This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.mft File: upfBVFbrYAQD7PuxbCDggWCUT48.mft (raw, json) Hash identifier: jat/8YIAnB4rHXbTdvioFZ/GyPBbOaXcjR2UgcfmFm4= Subject key identifier: 9C:C4:55:EA:59:85:18:49:02:1D:50:D5:D5:D9:82:25:80:77:05:63 Authority key identifier: BA:97:C1:54:56:EB:60:04:03:EC:FB:B1:6C:20:E0:81:60:94:4F:8F Certificate issuer: /CN=ba97c15456eb600403ecfbb16c20e08160944f8f Certificate serial: 019C43220CB05CE61AFBBE3B2A5BC6A53C36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upfBVFbrYAQD7PuxbCDggWCUT48.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.mft Manifest number: 1499 Signing time: Mon 09 Feb 2026 16:00:30 +0000 Manifest this update: Mon 09 Feb 2026 16:00:30 +0000 Manifest next update: Tue 10 Feb 2026 16:00:30 +0000 Files and hashes: 1: UfY9uP-gSFGDl_psdLY21k8D6rE.roa (hash: liAqA+LlTWz2PCuepJi3NtGWRqXh2SEVE/+htWLewMQ=) 2: upfBVFbrYAQD7PuxbCDggWCUT48.crl (hash: LFK35V4T93te3Ot2+sOO2nfFPvwYx/jT31eVM959V1I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.crl rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.mft rsync://rpki.ripe.net/repository/DEFAULT/upfBVFbrYAQD7PuxbCDggWCUT48.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:0c:b0:5c:e6:1a:fb:be:3b:2a:5b:c6:a5:3c:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba97c15456eb600403ecfbb16c20e08160944f8f Validity Not Before: Feb 9 16:00:30 2026 GMT Not After : Feb 10 16:00:30 2026 GMT Subject: CN=9cc455ea59851849021d50d5d5d9822580770563 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0b:35:f0:16:b7:97:43:bd:25:7e:49:f0:ce: 0d:55:9e:bc:92:4b:87:25:2d:24:74:d9:1a:64:ff: 6a:44:f9:d3:0d:49:1e:c9:e3:00:75:15:35:05:72: e6:b9:2b:20:73:5b:82:98:9f:c3:64:f4:1e:0c:95: 29:45:a7:fb:83:07:e4:53:64:22:08:6f:3e:b8:bf: 23:09:11:a6:eb:36:ce:cf:5b:7b:34:e0:18:d0:88: 8b:96:a9:86:b5:b9:6e:d0:c0:54:d1:71:d0:e2:b0: c2:ab:2a:64:0f:9c:80:b9:bf:94:3a:58:24:fc:3c: f7:01:50:89:54:9f:aa:9c:e0:f4:ab:e0:45:cd:24: 05:f6:42:62:8a:74:c2:b2:66:e2:5a:95:f7:8a:15: 16:08:50:c7:b2:41:a4:95:1b:80:c2:bd:ef:3b:41: 2d:d2:f4:e7:ce:18:5c:3c:d6:ee:fc:1a:b2:bc:11: 6c:4d:6c:35:9d:d5:81:70:84:05:10:da:12:5a:cb: 8a:a6:92:62:4b:6d:74:57:f9:60:ae:45:b9:52:95: f8:5f:29:a7:41:52:df:7f:c4:cc:59:79:1e:36:dd: 9f:b4:32:eb:e9:5c:2d:bb:fc:f5:69:ea:2a:f2:2e: 41:81:f2:3f:33:7e:6f:99:26:f0:b8:5e:bd:77:cf: 66:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:C4:55:EA:59:85:18:49:02:1D:50:D5:D5:D9:82:25:80:77:05:63 X509v3 Authority Key Identifier: keyid:BA:97:C1:54:56:EB:60:04:03:EC:FB:B1:6C:20:E0:81:60:94:4F:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upfBVFbrYAQD7PuxbCDggWCUT48.