This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/945b53-d788-487b-a982-0903ee7c1902/1/bUmIt5OIS3moT-NFY9A581RsGF8.mft File: bUmIt5OIS3moT-NFY9A581RsGF8.mft (raw, json) Hash identifier: iusHw4xLuVXH+e/BTGJuViqOQih2Sd1W07MeRm1KWn4= Subject key identifier: E7:9D:0C:41:54:D2:AE:B3:FA:07:CB:B8:3F:64:67:15:BD:C3:57:05 Authority key identifier: 6D:49:88:B7:93:88:4B:79:A8:4F:E3:45:63:D0:39:F3:54:6C:18:5F Certificate issuer: /CN=6d4988b793884b79a84fe34563d039f3546c185f Certificate serial: 019C43908C95D541E87BF402EE92CB490C7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bUmIt5OIS3moT-NFY9A581RsGF8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/945b53-d788-487b-a982-0903ee7c1902/1/bUmIt5OIS3moT-NFY9A581RsGF8.mft Manifest number: 01D4 Signing time: Mon 09 Feb 2026 18:01:12 +0000 Manifest this update: Mon 09 Feb 2026 18:01:12 +0000 Manifest next update: Tue 10 Feb 2026 18:01:12 +0000 Files and hashes: 1: bUmIt5OIS3moT-NFY9A581RsGF8.crl (hash: TcT0HYc2gWQ7q/8Ten6j7uFeY4o/FG9bohsfgv2Qhpc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/945b53-d788-487b-a982-0903ee7c1902/1/bUmIt5OIS3moT-NFY9A581RsGF8.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/945b53-d788-487b-a982-0903ee7c1902/1/bUmIt5OIS3moT-NFY9A581RsGF8.mft rsync://rpki.ripe.net/repository/DEFAULT/bUmIt5OIS3moT-NFY9A581RsGF8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:8c:95:d5:41:e8:7b:f4:02:ee:92:cb:49:0c:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d4988b793884b79a84fe34563d039f3546c185f Validity Not Before: Feb 9 18:01:12 2026 GMT Not After : Feb 10 18:01:12 2026 GMT Subject: CN=e79d0c4154d2aeb3fa07cbb83f646715bdc35705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c2:0d:bb:e0:f5:08:e4:92:9b:40:c1:99:10: 14:d4:78:1a:69:04:15:f7:40:85:58:a2:2f:45:3f: 0d:b0:8f:ab:6f:31:15:fb:e2:49:e5:a8:5e:53:5b: 10:05:c8:c1:84:94:3b:d1:58:9e:13:5f:e4:5c:e6: b0:07:eb:da:9d:c6:a3:25:34:ea:e8:05:0b:cb:19: 10:dd:77:09:36:4f:7d:f6:1f:9a:1a:07:08:80:02: 9f:8e:14:fb:3b:8c:53:6b:11:51:6a:29:24:b7:57: 9e:5e:5e:0f:61:fc:e9:93:bd:76:56:f5:2b:7d:bc: 10:88:48:9b:74:42:e0:8a:06:92:89:a8:e0:52:46: c2:65:b7:b5:2c:40:4b:2c:fc:2d:dd:f5:9a:a1:1a: 8c:db:17:3e:76:53:69:d4:b4:a3:d4:59:87:60:59: 7c:e7:22:9b:53:f2:65:90:9d:9e:3d:d6:8d:d4:2a: 1c:1e:6b:65:f2:3e:bd:d4:eb:25:27:8c:b8:fd:44: 6a:10:71:88:8e:00:4f:40:db:c9:f4:ec:aa:94:66: 68:c8:50:2f:98:58:b5:32:93:56:87:08:87:64:80: e8:6c:13:53:af:44:e2:82:3a:6b:75:1d:11:2a:60: 3f:fa:9f:b7:d3:d6:42:11:8f:45:21:87:28:b7:4d: df:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:9D:0C:41:54:D2:AE:B3:FA:07:CB:B8:3F:64:67:15:BD:C3:57:05 X509v3 Authority Key Identifier: keyid:6D:49:88:B7:93:88:4B:79:A8:4F:E3:45:63:D0:39:F3:54:6C:18:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bUmIt5OIS3moT-NFY9A581RsGF8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/945b53-d788-487b-a982-0903ee7c1902/1/bUmIt5OIS3moT-NFY9A581RsGF8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/945b53-d788-487b-a982-0903ee7c1902/1/bUmIt5OIS3moT-NFY9A581RsGF8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:7c:8b:e2:88:75:de:ec:ce:41:b2:66:11:16:0f:a8:64:dd: 28:85:14:48:58:24:81:23:67:12:15:6c:d8:a1:0b:e0:14:8a: e1:a5:d8:49:99:d0:bc:57:d7:35:9d:e8:28:5d:7e:ff:60:ca: b9:ee:3f:42:f1:f4:7b:a0:a2:b1:de:75:e5:d9:92:b3:d8:49: c2:2b:f0:d1:13:04:14:9c:aa:74:e8:4a:cf:fd:de:83:f9:05: 09:43:d1:c5:5a:80:47:81:9e:6c:08:f9:89:8d:0f:4c:89:f6: b6:2b:ad:d6:29:77:d6:ed:7e:6e:62:72:86:8d:ae:c3:27:1a: 05:e7:88:08:a5:86:44:a4:8c:b4:39:45:4e:25:42:97:63:56: 24:fe:18:93:ad:65:f1:93:71:28:aa:97:60:72:d5:6e:28:ec: 02:95:64:da:3c:74:3b:a0:06:f4:f0:2b:66:b2:c8:e4:f0:aa: ab:46:f1:53:d9:a9:8c:b3:3b:fa:b6:cc:af:3f:38:c7:61:39: e9:5b:de:f0:8a:a1:d2:21:9d:d2:fb:95:09:2b:47:fb:ae:23: 41:b7:3e:d6:f3:89:ca:32:67:18:fd:40:70:8f:3b:ea:f4:11: bb:b8:18:ef:72:75:bd:bb:bc:3d:a9:b3:99:1d:a8:ac:25:e2: a8:73:97:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkIyV1UHoe/QC7pLLSQx9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkNDk4OGI3OTM4ODRiNzlhODRmZTM0NTYzZDAzOWYzNTQ2 YzE4NWYwHhcNMjYwMjA5MTgwMTEyWhcNMjYwMjEwMTgwMTEyWjAzMTEwLwYDVQQD EyhlNzlkMGM0MTU0ZDJhZWIzZmEwN2NiYjgzZjY0NjcxNWJkYzM1NzA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnsINu+D1COSSm0DBmRAU1HgaaQQV 90CFWKIvRT8NsI+rbzEV++JJ5aheU1sQBcjBhJQ70VieE1/kXOawB+vancajJTTq 6AULyxkQ3XcJNk999h+aGgcIgAKfjhT7O4xTaxFRaikkt1eeXl4PYfzpk712VvUr fbwQiEibdELgigaSiajgUkbCZbe1LEBLLPwt3fWaoRqM2xc+dlNp1LSj1FmHYFl8 5yKbU/JlkJ2ePdaN1CocHmtl8j691OslJ4y4/URqEHGIjgBPQNvJ9OyqlGZoyFAv mFi1MpNWhwiHZIDobBNTr0TigjprdR0RKmA/+p+309ZCEY9FIYcot03fDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOedDEFU0q6z+gfLuD9kZxW9w1cFMB8GA1UdIwQY MBaAFG1JiLeTiEt5qE/jRWPQOfNUbBhfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlVtSXQ1T0lTM21vVC1ORlk5QTU4MVJzR0Y4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC85NDViNTMtZDc4OC00ODdiLWE5ODIt MDkwM2VlN2MxOTAyLzEvYlVtSXQ1T0lTM21vVC1ORlk5QTU4MVJzR0Y4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC85NDViNTMtZDc4OC00ODdiLWE5ODItMDkwM2VlN2MxOTAy LzEvYlVtSXQ1T0lTM21vVC1ORlk5QTU4MVJzR0Y4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKnyL4oh1 3uzOQbJmERYPqGTdKIUUSFgkgSNnEhVs2KEL4BSK4aXYSZnQvFfXNZ3oKF1+/2DK ue4/QvH0e6Cisd515dmSs9hJwivw0RMEFJyqdOhKz/3eg/kFCUPRxVqAR4GebAj5 iY0PTIn2tiut1il31u1+bmJyho2uwycaBeeICKWGRKSMtDlFTiVCl2NWJP4Yk61l 8ZNxKKqXYHLVbijsApVk2jx0O6AG9PArZrLI5PCqq0bxU9mpjLM7+rbMrz84x2E5 6Vve8Iqh0iGd0vuVCStH+64jQbc+1vOJyjJnGP1AcI876vQRu7gY73J1vbu8Pamz mR2orCXiqHOXZA== -----END CERTIFICATE-----Generated at Tue Feb 10 00:11:13 2026 by rpki-client