This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft File: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft (raw, json) Hash identifier: VBMh6XLg7+3ImkuqMEtRX3vy5IGhsKiQbMjAUSrJpz0= Subject key identifier: 82:80:FB:48:DC:02:CC:D0:F4:02:F6:60:DE:DF:57:3D:3A:A8:D4:2E Authority key identifier: 53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F Certificate issuer: /CN=53e3aedd91be82451342dcd1c9828345db661a5f Certificate serial: 019C42103C14FBD236F98006856BFEA8F7CA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft Manifest number: 0A9B Signing time: Mon 09 Feb 2026 11:01:25 +0000 Manifest this update: Mon 09 Feb 2026 11:01:25 +0000 Manifest next update: Tue 10 Feb 2026 11:01:25 +0000 Files and hashes: 1: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl (hash: mGUjuCigwRv/oDnXJpm6qhSHPYzYRuYND6Y3nSStia4=) 2: d4Z8dyEwWVlK-z1Mt82VdRZaIcY.roa (hash: pNguw2qBCLAYUuPZ0wVkI6YbP099kM2Xh8UMvqT4t9o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:3c:14:fb:d2:36:f9:80:06:85:6b:fe:a8:f7:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53e3aedd91be82451342dcd1c9828345db661a5f Validity Not Before: Feb 9 11:01:25 2026 GMT Not After : Feb 10 11:01:25 2026 GMT Subject: CN=8280fb48dc02ccd0f402f660dedf573d3aa8d42e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:0d:6e:0c:37:47:1c:fb:6f:7e:1c:5b:3f:81: 82:98:51:2d:82:eb:80:f9:23:97:cb:5b:b9:e3:a6: 9d:06:95:4d:15:5f:8b:2a:8b:da:75:27:55:75:ef: 80:cc:19:ee:ca:2d:1c:e0:c1:f4:fa:93:a9:8d:6f: c9:6f:f7:20:4d:41:03:e4:8f:08:ea:61:53:b1:4b: 73:25:34:f1:df:27:22:b9:24:8f:42:74:4c:98:a8: b5:22:98:81:21:90:75:62:91:51:6e:0c:00:e9:0a: 8a:51:8d:d0:bf:66:3d:cd:85:1b:ba:2a:56:fb:82: c1:da:84:11:53:fd:2b:7b:3a:12:64:78:67:96:8e: 24:4d:94:e9:8d:0d:b3:82:98:60:d4:2e:19:de:69: ca:1a:e7:5f:8f:d0:3a:57:f3:f8:32:00:e3:51:f5: 38:1e:95:74:2d:49:5f:36:47:ca:85:33:64:b4:d1: 56:30:3f:4f:9b:bf:ee:48:3a:bc:ee:ec:fb:56:8b: e2:c3:41:37:26:ba:12:6e:4c:c1:a9:47:e3:aa:b1: bd:e6:9d:9f:28:c3:ff:45:e0:4f:47:d4:24:72:fd: d9:e9:99:1a:cc:2c:0d:fb:ac:bf:49:31:fd:d2:00: 3e:5f:72:75:30:e3:94:fb:e4:66:0b:16:db:e9:df: a8:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:80:FB:48:DC:02:CC:D0:F4:02:F6:60:DE:DF:57:3D:3A:A8:D4:2E X509v3 Authority Key Identifier: keyid:53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c0:2a:8a:5f:a3:c7:0b:0b:66:f1:b3:76:90:1c:5e:88:3c:a4: a4:84:89:dd:34:86:71:cc:2e:8d:36:b5:76:97:68:d5:7d:6e: 45:fe:0b:00:89:ca:48:05:60:59:18:34:4c:29:c0:e3:fa:15: 54:13:3f:b9:d3:ff:1f:43:2f:90:22:b2:ac:66:25:ef:97:66: 0f:69:8f:05:04:1f:c4:88:89:82:31:1c:c1:df:34:da:f2:7f: 8a:b7:bc:29:2a:91:90:4b:24:45:06:a1:e8:83:79:0c:04:d0: 1f:4f:6a:06:23:e7:2b:ff:3a:b3:38:87:10:cf:a8:d2:7f:8d: b0:40:39:f5:9f:b0:81:9b:17:34:f4:37:59:50:8d:2d:11:58: 2a:0e:9f:07:a6:b6:c4:c6:28:61:bc:5a:bd:d6:05:24:ec:0a: 97:21:97:52:d4:fa:46:69:19:55:11:1c:65:3c:f4:f3:93:dc: 49:12:51:b2:86:57:3f:c1:aa:b5:7e:46:61:2f:bb:c7:46:96: 3f:b1:07:8c:74:cd:5e:84:b5:b0:a5:8e:ed:92:67:13:db:f2: 5f:56:25:f4:39:12:7d:ca:26:71:37:a9:87:35:fe:d3:26:e0: 6b:3d:f6:6f:fa:88:85:f5:05:d6:76:70:f7:c1:6d:07:9c:bb: 68:ab:8d:75 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEDwU+9I2+YAGhWv+qPfKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzZTNhZWRkOTFiZTgyNDUxMzQyZGNkMWM5ODI4MzQ1ZGI2 NjFhNWYwHhcNMjYwMjA5MTEwMTI1WhcNMjYwMjEwMTEwMTI1WjAzMTEwLwYDVQQD Eyg4MjgwZmI0OGRjMDJjY2QwZjQwMmY2NjBkZWRmNTczZDNhYThkNDJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5w1uDDdHHPtvfhxbP4GCmFEtguuA +SOXy1u546adBpVNFV+LKovadSdVde+AzBnuyi0c4MH0+pOpjW/Jb/cgTUED5I8I 6mFTsUtzJTTx3yciuSSPQnRMmKi1IpiBIZB1YpFRbgwA6QqKUY3Qv2Y9zYUbuipW +4LB2oQRU/0rezoSZHhnlo4kTZTpjQ2zgphg1C4Z3mnKGudfj9A6V/P4MgDjUfU4 HpV0LUlfNkfKhTNktNFWMD9Pm7/uSDq87uz7Voviw0E3JroSbkzBqUfjqrG95p2f KMP/ReBPR9Qkcv3Z6ZkazCwN+6y/STH90gA+X3J1MOOU++RmCxbb6d+o/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIKA+0jcAszQ9AL2YN7fVz06qNQuMB8GA1UdIwQY MBaAFFPjrt2RvoJFE0Lc0cmCg0XbZhpfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8wNGU4YjItYzc2Zi00NjI5LTk1YWQt YTdkOTQ1YWYxNGU1LzEvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS8wNGU4YjItYzc2Zi00NjI5LTk1YWQtYTdkOTQ1YWYxNGU1 LzEvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwCqKX6PH Cwtm8bN2kBxeiDykpISJ3TSGccwujTa1dpdo1X1uRf4LAInKSAVgWRg0TCnA4/oV VBM/udP/H0MvkCKyrGYl75dmD2mPBQQfxIiJgjEcwd802vJ/ire8KSqRkEskRQah 6IN5DATQH09qBiPnK/86sziHEM+o0n+NsEA59Z+wgZsXNPQ3WVCNLRFYKg6fB6a2 xMYoYbxavdYFJOwKlyGXUtT6RmkZVREcZTz085PcSRJRsoZXP8GqtX5GYS+7x0aW P7EHjHTNXoS1sKWO7ZJnE9vyX1Yl9DkSfcomcTephzX+0ybgaz32b/qIhfUF1nZw 98FtB5y7aKuNdQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:47:33 2026 by rpki-client