This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.mft File: U1OpqF-hH8S_FW-rTY2EoI5dZvk.mft (raw, json) Hash identifier: OF+YnqAv2WUab84i6B0s/gh2iEjbui7ZVWf1/NDsh3Q= Subject key identifier: 55:78:C2:6F:25:D3:25:5E:91:7A:B6:E7:EA:79:8F:10:91:27:1D:19 Authority key identifier: 53:53:A9:A8:5F:A1:1F:C4:BF:15:6F:AB:4D:8D:84:A0:8E:5D:66:F9 Certificate issuer: /CN=5353a9a85fa11fc4bf156fab4d8d84a08e5d66f9 Certificate serial: 019C4210330BCAE3AF634BAB43B6FC70D3B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1OpqF-hH8S_FW-rTY2EoI5dZvk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.mft Manifest number: 1813 Signing time: Mon 09 Feb 2026 11:01:23 +0000 Manifest this update: Mon 09 Feb 2026 11:01:23 +0000 Manifest next update: Tue 10 Feb 2026 11:01:23 +0000 Files and hashes: 1: U1OpqF-hH8S_FW-rTY2EoI5dZvk.crl (hash: OpYGUmEFJMVzL47VgpGCTw3mVQqC2nQmtHMzDNfMMx0=) 2: mT1y4Vcpn5hGJXQzo130fr7-JU8.roa (hash: 5+RIIvJ1lvndyR9sJPil/4SfnDQMNqbmhhM2Do86aWY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.crl rsync://rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.mft rsync://rpki.ripe.net/repository/DEFAULT/U1OpqF-hH8S_FW-rTY2EoI5dZvk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:33:0b:ca:e3:af:63:4b:ab:43:b6:fc:70:d3:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5353a9a85fa11fc4bf156fab4d8d84a08e5d66f9 Validity Not Before: Feb 9 11:01:23 2026 GMT Not After : Feb 10 11:01:23 2026 GMT Subject: CN=5578c26f25d3255e917ab6e7ea798f1091271d19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:12:33:a1:c4:c6:d6:17:64:71:05:4a:4e:a7: a0:74:86:3c:ab:71:58:7f:98:24:5d:4a:79:13:b5: 91:12:0e:78:0f:4a:35:eb:2d:74:78:1a:80:2a:d7: 9c:32:d1:6c:7a:1d:2b:bf:9b:c2:17:44:a8:bf:5f: 10:64:65:d7:5d:cd:22:50:ad:c9:49:be:d6:7e:7e: d9:95:a1:ed:69:1b:67:6d:f1:0e:5c:39:13:d9:b3: b0:8b:71:dc:df:2e:a5:e9:34:a4:eb:b7:31:d6:ef: eb:bd:b1:31:58:b5:57:bc:ee:24:1b:08:09:36:f3: d6:62:f0:cd:95:3d:ff:80:36:89:fa:de:21:59:e7: 7f:53:3b:fb:3f:cb:6e:d8:48:7b:d3:ba:2a:b8:8d: bc:b1:fd:bb:92:84:b4:c1:7d:78:22:c7:f4:18:49: fa:d2:46:9b:34:d1:54:c1:59:80:70:64:ba:69:f1: 6d:40:78:4f:7e:1c:ac:03:5c:03:cd:3e:97:17:d7: e8:7f:f0:b5:05:6a:30:93:27:81:24:83:ba:c4:ea: 39:ed:43:92:a6:74:d4:64:be:e1:ec:04:39:99:3a: 2d:17:3b:f1:66:b1:43:19:47:bf:b5:38:6e:41:d2: 4e:83:f5:8e:f2:38:f7:49:ab:94:b7:33:a0:c8:ab: 4e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:78:C2:6F:25:D3:25:5E:91:7A:B6:E7:EA:79:8F:10:91:27:1D:19 X509v3 Authority Key Identifier: keyid:53:53:A9:A8:5F:A1:1F:C4:BF:15:6F:AB:4D:8D:84:A0:8E:5D:66:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1OpqF-hH8S_FW-rTY2EoI5dZvk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:27:36:05:d9:d2:5d:32:d6:62:e7:ba:1d:72:c6:4b:73:b9: 07:f5:47:62:e2:d5:e9:c2:4f:41:e5:02:de:27:43:86:8d:ad: 14:05:87:a2:e8:c2:32:9e:aa:24:94:71:7a:6d:8d:38:a7:19: dd:31:b8:b4:ae:66:0c:a3:db:d9:a5:0a:b9:cd:bf:78:78:57: 7c:b8:a5:06:77:7a:79:4f:be:9c:79:a0:12:6d:aa:06:cb:dd: 69:e8:78:24:94:69:15:6a:0b:3e:50:5d:ac:b7:30:f5:53:0c: 01:71:74:23:04:ad:5d:c2:2e:3c:33:da:e9:fe:09:9b:01:e6: a0:a9:6e:5f:d9:b8:01:e0:7b:ef:2f:5f:32:d2:53:d8:a8:61: d2:c0:53:3d:ae:54:f5:2e:87:07:9d:fa:6a:71:45:2f:ed:b0: 29:26:30:41:dc:07:31:f9:10:8c:74:f9:53:9c:f0:ac:9e:16: 36:b6:68:e3:b7:c8:19:cd:cb:cf:08:20:8b:c0:2d:2d:e2:3d: 16:75:71:0b:52:bf:b7:24:c6:7f:d0:13:a8:10:6f:c1:90:1e: 07:ca:ac:49:f6:e9:80:48:be:8f:e5:f7:23:4c:4d:12:32:5e: d4:f6:f3:b0:9b:f2:df:e8:d4:08:0c:fc:23:34:72:50:21:42: ab:d5:f8:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEDMLyuOvY0urQ7b8cNOyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNTNhOWE4NWZhMTFmYzRiZjE1NmZhYjRkOGQ4NGEwOGU1 ZDY2ZjkwHhcNMjYwMjA5MTEwMTIzWhcNMjYwMjEwMTEwMTIzWjAzMTEwLwYDVQQD Eyg1NTc4YzI2ZjI1ZDMyNTVlOTE3YWI2ZTdlYTc5OGYxMDkxMjcxZDE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArhIzocTG1hdkcQVKTqegdIY8q3FY f5gkXUp5E7WREg54D0o16y10eBqAKtecMtFseh0rv5vCF0Sov18QZGXXXc0iUK3J Sb7Wfn7ZlaHtaRtnbfEOXDkT2bOwi3Hc3y6l6TSk67cx1u/rvbExWLVXvO4kGwgJ NvPWYvDNlT3/gDaJ+t4hWed/Uzv7P8tu2Eh707oquI28sf27koS0wX14Isf0GEn6 0kabNNFUwVmAcGS6afFtQHhPfhysA1wDzT6XF9fof/C1BWowkyeBJIO6xOo57UOS pnTUZL7h7AQ5mTotFzvxZrFDGUe/tThuQdJOg/WO8jj3SauUtzOgyKtOMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFV4wm8l0yVekXq25+p5jxCRJx0ZMB8GA1UdIwQY MBaAFFNTqahfoR/EvxVvq02NhKCOXWb5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTFPcHFGLWhIOFNfRlctclRZMkVvSTVkWnZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC9iOTI5Y2UtZWMxNy00ZDUwLWE2YWUt NzlkOTM0ZTRhOTlhLzEvVTFPcHFGLWhIOFNfRlctclRZMkVvSTVkWnZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC9iOTI5Y2UtZWMxNy00ZDUwLWE2YWUtNzlkOTM0ZTRhOTlh LzEvVTFPcHFGLWhIOFNfRlctclRZMkVvSTVkWnZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgic2BdnS XTLWYue6HXLGS3O5B/VHYuLV6cJPQeUC3idDho2tFAWHoujCMp6qJJRxem2NOKcZ 3TG4tK5mDKPb2aUKuc2/eHhXfLilBnd6eU++nHmgEm2qBsvdaeh4JJRpFWoLPlBd rLcw9VMMAXF0IwStXcIuPDPa6f4JmwHmoKluX9m4AeB77y9fMtJT2Khh0sBTPa5U 9S6HB536anFFL+2wKSYwQdwHMfkQjHT5U5zwrJ4WNrZo47fIGc3Lzwggi8AtLeI9 FnVxC1K/tyTGf9ATqBBvwZAeB8qsSfbpgEi+j+X3I0xNEjJe1PbzsJvy3+jUCAz8 IzRyUCFCq9X4/Q== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:33 2026 by rpki-client