This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/82785f-f0c5-4313-91a1-6dfd8bbadfe9/1/0ur89N6SC5zmRdbmlt8IqosFUZs.mft File: 0ur89N6SC5zmRdbmlt8IqosFUZs.mft (raw, json) Hash identifier: eeKnaiTF8cP7KcTqukH4RmEaN0ObFikgte2yXEqAxT0= Subject key identifier: 48:20:2B:DC:37:D6:86:49:27:1C:46:00:53:1A:99:F4:5C:19:8E:40 Authority key identifier: D2:EA:FC:F4:DE:92:0B:9C:E6:45:D6:E6:96:DF:08:AA:8B:05:51:9B Certificate issuer: /CN=d2eafcf4de920b9ce645d6e696df08aa8b05519b Certificate serial: 019C43FE2CAAC79FDA4FABC4C9AA1CDFACEE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ur89N6SC5zmRdbmlt8IqosFUZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/82785f-f0c5-4313-91a1-6dfd8bbadfe9/1/0ur89N6SC5zmRdbmlt8IqosFUZs.mft Manifest number: 1512 Signing time: Mon 09 Feb 2026 20:00:56 +0000 Manifest this update: Mon 09 Feb 2026 20:00:56 +0000 Manifest next update: Tue 10 Feb 2026 20:00:56 +0000 Files and hashes: 1: 0ur89N6SC5zmRdbmlt8IqosFUZs.crl (hash: GtP41uhj/3OB+zF5UvMEqxlS5/sLOk+djf+FInlYNgA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/82785f-f0c5-4313-91a1-6dfd8bbadfe9/1/0ur89N6SC5zmRdbmlt8IqosFUZs.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/82785f-f0c5-4313-91a1-6dfd8bbadfe9/1/0ur89N6SC5zmRdbmlt8IqosFUZs.mft rsync://rpki.ripe.net/repository/DEFAULT/0ur89N6SC5zmRdbmlt8IqosFUZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:2c:aa:c7:9f:da:4f:ab:c4:c9:aa:1c:df:ac:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2eafcf4de920b9ce645d6e696df08aa8b05519b Validity Not Before: Feb 9 20:00:56 2026 GMT Not After : Feb 10 20:00:56 2026 GMT Subject: CN=48202bdc37d68649271c4600531a99f45c198e40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ea:1a:db:ee:0e:35:bf:cf:76:cd:3c:a6:9b: 40:19:75:0f:51:ce:3a:c4:b0:97:23:0d:3c:b4:08: 14:60:8f:34:e2:32:66:11:82:50:99:2d:55:cb:3e: 98:73:05:02:ed:1c:5e:9b:30:64:36:20:c4:d2:6d: a7:20:c9:47:26:96:d6:9d:b0:f8:4e:ee:c0:b0:bc: 21:54:34:3a:cf:77:5c:a3:fe:e6:ce:52:d7:8b:6c: 2d:f2:23:7c:51:1e:d9:d8:07:f7:18:d8:d1:ab:bf: cc:21:67:81:a0:e6:c1:a6:dd:95:4c:b9:c0:38:c3: 33:a3:4c:0a:78:bd:bc:07:1c:a3:1f:c5:e7:49:2b: 51:b1:64:c7:15:e7:08:81:be:49:7b:9f:e5:34:be: 5a:f0:b4:3e:87:fb:b9:b1:ac:99:07:f2:d3:c9:dd: 2b:8d:5d:89:c0:11:cc:92:ad:4b:a2:73:e6:c6:bf: 62:ab:b3:46:d7:d3:71:1b:a3:3c:ff:69:7f:d9:9c: dd:c8:c0:05:b7:23:25:bc:7d:0b:4a:da:78:50:fa: 01:d7:78:2e:9b:4e:46:0e:79:ce:e4:cc:5a:a8:1c: 7a:24:75:e0:ae:15:53:b6:af:81:60:8c:dd:8d:92: 5a:3a:b9:0b:8b:d7:28:3c:4f:c3:1f:ea:8b:bc:c2: fb:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:20:2B:DC:37:D6:86:49:27:1C:46:00:53:1A:99:F4:5C:19:8E:40 X509v3 Authority Key Identifier: