This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.mft File: UTIqxJAgylfHTzsUi8BBAsq63IM.mft (raw, json) Hash identifier: tWIPT85FFOSuKW0sjRfnfQlxtNLbGY58XJSBQG3ym0U= Subject key identifier: B9:09:6C:18:F7:D2:68:D0:72:FE:7C:86:ED:2E:48:B9:DB:CD:B0:D2 Authority key identifier: 51:32:2A:C4:90:20:CA:57:C7:4F:3B:14:8B:C0:41:02:CA:BA:DC:83 Certificate issuer: /CN=51322ac49020ca57c74f3b148bc04102cabadc83 Certificate serial: 019C427D32292D94F367FA0BAB6A68302A6E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UTIqxJAgylfHTzsUi8BBAsq63IM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.mft Manifest number: 12EB Signing time: Mon 09 Feb 2026 13:00:26 +0000 Manifest this update: Mon 09 Feb 2026 13:00:26 +0000 Manifest next update: Tue 10 Feb 2026 13:00:26 +0000 Files and hashes: 1: UTIqxJAgylfHTzsUi8BBAsq63IM.crl (hash: V6/T+J9/6swfkoVva+1VnvZbqFGJfzXbp/yNYwb/pks=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.crl rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.mft rsync://rpki.ripe.net/repository/DEFAULT/UTIqxJAgylfHTzsUi8BBAsq63IM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:32:29:2d:94:f3:67:fa:0b:ab:6a:68:30:2a:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51322ac49020ca57c74f3b148bc04102cabadc83 Validity Not Before: Feb 9 13:00:26 2026 GMT Not After : Feb 10 13:00:26 2026 GMT Subject: CN=b9096c18f7d268d072fe7c86ed2e48b9dbcdb0d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:44:a1:45:b2:fa:c7:22:b7:3c:2e:d7:28:0f: 0f:26:49:ae:d4:db:94:ad:9d:d6:5b:82:e9:ab:76: 73:71:4b:e5:1d:70:55:8f:7d:ff:1e:8f:3f:a9:a5: 72:d2:bd:a7:9b:bb:13:aa:5e:7c:e6:0d:43:a7:cd: e8:d8:5f:95:0b:c3:ed:50:47:ac:f4:2a:b2:3d:53: d5:c3:7d:b7:24:5d:7d:1e:58:5d:51:09:2e:ce:58: 0d:b0:ba:a6:fd:95:77:73:d6:65:6a:f7:ae:22:ac: 82:9b:09:a2:f6:ed:4e:41:13:74:9d:af:c7:d5:f2: a0:7c:89:14:fc:11:95:6a:ea:69:f7:8e:a0:a7:3a: 58:c2:f9:95:08:7a:5d:0b:dc:cc:75:6f:8e:85:3d: fa:dd:29:1a:47:30:be:c4:09:5a:64:b8:c6:1f:be: 02:f9:5c:7a:d6:9b:4f:ae:37:a8:e7:f4:42:14:f7: c8:25:b2:9d:fe:8c:ed:ab:f8:79:29:11:d5:70:33: ee:36:0b:2e:21:8a:7a:1b:fa:f5:25:bf:87:50:f9: 59:e4:66:bc:e4:44:5b:59:38:d8:19:74:d7:5b:d2: 01:b6:a8:17:32:08:34:8d:b2:83:b8:36:0b:bc:77: 1b:b1:11:cc:6d:bf:a1:4b:12:35:61:e9:0c:c4:bd: a3:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:09:6C:18:F7:D2:68:D0:72:FE:7C:86:ED:2E:48:B9:DB:CD:B0:D2 X509v3 Authority Key Identifier: keyid:51:32:2A:C4:90:20:CA:57:C7:4F:3B:14:8B:C0:41:02:CA:BA:DC:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UTIqxJAgylfHTzsUi8BBAsq63IM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:46:f7:5b:61:60:1f:29:3e:ce:2d:3a:b4:b5:52:55:4f:8c: 