This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.mft File: cUt8OIAz4WI_xti-t69cOUJRkds.mft (raw, json) Hash identifier: bBZp+qfbZaTnTx5HWbVJC4QDx3M1OF50NpMHvmUTkaE= Subject key identifier: B7:90:3E:B0:2A:CF:CD:DC:4C:9B:7F:7E:43:17:46:DF:F7:5A:FC:86 Authority key identifier: 71:4B:7C:38:80:33:E1:62:3F:C6:D8:BE:B7:AF:5C:39:42:51:91:DB Certificate issuer: /CN=714b7c388033e1623fc6d8beb7af5c39425191db Certificate serial: 019C4321E5BE7E33AA2AF98813B2075C5B9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cUt8OIAz4WI_xti-t69cOUJRkds.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.mft Manifest number: 09C7 Signing time: Mon 09 Feb 2026 16:00:20 +0000 Manifest this update: Mon 09 Feb 2026 16:00:20 +0000 Manifest next update: Tue 10 Feb 2026 16:00:20 +0000 Files and hashes: 1: cUt8OIAz4WI_xti-t69cOUJRkds.crl (hash: gbHF1vCILaKrREA+AsnkWSsQCBNrNfyMMQ5jxb2NxSU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.mft rsync://rpki.ripe.net/repository/DEFAULT/cUt8OIAz4WI_xti-t69cOUJRkds.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:e5:be:7e:33:aa:2a:f9:88:13:b2:07:5c:5b:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=714b7c388033e1623fc6d8beb7af5c39425191db Validity Not Before: Feb 9 16:00:20 2026 GMT Not After : Feb 10 16:00:20 2026 GMT Subject: CN=b7903eb02acfcddc4c9b7f7e431746dff75afc86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:20:a1:2b:8e:c3:a8:ba:9e:31:28:8b:4b:62: 15:fd:c9:85:b0:2b:de:09:b4:04:95:50:cd:51:99: c0:fd:dc:01:d1:ab:eb:d9:a4:5d:35:b0:5c:95:16: 51:a8:6f:30:37:fe:51:13:dc:d4:76:21:08:10:c2: 40:0b:56:e6:e8:32:32:13:c0:af:4a:e7:fe:f1:36: a2:55:47:54:da:89:85:b9:ad:ed:42:e6:4a:cc:c8: 31:0d:47:f2:e0:6e:f4:be:5e:05:00:04:f2:a3:ff: 5a:98:e9:76:8a:85:83:8d:e9:b6:bf:ed:cb:a0:ec: 72:44:d3:28:69:93:12:97:dc:45:72:71:9e:66:21: 2a:23:da:ac:93:5d:4f:71:49:26:46:64:b9:ff:d2: 84:cd:4c:ca:35:75:07:eb:70:d1:b7:3e:cb:b6:29: 15:a6:3f:c6:5d:c3:07:b7:14:eb:4e:c8:5f:bc:af: 3d:e3:b2:cf:36:27:5f:42:10:44:92:82:b9:6b:6c: 66:7f:26:8f:19:8d:5e:ab:2b:d3:8a:78:5e:a7:4f: 76:7d:56:c5:70:15:e4:86:38:1b:6b:39:cb:aa:a0: 7d:e4:c6:bb:1e:0d:c9:27:da:70:79:32:ca:bc:c5: 7d:ab:1c:00:fc:1f:7a:a4:5b:6b:2f:b7:79:5b:fa: bd:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:90:3E:B0:2A:CF:CD:DC:4C:9B:7F:7E:43:17:46:DF:F7:5A:FC:86 X509v3 Authority Key Identifier: keyid:71:4B:7C:38:80:33:E1:62:3F:C6:D8:BE:B7:AF:5C:39:42:51:91:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cUt8OIAz4WI_xti-t69cOUJRkds.