This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft File: uqI_dArVZMVpO3cJHHGzwDE2pYA.mft (raw, json) Hash identifier: h35/CjY838zCNLd9o0xLX9RQTcNgUPGATTRS7zRd8jw= Subject key identifier: C9:31:65:05:73:09:A4:74:37:56:3E:FE:5A:19:5E:DC:74:68:19:69 Authority key identifier: BA:A2:3F:74:0A:D5:64:C5:69:3B:77:09:1C:71:B3:C0:31:36:A5:80 Certificate issuer: /CN=baa23f740ad564c5693b77091c71b3c03136a580 Certificate serial: 019C43591773F1F7923A4EB58511FA36DD44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft Manifest number: 0C89 Signing time: Mon 09 Feb 2026 17:00:37 +0000 Manifest this update: Mon 09 Feb 2026 17:00:37 +0000 Manifest next update: Tue 10 Feb 2026 17:00:37 +0000 Files and hashes: 1: Jd6kW4lGNT0OBJjFacs1nyylkLQ.roa (hash: DN4lDMoyde0MYsDKgYpzaGvP9YKbzDvp6j/0REyCcMs=) 2: uqI_dArVZMVpO3cJHHGzwDE2pYA.crl (hash: c+v5kBhesifY7Nk1A6V7wntMQalrwsVwacc/rCJoE34=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:17:73:f1:f7:92:3a:4e:b5:85:11:fa:36:dd:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=baa23f740ad564c5693b77091c71b3c03136a580 Validity Not Before: Feb 9 17:00:37 2026 GMT Not After : Feb 10 17:00:37 2026 GMT Subject: CN=c93165057309a47437563efe5a195edc74681969 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:57:fe:d6:7f:81:0e:be:e9:1d:af:9e:29:55: 5f:f6:e3:39:12:aa:f3:94:e6:fa:3c:59:a4:00:86: fa:74:0f:53:f3:6e:6b:26:d2:36:41:bb:d7:7f:79: 11:ef:cf:9a:94:e6:d6:73:77:25:50:70:ee:fd:53: ff:5c:b4:0e:85:90:49:5b:a5:5f:9a:e7:db:1e:39: e9:c5:fb:5b:52:17:b2:7b:0f:d1:ce:9d:c0:a1:1d: f0:f8:63:7d:e1:a3:f6:e1:ee:48:d7:73:27:6e:ec: d8:95:8f:90:4e:62:f9:cb:f8:5a:f1:5c:ed:60:f2: 7f:29:01:fe:e9:05:29:a7:0d:2b:1c:8a:0d:7a:bb: 01:1a:fb:75:d5:3e:63:99:90:3f:97:bb:d6:01:02: 53:00:9a:b7:f5:20:34:28:8c:17:a5:91:83:28:2d: b5:24:49:ff:b8:dd:02:dc:38:5b:9f:06:f9:fc:76: a8:65:6e:86:26:a2:b7:f8:0f:56:f4:79:0a:ec:1b: 5d:c8:73:3d:07:fa:20:e3:87:93:b4:e1:eb:5f:c3: c4:34:8b:37:d0:b8:89:ae:db:6c:0c:18:32:10:89: 84:c8:c7:07:01:56:9a:47:21:82:e2:69:e3:3c:b6: 5a:c6:d4:59:75:8d:a4:8c:39:2c:0d:da:f2:05:26: 7c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:31:65:05:73:09:A4:74:37:56:3E:FE:5A:19:5E:DC:74:68:19:69 X509v3 Authority Key Identifier: keyid:BA:A2:3F:74:0A:D5:64:C5:69:3B:77:09:1C:71:B3:C0:31:36:A5:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:6e:d6:df:18:74:a0:f8:6d:9f:00:22:ea:21:25:db:a9:74: 