keyid:D2:EA:FC:F4:DE:92:0B:9C:E6:45:D6:E6:96:DF:08:AA:8B:05:51:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ur89N6SC5zmRdbmlt8IqosFUZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/82785f-f0c5-4313-91a1-6dfd8bbadfe9/1/0ur89N6SC5zmRdbmlt8IqosFUZs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/82785f-f0c5-4313-91a1-6dfd8bbadfe9/1/0ur89N6SC5zmRdbmlt8IqosFUZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:3c:7d:70:82:01:68:4d:eb:a3:dc:7d:bd:44:e5:03:b5:d2: c0:6d:b6:bc:46:06:a6:7e:8b:24:24:e7:31:0d:8d:78:e0:61: 68:fa:c6:90:14:c8:77:2d:7a:0e:5e:c1:3c:c6:5a:3f:9b:01: 70:e1:ff:5b:10:98:f2:cd:f9:78:13:c2:0b:c5:b8:88:8c:4d: 11:bd:ca:f5:cb:b7:d2:56:ce:d9:a1:3d:0b:6c:fa:5e:bb:8c: 3f:ea:37:2b:02:ef:a3:6d:d8:3a:0f:5f:eb:fc:3c:b2:10:3f: 43:5b:85:ff:e8:28:5e:b3:11:b3:5d:91:a5:8d:43:0b:62:f6: 33:91:12:1d:83:7d:72:ad:44:c3:31:40:e0:f7:ea:26:f9:55: 51:51:83:7b:cd:58:b8:06:f3:85:f3:c4:aa:df:9a:de:05:a1: f3:1b:89:05:e7:91:8b:62:1f:ab:bb:dc:11:20:22:fa:e9:10: 5b:85:ef:fa:83:1e:b4:3b:d3:58:8b:c6:27:0a:e8:d0:48:74: 8a:1c:2c:48:f4:88:5d:89:3c:4c:ee:20:6d:2d:42:29:f3:cc: 57:23:b6:a7:c9:fe:bd:e3:7b:55:df:44:ba:6c:10:6c:2d:d3: 38:63:cb:8c:78:d6:3f:6f:2f:fb:7e:a6:36:39:e0:4a:f4:c3: 78:db:35:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/iyqx5/aT6vEyaoc36zuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyZWFmY2Y0ZGU5MjBiOWNlNjQ1ZDZlNjk2ZGYwOGFhOGIw NTUxOWIwHhcNMjYwMjA5MjAwMDU2WhcNMjYwMjEwMjAwMDU2WjAzMTEwLwYDVQQD Eyg0ODIwMmJkYzM3ZDY4NjQ5MjcxYzQ2MDA1MzFhOTlmNDVjMTk4ZTQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Ooa2+4ONb/Pds08pptAGXUPUc46 xLCXIw08tAgUYI804jJmEYJQmS1Vyz6YcwUC7RxemzBkNiDE0m2nIMlHJpbWnbD4 Tu7AsLwhVDQ6z3dco/7mzlLXi2wt8iN8UR7Z2Af3GNjRq7/MIWeBoObBpt2VTLnA OMMzo0wKeL28BxyjH8XnSStRsWTHFecIgb5Je5/lNL5a8LQ+h/u5sayZB/LTyd0r jV2JwBHMkq1LonPmxr9iq7NG19NxG6M8/2l/2ZzdyMAFtyMlvH0LStp4UPoB13gu m05GDnnO5MxaqBx6JHXgrhVTtq+BYIzdjZJaOrkLi9coPE/DH+qLvML7rQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEggK9w31oZJJxxGAFMamfRcGY5AMB8GA1UdIwQY MBaAFNLq/PTekguc5kXW5pbfCKqLBVGbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHVyODlONlNDNXptUmRibWx0OElxb3NGVVpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi84Mjc4NWYtZjBjNS00MzEzLTkxYTEt NmRmZDhiYmFkZmU5LzEvMHVyODlONlNDNXptUmRibWx0OElxb3NGVVpzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi84Mjc4NWYtZjBjNS00MzEzLTkxYTEtNmRmZDhiYmFkZmU5 LzEvMHVyODlONlNDNXptUmRibWx0OElxb3NGVVpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfTx9cIIB aE3ro9x9vUTlA7XSwG22vEYGpn6LJCTnMQ2NeOBhaPrGkBTIdy16Dl7BPMZaP5sB cOH/WxCY8s35eBPCC8W4iIxNEb3K9cu30lbO2aE9C2z6XruMP+o3KwLvo23YOg9f 6/w8shA/Q1uF/+goXrMRs12RpY1DC2L2M5ESHYN9cq1EwzFA4PfqJvlVUVGDe81Y uAbzhfPEqt+a3gWh8xuJBeeRi2Ifq7vcESAi+ukQW4Xv+oMetDvTWIvGJwro0Eh0 ihwsSPSIXYk8TO4gbS1CKfPMVyO2p8n+veN7Vd9EumwQbC3TOGPLjHjWP28v+36m NjngSvTDeNs1ow== -----END CERTIFICATE-----Generated at Tue Feb 10 01:35:54 2026 by rpki-client