This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.mft File: dUI-b2St_Fh6CPgawqySYOsu1hU.mft (raw, json) Hash identifier: 0sMH5QDQbJXCqxKgAsWaOVLXdokB0xVYVDMJFEPZvFw= Subject key identifier: 47:A6:6A:B8:BB:D9:7C:A4:38:57:42:21:B3:1F:25:B9:15:62:68:A3 Authority key identifier: 75:42:3E:6F:64:AD:FC:58:7A:08:F8:1A:C2:AC:92:60:EB:2E:D6:15 Certificate issuer: /CN=75423e6f64adfc587a08f81ac2ac9260eb2ed615 Certificate serial: 019C41341C21A847403E477E0335B3ACF46B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dUI-b2St_Fh6CPgawqySYOsu1hU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.mft Manifest number: 0E80 Signing time: Mon 09 Feb 2026 07:00:59 +0000 Manifest this update: Mon 09 Feb 2026 07:00:59 +0000 Manifest next update: Tue 10 Feb 2026 07:00:59 +0000 Files and hashes: 1: dUI-b2St_Fh6CPgawqySYOsu1hU.crl (hash: pcLca56XHDyHP9ZnoPnW/nKtiND9LoeW8UQyaH4xlQ8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.mft rsync://rpki.ripe.net/repository/DEFAULT/dUI-b2St_Fh6CPgawqySYOsu1hU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:1c:21:a8:47:40:3e:47:7e:03:35:b3:ac:f4:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75423e6f64adfc587a08f81ac2ac9260eb2ed615 Validity Not Before: Feb 9 07:00:59 2026 GMT Not After : Feb 10 07:00:59 2026 GMT Subject: CN=47a66ab8bbd97ca438574221b31f25b9156268a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c1:04:c5:2e:ab:64:ff:c9:5c:41:96:39:6f: 13:21:dc:bf:c6:d3:47:30:f5:03:61:93:fc:62:89: b7:ac:7d:ba:88:ce:e2:84:09:da:97:82:07:c9:ab: a9:62:cc:e6:d6:48:82:88:46:c1:b1:17:11:72:21: e5:7d:2e:4e:76:69:06:82:d1:39:21:eb:52:7c:25: 15:17:2e:58:85:c9:3d:79:03:aa:52:3a:c7:7c:95: 5a:4a:b9:43:94:02:42:a0:4c:cc:dc:2e:57:ef:7f: 84:c1:71:69:fd:60:27:b0:cd:98:34:f0:b2:28:ad: 1a:a6:0c:c5:13:79:d7:17:ce:b8:46:35:bc:bb:b3: 25:0a:cd:fd:dd:ec:3b:ed:e4:0d:48:fb:18:06:c7: ab:d1:fa:cd:2d:41:aa:ce:bb:1f:9a:29:c1:c7:63: 88:1f:93:32:37:64:a7:d5:91:83:27:71:a6:1e:e3: 3b:96:1b:62:c1:38:eb:85:2e:37:60:45:b5:46:b8: 8d:b2:76:03:62:60:79:95:df:d8:8d:86:d3:17:db: 34:aa:51:b0:03:8b:7f:68:07:47:01:60:eb:a5:3b: 99:f5:0f:e9:71:1f:1e:d8:47:7b:79:ce:4c:5d:c1: 44:71:88:b9:53:3b:58:d4:41:6e:c5:dd:b2:d5:17: a9:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:A6:6A:B8:BB:D9:7C:A4:38:57:42:21:B3:1F:25:B9:15:62:68:A3 X509v3 Authority Key Identifier: keyid:75:42:3E:6F:64:AD:FC:58:7A:08:F8:1A:C2:AC:92:60:EB:2E:D6:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dUI-b2St_Fh6CPgawqySYOsu1hU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:8f:ca:5c:15:39:ad:6a:f3:05:45:38:f9:f7:8a:7b:2b:a4: 