This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/e7e36e-a323-4f47-a776-66b141194fd2/1/cm-USKkQ0ldBV6MEA_RsEXKu7bY.mft File: cm-USKkQ0ldBV6MEA_RsEXKu7bY.mft (raw, json) Hash identifier: +S74ikc8lzaMJ+cXzIr5lj0O1UXbVZtUMQl5AoH2xtM= Subject key identifier: A4:0F:F6:C3:15:94:9B:5D:EF:69:DC:D9:D6:A1:87:FF:C4:BD:32:FD Authority key identifier: 72:6F:94:48:A9:10:D2:57:41:57:A3:04:03:F4:6C:11:72:AE:ED:B6 Certificate issuer: /CN=726f9448a910d2574157a30403f46c1172aeedb6 Certificate serial: 019C427DD92F950A8BB3723AD811DFF45ABE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cm-USKkQ0ldBV6MEA_RsEXKu7bY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/e7e36e-a323-4f47-a776-66b141194fd2/1/cm-USKkQ0ldBV6MEA_RsEXKu7bY.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 13:01:09 +0000 Manifest this update: Mon 09 Feb 2026 13:01:09 +0000 Manifest next update: Tue 10 Feb 2026 13:01:09 +0000 Files and hashes: 1: cm-USKkQ0ldBV6MEA_RsEXKu7bY.crl (hash: AjZmPHiDt4uOwm+ZvK2SF5d+mdcK5MIIveXekhi2ACk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/e7e36e-a323-4f47-a776-66b141194fd2/1/cm-USKkQ0ldBV6MEA_RsEXKu7bY.crl rsync://rpki.ripe.net/repository/DEFAULT/3e/e7e36e-a323-4f47-a776-66b141194fd2/1/cm-USKkQ0ldBV6MEA_RsEXKu7bY.mft rsync://rpki.ripe.net/repository/DEFAULT/cm-USKkQ0ldBV6MEA_RsEXKu7bY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:d9:2f:95:0a:8b:b3:72:3a:d8:11:df:f4:5a:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=726f9448a910d2574157a30403f46c1172aeedb6 Validity Not Before: Feb 9 13:01:09 2026 GMT Not After : Feb 10 13:01:09 2026 GMT Subject: CN=a40ff6c315949b5def69dcd9d6a187ffc4bd32fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:95:88:60:b3:5b:e9:98:d6:6e:81:bf:6e:dc: 2d:89:d7:23:0f:0f:8f:17:32:da:b6:41:ad:76:6a: d8:58:a9:15:4a:f5:03:42:77:1b:8d:6c:83:56:36: 2f:9a:93:3a:b1:20:49:7f:76:a7:82:28:57:a1:d6: ad:3c:03:de:9e:d9:cb:16:97:89:31:ad:a2:45:5e: 79:86:6d:66:51:19:84:44:48:7c:62:af:4f:5e:15: 74:f8:10:f2:76:fb:24:a9:3a:2a:64:3b:3e:0a:73: f8:75:02:a0:68:c9:69:bf:1a:d7:c8:d9:04:79:30: f1:24:97:dc:dc:ce:a1:42:ae:e3:49:9f:0d:6c:23: 50:51:9a:ce:20:f5:de:1a:08:6b:70:3a:6e:0f:84: 8b:df:fd:39:27:dc:0e:98:39:06:06:07:34:4f:c7: e3:12:8a:bf:64:d4:4c:4f:80:fb:70:a1:93:c3:bf: c5:e0:b9:7f:ae:54:b3:00:75:cc:d9:0e:7f:34:c1: 3a:ff:32:cc:31:15:84:25:73:0e:38:ce:3c:f6:ca: 58:e7:7a:99:5d:e1:4b:83:a9:b2:4b:8e:55:fa:0f: 6c:92:b7:2d:df:9b:51:9a:a0:a5:c2:a2:d9:10:07: 6f:16:7d:39:bf:cb:09:08:15:eb:b5:bc:af:90:2a: 99:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:0F:F6:C3:15:94:9B:5D:EF:69:DC:D9:D6:A1:87:FF:C4:BD:32:FD X509v3 Authority Key Identifier: keyid:72:6F:94:48:A9:10:D2:57:41:57:A3:04:03:F4:6C:11:72:AE:ED:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cm-USKkQ0ldBV6MEA_RsEXKu7bY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/e7e36e-a323-4f47-a776-66b141194fd2/1/cm-USKkQ0ldBV6MEA_RsEXKu7bY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/e7e36e-a323-4f47-a776-66b141194fd2/1/cm-USKkQ0ldBV6MEA_RsEXKu7bY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:b7:96:a1:cf:b7:1a:08:57:0a:72:dc:87:72:74:2d:4e:2d: 3d:8d:26:4b:8d:f4:93:76:d7:91:67:6e:a6:3c:2d:29:dc:a4: 3f:4b:3c:66:11:08:30:f9:81:98:69:b4:30:64:db:cc:c3:62: 13:e2:63:16:be:db:f4:d6:59:0f:b3:9b:3f:77:7a:05:75:1b: 7e:94:63:67:a3:71:54:b7:64:d5:9c:96:49:9b:0c:74:5c:4b: c0:a1:08:34:5e:08:4e:f7:b9:f4:98:aa:11:63:12:e9:79:0b: e5:23:5d:18:c1:86:19:e2:b3:66:15:57:cb:49:35:10:30:44: 93:a3:9d:6e:d6:99:fb:86:e9:13:51:d8:ce:93:63:98:4c:fb: 51:31:8c:9f:b0:1e:0b:4c:53:72:26:fc:15:8a:bf:f0:30:09: 9e:03:9b:fe:33:b5:38:13:5f:d7:70:a4:b5:c4:0e:67:90:2b: d9:6a:6b:2f:4f:7b:80:62:22:70:c2:0e:f9:99:ca:18:40:c6: ad:9f:8f:fe:c4:dd:eb:0e:08:57:12:14:5e:f2:4f:b7:d4:29: eb:94:2a:6e:1b:b0:db:96:4c:25:f8:66:80:61:52:1a:ef:2c: 89:1a:ce:d8:16:a2:0f:3f:07:c0:42:d3:97:5e:1d:b5:72:b5: 71:cb:05:34 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfdkvlQqLs3I62BHf9Fq+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyNmY5NDQ4YTkxMGQyNTc0MTU3YTMwNDAzZjQ2YzExNzJh ZWVkYjYwHhcNMjYwMjA5MTMwMTA5WhcNMjYwMjEwMTMwMTA5WjAzMTEwLwYDVQQD EyhhNDBmZjZjMzE1OTQ5YjVkZWY2OWRjZDlkNmExODdmZmM0YmQzMmZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr5WIYLNb6ZjWboG/btwtidcjDw+P FzLatkGtdmrYWKkVSvUDQncbjWyDVjYvmpM6sSBJf3angihXodatPAPentnLFpeJ Ma2iRV55hm1mURmEREh8Yq9PXhV0+BDydvskqToqZDs+CnP4dQKgaMlpvxrXyNkE eTDxJJfc3M6hQq7jSZ8NbCNQUZrOIPXeGghrcDpuD4SL3/05J9wOmDkGBgc0T8fj Eoq/ZNRMT4D7cKGTw7/F4Ll/rlSzAHXM2Q5/NME6/zLMMRWEJXMOOM489spY53qZ XeFLg6myS45V+g9skrct35tRmqClwqLZEAdvFn05v8sJCBXrtbyvkCqZGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKQP9sMVlJtd72nc2dahh//EvTL9MB8GA1UdIwQY MBaAFHJvlEipENJXQVejBAP0bBFyru22MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY20tVVNLa1EwbGRCVjZNRUFfUnNFWEt1N2JZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS9lN2UzNmUtYTMyMy00ZjQ3LWE3NzYt NjZiMTQxMTk0ZmQyLzEvY20tVVNLa1EwbGRCVjZNRUFfUnNFWEt1N2JZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZS9lN2UzNmUtYTMyMy00ZjQ3LWE3NzYtNjZiMTQxMTk0ZmQy LzEvY20tVVNLa1EwbGRCVjZNRUFfUnNFWEt1N2JZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlbeWoc+3 GghXCnLch3J0LU4tPY0mS430k3bXkWdupjwtKdykP0s8ZhEIMPmBmGm0MGTbzMNi E+JjFr7b9NZZD7ObP3d6BXUbfpRjZ6NxVLdk1ZyWSZsMdFxLwKEINF4ITve59Jiq EWMS6XkL5SNdGMGGGeKzZhVXy0k1EDBEk6OdbtaZ+4bpE1HYzpNjmEz7UTGMn7Ae C0xTcib8FYq/8DAJngOb/jO1OBNf13CktcQOZ5Ar2WprL097gGIicMIO+ZnKGEDG rZ+P/sTd6w4IVxIUXvJPt9Qp65Qqbhuw25ZMJfhmgGFSGu8siRrO2BaiDz8HwELT l14dtXK1ccsFNA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:53:45 2026 by rpki-client