This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft File: ygHfSTk2pi4uyamAWo-ja4M1vVA.mft (raw, json) Hash identifier: P6nw5rabQ4thPgtzutlDoDp2awsRGOwuo8rMZrnLvuE= Subject key identifier: 03:E6:D1:AC:24:47:37:F7:1C:5C:FC:C4:CD:B2:7E:87:42:5F:B7:2B Authority key identifier: CA:01:DF:49:39:36:A6:2E:2E:C9:A9:80:5A:8F:A3:6B:83:35:BD:50 Certificate issuer: /CN=ca01df493936a62e2ec9a9805a8fa36b8335bd50 Certificate serial: 019C41D873AC90A34B3760FFFE7305848A81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygHfSTk2pi4uyamAWo-ja4M1vVA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft Manifest number: 099D Signing time: Mon 09 Feb 2026 10:00:30 +0000 Manifest this update: Mon 09 Feb 2026 10:00:30 +0000 Manifest next update: Tue 10 Feb 2026 10:00:30 +0000 Files and hashes: 1: 3GkC4alpDAvrmyyfcuXDAMj59Ng.roa (hash: m2jng52J8d+SYelIcZHf8/G6o3/K/EOSsyHZ2TT8VOM=) 2: ygHfSTk2pi4uyamAWo-ja4M1vVA.crl (hash: 0wAHq8EAnxNYJbYVQwuYxxjhUPdXW9GvX/sdywP9FMQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft rsync://rpki.ripe.net/repository/DEFAULT/ygHfSTk2pi4uyamAWo-ja4M1vVA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:73:ac:90:a3:4b:37:60:ff:fe:73:05:84:8a:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca01df493936a62e2ec9a9805a8fa36b8335bd50 Validity Not Before: Feb 9 10:00:30 2026 GMT Not After : Feb 10 10:00:30 2026 GMT Subject: CN=03e6d1ac244737f71c5cfcc4cdb27e87425fb72b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ab:11:68:16:8d:0b:fe:91:f1:ea:64:de:d9: 30:fc:d2:cb:04:c8:3f:9f:83:6c:5a:a0:68:30:60: 91:74:65:ca:f9:68:08:62:12:a1:1e:43:56:2a:c5: 63:23:0f:73:a1:44:ac:5b:e4:fa:a2:f4:c3:b0:e0: 5a:f7:6c:3e:f0:a5:60:a2:a0:35:1c:a4:c2:34:2a: b7:e0:fa:67:5a:42:20:7d:57:19:1e:bc:3e:45:37: 2b:f8:79:96:f0:69:05:8a:9d:9b:da:dd:26:13:1a: 51:19:3a:44:0a:96:24:1f:a9:77:6e:67:87:a3:c6: 61:79:fc:3b:5b:db:79:99:4e:06:87:a0:de:df:32: 0e:74:02:ad:85:0a:d8:00:45:be:b0:89:89:28:79: 12:a3:75:e1:92:61:73:53:42:c7:83:86:8f:f4:c3: 52:cd:be:98:4b:3c:5e:ff:96:1e:2b:13:08:98:ee: d2:f8:73:80:d0:30:ab:e0:d2:73:05:f0:5a:79:82: 52:e8:10:5a:13:8a:fe:2e:c9:0b:0d:6e:d9:34:0f: e0:6e:7e:8f:92:fc:0a:e2:7c:4a:13:e1:15:78:58: 82:59:33:bd:e6:36:f3:bd:1b:03:17:38:86:d7:57: 40:2b:2f:11:e9:47:96:a5:9e:2c:5c:f1:84:29:b0: 4c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:E6:D1:AC:24:47:37:F7:1C:5C:FC:C4:CD:B2:7E:87:42:5F:B7:2B X509v3 Authority Key Identifier: keyid:CA:01:DF:49:39:36:A6:2E:2E:C9:A9:80:5A:8F:A3:6B:83:35:BD:50 