This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft File: ui1f0wndbMbPeIYEHl6cLBomzqs.mft (raw, json) Hash identifier: SJStr429BJ9A+kFqq9aaM8Jq39mWYunBgdern+3nZ7g= Subject key identifier: E3:49:6B:60:57:C6:2A:20:D1:5C:5E:2B:FE:BF:25:4D:26:D5:05:46 Authority key identifier: BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB Certificate issuer: /CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab Certificate serial: 019C44D9C8C66B4CA3D377123241F080C857 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft Manifest number: 17A5 Signing time: Tue 10 Feb 2026 00:00:49 +0000 Manifest this update: Tue 10 Feb 2026 00:00:49 +0000 Manifest next update: Wed 11 Feb 2026 00:00:49 +0000 Files and hashes: 1: NuqvGLGVW54T2_CK4Y8l2k93wFg.roa (hash: DT5naWAM2r0ZiUJDhX9HJ7rLzQINkgWuAJdmInUQ/sA=) 2: ui1f0wndbMbPeIYEHl6cLBomzqs.crl (hash: eJ/FaLZXwVCsAcemeQI2lhYUGYKfPL60r7IRqGFqwfA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:d9:c8:c6:6b:4c:a3:d3:77:12:32:41:f0:80:c8:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab Validity Not Before: Feb 10 00:00:49 2026 GMT Not After : Feb 11 00:00:49 2026 GMT Subject: CN=e3496b6057c62a20d15c5e2bfebf254d26d50546 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2b:b9:65:f6:3f:d9:1a:0d:92:b0:26:d0:23: 5d:fc:75:3d:07:33:39:bc:26:3c:67:29:a5:b0:bd: d1:d8:23:ec:10:e7:9a:e6:60:f2:99:3b:5a:2b:36: e8:d2:d1:59:af:06:5c:8c:45:32:6a:ea:ab:ee:bb: 32:bb:43:4f:fd:96:1f:74:e4:4d:33:46:74:cf:c9: 15:7a:ff:91:52:d6:4b:99:92:3e:df:34:af:87:93: 48:40:fa:40:f1:fb:35:69:c9:b9:0b:a2:63:af:3c: 29:56:e4:6d:de:a1:bc:46:9a:6b:21:7d:fa:b4:78: f4:43:ee:8d:83:58:10:8e:25:c3:ef:d3:b3:a5:a7: 10:e3:5f:a6:dc:2a:c7:2b:8f:49:13:be:98:a5:92: a4:f6:c9:8e:c1:2a:96:99:36:02:6f:85:b0:73:2b: 7b:d4:bb:ce:08:a2:07:ff:0a:95:40:f0:10:96:d6: 37:4b:b4:f8:a9:b1:92:d4:be:31:30:5d:8e:e8:11: 0d:fe:e2:4d:2f:43:ba:f4:8e:1f:ab:1e:29:ee:73: 47:65:af:53:0f:e5:cb:b6:b6:02:f0:3b:ef:c9:5f: 5b:e8:41:9d:f4:80:88:cf:d2:a3:24:b5:77:34:76: 81:df:7a:71:0c:05:e5:ec:18:7f:97:e9:0b:22:2f: d6:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:49:6B:60:57:C6:2A:20:D1:5C:5E:2B:FE:BF:25:4D:26:D5:05:46 X509v3 Authority Key Identifier: keyid:BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:5c:b2:e7:cb:b9:6d:3c:4d:98:53:2d:dc:6a:ec:da:ab:6f: 