This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft File: rUZjafOSfaDIn7X0s-qeMk-SioQ.mft (raw, json) Hash identifier: XdI4fLSBJsZtaR6RKEc6HRriebbCd823V46Sci3k0x8= Subject key identifier: CD:71:33:B7:EB:99:F3:9F:39:37:71:34:57:3C:3D:46:CB:86:80:1F Authority key identifier: AD:46:63:69:F3:92:7D:A0:C8:9F:B5:F4:B3:EA:9E:32:4F:92:8A:84 Certificate issuer: /CN=ad466369f3927da0c89fb5f4b3ea9e324f928a84 Certificate serial: 019C4390AB23160B81257C9F2DF6624FB15F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft Manifest number: 0827 Signing time: Mon 09 Feb 2026 18:01:20 +0000 Manifest this update: Mon 09 Feb 2026 18:01:20 +0000 Manifest next update: Tue 10 Feb 2026 18:01:20 +0000 Files and hashes: 1: _R9reWa8MF6i_0GtsC9MqO5XdM0.roa (hash: RpCmFg94gtFIxSyeDWhJqoErRSnSfBXY9f+R3zExZ1k=) 2: rUZjafOSfaDIn7X0s-qeMk-SioQ.crl (hash: zfsJ7wPHOxblPRwVZ3dB0130rZUgcoMuzchQbM8lngc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:ab:23:16:0b:81:25:7c:9f:2d:f6:62:4f:b1:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad466369f3927da0c89fb5f4b3ea9e324f928a84 Validity Not Before: Feb 9 18:01:20 2026 GMT Not After : Feb 10 18:01:20 2026 GMT Subject: CN=cd7133b7eb99f39f39377134573c3d46cb86801f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:90:2e:96:ae:bb:93:46:a6:ff:6d:3e:f7:69: d8:89:0a:35:15:61:d7:b8:46:2e:15:b9:41:5c:ba: 10:5f:28:18:46:c6:8a:db:f6:9f:bd:ab:b8:5f:59: 17:73:fa:92:1b:33:89:93:5a:0a:55:74:6d:62:cf: 5d:a0:da:b7:ba:8d:85:08:e9:25:ec:4a:fb:89:d0: 63:dd:16:41:b1:32:08:88:4b:1a:41:89:28:e9:ca: e2:78:34:0f:22:12:b4:19:91:c7:0a:c6:7e:32:1a: 6a:f9:ff:d5:8e:13:e2:2a:fd:23:36:a8:28:c6:34: a2:b0:5f:6a:85:1e:aa:a9:dd:af:b9:f7:0e:aa:dd: 2b:ce:62:a1:82:b5:d4:07:5a:2b:2c:7c:7e:23:92: 7b:7c:7b:96:a2:ec:e9:9c:87:2e:65:8e:83:01:61: 4a:c7:f3:4d:4e:ab:71:ea:86:6e:9e:bb:4e:6c:a6: 48:c7:7b:cd:92:8d:8f:d9:1e:0b:2f:b9:e2:5a:80: 27:8f:4f:ee:56:ba:79:ce:e9:2f:8b:da:db:3f:a1: 99:c7:4d:11:e7:65:73:ed:17:13:01:4d:4a:79:03: 4f:f7:a3:c4:fe:47:fe:d5:e0:20:aa:a0:0f:1d:3f: 07:63:38:a1:d6:5e:b5:a3:e4:ed:20:9c:19:0e:45: 41:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:71:33:B7:EB:99:F3:9F:39:37:71:34:57:3C:3D:46:CB:86:80:1F X509v3 Authority Key Identifier: keyid:AD:46:63:69:F3:92:7D:A0:C8:9F:B5:F4:B3:EA:9E:32:4F:92:8A:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:e1:f8:e8:53:ab:bb:87:08:4e:af:81:b1:88:dd:97:f3:f3: d9:f0:bb:f8:d6:f0:a8:4b:30:9a:61:c3:8d:ed:24:fd:68:bb: 7d:b8:37:08:e6:94:2b:1d:e6:e1:16:d2:f5:b5:cf:6d:1e:4c: ef:1a:42:5a:1c:03:e1:cb:5c:97:98:07:36:c7:1b:d8:de:bb: 9d:59:e6:77:ba:bb:5f:d3:bb:02:84:74:1e:6f:26:2f:22:8b: 6c:b5:a5:de:d3:f6:1d:1f:34:83:28:e8:9d:15:d7:3d:91:aa: 42:4e:8e:d2:72:91:26:4c:f9:ae:09:18:bf:25:d9:42:07:b8: 51:a1:b4:38:0d:59:a9:fa:3e:a3:37:1b:cc:e1:bc:19:b5:9e: 6a:32:48:c0:70:93:23:50:41:55:84:0e:75:85:75:a5:13:1c: 93:f7:f5:5a:50:d0:f2:0f:e9:08:a7:e6:14:ee:7e:89:d1:a3: 44:fc:18:48:92:22:38:7f:67:61:9b:46:e8:c2:e0:dc:21:e0: 70:6c:f2:9a:c3:bb:95:92:73:8e:1f:a0:36:18:8a:84:37:38: 7c:35:a4:8d:4f:ec:d0:d6:6f:bc:1e:37:d5:cd:13:17:21:a0: 45:c6:3c:43:77:39:b4:ef:9f:3f:73:db:e2:89:21:0a:c9:4d: 20:8a:de:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkKsjFguBJXyfLfZiT7FfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkNDY2MzY5ZjM5MjdkYTBjODlmYjVmNGIzZWE5ZTMyNGY5 MjhhODQwHhcNMjYwMjA5MTgwMTIwWhcNMjYwMjEwMTgwMTIwWjAzMTEwLwYDVQQD EyhjZDcxMzNiN2ViOTlmMzlmMzkzNzcxMzQ1NzNjM2Q0NmNiODY4MDFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAupAulq67k0am/20+92nYiQo1FWHX uEYuFblBXLoQXygYRsaK2/afvau4X1kXc/qSGzOJk1oKVXRtYs9doNq3uo2FCOkl 7Er7idBj3RZBsTIIiEsaQYko6crieDQPIhK0GZHHCsZ+Mhpq+f/VjhPiKv0jNqgo xjSisF9qhR6qqd2vufcOqt0rzmKhgrXUB1orLHx+I5J7fHuWouzpnIcuZY6DAWFK x/NNTqtx6oZunrtObKZIx3vNko2P2R4LL7niWoAnj0/uVrp5zukvi9rbP6GZx00R 52Vz7RcTAU1KeQNP96PE/kf+1eAgqqAPHT8HYzih1l61o+TtIJwZDkVB5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM1xM7frmfOfOTdxNFc8PUbLhoAfMB8GA1UdIwQY MBaAFK1GY2nzkn2gyJ+19LPqnjJPkoqEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclVaamFmT1NmYURJbjdYMHMtcWVNay1TaW9RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8yN2M2YTEtMWM5NC00YTQ5LThlM2Qt OWZkNTAzOTcwZmYwLzEvclVaamFmT1NmYURJbjdYMHMtcWVNay1TaW9RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi8yN2M2YTEtMWM5NC00YTQ5LThlM2QtOWZkNTAzOTcwZmYw LzEvclVaamFmT1NmYURJbjdYMHMtcWVNay1TaW9RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV+H46FOr u4cITq+BsYjdl/Pz2fC7+NbwqEswmmHDje0k/Wi7fbg3COaUKx3m4RbS9bXPbR5M 7xpCWhwD4ctcl5gHNscb2N67nVnmd7q7X9O7AoR0Hm8mLyKLbLWl3tP2HR80gyjo nRXXPZGqQk6O0nKRJkz5rgkYvyXZQge4UaG0OA1Zqfo+ozcbzOG8GbWeajJIwHCT I1BBVYQOdYV1pRMck/f1WlDQ8g/pCKfmFO5+idGjRPwYSJIiOH9nYZtG6MLg3CHg cGzymsO7lZJzjh+gNhiKhDc4fDWkjU/s0NZvvB431c0TFyGgRcY8Q3c5tO+fP3Pb 4okhCslNIIredg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:35:17 2026 by rpki-client