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:b9:64:06:3c:a0:f6:62:c9:9d:78:f8:ca:cd:67:41:77:b0: 06:8d:7c:1b:ad:3f:a9:21:fb:6f:d0:9a:3a:89:1c:7e:3c:f4: 0b:d4:d3:5b:e2:51:c0:ad:f5:ce:56:a2:9d:d6:14:e0:21:33: 53:6a:87:d9:81:77:23:cd:6f:73:03:79:dd:a0:6a:ff:96:ab: e7:5a:7d:d2:ec:8c:43:c4:1d:b5:d0:78:f5:5f:7e:3b:63:55: 18:2f:1c:51:93:6c:98:d9:7e:ec:5b:03:de:7b:8c:21:d5:d8: cf:e3:87:33:78:54:83:e2:84:97:36:e0:02:81:73:d7:2f:8e: ff:9c:81:4d:12:a2:09:5a:45:b3:da:51:5f:1d:0a:0f:11:7b: c4:84:c2:e0:0a:e6:03:21:27:49:53:39:4f:04:61:9b:a2:7e: 98:2e:0f:37:1c:61:a7:66:93:db:d1:1c:7d:36:03:11:8c:53: c0:ae:07:8c:33:d7:13:fd:ea:fb:8a:b0:d9:1a:ea:f4:39:62: 3c:b2:60:3e:41:c6:3c:68:63:95:a1:ba:d2:27:d6:94:7f:31: 7a:18:b2:fc:11:44:78:8c:c3:4e:d8:5c:af:66:b5:fd:c8:d6: 0b:47:83:9e:8b:61:71:93:ed:2b:8d:35:68:45:b0:8f:39:33: 45:b1:25:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIgywXOYa+747KlvGpTw2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhOTdjMTU0NTZlYjYwMDQwM2VjZmJiMTZjMjBlMDgxNjA5 NDRmOGYwHhcNMjYwMjA5MTYwMDMwWhcNMjYwMjEwMTYwMDMwWjAzMTEwLwYDVQQD Eyg5Y2M0NTVlYTU5ODUxODQ5MDIxZDUwZDVkNWQ5ODIyNTgwNzcwNTYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsAs18Ba3l0O9JX5J8M4NVZ68kkuH JS0kdNkaZP9qRPnTDUkeyeMAdRU1BXLmuSsgc1uCmJ/DZPQeDJUpRaf7gwfkU2Qi CG8+uL8jCRGm6zbOz1t7NOAY0IiLlqmGtblu0MBU0XHQ4rDCqypkD5yAub+UOlgk /Dz3AVCJVJ+qnOD0q+BFzSQF9kJiinTCsmbiWpX3ihUWCFDHskGklRuAwr3vO0Et 0vTnzhhcPNbu/BqyvBFsTWw1ndWBcIQFENoSWsuKppJiS210V/lgrkW5UpX4Xymn QVLff8TMWXkeNt2ftDLr6Vwtu/z1aeoq8i5BgfI/M35vmSbwuF69d89m6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJzEVepZhRhJAh1Q1dXZgiWAdwVjMB8GA1UdIwQY MBaAFLqXwVRW62AEA+z7sWwg4IFglE+PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXBmQlZGYnJZQVFEN1B1eGJDRGdnV0NVVDQ4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9jNDZkMWUtOTg3ZC00ZjY1LWIxMWIt MmUyY2Q2NDM1MTA2LzEvdXBmQlZGYnJZQVFEN1B1eGJDRGdnV0NVVDQ4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC9jNDZkMWUtOTg3ZC00ZjY1LWIxMWItMmUyY2Q2NDM1MTA2 LzEvdXBmQlZGYnJZQVFEN1B1eGJDRGdnV0NVVDQ4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmLlkBjyg 9mLJnXj4ys1nQXewBo18G60/qSH7b9CaOokcfjz0C9TTW+JRwK31zlaindYU4CEz U2qH2YF3I81vcwN53aBq/5ar51p90uyMQ8QdtdB49V9+O2NVGC8cUZNsmNl+7FsD 3nuMIdXYz+OHM3hUg+KElzbgAoFz1y+O/5yBTRKiCVpFs9pRXx0KDxF7xITC4Arm AyEnSVM5TwRhm6J+mC4PNxxhp2aT29EcfTYDEYxTwK4HjDPXE/3q+4qw2Rrq9Dli PLJgPkHGPGhjlaG60ifWlH8xehiy/BFEeIzDTthcr2a1/cjWC0eDnothcZPtK401 aEWwjzkzRbElHw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:39:15 2026 by rpki-client