This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/b89e86-bfb4-4af6-8448-1f0dd9fdf5f3/1/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.mft File: y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.mft (raw, json) Hash identifier: U4W0Id1areMtCIs2beccnmp7WjCV2yeOY4daDHWYRHs= Subject key identifier: DC:E8:03:08:71:FF:38:40:5A:09:CF:C0:80:A3:CF:3E:9A:18:51:20 Authority key identifier: CB:54:27:FD:5D:20:58:5E:97:C2:F2:77:1D:48:09:BF:63:41:DA:A1 Certificate issuer: /CN=cb5427fd5d20585e97c2f2771d4809bf6341daa1 Certificate serial: 019C446C50158613A841122B4FB306392014 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/b89e86-bfb4-4af6-8448-1f0dd9fdf5f3/1/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.mft Manifest number: 0919 Signing time: Mon 09 Feb 2026 22:01:14 +0000 Manifest this update: Mon 09 Feb 2026 22:01:14 +0000 Manifest next update: Tue 10 Feb 2026 22:01:14 +0000 Files and hashes: 1: Yk7Zbmt1P-AiIfkBAo3jSWo7vlg.roa (hash: GlJGpBWeWcsOeO74Qp/VHrmeF+iq8Z/F3boS8FvHYJQ=) 2: y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.crl (hash: knSRfTthn99qArq1UYeuD4ridP1hmbHVuIdErFCbnrY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/b89e86-bfb4-4af6-8448-1f0dd9fdf5f3/1/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/b89e86-bfb4-4af6-8448-1f0dd9fdf5f3/1/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.mft rsync://rpki.ripe.net/repository/DEFAULT/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6c:50:15:86:13:a8:41:12:2b:4f:b3:06:39:20:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cb5427fd5d20585e97c2f2771d4809bf6341daa1 Validity Not Before: Feb 9 22:01:14 2026 GMT Not After : Feb 10 22:01:14 2026 GMT Subject: CN=dce8030871ff38405a09cfc080a3cf3e9a185120 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1c:ec:ea:74:fe:d2:60:e1:ae:cf:c5:ed:4b: 84:f7:bc:a1:ab:98:aa:e9:62:b8:a1:ab:5d:27:84: 98:a0:4e:78:45:ae:59:4e:a2:df:80:03:6b:b0:eb: e4:25:fa:64:fd:8b:8e:37:a4:89:a8:8d:18:e7:7e: 51:71:d2:bd:9e:a2:4b:27:b2:8d:97:69:f1:cd:10: be:3d:cd:d5:f5:17:ca:19:9e:e9:78:b9:f9:d2:31: b0:b1:df:25:ea:e1:59:c6:71:67:dd:53:e0:77:8f: fc:6f:fd:c6:e8:09:42:97:d8:60:c8:19:4c:4a:2b: fc:df:2e:d4:c1:36:e6:7f:8b:62:7c:3f:e7:d3:e2: 94:c3:bc:3b:25:cf:6e:be:26:8e:18:11:81:99:21: 2a:8c:5c:bf:2b:af:26:52:1e:e1:eb:04:a0:36:5b: 2c:a8:6c:24:2f:fd:a5:0a:b3:a5:d3:04:34:ad:57: 49:c4:eb:9a:52:5d:80:9d:84:6f:0e:d8:3e:7d:5c: 0c:9a:44:39:4a:51:5f:b2:ac:f5:48:1d:e7:6c:91: ba:79:08:aa:6e:f3:3b:ea:b4:8b:43:20:7d:44:66: 6e:30:7e:5c:8e:d6:5c:eb:01:47:b4:e7:06:bf:83: 45:bc:80:0d:99:da:dc:99:99:e4:c6:00:50:36:74: 8e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:E8:03:08:71:FF:38:40:5A:09:CF:C0:80:A3:CF:3E:9A:18:51:20 X509v3 Authority Key Identifier: keyid:CB:54:27:FD:5D:20:58:5E:97:C2:F2:77:1D:48:09:BF:63:41:DA:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b89e86-bfb4-4af6-8448-1f0dd9fdf5f3/1/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b89e86-bfb4-4af6-8448-1f0dd9fdf5f3/1/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:d9:76:cb:4d:5d:ab:60:d0:86:6c:e5:f7:28:4a:ca:49:d1: 4a:db:e8:07:4f:28:51:fa:2a:ca:c6:d3:48:95:31:a5:66:0d: db:89:20:39:1f:6a:c6:f3:8c:16:b0:f7:a9:e0:07:c9:d7:ce: c8:44:a1:b1:49:bf:a5:d4:7b:63:18:0f:d1:34:63:fe:39:7b: 86:36:12:91:43:8b:e0:6e:43:e4:54:9b:b0:f4:7a:b1:e3:43: 07:4f:52:44:f8:92:c8:b5:b9:48:59:65:c9:b6:cc:45:e2:ec: 96:93:99:cf:17:75:42:01:a3:c4:9c:43:49:6e:79:e9:f9:93: 40:f3:de:d9:98:30:48:ed:1d:8e:bf:83:ba:d2:e9:0a:8f:80: 79:41:ec:3c:93:f4:b5:f4:05:40:b5:b6:9c:21:32:29:39:19: e7:5d:b2:ce:1a:a3:73:df:20:25:ea:15:1a:b7:2a:4c:22:0b: 06:84:9b:bb:13:19:02:bf:97:0a:84:86:86:70:f8:d9:68:c9: 32:3d:89:d3:f5:bf:8b:38:0c:b6:1f:d0:95:cd:31:3f:33:43: ab:52:2e:f5:62:d3:66:12:24:b1:b3:a5:45:36:7c:41:b7:e1: 78:23:ce:38:de:03:2c:90:72:ec:05:d9:aa:22:2d:a8:df:80: e0:c0:f3:4a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEbFAVhhOoQRIrT7MGOSAUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiNTQyN2ZkNWQyMDU4NWU5N2MyZjI3NzFkNDgwOWJmNjM0 MWRhYTEwHhcNMjYwMjA5MjIwMTE0WhcNMjYwMjEwMjIwMTE0WjAzMTEwLwYDVQQD EyhkY2U4MDMwODcxZmYzODQwNWEwOWNmYzA4MGEzY2YzZTlhMTg1MTIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsRzs6nT+0mDhrs/F7UuE97yhq5iq 6WK4oatdJ4SYoE54Ra5ZTqLfgANrsOvkJfpk/YuON6SJqI0Y535RcdK9nqJLJ7KN l2nxzRC+Pc3V9RfKGZ7peLn50jGwsd8l6uFZxnFn3VPgd4/8b/3G6AlCl9hgyBlM Siv83y7UwTbmf4tifD/n0+KUw7w7Jc9uviaOGBGBmSEqjFy/K68mUh7h6wSgNlss qGwkL/2lCrOl0wQ0rVdJxOuaUl2AnYRvDtg+fVwMmkQ5SlFfsqz1SB3nbJG6eQiq bvM76rSLQyB9RGZuMH5cjtZc6wFHtOcGv4NFvIANmdrcmZnkxgBQNnSOQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNzoAwhx/zhAWgnPwICjzz6aGFEgMB8GA1UdIwQY MBaAFMtUJ/1dIFhel8Lydx1ICb9jQdqhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTFRbl9WMGdXRjZYd3ZKM0hVZ0p2Mk5CMnFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS9iODllODYtYmZiNC00YWY2LTg0NDgt MWYwZGQ5ZmRmNWYzLzEveTFRbl9WMGdXRjZYd3ZKM0hVZ0p2Mk5CMnFFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS9iODllODYtYmZiNC00YWY2LTg0NDgtMWYwZGQ5ZmRmNWYz LzEveTFRbl9WMGdXRjZYd3ZKM0hVZ0p2Mk5CMnFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj9l2y01d q2DQhmzl9yhKyknRStvoB08oUfoqysbTSJUxpWYN24kgOR9qxvOMFrD3qeAHydfO yEShsUm/pdR7YxgP0TRj/jl7hjYSkUOL4G5D5FSbsPR6seNDB09SRPiSyLW5SFll ybbMReLslpOZzxd1QgGjxJxDSW556fmTQPPe2ZgwSO0djr+DutLpCo+AeUHsPJP0 tfQFQLW2nCEyKTkZ512yzhqjc98gJeoVGrcqTCILBoSbuxMZAr+XCoSGhnD42WjJ Mj2J0/W/izgMth/Qlc0xPzNDq1Iu9WLTZhIksbOlRTZ8QbfheCPOON4DLJBy7AXZ qiItqN+A4MDzSg== -----END CERTIFICATE-----Generated at Tue Feb 10 03:13:43 2026 by rpki-client