This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft File: uv5tfV8eRHjRoCUXHaawObJjAR8.mft (raw, json) Hash identifier: A7LSQNytaBbAz2RzYcsh78VGD+CWmOLRAGzEV13X4ro= Subject key identifier: C2:5D:95:00:60:14:34:09:AF:FF:8D:D9:76:71:6F:07:38:40:2A:A5 Authority key identifier: BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F Certificate issuer: /CN=bafe6d7d5f1e4478d1a025171da6b039b263011f Certificate serial: 019C4321CCE64E8928B53D214066C4026EA8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft Manifest number: 0BB3 Signing time: Mon 09 Feb 2026 16:00:14 +0000 Manifest this update: Mon 09 Feb 2026 16:00:14 +0000 Manifest next update: Tue 10 Feb 2026 16:00:14 +0000 Files and hashes: 1: uv5tfV8eRHjRoCUXHaawObJjAR8.crl (hash: AwqtzPTnsNkyYv6PHam9tPs44+KcUILB6OcLIdAt8O0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:cc:e6:4e:89:28:b5:3d:21:40:66:c4:02:6e:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bafe6d7d5f1e4478d1a025171da6b039b263011f Validity Not Before: Feb 9 16:00:14 2026 GMT Not After : Feb 10 16:00:14 2026 GMT Subject: CN=c25d950060143409afff8dd976716f0738402aa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:cc:bf:35:64:52:1f:ed:ec:15:2d:53:c1:9d: 2a:ba:a6:24:bf:dd:0d:b5:21:08:01:6b:b9:14:45: 55:0d:f3:88:02:ae:dc:64:4f:43:96:db:b6:e7:00: 7c:cf:9c:f3:89:34:f2:e1:42:c6:99:86:1c:2e:87: be:9a:01:79:1a:e8:c0:41:df:01:94:57:a2:67:a7: 16:19:15:57:0d:38:5a:a0:02:fc:5e:90:09:cd:58: 86:3d:d5:30:66:56:f6:76:df:a0:a2:bf:b2:04:45: a8:bb:31:ce:a5:7e:8f:5f:4b:8a:3e:33:3b:55:fa: 7b:9d:8c:de:77:b2:de:6f:8b:ce:ea:e0:0b:a1:c7: 2f:8e:86:6e:ed:75:e4:5d:b2:95:97:6d:6e:97:ae: d7:a4:95:f7:aa:27:29:11:fd:7d:0f:35:ab:3e:36: e7:7a:44:13:0b:51:c5:16:d9:fe:b4:82:d6:1f:f2: 64:db:09:a9:09:7b:8e:34:31:9f:74:0f:b8:e1:4b: 8b:86:47:9a:96:e8:07:80:85:a6:5d:3c:11:3a:d7: ad:1d:99:7f:af:b3:30:b8:d8:95:cb:00:2a:ec:96: bf:24:6f:dc:5c:31:24:47:ac:e6:c2:27:dd:70:b3: ed:d3:e1:dc:10:bf:bc:41:73:0c:97:6c:17:be:cd: 1b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:5D:95:00:60:14:34:09:AF:FF:8D:D9:76:71:6F:07:38:40:2A:A5 X509v3 Authority Key Identifier: keyid:BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:71:22:9f:2a:57:59:71:6a:71:2d:85:ba:1e:23:3b:5c:b1: 98:14:08:a6:14:18:46:c6:23:06:4a:e3:4b:ba:d5:8b:f6:f1: ac:49:f4:e2:85:d0:6c:bd:c2:eb:bd:99:56:70:fc:f4:b3:ae: 