This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.mft File: riYajfUykscw4q4d_PxP4_92sdA.mft (raw, json) Hash identifier: ZrwVQJcaYhO1vv3+zYsvCDnuWMAzInaiGvZVCxcVyc8= Subject key identifier: C0:05:E3:AA:0F:5C:C6:B2:1D:FE:CF:15:24:DE:C6:CD:33:A5:EC:BE Authority key identifier: AE:26:1A:8D:F5:32:92:C7:30:E2:AE:1D:FC:FC:4F:E3:FF:76:B1:D0 Certificate issuer: /CN=ae261a8df53292c730e2ae1dfcfc4fe3ff76b1d0 Certificate serial: 019C43C72607DDC197E254E44CFFC72F5EA4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/riYajfUykscw4q4d_PxP4_92sdA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.mft Manifest number: 1817 Signing time: Mon 09 Feb 2026 19:00:50 +0000 Manifest this update: Mon 09 Feb 2026 19:00:50 +0000 Manifest next update: Tue 10 Feb 2026 19:00:50 +0000 Files and hashes: 1: riYajfUykscw4q4d_PxP4_92sdA.crl (hash: plNh/aDTTHEpqBEBZT21IVVte8ekplM90xDWZqun6WM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.mft rsync://rpki.ripe.net/repository/DEFAULT/riYajfUykscw4q4d_PxP4_92sdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:26:07:dd:c1:97:e2:54:e4:4c:ff:c7:2f:5e:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae261a8df53292c730e2ae1dfcfc4fe3ff76b1d0 Validity Not Before: Feb 9 19:00:50 2026 GMT Not After : Feb 10 19:00:50 2026 GMT Subject: CN=c005e3aa0f5cc6b21dfecf1524dec6cd33a5ecbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:53:5f:f7:c9:77:68:9a:1e:de:a4:06:2f:8b: eb:b8:8f:e5:e2:f2:88:5f:8d:bf:b2:64:23:52:5d: 96:54:20:a2:39:93:80:d2:c3:f9:d2:dd:95:d6:db: 3d:c6:e1:69:33:fb:bf:28:62:da:a7:4c:62:39:44: 56:38:49:1e:11:7a:7f:eb:7a:41:50:8f:c1:91:09: a5:b0:ac:b3:16:e4:9d:ac:e0:7d:79:08:b0:4c:37: 0a:19:77:2b:1f:81:66:cf:21:12:84:d0:52:05:f3: 64:f9:2e:3b:5b:59:70:1b:c7:a2:8a:78:4c:26:c0: 60:dc:2a:ec:51:cd:c0:7f:36:e5:ff:ce:64:25:b5: e4:ce:8d:e8:b7:a9:b7:3e:17:fb:a1:ef:41:fc:2f: 65:c2:0a:a9:dd:fb:24:c6:96:9d:22:b1:1c:e0:61: c7:b9:72:cd:0f:f9:00:3a:67:27:5b:97:b7:79:54: 19:43:f2:0b:c9:4b:ce:68:83:d9:74:81:4b:0c:73: c0:0a:60:5e:4b:54:d6:8f:64:5b:e9:68:25:14:e5: b3:03:3e:46:cd:6d:9c:ee:d0:79:d3:7a:c1:d6:59: d7:76:73:f0:6f:81:cb:e1:e8:32:82:e2:d5:4e:c3: 1e:cf:41:f3:d9:b8:6c:e0:35:ba:94:96:9c:a7:ae: 3a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:05:E3:AA:0F:5C:C6:B2:1D:FE:CF:15:24:DE:C6:CD:33:A5:EC:BE X509v3 Authority Key Identifier: keyid:AE:26:1A:8D:F5:32:92:C7:30:E2:AE:1D:FC:FC:4F:E3:FF:76:B1:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/riYajfUykscw4q4d_PxP4_92sdA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:42:71:61:d7:cb:25:5c:cc:b7:f7:66:d5:24:65:84:e5:f6: 