This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/96a928-819c-476c-bae1-50c9f5b3c3e4/1/UoUm3npC8eCAkWhA7r85A4uJPRY.mft File: UoUm3npC8eCAkWhA7r85A4uJPRY.mft (raw, json) Hash identifier: yTCKWTgB0Bl8oK7NTBpCCaIng1qSQ/+FXtT8Kj5NGQw= Subject key identifier: E7:5C:80:4F:2D:57:B0:35:8F:B1:F6:40:09:8B:3F:C6:10:1F:8C:A2 Authority key identifier: 52:85:26:DE:7A:42:F1:E0:80:91:68:40:EE:BF:39:03:8B:89:3D:16 Certificate issuer: /CN=528526de7a42f1e080916840eebf39038b893d16 Certificate serial: 019C4133E4C2C642DE963E1EE4DD1C512FF8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UoUm3npC8eCAkWhA7r85A4uJPRY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/96a928-819c-476c-bae1-50c9f5b3c3e4/1/UoUm3npC8eCAkWhA7r85A4uJPRY.mft Manifest number: 0B94 Signing time: Mon 09 Feb 2026 07:00:45 +0000 Manifest this update: Mon 09 Feb 2026 07:00:45 +0000 Manifest next update: Tue 10 Feb 2026 07:00:45 +0000 Files and hashes: 1: UoUm3npC8eCAkWhA7r85A4uJPRY.crl (hash: 8F1KZi2BXzR7zyNqMzNjAKfebLNqEOF8+iw2ho9/zNQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/96a928-819c-476c-bae1-50c9f5b3c3e4/1/UoUm3npC8eCAkWhA7r85A4uJPRY.crl rsync://rpki.ripe.net/repository/DEFAULT/07/96a928-819c-476c-bae1-50c9f5b3c3e4/1/UoUm3npC8eCAkWhA7r85A4uJPRY.mft rsync://rpki.ripe.net/repository/DEFAULT/UoUm3npC8eCAkWhA7r85A4uJPRY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:e4:c2:c6:42:de:96:3e:1e:e4:dd:1c:51:2f:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528526de7a42f1e080916840eebf39038b893d16 Validity Not Before: Feb 9 07:00:45 2026 GMT Not After : Feb 10 07:00:45 2026 GMT Subject: CN=e75c804f2d57b0358fb1f640098b3fc6101f8ca2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:73:1f:48:8a:8b:25:3c:da:8f:21:e4:d2:a8: 42:a4:68:cc:f0:1e:47:19:7f:f7:4f:2f:78:31:04: fb:50:91:3e:f9:8e:f9:06:44:60:17:7e:78:91:00: de:ef:4d:06:03:18:f2:48:03:a8:6b:8b:39:c6:d2: 53:97:5d:7e:99:5f:47:d0:f2:0e:f4:02:16:24:ff: a3:59:de:fe:a4:82:f3:0c:0b:2d:14:68:c7:5a:73: 73:8a:2e:50:31:cf:ac:55:59:26:f9:00:bf:c8:ec: da:da:e2:b2:2c:1e:9d:f3:14:30:ff:ec:d0:e3:92: e2:89:27:f5:9e:67:90:bf:8c:81:22:ec:1e:7b:2a: 6b:7a:9b:e0:90:17:bf:59:32:00:ff:87:7c:1b:5e: 20:83:13:cf:ea:2c:48:95:46:e6:e5:00:c0:d1:11: e5:74:8c:e2:56:bc:33:66:4c:65:6a:70:49:7a:34: cc:ce:8a:92:0e:cb:00:96:e9:e0:d1:06:7f:73:fa: 68:06:02:5e:51:b7:f0:54:3c:9f:35:b1:43:23:1a: cc:46:29:a9:6c:59:46:11:b9:6f:d7:08:34:6d:bd: 08:4a:e5:82:2a:f7:47:96:91:e2:45:d7:6c:75:d8: ef:17:cc:e5:6c:d7:3f:78:4e:fd:3a:20:0a:43:d6: 53:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:5C:80:4F:2D:57:B0:35:8F:B1:F6:40:09:8B:3F:C6:10:1F:8C:A2 X509v3 Authority Key Identifier: keyid:52:85:26:DE:7A:42:F1:E0:80:91:68:40:EE:BF:39:03:8B:89:3D:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UoUm3npC8eCAkWhA7r85A4uJPRY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/96a928-819c-476c-bae1-50c9f5b3c3e4/1/UoUm3npC8eCAkWhA7r85A4uJPRY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/96a928-819c-476c-bae1-50c9f5b3c3e4/1/UoUm3npC8eCAkWhA7r85A4uJPRY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:6a:bc:b2:f8:f3:4c:5e:e1:d1:fd:6a:76:7e:21:36:ae:28: b1:93:6a:d5:15:5a:59:a1:25:f9:a1:9e:e3:13:4d:33:52:e9: 2c:47:d3:ca:8f:03:6a:11:cf:16:b9:fc:71:c2:ad:e5:82:ab: 59:70:9d:73:15:e5:06:bb:7a:4e:2c:bb:87:a5:bb:c6:a1:46: b2:1b:2e:73:d7:81:24:1e:af:8a:ce:f8:bb:db:b7:13:d7:ab: fe:3f:8f:7d:6e:c8:60:f5:66:ef:11:01:29:ef:90:cd:a9:5e: 38:14:04:b8:da:b8:6b:c6:43:e6:28:5c:9b:84:da:d6:c8:a7: 34:89:bc:32:d5:75:20:55:01:06:c2:38:0e:23:b0:3a:e4:78: 8e:78:0a:95:d4:2f:af:93:ec:f0:f7:1f:f3:30:a7:2b:fd:41: b7:b5:ef:d4:24:6d:e2:15:a4:d9:0e:2e:8f:45:e1:6b:f1:b8: ca:7c:b2:80:0b:f6:d5:c4:99:14:4f:ab:1a:ac:78:2a:26:0b: 5c:f4:7a:4b:48:1a:a3:ee:40:b2:2a:b3:fd:b6:7d:bc:07:e1: 9f:90:96:8c:fb:00:24:1c:d8:3c:d6:f9:2e:3d:04:a9:2c:70: cb:97:aa:26:1b:3f:ae:e9:81:29:e3:5d:47:ef:f9:62:52:97: f9:19:9a:0a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM+TCxkLelj4e5N0cUS/4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyODUyNmRlN2E0MmYxZTA4MDkxNjg0MGVlYmYzOTAzOGI4 OTNkMTYwHhcNMjYwMjA5MDcwMDQ1WhcNMjYwMjEwMDcwMDQ1WjAzMTEwLwYDVQQD EyhlNzVjODA0ZjJkNTdiMDM1OGZiMWY2NDAwOThiM2ZjNjEwMWY4Y2EyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA43MfSIqLJTzajyHk0qhCpGjM8B5H GX/3Ty94MQT7UJE++Y75BkRgF354kQDe700GAxjySAOoa4s5xtJTl11+mV9H0PIO 9AIWJP+jWd7+pILzDAstFGjHWnNzii5QMc+sVVkm+QC/yOza2uKyLB6d8xQw/+zQ 45LiiSf1nmeQv4yBIuweeyprepvgkBe/WTIA/4d8G14ggxPP6ixIlUbm5QDA0RHl dIziVrwzZkxlanBJejTMzoqSDssAlung0QZ/c/poBgJeUbfwVDyfNbFDIxrMRimp bFlGEblv1wg0bb0ISuWCKvdHlpHiRddsddjvF8zlbNc/eE79OiAKQ9ZTJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOdcgE8tV7A1j7H2QAmLP8YQH4yiMB8GA1UdIwQY MBaAFFKFJt56QvHggJFoQO6/OQOLiT0WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVW9VbTNucEM4ZUNBa1doQTdyODVBNHVKUFJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy85NmE5MjgtODE5Yy00NzZjLWJhZTEt NTBjOWY1YjNjM2U0LzEvVW9VbTNucEM4ZUNBa1doQTdyODVBNHVKUFJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy85NmE5MjgtODE5Yy00NzZjLWJhZTEtNTBjOWY1YjNjM2U0 LzEvVW9VbTNucEM4ZUNBa1doQTdyODVBNHVKUFJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARmq8svjz TF7h0f1qdn4hNq4osZNq1RVaWaEl+aGe4xNNM1LpLEfTyo8DahHPFrn8ccKt5YKr WXCdcxXlBrt6Tiy7h6W7xqFGshsuc9eBJB6vis74u9u3E9er/j+PfW7IYPVm7xEB Ke+QzaleOBQEuNq4a8ZD5ihcm4Ta1sinNIm8MtV1IFUBBsI4DiOwOuR4jngKldQv r5Ps8Pcf8zCnK/1Bt7Xv1CRt4hWk2Q4uj0Xha/G4ynyygAv21cSZFE+rGqx4KiYL XPR6S0gao+5Asiqz/bZ9vAfhn5CWjPsAJBzYPNb5Lj0EqSxwy5eqJhs/rumBKeNd R+/5YlKX+RmaCg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:23 2026 by rpki-client