29:8b:dc:03:3c:46:03:7e:04:d9:7a:f2:31:27:fa:cf:35:98: aa:13:46:68:85:67:a6:39:74:5f:84:5d:41:49:05:27:a6:9d: 13:dd:3d:6a:59:6e:7b:15:82:8a:5f:0d:66:b5:0c:25:48:b6: 5b:64:64:df:9a:d6:c1:be:85:68:fb:d7:64:cf:59:15:1b:8d: 85:88:a1:a2:6e:69:f4:bf:33:6e:8e:7a:ca:33:6a:b4:8c:e5: 82:b2:87:3e:fb:a0:41:7f:b8:e4:80:4c:57:f5:da:c6:c8:96: c2:ae:aa:7d:5d:0e:0e:d2:c9:00:bd:59:33:9c:9f:fa:49:ba: e1:fb:1b:d7:94:f2:7f:64:4e:a6:e9:0a:fe:80:81:71:84:31: cd:8e:40:35:18:39:42:fa:6b:c3:f4:ec:c2:a5:ef:88:9a:0a: ee:a8:64:ea:0b:34:dd:8f:24:fd:18:4b:d1:42:20:92:6a:55: 15:cc:98:63:79:86:78:3b:f5:db:3f:42:be:6a:1c:5a:fb:e4: 0d:28:36:69:83:db:97:a5:32:90:ae:9d:1d:e3:bb:0a:ef:82: 93:52:ec:93:28:6a:fc:58:23:94:2e:ed:ae:23:2b:e8:76:da: 8e:50:ed:71 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWRdz8feSOk61hRH6Nt1EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhYTIzZjc0MGFkNTY0YzU2OTNiNzcwOTFjNzFiM2MwMzEz NmE1ODAwHhcNMjYwMjA5MTcwMDM3WhcNMjYwMjEwMTcwMDM3WjAzMTEwLwYDVQQD EyhjOTMxNjUwNTczMDlhNDc0Mzc1NjNlZmU1YTE5NWVkYzc0NjgxOTY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAolf+1n+BDr7pHa+eKVVf9uM5Eqrz lOb6PFmkAIb6dA9T825rJtI2QbvXf3kR78+alObWc3clUHDu/VP/XLQOhZBJW6Vf mufbHjnpxftbUheyew/Rzp3AoR3w+GN94aP24e5I13MnbuzYlY+QTmL5y/ha8Vzt YPJ/KQH+6QUppw0rHIoNersBGvt11T5jmZA/l7vWAQJTAJq39SA0KIwXpZGDKC21 JEn/uN0C3Dhbnwb5/HaoZW6GJqK3+A9W9HkK7BtdyHM9B/og44eTtOHrX8PENIs3 0LiJrttsDBgyEImEyMcHAVaaRyGC4mnjPLZaxtRZdY2kjDksDdryBSZ8UQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMkxZQVzCaR0N1Y+/loZXtx0aBlpMB8GA1UdIwQY MBaAFLqiP3QK1WTFaTt3CRxxs8AxNqWAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXFJX2RBclZaTVZwTzNjSkhIR3p3REUycFlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi84YzA5YjMtZjZkOC00YzlhLTk2NGMt ODUyN2M5YjNlNzVmLzEvdXFJX2RBclZaTVZwTzNjSkhIR3p3REUycFlBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi84YzA5YjMtZjZkOC00YzlhLTk2NGMtODUyN2M5YjNlNzVm LzEvdXFJX2RBclZaTVZwTzNjSkhIR3p3REUycFlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkG7W3xh0 oPhtnwAi6iEl26l0KYvcAzxGA34E2XryMSf6zzWYqhNGaIVnpjl0X4RdQUkFJ6ad E909alluexWCil8NZrUMJUi2W2Rk35rWwb6FaPvXZM9ZFRuNhYihom5p9L8zbo56 yjNqtIzlgrKHPvugQX+45IBMV/XaxsiWwq6qfV0ODtLJAL1ZM5yf+km64fsb15Ty f2ROpukK/oCBcYQxzY5ANRg5Qvprw/TswqXviJoK7qhk6gs03Y8k/RhL0UIgkmpV FcyYY3mGeDv12z9CvmocWvvkDSg2aYPbl6UykK6dHeO7Cu+Ck1Lskyhq/FgjlC7t riMr6HbajlDtcQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:09:59 2026 by rpki-client