7d:2b:88:a3:04:de:9a:e1:bf:ca:f2:9a:67:73:35:45:96:a0: 54:74:34:10:b2:a2:73:4c:f2:dc:12:c1:d3:f9:c5:31:38:65: cf:59:c5:ff:27:2c:c4:ce:a1:a1:e0:d8:c6:29:e3:b7:14:bb: ad:47:2d:ad:76:06:7a:92:ee:87:e8:e0:e6:e6:d3:b4:84:3c: 7c:18:b2:0c:0d:0e:23:15:f8:4d:71:82:43:9e:1d:d5:99:39: c5:ba:c6:04:17:61:26:ba:96:11:27:55:e7:5b:74:d0:95:de: 07:b2:5f:bb:f5:02:91:53:a8:7f:ca:03:36:fa:6c:54:0a:e9: 17:d2:8e:69:e0:fe:61:f9:c6:6f:65:12:ee:45:9d:1b:c0:a2: cd:12:95:c4:f0:35:09:f0:de:e6:2e:a8:2c:b5:e5:34:76:98: d2:6f:38:5a:2f:6d:d4:3c:b2:81:20:ca:18:f3:c6:11:30:ef: 7a:e0:6f:78:93:3a:fd:bc:99:4f:8d:a4:2b:10:59:3a:2d:78: 45:43:84:2e:c1:8e:ff:ba:ab:78:5e:f8:b0:70:e8:30:75:89: 92:5e:db:b7:56:c4:01:47:78:dd:d5:d9:96:c4:66:7f:ea:74: 42:0d:b3:4d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxE2cjGa0yj03cSMkHwgMhXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhMmQ1ZmQzMDlkZDZjYzZjZjc4ODYwNDFlNWU5YzJjMWEy NmNlYWIwHhcNMjYwMjEwMDAwMDQ5WhcNMjYwMjExMDAwMDQ5WjAzMTEwLwYDVQQD EyhlMzQ5NmI2MDU3YzYyYTIwZDE1YzVlMmJmZWJmMjU0ZDI2ZDUwNTQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Cu5ZfY/2RoNkrAm0CNd/HU9BzM5 vCY8ZymlsL3R2CPsEOea5mDymTtaKzbo0tFZrwZcjEUyauqr7rsyu0NP/ZYfdORN M0Z0z8kVev+RUtZLmZI+3zSvh5NIQPpA8fs1acm5C6JjrzwpVuRt3qG8RpprIX36 tHj0Q+6Ng1gQjiXD79OzpacQ41+m3CrHK49JE76YpZKk9smOwSqWmTYCb4Wwcyt7 1LvOCKIH/wqVQPAQltY3S7T4qbGS1L4xMF2O6BEN/uJNL0O69I4fqx4p7nNHZa9T D+XLtrYC8DvvyV9b6EGd9ICIz9KjJLV3NHaB33pxDAXl7Bh/l+kLIi/WQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFONJa2BXxiog0VxeK/6/JU0m1QVGMB8GA1UdIwQY MBaAFLotX9MJ3WzGz3iGBB5enCwaJs6rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8yY2JkZTktODQ4MC00NDBkLWFiY2Yt NmQ3NTUwNTJiYjI0LzEvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi8yY2JkZTktODQ4MC00NDBkLWFiY2YtNmQ3NTUwNTJiYjI0 LzEvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADlyy58u5 bTxNmFMt3Grs2qtvfSuIowTemuG/yvKaZ3M1RZagVHQ0ELKic0zy3BLB0/nFMThl z1nF/ycsxM6hoeDYxinjtxS7rUctrXYGepLuh+jg5ubTtIQ8fBiyDA0OIxX4TXGC Q54d1Zk5xbrGBBdhJrqWESdV51t00JXeB7Jfu/UCkVOof8oDNvpsVArpF9KOaeD+ YfnGb2US7kWdG8CizRKVxPA1CfDe5i6oLLXlNHaY0m84Wi9t1DyygSDKGPPGETDv euBveJM6/byZT42kKxBZOi14RUOELsGO/7qreF74sHDoMHWJkl7bt1bEAUd43dXZ lsRmf+p0Qg2zTQ== -----END CERTIFICATE-----Generated at Tue Feb 10 04:33:28 2026 by rpki-client