67:2d:fb:b1:75:03:e4:55:54:be:33:77:e8:8f:c3:80:9d:b7: 25:ee:39:d0:f0:4f:04:e0:2d:57:a3:80:18:ea:8b:74:67:8e: 54:68:b3:66:b9:33:35:1c:39:44:78:d5:3a:98:c4:9b:4c:62: 4d:45:ab:03:7c:54:89:94:d7:b1:5f:d8:3a:19:70:a3:5c:a6: 9a:6a:7e:aa:d5:e7:4b:b1:7c:94:76:ff:d8:9f:6e:de:1b:48: da:57:2e:5b:d1:ba:6b:77:9b:33:3c:82:a2:89:26:d1:c0:a0: a6:80:a4:5f:30:41:ec:d8:42:bf:2c:b9:54:e6:cf:d8:18:62: b7:7d:80:68:21:41:b9:7b:b7:0a:ef:d9:8a:33:b7:4a:77:e9: d8:5c:0a:4a:c0:e4:47:27:08:59:8b:49:79:30:d3:9e:d0:56: 62:33:49:50:ba:55:5d:37:1d:4d:fc:f5:fe:57:ab:92:7d:a0: 32:94:94:f3:b1:6b:44:61:16:7a:c9:bd:07:24:72:c7:f0:b3: 2e:01:bb:0f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIczmTokotT0hQGbEAm6oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhZmU2ZDdkNWYxZTQ0NzhkMWEwMjUxNzFkYTZiMDM5YjI2 MzAxMWYwHhcNMjYwMjA5MTYwMDE0WhcNMjYwMjEwMTYwMDE0WjAzMTEwLwYDVQQD EyhjMjVkOTUwMDYwMTQzNDA5YWZmZjhkZDk3NjcxNmYwNzM4NDAyYWE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlMy/NWRSH+3sFS1TwZ0quqYkv90N tSEIAWu5FEVVDfOIAq7cZE9Dltu25wB8z5zziTTy4ULGmYYcLoe+mgF5GujAQd8B lFeiZ6cWGRVXDThaoAL8XpAJzViGPdUwZlb2dt+gor+yBEWouzHOpX6PX0uKPjM7 Vfp7nYzed7Leb4vO6uALoccvjoZu7XXkXbKVl21ul67XpJX3qicpEf19DzWrPjbn ekQTC1HFFtn+tILWH/Jk2wmpCXuONDGfdA+44UuLhkealugHgIWmXTwROtetHZl/ r7MwuNiVywAq7Ja/JG/cXDEkR6zmwifdcLPt0+HcEL+8QXMMl2wXvs0bAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMJdlQBgFDQJr/+N2XZxbwc4QCqlMB8GA1UdIwQY MBaAFLr+bX1fHkR40aAlFx2msDmyYwEfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXY1dGZWOGVSSGpSb0NVWEhhYXdPYkpqQVI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS85ZmY4NmMtMWY3Yi00YmM3LTk3NmEt ZGZiNzliYmExYjY4LzEvdXY1dGZWOGVSSGpSb0NVWEhhYXdPYkpqQVI4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS85ZmY4NmMtMWY3Yi00YmM3LTk3NmEtZGZiNzliYmExYjY4 LzEvdXY1dGZWOGVSSGpSb0NVWEhhYXdPYkpqQVI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT3EinypX WXFqcS2Fuh4jO1yxmBQIphQYRsYjBkrjS7rVi/bxrEn04oXQbL3C672ZVnD89LOu Zy37sXUD5FVUvjN36I/DgJ23Je450PBPBOAtV6OAGOqLdGeOVGizZrkzNRw5RHjV OpjEm0xiTUWrA3xUiZTXsV/YOhlwo1ymmmp+qtXnS7F8lHb/2J9u3htI2lcuW9G6 a3ebMzyCookm0cCgpoCkXzBB7NhCvyy5VObP2Bhit32AaCFBuXu3Cu/ZijO3Snfp 2FwKSsDkRycIWYtJeTDTntBWYjNJULpVXTcdTfz1/lerkn2gMpSU87FrRGEWesm9 ByRyx/CzLgG7Dw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:41:33 2026 by rpki-client