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:f6:a6:98:85:0c:a0:cb:53:00:39:37:11:f0:7b:90:b9:e0: 60:f8:1a:e6:f0:bd:37:82:8e:76:72:eb:c0:d7:a3:fa:d1:f0: 94:4e:b4:4d:16:e3:7b:56:15:7f:51:09:5a:bc:ac:17:1a:d6: ac:1c:25:0e:7a:74:6e:cd:95:64:9f:83:ad:08:bb:51:f1:a9: 8a:4d:de:7e:aa:03:ee:a0:0e:c9:d6:81:f7:e7:7a:05:2f:aa: 06:58:49:97:75:2f:92:e5:77:5e:5b:99:c0:c3:3d:f9:86:8d: a8:78:5d:17:30:18:4d:40:67:e2:44:80:7e:ce:ba:81:b6:17: bf:7c:e5:22:cf:1e:01:60:0b:10:f8:a2:e0:b9:85:d5:e3:0a: 8a:02:3b:5e:0a:44:95:7e:a9:39:fa:83:d5:8c:ed:ba:99:a2: 5a:f8:05:db:99:58:87:6a:3f:2c:7b:db:70:ef:a3:52:bc:c0: 3e:67:68:f3:69:6b:47:be:db:48:0b:5e:88:76:5e:8a:32:ab: 0a:67:f7:6f:8f:c1:b1:74:43:e0:77:ec:e7:48:93:6d:20:fa: 94:2f:ea:94:71:85:74:41:4c:1f:4d:ff:8b:4e:7f:9d:43:8f: 43:6a:bd:7e:15:d7:6b:e5:c5:69:05:0d:c3:20:4c:7c:e3:d1: 7d:d7:ed:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIeW+fjOqKvmIE7IHXFudMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxNGI3YzM4ODAzM2UxNjIzZmM2ZDhiZWI3YWY1YzM5NDI1 MTkxZGIwHhcNMjYwMjA5MTYwMDIwWhcNMjYwMjEwMTYwMDIwWjAzMTEwLwYDVQQD EyhiNzkwM2ViMDJhY2ZjZGRjNGM5YjdmN2U0MzE3NDZkZmY3NWFmYzg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvyChK47DqLqeMSiLS2IV/cmFsCve CbQElVDNUZnA/dwB0avr2aRdNbBclRZRqG8wN/5RE9zUdiEIEMJAC1bm6DIyE8Cv Suf+8TaiVUdU2omFua3tQuZKzMgxDUfy4G70vl4FAATyo/9amOl2ioWDjem2v+3L oOxyRNMoaZMSl9xFcnGeZiEqI9qsk11PcUkmRmS5/9KEzUzKNXUH63DRtz7LtikV pj/GXcMHtxTrTshfvK8947LPNidfQhBEkoK5a2xmfyaPGY1eqyvTinhep092fVbF cBXkhjgbaznLqqB95Ma7Hg3JJ9pweTLKvMV9qxwA/B96pFtrL7d5W/q9QQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLeQPrAqz83cTJt/fkMXRt/3WvyGMB8GA1UdIwQY MBaAFHFLfDiAM+FiP8bYvrevXDlCUZHbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY1V0OE9JQXo0V0lfeHRpLXQ2OWNPVUpSa2RzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9lMDU2NGQtOTQ1My00ZGMyLWFjYTIt YTAzOGJlMTViOTdiLzEvY1V0OE9JQXo0V0lfeHRpLXQ2OWNPVUpSa2RzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy9lMDU2NGQtOTQ1My00ZGMyLWFjYTItYTAzOGJlMTViOTdi LzEvY1V0OE9JQXo0V0lfeHRpLXQ2OWNPVUpSa2RzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFvammIUM oMtTADk3EfB7kLngYPga5vC9N4KOdnLrwNej+tHwlE60TRbje1YVf1EJWrysFxrW rBwlDnp0bs2VZJ+DrQi7UfGpik3efqoD7qAOydaB9+d6BS+qBlhJl3UvkuV3XluZ wMM9+YaNqHhdFzAYTUBn4kSAfs66gbYXv3zlIs8eAWALEPii4LmF1eMKigI7XgpE lX6pOfqD1YztupmiWvgF25lYh2o/LHvbcO+jUrzAPmdo82lrR77bSAteiHZeijKr Cmf3b4/BsXRD4Hfs50iTbSD6lC/qlHGFdEFMH03/i05/nUOPQ2q9fhXXa+XFaQUN wyBMfOPRfdft5Q== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:54 2026 by rpki-client