This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft File: USt7qR3DDrtBPNBVvUMpLi0UAY8.mft (raw, json) Hash identifier: 3qy3Oc0ShH22x9FJQkEPE20ARaEjpcrvS7Wn2Fj8hDM= Subject key identifier: 59:B0:B1:F2:9C:FF:A0:99:B1:DB:30:D4:FD:F8:9E:87:6C:47:A1:89 Authority key identifier: 51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F Certificate issuer: /CN=512b7ba91dc30ebb413cd055bd43292e2d14018f Certificate serial: 019C4358D317BBC7990E64CB6669DD09A439 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft Manifest number: 0794 Signing time: Mon 09 Feb 2026 17:00:20 +0000 Manifest this update: Mon 09 Feb 2026 17:00:20 +0000 Manifest next update: Tue 10 Feb 2026 17:00:20 +0000 Files and hashes: 1: 8641rsKg9fD7lx-GPNjbC4vuzsc.roa (hash: Vka8GFo29c9tBpzyWSVh9ZUdbW2Ls5cI8qhExZNURvw=) 2: USt7qR3DDrtBPNBVvUMpLi0UAY8.crl (hash: HWJI91lOwClb8P6isR3loBX1kUH3c27yRnTwcai41C4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:d3:17:bb:c7:99:0e:64:cb:66:69:dd:09:a4:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=512b7ba91dc30ebb413cd055bd43292e2d14018f Validity Not Before: Feb 9 17:00:20 2026 GMT Not After : Feb 10 17:00:20 2026 GMT Subject: CN=59b0b1f29cffa099b1db30d4fdf89e876c47a189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:99:ed:ad:bc:a6:8f:38:75:26:c7:20:ea:8f: 72:03:27:f1:83:ba:c8:a9:fc:ff:d9:62:97:98:75: 0e:43:b0:c3:19:92:5d:7f:bc:1a:1e:1f:85:f4:cb: 4f:5d:83:05:4b:c8:9e:e4:ee:b9:37:1f:3e:20:cb: bd:99:c7:07:12:53:fd:68:6b:fb:c7:de:80:9b:2e: d4:ad:cf:8e:88:44:bd:d1:f5:c0:19:d3:81:65:38: a4:6f:47:94:d9:ee:2a:b6:eb:2b:91:92:a7:44:c2: b2:b2:7d:86:16:60:02:6b:61:09:64:f6:d0:c4:be: c1:68:b2:91:a5:f7:dc:55:ab:93:f9:6c:6b:c1:53: 7a:cf:08:f2:3e:08:1c:72:0e:34:b4:2f:df:65:3e: d1:a9:5d:6e:45:f2:52:c9:1c:e9:c7:e1:fc:14:89: 93:3e:66:52:33:fa:f9:fe:4d:9a:de:e2:2d:4d:d0: b7:43:d3:98:42:28:2e:dc:86:ac:03:6e:03:55:bb: 32:0a:77:7a:f1:13:a2:e3:55:f9:a0:a1:43:95:69: 76:c7:95:b4:df:44:a9:2b:9f:57:b3:18:80:8b:c3: 40:35:23:47:ce:84:65:68:96:8f:e1:1d:47:1e:25: 1f:d0:10:92:eb:81:a2:b4:1e:94:f7:7a:0e:3c:f7: 18:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:B0:B1:F2:9C:FF:A0:99:B1:DB:30:D4:FD:F8:9E:87:6C:47:A1:89 X509v3 Authority Key Identifier: keyid:51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:a3:82:6c:5c:e0:a8:45:31:06:5d:d9:9e:b4:06:bc:ff:c5: c5:74:e6:98:8f:e4:19:1f:82:86:6d:ec:f7:1f:db:95:d6:95: 