This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft File: u0OX5un46iWRVggDysuzI5Ytn64.mft (raw, json) Hash identifier: /+6tCTcEgILLYa1ATwxBXspnIYdbWwDiEZ4/BJTjKIQ= Subject key identifier: 2C:25:32:AB:2D:1E:34:C6:1E:6C:FD:37:E5:F0:66:E9:59:6B:B4:38 Authority key identifier: BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE Certificate issuer: /CN=bb4397e6e9f8ea2591560803cacbb323962d9fae Certificate serial: 019C451055C60AD1A16210E2A8DD965460B5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft Manifest number: 1251 Signing time: Tue 10 Feb 2026 01:00:24 +0000 Manifest this update: Tue 10 Feb 2026 01:00:24 +0000 Manifest next update: Wed 11 Feb 2026 01:00:24 +0000 Files and hashes: 1: u0OX5un46iWRVggDysuzI5Ytn64.crl (hash: CtnEPjBVQpxaxLQfk8Dp9fMHKHbQuvvq3uPs5Fa9njI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:10:55:c6:0a:d1:a1:62:10:e2:a8:dd:96:54:60:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bb4397e6e9f8ea2591560803cacbb323962d9fae Validity Not Before: Feb 10 01:00:24 2026 GMT Not After : Feb 11 01:00:24 2026 GMT Subject: CN=2c2532ab2d1e34c61e6cfd37e5f066e9596bb438 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8b:e7:7a:e1:32:5e:91:ed:64:00:02:82:52: 79:43:36:91:0b:7b:92:0e:c0:78:c4:f4:0a:73:3d: 89:9e:a3:12:6a:a7:81:4b:d9:3f:56:0d:ee:5d:e6: 98:54:9e:15:f7:5d:5a:0e:9b:52:2a:a5:26:a4:7a: 42:a4:d0:42:f9:5a:9d:c6:2c:0a:51:10:3e:aa:9d: 8b:d6:56:4c:a5:e7:0a:7c:83:76:db:5c:53:0e:98: 41:9b:bb:fb:08:58:28:82:98:1b:12:37:55:1b:e6: 18:05:7a:2e:88:36:27:7e:83:56:e5:32:03:17:27: 1d:45:ec:7c:21:cb:39:23:de:96:eb:91:d7:e8:83: 9e:f0:b6:c9:c6:54:37:2e:64:59:5c:74:7c:f5:bb: 95:08:1f:3a:a7:24:64:21:83:e0:24:30:6b:dd:8f: ff:72:a8:4b:94:db:c3:1c:ac:f7:27:aa:13:94:8f: ce:d9:42:bc:8a:5a:da:d5:87:46:08:2f:1e:e3:56: 88:14:e9:cd:e0:9b:1f:7b:f2:2e:26:a0:eb:3c:0e: 8f:7b:92:65:fe:83:c5:e4:99:4a:2b:b7:71:f5:02: 29:8f:4c:84:a9:3e:ed:d1:38:c7:33:c5:08:55:e4: 93:85:43:3a:d0:ad:3d:af:06:fd:ef:64:51:89:17: be:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:25:32:AB:2D:1E:34:C6:1E:6C:FD:37:E5:F0:66:E9:59:6B:B4:38 X509v3 Authority Key Identifier: keyid:BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:e2:bc:e2:e1:ef:d7:81:09:13:b2:20:a4:db:f6:a9:32:f0: d8:42:6d:3e:6d:4a:23:56:fb:03:17:48:4d:9c:57:f8:07:ad: 55:8a:f9:b2:57:0f:9d:6a:61:ab:a5:03:e0:e5:6a:1b:74:db: 