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygHfSTk2pi4uyamAWo-ja4M1vVA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/649e81-cca2-404c-98a5-962758a3d5ea/1/ygHfSTk2pi4uyamAWo-ja4M1vVA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:d5:7d:91:13:19:09:6e:3f:79:d7:7e:d9:23:9d:58:5d:6c: 1b:c4:3d:f5:97:10:a1:8d:39:0b:fb:e9:ae:b7:e8:9a:08:16: e5:8b:82:5c:f5:ba:97:cb:13:a8:7b:8c:d0:1a:7a:9b:48:3e: b2:ee:d3:03:59:a1:b7:93:58:0f:25:e9:88:6d:da:ed:9c:a4: b6:38:82:7a:cf:fc:8a:70:1c:43:96:74:5f:38:61:fa:03:4f: 6b:73:d0:6a:d5:b2:60:7a:13:50:30:5c:1f:46:4c:c2:6a:6a: 52:a4:fc:61:27:3b:a6:78:26:be:ea:c8:2f:4f:79:10:d4:bc: c8:61:76:44:46:42:a4:d8:9e:d4:18:d2:dc:d5:10:b0:32:af: a4:f6:db:63:4e:5d:ea:1a:4a:5e:e7:21:fa:8b:b3:77:60:dd: 87:06:2e:23:74:a2:7d:e4:71:40:f3:ad:d2:0d:4f:de:50:c7: 76:d9:6a:b9:5a:9c:de:99:c9:58:bb:85:00:79:f2:3a:6d:25: 91:04:6e:c0:9e:cf:32:cf:e1:cc:d4:28:db:63:ce:28:02:12: 9d:1c:b2:92:6b:63:6e:1a:26:f0:6b:f7:c1:af:e9:a9:ee:c0: b7:f8:a7:0f:2b:28:0c:1c:d0:82:c9:bb:7b:61:29:41:7d:d9: 28:11:ce:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2HOskKNLN2D//nMFhIqBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhMDFkZjQ5MzkzNmE2MmUyZWM5YTk4MDVhOGZhMzZiODMz NWJkNTAwHhcNMjYwMjA5MTAwMDMwWhcNMjYwMjEwMTAwMDMwWjAzMTEwLwYDVQQD EygwM2U2ZDFhYzI0NDczN2Y3MWM1Y2ZjYzRjZGIyN2U4NzQyNWZiNzJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnKsRaBaNC/6R8epk3tkw/NLLBMg/ n4NsWqBoMGCRdGXK+WgIYhKhHkNWKsVjIw9zoUSsW+T6ovTDsOBa92w+8KVgoqA1 HKTCNCq34PpnWkIgfVcZHrw+RTcr+HmW8GkFip2b2t0mExpRGTpECpYkH6l3bmeH o8Zhefw7W9t5mU4Gh6De3zIOdAKthQrYAEW+sImJKHkSo3XhkmFzU0LHg4aP9MNS zb6YSzxe/5YeKxMImO7S+HOA0DCr4NJzBfBaeYJS6BBaE4r+LskLDW7ZNA/gbn6P kvwK4nxKE+EVeFiCWTO95jbzvRsDFziG11dAKy8R6UeWpZ4sXPGEKbBMcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAPm0awkRzf3HFz8xM2yfodCX7crMB8GA1UdIwQY MBaAFMoB30k5NqYuLsmpgFqPo2uDNb1QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWdIZlNUazJwaTR1eWFtQVdvLWphNE0xdlZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC82NDllODEtY2NhMi00MDRjLTk4YTUt OTYyNzU4YTNkNWVhLzEveWdIZlNUazJwaTR1eWFtQVdvLWphNE0xdlZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC82NDllODEtY2NhMi00MDRjLTk4YTUtOTYyNzU4YTNkNWVh LzEveWdIZlNUazJwaTR1eWFtQVdvLWphNE0xdlZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArtV9kRMZ CW4/edd+2SOdWF1sG8Q99ZcQoY05C/vprrfomggW5YuCXPW6l8sTqHuM0Bp6m0g+ su7TA1mht5NYDyXpiG3a7ZyktjiCes/8inAcQ5Z0Xzhh+gNPa3PQatWyYHoTUDBc H0ZMwmpqUqT8YSc7pngmvurIL095ENS8yGF2REZCpNie1BjS3NUQsDKvpPbbY05d 6hpKXuch+ouzd2DdhwYuI3SifeRxQPOt0g1P3lDHdtlquVqc3pnJWLuFAHnyOm0l kQRuwJ7PMs/hzNQo22POKAISnRyykmtjbhom8Gv3wa/pqe7At/inDysoDBzQgsm7 e2EpQX3ZKBHOWQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:11 2026 by rpki-client