This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft File: UNlf0yarPwj3bczGVrs-Hia03Fc.mft (raw, json) Hash identifier: imgTecjb+atm4Xy0RY2n4mzbwPxGiTdia+3jXug4gO0= Subject key identifier: E4:EE:9F:C9:71:3A:EA:AA:83:7D:BB:D0:7A:B5:54:E9:1F:11:EF:BE Authority key identifier: 50:D9:5F:D3:26:AB:3F:08:F7:6D:CC:C6:56:BB:3E:1E:26:B4:DC:57 Certificate issuer: /CN=50d95fd326ab3f08f76dccc656bb3e1e26b4dc57 Certificate serial: 019C41A1812D4C488C4A2DE766154635C452 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UNlf0yarPwj3bczGVrs-Hia03Fc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft Manifest number: 03B6 Signing time: Mon 09 Feb 2026 09:00:29 +0000 Manifest this update: Mon 09 Feb 2026 09:00:29 +0000 Manifest next update: Tue 10 Feb 2026 09:00:29 +0000 Files and hashes: 1: UNlf0yarPwj3bczGVrs-Hia03Fc.crl (hash: jd3/c7bPjMIMOPBTlguAUjePgbpvLyj2wrk0kdxT2h0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft rsync://rpki.ripe.net/repository/DEFAULT/UNlf0yarPwj3bczGVrs-Hia03Fc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:81:2d:4c:48:8c:4a:2d:e7:66:15:46:35:c4:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=50d95fd326ab3f08f76dccc656bb3e1e26b4dc57 Validity Not Before: Feb 9 09:00:29 2026 GMT Not After : Feb 10 09:00:29 2026 GMT Subject: CN=e4ee9fc9713aeaaa837dbbd07ab554e91f11efbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:88:ef:a6:c6:57:fc:10:1c:ef:e9:88:71:ed: 88:65:63:3e:8d:96:5c:69:bd:b2:c3:35:d6:0c:12: da:61:c3:00:b8:62:90:3c:33:ad:8f:d3:c3:97:28: 2e:e2:96:fd:d5:4d:a8:d3:69:fb:17:55:ca:51:09: 23:cd:71:c1:53:6c:13:c4:fd:e0:19:d2:53:40:bf: 4c:57:d9:e0:1a:6f:6c:f6:09:ca:e7:5e:f1:f8:23: 1a:dc:d9:ac:ab:65:13:81:60:8f:89:c1:b3:09:df: 86:2c:a4:57:44:52:86:1e:de:15:35:47:6c:ba:21: db:3e:43:5e:1e:e0:7c:f9:12:ad:73:62:26:37:d9: e5:32:f1:bf:dd:c8:31:bc:1d:10:58:4d:fe:20:42: f5:7d:c6:6a:a0:37:18:1b:a4:93:23:2e:59:aa:cb: 6e:16:88:91:6b:e5:d9:9b:0a:1b:11:b4:30:e8:b4: e7:e2:aa:60:59:f9:23:87:ef:30:ae:c6:8e:41:47: 0c:c0:8b:ae:a0:9a:15:3e:05:88:89:82:20:e1:6b: 23:b9:25:05:ba:d6:b9:f8:b3:c9:3e:fe:55:37:ed: df:da:82:87:91:9e:86:14:1c:bb:3d:3d:77:8e:b7: 56:9c:c2:de:ca:8c:5a:4f:72:55:86:77:a8:3f:0d: 48:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:EE:9F:C9:71:3A:EA:AA:83:7D:BB:D0:7A:B5:54:E9:1F:11:EF:BE X509v3 Authority Key Identifier: keyid:50:D9:5F:D3:26:AB:3F:08:F7:6D:CC:C6:56:BB:3E:1E:26:B4:DC:57 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNlf0yarPwj3bczGVrs-Hia03Fc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:30:e7:e7:4d:41:c9:3b:7e:a2:be:5e:54:e1:70:9c:10:e8: 