This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft File: UOpay0R7LOuTKgPykAgtx2-OQOM.mft (raw, json) Hash identifier: evSd30FpKtbFPq/vPPdV3xNoBSuVMyGivKSWdvGCOiA= Subject key identifier: 33:B8:3F:78:DA:69:54:77:7A:F3:76:E6:67:DA:1C:2C:76:B6:CC:C4 Authority key identifier: 50:EA:5A:CB:44:7B:2C:EB:93:2A:03:F2:90:08:2D:C7:6F:8E:40:E3 Certificate issuer: /CN=50ea5acb447b2ceb932a03f290082dc76f8e40e3 Certificate serial: 019C427D43E8FCD80F79B86707CD451EEDE3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 13:00:31 +0000 Manifest this update: Mon 09 Feb 2026 13:00:31 +0000 Manifest next update: Tue 10 Feb 2026 13:00:31 +0000 Files and hashes: 1: Qjcz_PS0tGHgVp4sFdHi9YmmanQ.roa (hash: bNCXCGEDvdLCDKAMMYQGu7EJRHAHnyr4sSGJfowyZWg=) 2: UOpay0R7LOuTKgPykAgtx2-OQOM.crl (hash: nCaBdUhjo54PBMywX+TW12ExKkUU07M9MCHT1Ly0WoA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:43:e8:fc:d8:0f:79:b8:67:07:cd:45:1e:ed:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=50ea5acb447b2ceb932a03f290082dc76f8e40e3 Validity Not Before: Feb 9 13:00:31 2026 GMT Not After : Feb 10 13:00:31 2026 GMT Subject: CN=33b83f78da6954777af376e667da1c2c76b6ccc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:47:94:74:29:04:4c:6f:25:8d:e9:49:45:37: 0c:16:09:7a:69:f4:7c:17:6a:ec:cc:0a:fc:17:4e: 55:69:1a:ec:00:58:35:4d:bb:f6:5c:1c:33:4e:55: 50:51:21:41:4d:95:ac:71:2d:dc:d5:a6:7d:0e:2b: bd:c1:00:db:89:73:a4:0a:4f:16:da:05:28:68:87: 66:14:81:de:8b:ac:fe:37:8e:0d:e3:da:a1:88:d5: 2b:8e:56:f3:34:1f:11:47:0a:c5:f9:72:eb:0f:14: 2e:07:93:bf:ff:2e:c4:09:cc:ba:d4:a5:25:ec:2d: 4d:fa:8a:8c:bc:1e:f3:b0:41:21:af:9f:73:37:31: 19:32:d4:d4:43:9f:80:66:8c:d0:f3:13:c6:50:84: 3e:5c:69:6f:4f:f2:ad:c4:0d:ff:68:e5:0b:f1:0e: e8:5a:09:23:27:58:cc:86:db:8f:d3:32:fc:86:15: 68:57:91:1e:7a:ea:ba:98:81:7a:6d:f1:62:8e:74: a5:ab:c7:06:ed:23:77:26:2b:bc:4c:3d:0e:f5:9d: cc:25:c3:62:87:10:4b:97:de:ec:80:98:06:14:9f: 65:8c:59:63:40:6f:64:be:96:21:ab:3b:a0:07:74: 4b:94:da:6b:f6:14:66:8a:5f:65:88:f0:00:10:c4: 8c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:B8:3F:78:DA:69:54:77:7A:F3:76:E6:67:DA:1C:2C:76:B6:CC:C4 X509v3 Authority Key Identifier: keyid:50:EA:5A:CB:44:7B:2C:EB:93:2A:03:F2:90:08:2D:C7:6F:8E:40:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:ee:56:12:49:22:0a:8c:fc:6c:98:96:07:71:3f:a8:3e:58: 66:fe:32:e1:b5:a1:6d:30:fb:de:91:8a:08:fa:f8:63:7c:ab: b6:78:d3:f1:cc:54:5d:63:16:93:f4:73:12:5e:15:b4:58:45: 98:bf:d7:2e:9e:14:00:27:29:dd:7c:f7:ca:f3:a0:9f:10:da: f0:2a:e8:0f:25:06:c4:81:fe:a6:6d:83:96:59:e6:9e:bc:b4: d3:a6:aa:1b:11:16:9b:ca:6f:20:21:f5:e5:ef:0d:85:3f:86: 98:de:af:1f:4d:19:ac:67:a8:09:dd:e0:c7:1f:c6:d4:7f:5b: 6b:dc:2e:4b:c6:b0:5e:5a:c4:6e:c4:f2:c1:99:47:02:ff:f1: 35:12:b3:0e:3f:af:05:7d:00:65:e5:e9:cf:60:8b:0b:a0:f3: 60:9b:99:3d:10:70:c4:f4:f3:66:80:f1:bd:dd:b0:19:0c:7a: 88:c0:16:ed:33:b7:65:25:2e:84:1c:c4:3e:c1:fa:e8:1d:20: c3:69:65:10:45:f4:d3:77:11:62:3d:72:95:51:e8:a1:19:6e: 1c:0f:53:8d:33:5e:04:51:9d:3f:a4:42:b5:1b:38:a7:23:8b: 22:5c:0f:13:23:b6:f4:a4:c7:be:41:64:5a:37:14:c1:15:82: 0b:e4:c6:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfUPo/NgPebhnB81FHu3jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwZWE1YWNiNDQ3YjJjZWI5MzJhMDNmMjkwMDgyZGM3NmY4 ZTQwZTMwHhcNMjYwMjA5MTMwMDMxWhcNMjYwMjEwMTMwMDMxWjAzMTEwLwYDVQQD EygzM2I4M2Y3OGRhNjk1NDc3N2FmMzc2ZTY2N2RhMWMyYzc2YjZjY2M0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvkeUdCkETG8ljelJRTcMFgl6afR8 F2rszAr8F05VaRrsAFg1Tbv2XBwzTlVQUSFBTZWscS3c1aZ9Diu9wQDbiXOkCk8W 2gUoaIdmFIHei6z+N44N49qhiNUrjlbzNB8RRwrF+XLrDxQuB5O//y7ECcy61KUl 7C1N+oqMvB7zsEEhr59zNzEZMtTUQ5+AZozQ8xPGUIQ+XGlvT/KtxA3/aOUL8Q7o WgkjJ1jMhtuP0zL8hhVoV5Eeeuq6mIF6bfFijnSlq8cG7SN3Jiu8TD0O9Z3MJcNi hxBLl97sgJgGFJ9ljFljQG9kvpYhqzugB3RLlNpr9hRmil9liPAAEMSMlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDO4P3jaaVR3evN25mfaHCx2tszEMB8GA1UdIwQY MBaAFFDqWstEeyzrkyoD8pAILcdvjkDjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVU9wYXkwUjdMT3VUS2dQeWtBZ3R4Mi1PUU9NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8xMGVkZWYtMjUzZC00OWIxLTk2OWUt NWNhOGFjMTgwOTZkLzEvVU9wYXkwUjdMT3VUS2dQeWtBZ3R4Mi1PUU9NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi8xMGVkZWYtMjUzZC00OWIxLTk2OWUtNWNhOGFjMTgwOTZk LzEvVU9wYXkwUjdMT3VUS2dQeWtBZ3R4Mi1PUU9NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGe5WEkki Coz8bJiWB3E/qD5YZv4y4bWhbTD73pGKCPr4Y3yrtnjT8cxUXWMWk/RzEl4VtFhF mL/XLp4UACcp3Xz3yvOgnxDa8CroDyUGxIH+pm2Dllnmnry006aqGxEWm8pvICH1 5e8NhT+GmN6vH00ZrGeoCd3gxx/G1H9ba9wuS8awXlrEbsTywZlHAv/xNRKzDj+v BX0AZeXpz2CLC6DzYJuZPRBwxPTzZoDxvd2wGQx6iMAW7TO3ZSUuhBzEPsH66B0g w2llEEX003cRYj1ylVHooRluHA9TjTNeBFGdP6RCtRs4pyOLIlwPEyO29KTHvkFk WjcUwRWCC+TGPg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:29 2026 by rpki-client