This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/f76c21-99c3-4f9a-8b42-77a3835d4fbb/1/uU8woHaUohE5ZIclom6zTOSha6s.mft File: uU8woHaUohE5ZIclom6zTOSha6s.mft (raw, json) Hash identifier: VhrTSsd037JHr6KoyEo9TNjBcbL54l4va49+wMYKsQc= Subject key identifier: A3:03:A2:F7:65:AA:A9:80:93:8B:12:33:8D:7D:24:FD:5F:FB:C9:40 Authority key identifier: B9:4F:30:A0:76:94:A2:11:39:64:87:25:A2:6E:B3:4C:E4:A1:6B:AB Certificate issuer: /CN=b94f30a07694a21139648725a26eb34ce4a16bab Certificate serial: 019C43C74809472351587A051AF3D3301570 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uU8woHaUohE5ZIclom6zTOSha6s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/f76c21-99c3-4f9a-8b42-77a3835d4fbb/1/uU8woHaUohE5ZIclom6zTOSha6s.mft Manifest number: 04A4 Signing time: Mon 09 Feb 2026 19:00:59 +0000 Manifest this update: Mon 09 Feb 2026 19:00:59 +0000 Manifest next update: Tue 10 Feb 2026 19:00:59 +0000 Files and hashes: 1: uU8woHaUohE5ZIclom6zTOSha6s.crl (hash: 3M/ZV6TLIXaj2/O04FlTWRro/xn62SrWi8As5ZOPJ2o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/f76c21-99c3-4f9a-8b42-77a3835d4fbb/1/uU8woHaUohE5ZIclom6zTOSha6s.crl rsync://rpki.ripe.net/repository/DEFAULT/15/f76c21-99c3-4f9a-8b42-77a3835d4fbb/1/uU8woHaUohE5ZIclom6zTOSha6s.mft rsync://rpki.ripe.net/repository/DEFAULT/uU8woHaUohE5ZIclom6zTOSha6s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:48:09:47:23:51:58:7a:05:1a:f3:d3:30:15:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b94f30a07694a21139648725a26eb34ce4a16bab Validity Not Before: Feb 9 19:00:59 2026 GMT Not After : Feb 10 19:00:59 2026 GMT Subject: CN=a303a2f765aaa980938b12338d7d24fd5ffbc940 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:69:85:7b:42:65:0d:aa:df:f9:16:45:20:02: ce:c6:39:b4:41:0d:0e:9a:64:43:38:b9:73:a9:48: 3c:53:0e:9a:86:fc:6b:f7:24:06:ee:31:bd:9c:ab: 6c:b5:1c:40:f1:12:00:0a:33:58:03:fa:ff:31:60: c8:8a:fa:c9:dd:3b:b6:41:1c:a4:11:65:9b:1a:13: 4f:7f:3d:93:aa:78:12:07:c2:5e:ad:cc:66:35:23: e9:41:74:19:8b:8e:01:74:47:19:d5:f9:61:17:cd: d1:cb:c2:34:c8:ba:50:c0:21:f2:8e:a3:79:b3:9b: e7:64:7b:8b:39:12:ab:f7:7e:08:f2:cd:25:60:8e: 4d:2a:f7:a5:f8:54:88:16:f4:e3:b3:c0:8c:76:08: b9:da:ed:a0:0d:dd:f1:d4:a8:49:28:bb:3e:2d:02: c1:b1:18:1f:a1:eb:94:02:a6:4c:8f:bb:5a:1f:27: ab:20:d7:56:17:47:5a:78:5e:27:14:d9:1d:b8:65: 40:f0:70:36:08:94:15:d3:4f:36:16:f8:62:b8:e2: 11:ba:89:9d:66:1b:ba:0c:98:52:ab:61:e9:4c:3a: 12:f6:2c:04:cd:c4:39:33:2f:50:bb:94:7e:4c:e7: 3b:5b:17:95:f6:47:a2:70:b1:fa:bb:f3:5c:e9:41: fb:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:03:A2:F7:65:AA:A9:80:93:8B:12:33:8D:7D:24:FD:5F:FB:C9:40 X509v3 Authority Key Identifier: keyid:B9:4F:30:A0:76:94:A2:11:39:64:87:25:A2:6E:B3:4C:E4:A1:6B:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uU8woHaUohE5ZIclom6zTOSha6s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/f76c21-99c3-4f9a-8b42-77a3835d4fbb/1/uU8woHaUohE5ZIclom6zTOSha6s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/f76c21-99c3-4f9a-8b42-77a3835d4fbb/1/uU8woHaUohE5ZIclom6zTOSha6s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:fb:99:a1:c9:ea:38:af:d0:99:19:a5:14:c4:9a:86:6f:d7: 7a:8d:b0:8f:31:41:2e:36:e7:d5:52:0d:bf:f5:d3:54:ea:75: 49:ad:72:ce:59:84:ef:c4:ce:3b:39:60:c0:db:cd:a9:48:06: 15:1b:df:68:00:96:64:8d:d5:cf:bf:cf:25:c4:4b:a8:f1:1d: ac:c1:70:d1:26:cd:d7:3a:a4:b6:45:4a:26:8f:54:fe:da:cb: 82:b5:6c:88:8a:33:cf:66:01:df:da:36:b6:c4:2d:e0:14:a2: 21:2b:62:f0:51:06:e9:3c:4b:36:4f:6c:68:83:d3:ad:5c:ac: ee:fd:34:4e:d2:8d:7a:26:ae:57:27:f2:98:aa:dc:3d:c6:20: eb:93:6a:ea:fc:23:94:2d:1a:83:a0:76:3f:dd:5f:02:19:c4: 17:37:fc:c6:c6:b5:7b:cd:ab:a1:42:f3:9c:68:6a:06:d6:ee: 79:39:d2:79:16:a4:c1:87:a1:79:f4:ed:0a:bc:d3:b3:07:b3: c0:3d:90:17:89:06:12:18:a8:be:2a:c4:1c:ed:12:c6:b1:bb: bf:a1:a8:17:67:7d:b5:f4:e6:0c:a1:4f:65:99:35:f0:78:e0: d3:2e:c4:62:09:6b:d8:09:db:3a:6c:92:9a:12:1a:79:64:21: 06:48:89:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDx0gJRyNRWHoFGvPTMBVwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5NGYzMGEwNzY5NGEyMTEzOTY0ODcyNWEyNmViMzRjZTRh MTZiYWIwHhcNMjYwMjA5MTkwMDU5WhcNMjYwMjEwMTkwMDU5WjAzMTEwLwYDVQQD EyhhMzAzYTJmNzY1YWFhOTgwOTM4YjEyMzM4ZDdkMjRmZDVmZmJjOTQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzmmFe0JlDarf+RZFIALOxjm0QQ0O mmRDOLlzqUg8Uw6ahvxr9yQG7jG9nKtstRxA8RIACjNYA/r/MWDIivrJ3Tu2QRyk EWWbGhNPfz2TqngSB8JercxmNSPpQXQZi44BdEcZ1flhF83Ry8I0yLpQwCHyjqN5 s5vnZHuLORKr934I8s0lYI5NKvel+FSIFvTjs8CMdgi52u2gDd3x1KhJKLs+LQLB sRgfoeuUAqZMj7taHyerINdWF0daeF4nFNkduGVA8HA2CJQV0082FvhiuOIRuomd Zhu6DJhSq2HpTDoS9iwEzcQ5My9Qu5R+TOc7WxeV9keicLH6u/Nc6UH7WQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKMDovdlqqmAk4sSM419JP1f+8lAMB8GA1UdIwQY MBaAFLlPMKB2lKIROWSHJaJus0zkoWurMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdVU4d29IYVVvaEU1WkljbG9tNnpUT1NoYTZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9mNzZjMjEtOTljMy00ZjlhLThiNDIt NzdhMzgzNWQ0ZmJiLzEvdVU4d29IYVVvaEU1WkljbG9tNnpUT1NoYTZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS9mNzZjMjEtOTljMy00ZjlhLThiNDItNzdhMzgzNWQ0ZmJi LzEvdVU4d29IYVVvaEU1WkljbG9tNnpUT1NoYTZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZfuZocnq OK/QmRmlFMSahm/Xeo2wjzFBLjbn1VINv/XTVOp1Sa1yzlmE78TOOzlgwNvNqUgG FRvfaACWZI3Vz7/PJcRLqPEdrMFw0SbN1zqktkVKJo9U/trLgrVsiIozz2YB39o2 tsQt4BSiISti8FEG6TxLNk9saIPTrVys7v00TtKNeiauVyfymKrcPcYg65Nq6vwj lC0ag6B2P91fAhnEFzf8xsa1e82roULznGhqBtbueTnSeRakwYehefTtCrzTswez wD2QF4kGEhiovirEHO0SxrG7v6GoF2d9tfTmDKFPZZk18Hjg0y7EYglr2AnbOmyS mhIaeWQhBkiJdg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:09 2026 by rpki-client