34:db:26:09:a0:a8:ff:fb:f2:6d:8a:c6:7e:8f:70:ef:af:16: ea:30:6d:a4:c4:5d:9b:1c:9c:52:f1:c1:f5:cb:da:ad:4e:58: 98:c6:2f:49:09:ba:b9:e2:48:23:4e:75:34:42:25:91:7e:01: 94:c1:45:18:ef:22:ca:78:64:e0:01:b8:2a:82:89:dd:49:dc: d2:23:df:a4:92:40:a7:d6:5d:0a:d9:5c:60:ca:69:3d:64:c0: 18:e7:e3:b2:7c:1d:fb:ba:22:00:b2:94:53:67:26:90:60:1f: 19:18:9a:10:2a:1f:c1:94:9d:85:71:4f:d0:8c:54:69:c8:a7: 9f:f7:6a:79:28:e6:9b:53:92:71:bd:c0:98:55:3f:ca:3d:4c: 35:c4:7b:82:e4:e7:2b:38:24:95:f1:ae:ed:48:86:19:f5:1c: 00:07:2d:04:af:77:62:5b:09:84:fc:57:31:49:a9:39:09:9b: 3d:d3:b4:e6:fb:4e:84:25:65:ec:ea:47:e8:cf:06:91:30:b8: eb:02:8c:6f:0d:31:49:7a:dc:ad:9e:f8:c8:1f:d6:a9:8b:40: ed:81:73:10:a6:01:ca:1f:6b:ba:39:6e:76:b5:a0:94:b0:61: b9:49:13:b0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfTIpLZTzZ/oLq2poMCpuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxMzIyYWM0OTAyMGNhNTdjNzRmM2IxNDhiYzA0MTAyY2Fi YWRjODMwHhcNMjYwMjA5MTMwMDI2WhcNMjYwMjEwMTMwMDI2WjAzMTEwLwYDVQQD EyhiOTA5NmMxOGY3ZDI2OGQwNzJmZTdjODZlZDJlNDhiOWRiY2RiMGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0ShRbL6xyK3PC7XKA8PJkmu1NuU rZ3WW4Lpq3ZzcUvlHXBVj33/Ho8/qaVy0r2nm7sTql585g1Dp83o2F+VC8PtUEes 9CqyPVPVw323JF19HlhdUQkuzlgNsLqm/ZV3c9ZlaveuIqyCmwmi9u1OQRN0na/H 1fKgfIkU/BGVaupp946gpzpYwvmVCHpdC9zMdW+OhT363SkaRzC+xAlaZLjGH74C +Vx61ptPrjeo5/RCFPfIJbKd/oztq/h5KRHVcDPuNgsuIYp6G/r1Jb+HUPlZ5Ga8 5ERbWTjYGXTXW9IBtqgXMgg0jbKDuDYLvHcbsRHMbb+hSxI1YekMxL2jYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLkJbBj30mjQcv58hu0uSLnbzbDSMB8GA1UdIwQY MBaAFFEyKsSQIMpXx087FIvAQQLKutyDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVVRJcXhKQWd5bGZIVHpzVWk4QkJBc3E2M0lNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS9mNThjZjMtNjkwOS00NThhLWE1MWEt NTkxNGY5ZDMzNzhiLzEvVVRJcXhKQWd5bGZIVHpzVWk4QkJBc3E2M0lNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS9mNThjZjMtNjkwOS00NThhLWE1MWEtNTkxNGY5ZDMzNzhi LzEvVVRJcXhKQWd5bGZIVHpzVWk4QkJBc3E2M0lNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmkb3W2Fg Hyk+zi06tLVSVU+MNNsmCaCo//vybYrGfo9w768W6jBtpMRdmxycUvHB9cvarU5Y mMYvSQm6ueJII051NEIlkX4BlMFFGO8iynhk4AG4KoKJ3Unc0iPfpJJAp9ZdCtlc YMppPWTAGOfjsnwd+7oiALKUU2cmkGAfGRiaECofwZSdhXFP0IxUacinn/dqeSjm m1OScb3AmFU/yj1MNcR7guTnKzgklfGu7UiGGfUcAActBK93YlsJhPxXMUmpOQmb PdO05vtOhCVl7OpH6M8GkTC46wKMbw0xSXrcrZ74yB/WqYtA7YFzEKYByh9rujlu drWglLBhuUkTsA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:08:57 2026 by rpki-client