This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/cf10db-7582-4553-bf1b-17911594ae51/1/urwezBf2YNW9ieFhZ7nVAxv2oMs.mft File: urwezBf2YNW9ieFhZ7nVAxv2oMs.mft (raw, json) Hash identifier: u3WktpBpsttJ+JLPDyDEKqlq9NJq8kXy5yaNVtkr6hk= Subject key identifier: 1A:7F:4B:0D:C0:21:8A:7E:68:A9:47:4A:00:95:2D:9C:41:7F:E0:78 Authority key identifier: BA:BC:1E:CC:17:F6:60:D5:BD:89:E1:61:67:B9:D5:03:1B:F6:A0:CB Certificate issuer: /CN=babc1ecc17f660d5bd89e16167b9d5031bf6a0cb Certificate serial: 019C427DF0BA34B8A6F4E902B3B92B780797 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/urwezBf2YNW9ieFhZ7nVAxv2oMs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/cf10db-7582-4553-bf1b-17911594ae51/1/urwezBf2YNW9ieFhZ7nVAxv2oMs.mft Manifest number: 0B77 Signing time: Mon 09 Feb 2026 13:01:15 +0000 Manifest this update: Mon 09 Feb 2026 13:01:15 +0000 Manifest next update: Tue 10 Feb 2026 13:01:15 +0000 Files and hashes: 1: OUJf-sc0f-zTH1OOEDEe1u3vDUI.roa (hash: jsm1Kc9N3YzBvdT9WWkethSdjz6IIBqoQUC68R7xEgA=) 2: urwezBf2YNW9ieFhZ7nVAxv2oMs.crl (hash: G03uBtPRZ2hB9IqOyZP7ROYiCMgGsD5dtdK2yPksgcU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/cf10db-7582-4553-bf1b-17911594ae51/1/urwezBf2YNW9ieFhZ7nVAxv2oMs.crl rsync://rpki.ripe.net/repository/DEFAULT/20/cf10db-7582-4553-bf1b-17911594ae51/1/urwezBf2YNW9ieFhZ7nVAxv2oMs.mft rsync://rpki.ripe.net/repository/DEFAULT/urwezBf2YNW9ieFhZ7nVAxv2oMs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:f0:ba:34:b8:a6:f4:e9:02:b3:b9:2b:78:07:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=babc1ecc17f660d5bd89e16167b9d5031bf6a0cb Validity Not Before: Feb 9 13:01:15 2026 GMT Not After : Feb 10 13:01:15 2026 GMT Subject: CN=1a7f4b0dc0218a7e68a9474a00952d9c417fe078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fa:cb:41:0b:a6:12:47:85:6f:32:0f:df:32: 99:c6:0d:a7:18:22:5c:b7:b8:9b:77:ab:de:0a:ab: 01:07:6b:3f:ee:62:db:a6:1a:d4:9a:07:40:cd:b0: 2d:93:50:b8:4a:66:ce:4f:0d:d3:44:9c:b1:39:26: 16:ff:9c:16:ce:e5:c2:f8:7b:b6:b0:1b:d7:0b:84: ec:ba:54:a3:cb:2b:62:98:80:c2:d9:e2:f4:27:da: ad:96:dd:d4:b0:00:d4:12:18:51:e6:99:84:d2:8f: 59:22:be:6d:58:cb:df:f1:78:cf:bb:70:4a:ae:fd: 63:aa:87:78:45:53:6e:e1:14:23:63:12:f6:32:83: 81:99:d8:eb:91:fb:56:25:5e:ea:a6:9a:74:e1:86: bd:45:31:ca:67:86:36:a0:4d:f3:61:dd:b1:33:53: 9e:da:d4:91:62:5d:f3:5c:6a:19:4e:87:32:2c:13: 77:d0:69:f5:b0:b1:fc:af:e5:69:13:6d:54:ca:df: f1:18:f8:00:ef:84:a5:43:a0:a6:d6:ec:d4:2e:61: 73:c7:e3:e3:64:f5:e5:28:f2:40:f8:39:c4:c3:32: f8:ba:e4:44:23:1f:1c:02:65:35:95:d2:4c:41:4b: 85:be:87:fc:88:cb:15:dc:5d:35:11:ae:bf:ad:18: 6c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:7F:4B:0D:C0:21:8A:7E:68:A9:47:4A:00:95:2D:9C:41:7F:E0:78 X509v3 Authority Key Identifier: keyid:BA:BC:1E:CC:17:F6:60:D5:BD:89:E1:61:67:B9:D5:03:1B:F6:A0:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/urwezBf2YNW9ieFhZ7nVAxv2oMs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/cf10db-7582-4553-bf1b-17911594ae51/1/urwezBf2YNW9ieFhZ7nVAxv2oMs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/cf10db-7582-4553-bf1b-17911594ae51/1/urwezBf2YNW9ieFhZ7nVAxv2oMs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:60:e8:09:83:e3:fb:31:18:3b:15:79:58:37:66:36:3c:e9: 99:ec:76:4f:4c:18:16:8c:d2:61:a8:92:66:8b:27:4c:74:96: ce:09:8e:8c:fe:ca:55:74:84:71:4a:b3:eb:91:b6:81:90:90: b1:b7:9e:c1:50:7c:32:42:a6:21:dc:92:40:21:99:7e:ba:ad: 2f:0d:f6:f6:d8:a3:32:78:4b:76:cd:d8:b2:ba:18:c7:0d:19: 7c:83:1f:f0:60:19:77:f2:2f:c3:b0:73:e6:77:a2:78:26:34: 8c:c8:39:08:d4:03:84:88:a2:4f:cd:7c:ee:ff:db:4f:4c:1e: 51:a7:1e:c8:3d:90:05:a1:ed:41:26:4c:32:71:97:59:d1:cc: ae:a3:82:76:71:73:16:91:92:ae:92:0d:d9:e2:d6:b9:4a:c2: 1f:a6:79:af:c8:e0:67:fc:eb:64:2d:df:76:6c:ed:ca:8b:4b: a1:5d:1f:9a:fc:a8:82:bc:e9:b5:61:39:e0:9e:19:07:23:1a: b4:bd:b2:48:48:3b:e9:66:e2:1c:0b:96:b1:8c:67:20:10:e8: 86:39:70:46:d8:6f:62:18:d4:c9:af:21:eb:40:4e:c4:c0:31: 81:56:d1:4e:30:6c:73:6a:b2:b4:93:75:6e:39:bf:0c:15:9f: 16:3e:6b:62 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCffC6NLim9OkCs7kreAeXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhYmMxZWNjMTdmNjYwZDViZDg5ZTE2MTY3YjlkNTAzMWJm NmEwY2IwHhcNMjYwMjA5MTMwMTE1WhcNMjYwMjEwMTMwMTE1WjAzMTEwLwYDVQQD EygxYTdmNGIwZGMwMjE4YTdlNjhhOTQ3NGEwMDk1MmQ5YzQxN2ZlMDc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsvrLQQumEkeFbzIP3zKZxg2nGCJc t7ibd6veCqsBB2s/7mLbphrUmgdAzbAtk1C4SmbOTw3TRJyxOSYW/5wWzuXC+Hu2 sBvXC4TsulSjyytimIDC2eL0J9qtlt3UsADUEhhR5pmE0o9ZIr5tWMvf8XjPu3BK rv1jqod4RVNu4RQjYxL2MoOBmdjrkftWJV7qppp04Ya9RTHKZ4Y2oE3zYd2xM1Oe 2tSRYl3zXGoZTocyLBN30Gn1sLH8r+VpE21Uyt/xGPgA74SlQ6Cm1uzULmFzx+Pj ZPXlKPJA+DnEwzL4uuREIx8cAmU1ldJMQUuFvof8iMsV3F01Ea6/rRhsEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBp/Sw3AIYp+aKlHSgCVLZxBf+B4MB8GA1UdIwQY MBaAFLq8HswX9mDVvYnhYWe51QMb9qDLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXJ3ZXpCZjJZTlc5aWVGaFo3blZBeHYyb01zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC9jZjEwZGItNzU4Mi00NTUzLWJmMWIt MTc5MTE1OTRhZTUxLzEvdXJ3ZXpCZjJZTlc5aWVGaFo3blZBeHYyb01zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC9jZjEwZGItNzU4Mi00NTUzLWJmMWItMTc5MTE1OTRhZTUx LzEvdXJ3ZXpCZjJZTlc5aWVGaFo3blZBeHYyb01zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiGDoCYPj +zEYOxV5WDdmNjzpmex2T0wYFozSYaiSZosnTHSWzgmOjP7KVXSEcUqz65G2gZCQ sbeewVB8MkKmIdySQCGZfrqtLw329tijMnhLds3YsroYxw0ZfIMf8GAZd/Ivw7Bz 5neieCY0jMg5CNQDhIiiT8187v/bT0weUaceyD2QBaHtQSZMMnGXWdHMrqOCdnFz FpGSrpIN2eLWuUrCH6Z5r8jgZ/zrZC3fdmztyotLoV0fmvyogrzptWE54J4ZByMa tL2ySEg76WbiHAuWsYxnIBDohjlwRthvYhjUya8h60BOxMAxgVbRTjBsc2qytJN1 bjm/DBWfFj5rYg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:25 2026 by rpki-client