94:f9:7c:88:57:9b:2a:38:60:28:ed:6f:4c:47:4b:2c:0e:38: b7:ea:a1:c0:76:cd:17:54:29:8a:c3:53:2b:e0:0b:19:22:89: d2:48:de:28:e3:1f:6f:c9:28:4d:da:87:b3:45:09:a5:1f:52: c6:48:ee:78:15:ac:95:05:9f:7a:f9:89:ac:ec:e9:8b:22:df: a2:e3:01:46:f6:50:2c:64:63:69:fd:66:ca:13:b7:77:08:83: 88:bf:04:63:74:1d:c5:ce:e5:d6:60:3b:45:c4:66:1b:3e:0e: 92:86:1e:d8:5f:e9:c0:7f:f3:32:fe:cc:a5:75:1e:ac:ca:bd: 80:4d:9b:be:18:d3:82:d1:25:21:57:17:21:ea:8a:21:d1:f7: cb:b2:d0:cb:c9:b0:dc:13:16:c8:91:4a:7b:c2:f5:dd:a1:91: 4a:35:69:c8:45:0e:0e:7f:6a:2e:72:7a:b1:2e:6c:43:ef:6a: fa:bd:90:5c:95:62:9b:da:55:d1:77:dc:38:9d:4d:c2:41:50: 3d:5e:3d:33:a2:93:65:0f:2f:4b:72:25:47:50:75:de:1f:76: 52:2c:f6:d5:fe:dd:28:5b:bf:a4:78:9c:49:2a:77:78:08:0d: 7b:d9:5d:dd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNBwhqEdAPkd+AzWzrPRrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1NDIzZTZmNjRhZGZjNTg3YTA4ZjgxYWMyYWM5MjYwZWIy ZWQ2MTUwHhcNMjYwMjA5MDcwMDU5WhcNMjYwMjEwMDcwMDU5WjAzMTEwLwYDVQQD Eyg0N2E2NmFiOGJiZDk3Y2E0Mzg1NzQyMjFiMzFmMjViOTE1NjI2OGEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArcEExS6rZP/JXEGWOW8TIdy/xtNH MPUDYZP8Yom3rH26iM7ihAnal4IHyaupYszm1kiCiEbBsRcRciHlfS5OdmkGgtE5 IetSfCUVFy5Yhck9eQOqUjrHfJVaSrlDlAJCoEzM3C5X73+EwXFp/WAnsM2YNPCy KK0apgzFE3nXF864RjW8u7MlCs393ew77eQNSPsYBser0frNLUGqzrsfminBx2OI H5MyN2Sn1ZGDJ3GmHuM7lhtiwTjrhS43YEW1RriNsnYDYmB5ld/YjYbTF9s0qlGw A4t/aAdHAWDrpTuZ9Q/pcR8e2Ed7ec5MXcFEcYi5UztY1EFuxd2y1RepJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEemari72XykOFdCIbMfJbkVYmijMB8GA1UdIwQY MBaAFHVCPm9krfxYegj4GsKskmDrLtYVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFVJLWIyU3RfRmg2Q1BnYXdxeVNZT3N1MWhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC82YjE2OGYtMmQ1MS00ODgyLWE4NjYt MjliNGY5MmFjOGZkLzEvZFVJLWIyU3RfRmg2Q1BnYXdxeVNZT3N1MWhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC82YjE2OGYtMmQ1MS00ODgyLWE4NjYtMjliNGY5MmFjOGZk LzEvZFVJLWIyU3RfRmg2Q1BnYXdxeVNZT3N1MWhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARI/KXBU5 rWrzBUU4+feKeyuklPl8iFebKjhgKO1vTEdLLA44t+qhwHbNF1QpisNTK+ALGSKJ 0kjeKOMfb8koTdqHs0UJpR9SxkjueBWslQWfevmJrOzpiyLfouMBRvZQLGRjaf1m yhO3dwiDiL8EY3Qdxc7l1mA7RcRmGz4OkoYe2F/pwH/zMv7MpXUerMq9gE2bvhjT gtElIVcXIeqKIdH3y7LQy8mw3BMWyJFKe8L13aGRSjVpyEUODn9qLnJ6sS5sQ+9q +r2QXJVim9pV0XfcOJ1NwkFQPV49M6KTZQ8vS3IlR1B13h92Uiz21f7dKFu/pHic SSp3eAgNe9ld3Q== -----END CERTIFICATE-----Generated at Mon Feb 9 16:53:54 2026 by rpki-client