05:ad:dc:38:05:30:a2:a1:2e:5b:85:69:4d:e6:cd:5d:dd:d6: 95:07:13:8e:f4:6a:26:29:26:e2:41:de:25:f1:aa:d4:17:c2: 06:7b:9b:64:a3:10:e3:5b:1e:97:fd:e1:f6:bc:21:44:85:7f: 0f:65:f3:f5:44:70:0e:95:49:2e:50:eb:f6:a6:13:b8:70:26: e2:1e:51:96:3e:d1:b1:5f:97:99:59:9c:49:37:84:bd:d3:b6: 94:e5:f0:0d:e4:9c:ee:cc:4d:3d:05:01:db:5f:a0:2c:28:e9: 66:a1:67:79:72:4d:2e:b0:af:2f:76:1e:a0:74:fd:72:1c:f4: 35:a3:00:1c:fd:8f:f8:b8:75:89:c8:e9:50:86:40:41:41:b5: a1:66:aa:09:59:4c:83:ce:bd:78:5c:81:ae:99:52:42:61:39: df:a5:80:a7:c7:ca:44:40:b9:51:2f:37:80:39:a2:9c:21:22: 09:b4:44:25:c1:70:c4:f3:f7:f8:a5:44:a1:e8:9c:47:78:d9: 85:25:e5:87:74:c2:ff:cc:ba:71:51:96:bc:d4:12:86:fd:20: c8:74:54:2e:37:45:1d:fa:0d:87:f0:b1:c5:5e:98:52:c0:46: dd:83:c7:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxyYH3cGX4lTkTP/HL16kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlMjYxYThkZjUzMjkyYzczMGUyYWUxZGZjZmM0ZmUzZmY3 NmIxZDAwHhcNMjYwMjA5MTkwMDUwWhcNMjYwMjEwMTkwMDUwWjAzMTEwLwYDVQQD EyhjMDA1ZTNhYTBmNWNjNmIyMWRmZWNmMTUyNGRlYzZjZDMzYTVlY2JlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5FNf98l3aJoe3qQGL4vruI/l4vKI X42/smQjUl2WVCCiOZOA0sP50t2V1ts9xuFpM/u/KGLap0xiOURWOEkeEXp/63pB UI/BkQmlsKyzFuSdrOB9eQiwTDcKGXcrH4FmzyEShNBSBfNk+S47W1lwG8eiinhM JsBg3CrsUc3Afzbl/85kJbXkzo3ot6m3Phf7oe9B/C9lwgqp3fskxpadIrEc4GHH uXLND/kAOmcnW5e3eVQZQ/ILyUvOaIPZdIFLDHPACmBeS1TWj2Rb6WglFOWzAz5G zW2c7tB503rB1lnXdnPwb4HL4egyguLVTsMez0Hz2bhs4DW6lJacp646OwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMAF46oPXMayHf7PFSTexs0zpey+MB8GA1UdIwQY MBaAFK4mGo31MpLHMOKuHfz8T+P/drHQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmlZYWpmVXlrc2N3NHE0ZF9QeFA0Xzkyc2RBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy8xYTg0OWUtODYxYy00YzRkLWJjZjQt NTY5NWQ4OWQ3YjM2LzEvcmlZYWpmVXlrc2N3NHE0ZF9QeFA0Xzkyc2RBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy8xYTg0OWUtODYxYy00YzRkLWJjZjQtNTY5NWQ4OWQ3YjM2 LzEvcmlZYWpmVXlrc2N3NHE0ZF9QeFA0Xzkyc2RBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmEJxYdfL JVzMt/dm1SRlhOX2Ba3cOAUwoqEuW4VpTebNXd3WlQcTjvRqJikm4kHeJfGq1BfC BnubZKMQ41sel/3h9rwhRIV/D2Xz9URwDpVJLlDr9qYTuHAm4h5Rlj7RsV+XmVmc STeEvdO2lOXwDeSc7sxNPQUB21+gLCjpZqFneXJNLrCvL3YeoHT9chz0NaMAHP2P +Lh1icjpUIZAQUG1oWaqCVlMg869eFyBrplSQmE536WAp8fKREC5US83gDminCEi CbREJcFwxPP3+KVEoeicR3jZhSXlh3TC/8y6cVGWvNQShv0gyHRULjdFHfoNh/Cx xV6YUsBG3YPHbg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:08 2026 by rpki-client