This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.


Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.mft
File:                     uzYogf_jYlMUAGCLYyi7Et-hYIE.mft (raw, json)
Hash identifier:          HOXy2EFGPx/yVo+FoTB4YvC2le3rWaOHRhrY+798st4=
Subject key identifier:   28:BA:13:A3:C2:D8:99:22:C6:4D:8C:A4:D2:98:64:55:8C:39:F3:0A
Authority key identifier: BB:36:28:81:FF:E3:62:53:14:00:60:8B:63:28:BB:12:DF:A1:60:81
Certificate issuer:       /CN=bb362881ffe362531400608b6328bb12dfa16081
Certificate serial:       019C45114DBE8E026CBD217CD07B2B938AAE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uzYogf_jYlMUAGCLYyi7Et-hYIE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.mft
Manifest number:          0F16
Signing time:             Tue 10 Feb 2026 01:01:27 +0000
Manifest this update:     Tue 10 Feb 2026 01:01:27 +0000
Manifest next update:     Wed 11 Feb 2026 01:01:27 +0000
Files and hashes:         1: uzYogf_jYlMUAGCLYyi7Et-hYIE.crl (hash: jsiIsqjKYkwzS1bloDywe7eLLq7KczNb04EfZKV5zbE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uzYogf_jYlMUAGCLYyi7Et-hYIE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Feb 2026 21:05:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:45:11:4d:be:8e:02:6c:bd:21:7c:d0:7b:2b:93:8a:ae
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bb362881ffe362531400608b6328bb12dfa16081
        Validity
            Not Before: Feb 10 01:01:27 2026 GMT
            Not After : Feb 11 01:01:27 2026 GMT
        Subject: CN=28ba13a3c2d89922c64d8ca4d29864558c39f30a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f8:1c:ff:3a:50:33:72:32:56:8c:02:ac:41:6d:
                    f3:0f:6a:bf:64:dd:7b:88:43:0d:32:73:55:47:c7:
                    ff:cc:75:a5:7e:21:9f:3b:96:d5:e2:b6:f7:a5:35:
                    16:cf:ea:c3:9c:48:84:58:5f:4e:eb:c5:9f:06:08:
                    c3:ec:fd:e5:03:e2:0a:0b:78:fc:4a:37:a3:3b:50:
                    e8:ed:65:ab:21:8f:39:d1:74:1a:31:47:93:91:8f:
                    88:f5:ed:0e:07:a1:0d:1e:64:65:66:dd:cd:90:0d:
                    6b:d9:5a:b3:87:7b:58:60:81:c7:24:e8:34:f8:c0:
                    72:87:db:c3:85:b6:12:4a:46:47:5e:c8:f4:0b:47:
                    52:d2:6d:f1:44:d0:12:72:d1:fc:ba:35:b3:07:5b:
                    b1:53:d4:e9:4f:9f:12:6e:68:81:3b:51:99:04:07:
                    25:8d:eb:85:27:18:07:0d:bb:ea:17:4f:a5:4b:f7:
                    92:7e:ac:f5:c9:ed:88:0e:76:64:d7:7e:40:f2:61:
                    8c:03:6a:b3:f2:31:f9:73:58:97:31:53:30:f0:da:
                    dc:90:09:6d:89:fa:85:98:6e:7f:30:4b:0e:9e:bd:
                    44:bd:02:08:0a:ab:ab:78:84:21:25:e6:f3:e8:da:
                    da:a1:e4:74:4b:96:1e:8e:d9:2b:bc:38:96:c8:63:
                    8d:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                28:BA:13:A3:C2:D8:99:22:C6:4D:8C:A4:D2:98:64:55:8C:39:F3:0A
            X509v3 Authority Key Identifier:
                keyid:BB:36:28:81:FF:E3:62:53:14:00:60:8B:63:28:BB:12:DF:A1:60:81

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uzYogf_jYlMUAGCLYyi7Et-hYIE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         10:79:e2:3c:a0:2e:bb:5f:67:43:cb:7d:89:f6:a2:ef:a8:b0:
         b2:f5:82:0f:dd:63:38:fb:13:17:33:67:b4:d1:30:0c:9a:38:
         bb:ed:97:6b:c5:6a:ab:9a:ff:7b:42:88:78:79:17:c7:90:be:
         1d:54:ac:df:41:a4:27:11:4b:09:d0:23:20:5e:1c:1a:fa:19:
         42:ae:70:55:31:d2:94:03:25:df:11:48:13:17:c0:a5:7b:99:
         41:3f:64:93:cb:0d:f6:42:99:ce:c3:68:ec:90:cb:44:77:9a:
         cc:d3:29:3c:1f:ed:37:9c:4c:43:20:da:21:c3:a8:9c:93:88:
         b8:eb:c6:05:b2:a1:37:aa:cd:93:5e:3e:e0:35:fe:0b:47:6a:
         74:47:d6:c4:d6:9c:d9:e2:c5:3d:aa:9a:87:96:87:89:1f:e9:
         23:9a:9f:98:34:9d:76:84:95:a9:9c:ed:50:9b:51:5b:f6:8d:
         41:d6:5d:12:10:b2:a0:d6:05:a2:ab:dd:f0:5b:1c:73:54:f8:
         bb:bc:7f:47:8d:e7:9a:3d:28:9a:5a:3d:c5:13:c8:a0:b8:1f:
         21:70:44:db:b6:a2:63:30:3e:92:71:8d:80:27:a4:41:0a:80:
         1c:9e:dd:87:6f:da:3e:db:5c:b3:b2:35:4d:6e:eb:04:63:c4:
         54:64:02:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 10 04:22:39 2026 by rpki-client