11:2b:33:c0:c0:ff:bf:95:aa:d1:84:3a:0c:8c:8f:fe:24:df: 74:78:2f:09:76:f3:69:8c:98:62:56:96:1f:b5:da:38:e2:43: 1e:e7:da:6b:3e:18:d7:89:41:38:aa:e0:93:ca:2d:a9:5b:62: 38:0d:f5:47:f5:2a:35:53:d7:89:cb:80:ce:8f:06:7c:8c:ef: db:84:b4:05:49:7c:39:80:1a:af:01:a7:f2:cb:10:aa:c0:5e: a9:21:db:55:e6:09:fd:18:4d:ea:fd:45:d3:34:30:66:f1:3d: 69:d5:83:65:51:32:fa:65:6a:57:97:da:a1:d3:70:82:79:53: 42:8d:c2:39:2b:6c:08:ef:54:29:3f:77:aa:3f:70:b0:29:18: ee:66:29:af:81:ac:f3:23:bc:97:3b:ce:a5:07:6f:42:0c:63: ab:32:85:1d:bc:c2:6f:58:93:9e:c6:a0:d1:fe:ff:7c:01:cd: 56:2f:2a:a8:28:93:df:c4:3b:79:62:38:fb:99:93:49:9e:27: 57:87:28:97:16:63:0a:9f:26:f0:73:aa:3d:c7:ae:fa:08:c9: fb:d8:05:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWNMXu8eZDmTLZmndCaQ5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxMmI3YmE5MWRjMzBlYmI0MTNjZDA1NWJkNDMyOTJlMmQx NDAxOGYwHhcNMjYwMjA5MTcwMDIwWhcNMjYwMjEwMTcwMDIwWjAzMTEwLwYDVQQD Eyg1OWIwYjFmMjljZmZhMDk5YjFkYjMwZDRmZGY4OWU4NzZjNDdhMTg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAppntrbymjzh1Jscg6o9yAyfxg7rI qfz/2WKXmHUOQ7DDGZJdf7waHh+F9MtPXYMFS8ie5O65Nx8+IMu9mccHElP9aGv7 x96Amy7Urc+OiES90fXAGdOBZTikb0eU2e4qtusrkZKnRMKysn2GFmACa2EJZPbQ xL7BaLKRpffcVauT+WxrwVN6zwjyPggccg40tC/fZT7RqV1uRfJSyRzpx+H8FImT PmZSM/r5/k2a3uItTdC3Q9OYQigu3IasA24DVbsyCnd68ROi41X5oKFDlWl2x5W0 30SpK59XsxiAi8NANSNHzoRlaJaP4R1HHiUf0BCS64GitB6U93oOPPcYwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFmwsfKc/6CZsdsw1P34nodsR6GJMB8GA1UdIwQY MBaAFFEre6kdww67QTzQVb1DKS4tFAGPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVVN0N3FSM0REcnRCUE5CVnZVTXBMaTBVQVk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi82M2ZlOWUtNjBhMC00ZjgwLThjMDEt MTY3Mzc0OWJjZWVjLzEvVVN0N3FSM0REcnRCUE5CVnZVTXBMaTBVQVk4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi82M2ZlOWUtNjBhMC00ZjgwLThjMDEtMTY3Mzc0OWJjZWVj LzEvVVN0N3FSM0REcnRCUE5CVnZVTXBMaTBVQVk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlKOCbFzg qEUxBl3ZnrQGvP/FxXTmmI/kGR+Chm3s9x/bldaVESszwMD/v5Wq0YQ6DIyP/iTf dHgvCXbzaYyYYlaWH7XaOOJDHufaaz4Y14lBOKrgk8otqVtiOA31R/UqNVPXicuA zo8GfIzv24S0BUl8OYAarwGn8ssQqsBeqSHbVeYJ/RhN6v1F0zQwZvE9adWDZVEy +mVqV5faodNwgnlTQo3COStsCO9UKT93qj9wsCkY7mYpr4Gs8yO8lzvOpQdvQgxj qzKFHbzCb1iTnsag0f7/fAHNVi8qqCiT38Q7eWI4+5mTSZ4nV4colxZjCp8m8HOq Pceu+gjJ+9gFng== -----END CERTIFICATE-----Generated at Tue Feb 10 01:36:59 2026 by rpki-client