66:4c:56:b8:57:4c:b6:03:a2:13:5f:ad:00:f6:7f:bb:61:ac: a3:d8:7b:9c:30:9c:bc:a7:10:fa:74:ab:96:52:05:01:58:fc: d7:6a:ed:a2:6b:65:c6:18:16:d6:d0:3f:02:b7:58:6d:93:aa: 62:6d:6d:a9:8a:08:e0:a8:3a:e1:bd:80:4b:3f:07:db:42:70: 8a:e9:19:42:bf:a7:8f:88:2f:4b:b2:8d:ff:4d:42:01:47:5f: e3:3d:6f:bd:ab:18:48:c7:1a:90:bb:1b:44:4b:3f:d5:2a:7d: 00:d4:3b:a6:fa:bf:17:13:c8:af:6c:6a:4c:36:1c:1b:a8:a1: ce:ad:ea:9f:8a:77:dd:b6:9a:b9:54:d5:38:c8:e9:74:22:ec: 69:cc:cd:51:99:c4:c4:ea:9b:cb:e9:6a:73:a5:4c:d9:ed:b4: b4:25:98:f8:00:34:9e:d3:79:c8:4b:d0:4f:5d:52:ab:0d:50: 7d:c9:32:a3:bb:71:73:e7:e9:f9:cb:bc:19:15:6d:75:8f:51: b2:5e:bf:6b:7f:2c:1a:10:d7:4c:bc:ac:15:77:e8:c9:09:03: b6:27:e1:5e:30:5c:95:46:35:7f:43:6c:92:80:56:3b:91:9b: 39:49:8d:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoYEtTEiMSi3nZhVGNcRSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwZDk1ZmQzMjZhYjNmMDhmNzZkY2NjNjU2YmIzZTFlMjZi NGRjNTcwHhcNMjYwMjA5MDkwMDI5WhcNMjYwMjEwMDkwMDI5WjAzMTEwLwYDVQQD EyhlNGVlOWZjOTcxM2FlYWFhODM3ZGJiZDA3YWI1NTRlOTFmMTFlZmJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtojvpsZX/BAc7+mIce2IZWM+jZZc ab2ywzXWDBLaYcMAuGKQPDOtj9PDlygu4pb91U2o02n7F1XKUQkjzXHBU2wTxP3g GdJTQL9MV9ngGm9s9gnK517x+CMa3Nmsq2UTgWCPicGzCd+GLKRXRFKGHt4VNUds uiHbPkNeHuB8+RKtc2ImN9nlMvG/3cgxvB0QWE3+IEL1fcZqoDcYG6STIy5Zqstu FoiRa+XZmwobEbQw6LTn4qpgWfkjh+8wrsaOQUcMwIuuoJoVPgWIiYIg4WsjuSUF uta5+LPJPv5VN+3f2oKHkZ6GFBy7PT13jrdWnMLeyoxaT3JVhneoPw1ILwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOTun8lxOuqqg3270Hq1VOkfEe++MB8GA1UdIwQY MBaAFFDZX9Mmqz8I923Mxla7Ph4mtNxXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVU5sZjB5YXJQd2ozYmN6R1Zycy1IaWEwM0ZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9lNmNjYzctZDFlNS00ZjA3LThkYWIt NTA2YTQ5MzRjYWQ1LzEvVU5sZjB5YXJQd2ozYmN6R1Zycy1IaWEwM0ZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC9lNmNjYzctZDFlNS00ZjA3LThkYWItNTA2YTQ5MzRjYWQ1 LzEvVU5sZjB5YXJQd2ozYmN6R1Zycy1IaWEwM0ZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATTDn501B yTt+or5eVOFwnBDoZkxWuFdMtgOiE1+tAPZ/u2Gso9h7nDCcvKcQ+nSrllIFAVj8 12rtomtlxhgW1tA/ArdYbZOqYm1tqYoI4Kg64b2ASz8H20JwiukZQr+nj4gvS7KN /01CAUdf4z1vvasYSMcakLsbREs/1Sp9ANQ7pvq/FxPIr2xqTDYcG6ihzq3qn4p3 3baauVTVOMjpdCLsaczNUZnExOqby+lqc6VM2e20tCWY+AA0ntN5yEvQT11Sqw1Q fckyo7txc+fp+cu8GRVtdY9Rsl6/a38sGhDXTLysFXfoyQkDtifhXjBclUY1f0Ns koBWO5GbOUmNHg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:13 2026 by rpki-client