This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.mft File: UnFDjiPOkl5mwlmYEiG1toOi8I8.mft (raw, json) Hash identifier: y9DGBTAs7PcP/+k/GQh6f7WFtGvBOmZ2SIgXO5Qq0iE= Subject key identifier: E2:54:5F:BD:36:34:6A:9F:CC:48:DA:8C:12:C4:43:10:F2:09:E4:7B Authority key identifier: 52:71:43:8E:23:CE:92:5E:66:C2:59:98:12:21:B5:B6:83:A2:F0:8F Certificate issuer: /CN=5271438e23ce925e66c259981221b5b683a2f08f Certificate serial: 019C43FE700CFAE7D3E780EC4E61629B4394 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UnFDjiPOkl5mwlmYEiG1toOi8I8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.mft Manifest number: 0D75 Signing time: Mon 09 Feb 2026 20:01:14 +0000 Manifest this update: Mon 09 Feb 2026 20:01:14 +0000 Manifest next update: Tue 10 Feb 2026 20:01:14 +0000 Files and hashes: 1: UnFDjiPOkl5mwlmYEiG1toOi8I8.crl (hash: fP0t13ugRrmDEe7IbAJgroDgwsQg62iKp2aQOHyEcgg=) 2: o-iJD6qSKBcMDFIpOFvRxAvVB68.roa (hash: h1nVK1njqo5/GGkuCAVn8ZtCHKNzAogi9mgaa3QkB+Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.crl rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.mft rsync://rpki.ripe.net/repository/DEFAULT/UnFDjiPOkl5mwlmYEiG1toOi8I8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:70:0c:fa:e7:d3:e7:80:ec:4e:61:62:9b:43:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5271438e23ce925e66c259981221b5b683a2f08f Validity Not Before: Feb 9 20:01:14 2026 GMT Not After : Feb 10 20:01:14 2026 GMT Subject: CN=e2545fbd36346a9fcc48da8c12c44310f209e47b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:fe:a1:3f:23:92:4b:e5:a6:7f:1d:1e:af:98: 60:47:e1:fb:f7:d8:ea:a2:0d:b4:82:6f:13:0c:e8: 86:bf:67:33:f4:65:1b:50:3d:62:dd:1f:ae:df:a0: a4:a4:db:dd:6a:b6:70:52:9e:64:8a:3f:f2:ed:41: d6:5b:01:90:89:3f:99:ef:ee:f4:33:14:df:52:fc: e1:59:c0:35:ff:3c:04:b8:88:a9:4b:35:56:83:02: 3d:15:4f:d1:5b:20:02:0b:b5:82:dc:39:81:4c:99: 92:2f:7b:b2:50:1f:59:22:92:4a:15:69:6e:8d:31: 8e:56:ac:2d:c3:01:94:64:5d:72:44:ab:28:b9:46: eb:a9:98:30:48:68:0b:27:94:5a:46:ee:fa:aa:2e: 49:d4:3a:fe:7e:07:25:1b:c4:c5:64:a3:57:47:54: eb:d8:07:ef:17:c4:5e:4f:52:76:c6:26:35:80:c0: 81:34:bc:6a:bb:cf:da:44:44:c3:16:59:82:6c:43: ca:95:b2:2e:76:9d:95:37:a9:42:1d:c5:9b:3a:e7: 99:22:81:cf:8f:0d:22:40:97:0a:b5:3b:f1:f9:4d: bd:e6:1f:a7:f6:48:b3:65:23:b4:f2:96:f2:5f:47: de:d5:71:c6:c8:1e:e8:19:3f:d6:b0:25:bb:59:aa: 2f:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:54:5F:BD:36:34:6A:9F:CC:48:DA:8C:12:C4:43:10:F2:09:E4:7B X509v3 Authority Key Identifier: keyid:52:71:43:8E:23:CE:92:5E:66:C2:59:98:12:21:B5:B6:83:A2:F0:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UnFDjiPOkl5mwlmYEiG1toOi8I8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:21:30:85:ea:13:d5:90:f2:6b:c9:d0:24:cb:fa:55:38:1e: 94:91:ef:af:09:cd:39:05:8b:bf:0f:fd:34:d8:e6:30:8f:33: 4b:53:f3:de:54:42:e2:68:b6:4d:eb:2e:04:34:e0:96:06:91: 9b:5e:b5:e7:0b:29:36:f7:22:75:fd:af:95:87:98:42:56:01: 0d:11:68:0c:7a:b8:e4:ee:74:32:6d:6b:69:48:81:d4:74:3d: 0a:bb:29:8b:8b:98:11:82:d7:d6:0e:18:7b:8b:28:5e:53:48: 9a:0d:2a:fa:b5:e8:c0:f2:a4:47:94:9e:f2:9f:f3:88:56:77: 62:2b:98:05:aa:90:a5:58:f8:51:f1:f2:68:bc:d3:b2:96:1a: 83:d8:e7:0f:68:c2:1a:64:94:4f:96:41:e2:79:4b:7f:7d:f1: 00:53:9f:35:b7:93:fe:50:b7:8d:0b:68:77:d9:93:d2:21:6e: ef:8f:4e:e1:43:e5:0e:2e:33:e4:f0:82:c8:3d:72:b1:f4:cc: 3f:6c:b2:cc:75:8d:52:b2:a3:b8:17:20:a8:e9:9b:af:33:3c: c3:04:59:fa:fb:2b:4d:d9:47:7e:42:58:13:76:1c:7a:d3:00: cb:7b:30:fe:c1:2e:0c:d2:0b:85:99:f8:00:d8:83:03:70:9a: 95:10:4f:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/nAM+ufT54DsTmFim0OUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyNzE0MzhlMjNjZTkyNWU2NmMyNTk5ODEyMjFiNWI2ODNh MmYwOGYwHhcNMjYwMjA5MjAwMTE0WhcNMjYwMjEwMjAwMTE0WjAzMTEwLwYDVQQD EyhlMjU0NWZiZDM2MzQ2YTlmY2M0OGRhOGMxMmM0NDMxMGYyMDllNDdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoP6hPyOSS+Wmfx0er5hgR+H799jq og20gm8TDOiGv2cz9GUbUD1i3R+u36CkpNvdarZwUp5kij/y7UHWWwGQiT+Z7+70 MxTfUvzhWcA1/zwEuIipSzVWgwI9FU/RWyACC7WC3DmBTJmSL3uyUB9ZIpJKFWlu jTGOVqwtwwGUZF1yRKsouUbrqZgwSGgLJ5RaRu76qi5J1Dr+fgclG8TFZKNXR1Tr 2AfvF8ReT1J2xiY1gMCBNLxqu8/aRETDFlmCbEPKlbIudp2VN6lCHcWbOueZIoHP jw0iQJcKtTvx+U295h+n9kizZSO08pbyX0fe1XHGyB7oGT/WsCW7Waov/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOJUX702NGqfzEjajBLEQxDyCeR7MB8GA1UdIwQY MBaAFFJxQ44jzpJeZsJZmBIhtbaDovCPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVW5GRGppUE9rbDVtd2xtWUVpRzF0b09pOEk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC84MDY5MTctYWY2Yi00ZTFlLTg3NzMt OWFkMDM1NDc0MTE0LzEvVW5GRGppUE9rbDVtd2xtWUVpRzF0b09pOEk4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC84MDY5MTctYWY2Yi00ZTFlLTg3NzMtOWFkMDM1NDc0MTE0 LzEvVW5GRGppUE9rbDVtd2xtWUVpRzF0b09pOEk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqyEwheoT 1ZDya8nQJMv6VTgelJHvrwnNOQWLvw/9NNjmMI8zS1Pz3lRC4mi2TesuBDTglgaR m1615wspNvcidf2vlYeYQlYBDRFoDHq45O50Mm1raUiB1HQ9Crspi4uYEYLX1g4Y e4soXlNImg0q+rXowPKkR5Se8p/ziFZ3YiuYBaqQpVj4UfHyaLzTspYag9jnD2jC GmSUT5ZB4nlLf33xAFOfNbeT/lC3jQtod9mT0iFu749O4UPlDi4z5PCCyD1ysfTM P2yyzHWNUrKjuBcgqOmbrzM8wwRZ+vsrTdlHfkJYE3YcetMAy3sw/sEuDNILhZn4 ANiDA3CalRBPZA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:31:10 2026 by rpki-client