This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/ee479f-dd4e-492f-b6a6-3c46cd580789/1/uFK2pNRayK4a7VTG9ayO1v88Hdc.mft File: uFK2pNRayK4a7VTG9ayO1v88Hdc.mft (raw, json) Hash identifier: 6sW1ArbyAzWiHiZLcb04HulOdytYiUlIuTkXaCYWGCI= Subject key identifier: 91:E9:29:84:E3:D2:D0:99:F7:0D:4F:CC:F5:14:7A:BC:B3:7A:B4:75 Authority key identifier: B8:52:B6:A4:D4:5A:C8:AE:1A:ED:54:C6:F5:AC:8E:D6:FF:3C:1D:D7 Certificate issuer: /CN=b852b6a4d45ac8ae1aed54c6f5ac8ed6ff3c1dd7 Certificate serial: 019C4322DA730FE625E6C09D7649905D4FE3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFK2pNRayK4a7VTG9ayO1v88Hdc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/ee479f-dd4e-492f-b6a6-3c46cd580789/1/uFK2pNRayK4a7VTG9ayO1v88Hdc.mft Manifest number: 0DA4 Signing time: Mon 09 Feb 2026 16:01:23 +0000 Manifest this update: Mon 09 Feb 2026 16:01:23 +0000 Manifest next update: Tue 10 Feb 2026 16:01:23 +0000 Files and hashes: 1: uFK2pNRayK4a7VTG9ayO1v88Hdc.crl (hash: z7WMjNFf8zMfiLo6QlfvFigzAtmKnHTOomvARZdwpXI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/ee479f-dd4e-492f-b6a6-3c46cd580789/1/uFK2pNRayK4a7VTG9ayO1v88Hdc.crl rsync://rpki.ripe.net/repository/DEFAULT/27/ee479f-dd4e-492f-b6a6-3c46cd580789/1/uFK2pNRayK4a7VTG9ayO1v88Hdc.mft rsync://rpki.ripe.net/repository/DEFAULT/uFK2pNRayK4a7VTG9ayO1v88Hdc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:da:73:0f:e6:25:e6:c0:9d:76:49:90:5d:4f:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b852b6a4d45ac8ae1aed54c6f5ac8ed6ff3c1dd7 Validity Not Before: Feb 9 16:01:23 2026 GMT Not After : Feb 10 16:01:23 2026 GMT Subject: CN=91e92984e3d2d099f70d4fccf5147abcb37ab475 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f0:fc:d7:73:57:0f:59:fd:f6:b7:f0:ca:0d: a2:14:56:82:a1:a3:9f:b6:d4:ac:18:86:fb:33:b8: a7:c9:3e:6e:c9:25:83:15:a6:6a:52:4c:5d:58:36: db:94:65:af:06:00:a2:ec:0e:3f:eb:35:97:9f:56: 2f:df:14:8c:47:b6:84:2d:5b:b9:0c:04:de:71:41: c0:71:61:bb:0b:16:2b:b3:af:4c:c2:cc:42:7c:bb: 09:93:8c:5a:ec:04:a4:9a:33:59:e8:f7:a5:1d:82: 13:f4:9e:b9:ff:c4:f3:ab:3e:a4:d4:e5:90:77:80: f7:e2:b2:29:dc:9d:8f:dd:38:b1:a0:af:10:45:69: 4b:9f:c2:96:99:e0:40:d4:cc:5b:24:cb:4a:b9:d9: da:c1:92:21:6f:17:55:97:ca:36:7d:7a:65:2c:26: 9c:0e:b8:29:b2:22:41:32:de:2a:43:2f:f4:cc:80: 61:f9:28:d4:35:8a:ae:15:19:73:db:dd:a6:62:d4: e6:10:50:e0:52:83:f8:b8:a2:ea:94:c2:0c:dd:48: 1e:89:88:0c:ae:72:75:a8:77:b5:e6:b6:eb:89:95: e6:9d:46:64:d0:fb:27:bd:1f:3f:cc:34:a0:a6:c9: 47:ce:05:be:7a:7c:38:ed:23:99:46:b9:a0:b9:dc: 15:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:E9:29:84:E3:D2:D0:99:F7:0D:4F:CC:F5:14:7A:BC:B3:7A:B4:75 X509v3 Authority Key Identifier: keyid:B8:52:B6:A4:D4:5A:C8:AE:1A:ED:54:C6:F5:AC:8E:D6:FF:3C:1D:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFK2pNRayK4a7VTG9ayO1v88Hdc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/ee479f-dd4e-492f-b6a6-3c46cd580789/1/uFK2pNRayK4a7VTG9ayO1v88Hdc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/ee479f-dd4e-492f-b6a6-3c46cd580789/1/uFK2pNRayK4a7VTG9ayO1v88Hdc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:fd:20:02:f2:03:f5:16:44:c8:5e:25:00:46:e7:07:1b:02: 1e:0d:de:e9:18:17:3a:f3:a9:83:b4:3c:8a:41:04:44:0b:4d: 47:22:68:61:5c:c9:d2:14:a9:5b:e1:c7:e7:a7:73:7f:61:44: 27:3c:3a:b6:da:cd:e0:f9:cd:e6:60:ce:d2:f9:9d:ab:0d:b7: cc:b2:c3:2a:8a:9b:32:b1:4e:bc:10:2a:82:57:e2:b4:c4:99: 4a:38:34:34:f4:f4:b0:e7:6d:84:4a:9c:60:87:75:2b:5d:f7: 9e:dc:87:e1:85:76:75:a0:d5:30:27:98:94:66:7b:1a:ca:b2: a2:d0:96:e9:1b:37:f3:54:c8:c1:25:19:e5:49:0b:36:ad:66: c1:bd:2a:bc:72:a3:59:14:28:49:05:c7:d0:9c:05:d2:85:ab: c8:28:d8:25:75:95:95:83:0b:b1:e5:eb:31:89:5c:1f:46:91: 9e:dd:4a:1d:fa:64:eb:36:5c:91:df:5e:83:10:fe:bb:61:e6: af:c5:5f:e9:43:98:48:74:ce:04:f7:10:4f:8c:4a:3c:73:b0: 77:6a:e6:d3:5b:bf:98:ce:18:ee:d0:2f:3d:53:34:2b:df:bd: 3f:30:01:c0:6c:e2:0e:00:8b:db:95:06:00:9c:b1:60:82:6e: 8d:89:02:2e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDItpzD+Yl5sCddkmQXU/jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4NTJiNmE0ZDQ1YWM4YWUxYWVkNTRjNmY1YWM4ZWQ2ZmYz YzFkZDcwHhcNMjYwMjA5MTYwMTIzWhcNMjYwMjEwMTYwMTIzWjAzMTEwLwYDVQQD Eyg5MWU5Mjk4NGUzZDJkMDk5ZjcwZDRmY2NmNTE0N2FiY2IzN2FiNDc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/D813NXD1n99rfwyg2iFFaCoaOf ttSsGIb7M7inyT5uySWDFaZqUkxdWDbblGWvBgCi7A4/6zWXn1Yv3xSMR7aELVu5 DATecUHAcWG7CxYrs69MwsxCfLsJk4xa7ASkmjNZ6PelHYIT9J65/8Tzqz6k1OWQ d4D34rIp3J2P3TixoK8QRWlLn8KWmeBA1MxbJMtKudnawZIhbxdVl8o2fXplLCac DrgpsiJBMt4qQy/0zIBh+SjUNYquFRlz292mYtTmEFDgUoP4uKLqlMIM3UgeiYgM rnJ1qHe15rbriZXmnUZk0PsnvR8/zDSgpslHzgW+enw47SOZRrmgudwVywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJHpKYTj0tCZ9w1PzPUUeryzerR1MB8GA1UdIwQY MBaAFLhStqTUWsiuGu1UxvWsjtb/PB3XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUZLMnBOUmF5SzRhN1ZURzlheU8xdjg4SGRjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9lZTQ3OWYtZGQ0ZS00OTJmLWI2YTYt M2M0NmNkNTgwNzg5LzEvdUZLMnBOUmF5SzRhN1ZURzlheU8xdjg4SGRjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy9lZTQ3OWYtZGQ0ZS00OTJmLWI2YTYtM2M0NmNkNTgwNzg5 LzEvdUZLMnBOUmF5SzRhN1ZURzlheU8xdjg4SGRjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT/0gAvID 9RZEyF4lAEbnBxsCHg3e6RgXOvOpg7Q8ikEERAtNRyJoYVzJ0hSpW+HH56dzf2FE Jzw6ttrN4PnN5mDO0vmdqw23zLLDKoqbMrFOvBAqglfitMSZSjg0NPT0sOdthEqc YId1K133ntyH4YV2daDVMCeYlGZ7GsqyotCW6Rs381TIwSUZ5UkLNq1mwb0qvHKj WRQoSQXH0JwF0oWryCjYJXWVlYMLseXrMYlcH0aRnt1KHfpk6zZckd9egxD+u2Hm r8Vf6UOYSHTOBPcQT4xKPHOwd2rm01u/mM4Y7tAvPVM0K9+9PzABwGziDgCL25UG AJyxYIJujYkCLg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:49:22 2026 by rpki-client