This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft File: u0OX5un46iWRVggDysuzI5Ytn64.mft (raw, json) Hash identifier: 24cos4AfpvUrkyppJdle1dGG4iP6LhpSsL/6Qxjin8c= Subject key identifier: 8F:44:39:01:29:34:37:24:66:1D:6E:E8:A5:34:59:AE:DD:5C:75:E0 Authority key identifier: BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE Certificate issuer: /CN=bb4397e6e9f8ea2591560803cacbb323962d9fae Certificate serial: 019C432280909F2A2083D31D4AC918F7EB81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft Manifest number: 1250 Signing time: Mon 09 Feb 2026 16:01:00 +0000 Manifest this update: Mon 09 Feb 2026 16:01:00 +0000 Manifest next update: Tue 10 Feb 2026 16:01:00 +0000 Files and hashes: 1: u0OX5un46iWRVggDysuzI5Ytn64.crl (hash: dimRCJ54HAeYpS+a2tSATVUsh8gFRN90GAciKcNUwP8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:80:90:9f:2a:20:83:d3:1d:4a:c9:18:f7:eb:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bb4397e6e9f8ea2591560803cacbb323962d9fae Validity Not Before: Feb 9 16:01:00 2026 GMT Not After : Feb 10 16:01:00 2026 GMT Subject: CN=8f44390129343724661d6ee8a53459aedd5c75e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:fb:de:00:ed:6c:6c:db:aa:58:cc:4a:a3:f9: 13:9c:8b:c0:da:4b:66:63:39:ae:7c:b2:15:48:a0: 7e:9a:6f:cb:08:46:c9:84:06:0d:fd:8a:38:ec:bb: 9d:42:21:8c:ce:10:62:79:9e:e7:4a:b4:9c:83:29: e5:51:3b:61:58:1d:e1:2c:d6:e0:09:22:60:fd:02: f3:c9:ea:5c:cd:4d:96:64:15:03:b7:8b:fd:5c:f3: 3a:85:7f:e0:94:9c:59:62:20:12:8e:25:f9:d1:0b: 4c:a7:70:5c:17:c6:c3:c0:bc:9b:58:c9:80:43:17: 7f:74:93:ee:0d:27:db:f8:93:b3:9d:9a:cf:76:5f: f6:cb:d1:58:ce:b6:4c:ac:c0:28:f3:69:dc:c9:7c: ba:a5:b0:8c:50:26:a4:37:ad:f1:11:7f:36:ab:5f: 3a:83:f0:8d:0a:61:9e:25:21:9e:29:90:cb:b9:dc: 4f:dc:5a:ea:53:d6:f4:67:27:b5:10:ed:d6:f7:58: da:1b:44:96:83:fc:81:22:76:10:5d:21:f7:16:5b: 4e:7a:bd:e2:7f:7e:67:50:bd:c4:7e:6b:f6:20:a5: ec:49:ff:7c:16:f5:c7:9e:db:99:df:b3:7e:f3:29: 37:40:ed:0c:6e:01:c5:ba:15:75:6c:7b:c7:05:8d: ca:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:44:39:01:29:34:37:24:66:1D:6E:E8:A5:34:59:AE:DD:5C:75:E0 X509v3 Authority Key Identifier: keyid:BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:e9:16:07:81:dd:c3:9b:ac:34:d4:39:50:38:e1:0c:e6:28: 0f:2e:90:58:c0:aa:97:93:6f:59:52:cd:8c:f4:0b:d3:30:6b: 59:0a:0b:82:e9:69:e9:76:f7:da:62:aa:92:71:fe:a8:eb:5f: 