76:8a:a2:20:bc:1a:a9:25:29:eb:45:75:9c:d1:df:fc:ae:77: a8:a6:41:7f:70:16:03:ab:81:07:45:f3:cc:72:41:fe:04:cb: ad:9a:59:45:a6:fa:ec:41:df:96:40:70:b5:8d:8b:c9:40:92: 24:56:09:da:60:c3:f1:ff:c8:9c:aa:e7:9e:a0:7f:64:bb:7b: 2a:ea:67:7b:58:e2:f7:d3:3b:84:c7:8a:11:75:bb:7a:c8:5d: 56:d7:1e:99:1c:69:aa:b5:a0:8a:84:0e:f2:b3:24:c1:1c:58: 02:9a:a5:be:8e:aa:17:92:88:dc:54:43:1d:16:8c:bc:d5:02: 74:cd:33:f8:b1:c1:db:4a:39:19:fd:78:c8:97:9a:21:3b:5c: 53:c4:47:07:b8:cb:67:7d:a1:40:aa:99:86:b8:6c:27:d4:55: 30:c6:92:a7:fd:61:96:0d:5d:e8:49:8c:0e:e2:46:b1:83:fc: f8:d2:5a:22:21:ab:ed:2d:a7:dc:41:6c:02:5d:ed:2d:bf:85: e2:45:7a:1a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFEFXGCtGhYhDiqN2WVGC1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiNDM5N2U2ZTlmOGVhMjU5MTU2MDgwM2NhY2JiMzIzOTYy ZDlmYWUwHhcNMjYwMjEwMDEwMDI0WhcNMjYwMjExMDEwMDI0WjAzMTEwLwYDVQQD EygyYzI1MzJhYjJkMWUzNGM2MWU2Y2ZkMzdlNWYwNjZlOTU5NmJiNDM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ovneuEyXpHtZAACglJ5QzaRC3uS DsB4xPQKcz2JnqMSaqeBS9k/Vg3uXeaYVJ4V911aDptSKqUmpHpCpNBC+VqdxiwK URA+qp2L1lZMpecKfIN221xTDphBm7v7CFgogpgbEjdVG+YYBXouiDYnfoNW5TID FycdRex8Ics5I96W65HX6IOe8LbJxlQ3LmRZXHR89buVCB86pyRkIYPgJDBr3Y// cqhLlNvDHKz3J6oTlI/O2UK8ilra1YdGCC8e41aIFOnN4Jsfe/IuJqDrPA6Pe5Jl /oPF5JlKK7dx9QIpj0yEqT7t0TjHM8UIVeSThUM60K09rwb972RRiRe+9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCwlMqstHjTGHmz9N+XwZulZa7Q4MB8GA1UdIwQY MBaAFLtDl+bp+OolkVYIA8rLsyOWLZ+uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdTBPWDV1bjQ2aVdSVmdnRHlzdXpJNVl0bjY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC9iYzVlMmYtYTRhYi00YmRjLTlhMDct NmZiMTBlZWFmNjI3LzEvdTBPWDV1bjQ2aVdSVmdnRHlzdXpJNVl0bjY0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC9iYzVlMmYtYTRhYi00YmRjLTlhMDctNmZiMTBlZWFmNjI3 LzEvdTBPWDV1bjQ2aVdSVmdnRHlzdXpJNVl0bjY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbuK84uHv 14EJE7IgpNv2qTLw2EJtPm1KI1b7AxdITZxX+AetVYr5slcPnWphq6UD4OVqG3Tb doqiILwaqSUp60V1nNHf/K53qKZBf3AWA6uBB0XzzHJB/gTLrZpZRab67EHflkBw tY2LyUCSJFYJ2mDD8f/InKrnnqB/ZLt7Kupne1ji99M7hMeKEXW7eshdVtcemRxp qrWgioQO8rMkwRxYApqlvo6qF5KI3FRDHRaMvNUCdM0z+LHB20o5Gf14yJeaITtc U8RHB7jLZ32hQKqZhrhsJ9RVMMaSp/1hlg1d6EmMDuJGsYP8+NJaIiGr7S2n3EFs Al3tLb+F4kV6Gg== -----END CERTIFICATE-----Generated at Tue Feb 10 05:50:43 2026 by rpki-client