7WCoTeBG+OPxbQvifNe OVnvSbPzVBPUm2sLFnO8uqgseX3AB7SygFaaIK6Efm1ZWpyb27u1aMsmMih+ldNT 4pAxq27l6Lc0C82svtkdBXsfprydqwC+xTNJJnIx79bwL3vs/CQfkxDRHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFVIXISIAXdWXvj9+cqzFfj9O/QkMB8GA1UdIwQY MBaAFMpZm9wc/HrozC+6FfzYDKEXN4RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWxtYjNCejhldWpNTDdvVl9OZ01vUmMzaEdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8xY2VjYjgtOTdkOS00NzNmLWIwMDQt Y2M5MTI3NDZlNDdlLzEveWxtYjNCejhldWpNTDdvVl9OZ01vUmMzaEdjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi8xY2VjYjgtOTdkOS00NzNmLWIwMDQtY2M5MTI3NDZlNDdl LzEveWxtYjNCejhldWpNTDdvVl9OZ01vUmMzaEdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASNtMyUqT LLGqAcXL1DUy6vSlH1oUjQBGSpg2HbZDvT0LvDyB7cZGqEyGys2Fw1eA99umNt50 pYmSSQA6kGwlWAkl2cqT70N2YQv2x0+Egpem/6NuxD+7XVONNwcgWI/N9M1Q+mOr ANRUl1FbMYfucpoGCKkv+j4ooBbuloVOJX2f1+M6k+bVTeZhkhYFGQubG2RS2aQY DwbNomTsGp5A/dd9Q3zss4BVJjhDLF8u/IVWrqnilY4fcFyIx8IU9D/0TVBy2yWv e4U8ZdjoBGGBEIEIpsqjX76JO8Y41JeOEO5gNVK37aZhYAZHbWZN8h1O2nq1eFo6 PNvYqi2XWErDXQ== -----END CERTIFICATE-----Generated at Mon Feb 2 09:42:08 2026 by rpki-client