3c:87:00:df:2d:b0:30:5e:c0:03:28:7d:0d:9b:0e:ef:d8:15: 3b:e2:a8:a9:21:4c:bb:d9:68:b8:47:79:7d:ad:69:ca:da:0b: a5:4f:d0:3b:c0:b0:ae:8c:df:26:24:a7:cb:ca:cd:3e:0c:76: e7:c5:6e:03:69:68:8b:35:9f:54:ce:c2:4f:f8:e8:f5:48:04: f6:a6:5c:60:d0:59:bb:ad:69:13:70:0d:5f:a2:74:5c:8b:8a: 6a:94:47:f9:0b:0a:a4:6a:87:67:9a:8f:e1:b5:9e:67:d9:f8: 41:3c:11:de:ee:0a:7d:72:63:c1:09:10:74:29:c2:ee:5d:61: 34:48:0e:90:e5:96:cc:6d:7a:ff:f7:55:f5:af:d9:99:56:8c: 16:64:3a:e3:47:f1:91:f2:10:67:21:1e:06:93:90:f9:8d:a0: 05:9b:59:07:22:91:92:86:3d:61:2a:7f:86:d1:47:f3:37:5f: c2:30:ed:2d:e2:c7:b0:d9:17:b2:78:a3:e4:ce:10:5a:fa:51: 3f:0c:bf:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIoCQnyogg9MdSskY9+uBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiNDM5N2U2ZTlmOGVhMjU5MTU2MDgwM2NhY2JiMzIzOTYy ZDlmYWUwHhcNMjYwMjA5MTYwMTAwWhcNMjYwMjEwMTYwMTAwWjAzMTEwLwYDVQQD Eyg4ZjQ0MzkwMTI5MzQzNzI0NjYxZDZlZThhNTM0NTlhZWRkNWM3NWUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnvveAO1sbNuqWMxKo/kTnIvA2ktm YzmufLIVSKB+mm/LCEbJhAYN/Yo47LudQiGMzhBieZ7nSrScgynlUTthWB3hLNbg CSJg/QLzyepczU2WZBUDt4v9XPM6hX/glJxZYiASjiX50QtMp3BcF8bDwLybWMmA Qxd/dJPuDSfb+JOznZrPdl/2y9FYzrZMrMAo82ncyXy6pbCMUCakN63xEX82q186 g/CNCmGeJSGeKZDLudxP3FrqU9b0Zye1EO3W91jaG0SWg/yBInYQXSH3FltOer3i f35nUL3Efmv2IKXsSf98FvXHntuZ37N+8yk3QO0MbgHFuhV1bHvHBY3KqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI9EOQEpNDckZh1u6KU0Wa7dXHXgMB8GA1UdIwQY MBaAFLtDl+bp+OolkVYIA8rLsyOWLZ+uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdTBPWDV1bjQ2aVdSVmdnRHlzdXpJNVl0bjY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC9iYzVlMmYtYTRhYi00YmRjLTlhMDct NmZiMTBlZWFmNjI3LzEvdTBPWDV1bjQ2aVdSVmdnRHlzdXpJNVl0bjY0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC9iYzVlMmYtYTRhYi00YmRjLTlhMDctNmZiMTBlZWFmNjI3 LzEvdTBPWDV1bjQ2aVdSVmdnRHlzdXpJNVl0bjY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH+kWB4Hd w5usNNQ5UDjhDOYoDy6QWMCql5NvWVLNjPQL0zBrWQoLgulp6Xb32mKqknH+qOtf PIcA3y2wMF7AAyh9DZsO79gVO+KoqSFMu9louEd5fa1pytoLpU/QO8CwrozfJiSn y8rNPgx258VuA2loizWfVM7CT/jo9UgE9qZcYNBZu61pE3ANX6J0XIuKapRH+QsK pGqHZ5qP4bWeZ9n4QTwR3u4KfXJjwQkQdCnC7l1hNEgOkOWWzG16//dV9a/ZmVaM FmQ640fxkfIQZyEeBpOQ+Y2gBZtZByKRkoY9YSp/htFH8zdfwjDtLeLHsNkXsnij 5M4QWvpRPwy/6Q== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:14 2026 by rpki-client