This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/732ea2-9a5c-4eda-b9b4-6276b178efdf/1/U53I-Drwei_XEh53wBzCg8ZRoIc.mft File: U53I-Drwei_XEh53wBzCg8ZRoIc.mft (raw, json) Hash identifier: EUBBKSk6fUo5/cdbb9HF2RjJv5j2w524M4DT84rNUHs= Subject key identifier: 6E:A0:39:74:98:A4:CD:B5:24:94:4E:42:C8:92:5B:ED:26:0C:00:FB Authority key identifier: 53:9D:C8:F8:3A:F0:7A:2F:D7:12:1E:77:C0:1C:C2:83:C6:51:A0:87 Certificate issuer: /CN=539dc8f83af07a2fd7121e77c01cc283c651a087 Certificate serial: 019C4358FF18F6BE44879A26E2B4526AC09B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U53I-Drwei_XEh53wBzCg8ZRoIc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/732ea2-9a5c-4eda-b9b4-6276b178efdf/1/U53I-Drwei_XEh53wBzCg8ZRoIc.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 17:00:31 +0000 Manifest this update: Mon 09 Feb 2026 17:00:31 +0000 Manifest next update: Tue 10 Feb 2026 17:00:31 +0000 Files and hashes: 1: U53I-Drwei_XEh53wBzCg8ZRoIc.crl (hash: 0DdQQCRpr6qvgeOHZ6Os04nS9l4bSty0MWdqT04iAhM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/732ea2-9a5c-4eda-b9b4-6276b178efdf/1/U53I-Drwei_XEh53wBzCg8ZRoIc.crl rsync://rpki.ripe.net/repository/DEFAULT/60/732ea2-9a5c-4eda-b9b4-6276b178efdf/1/U53I-Drwei_XEh53wBzCg8ZRoIc.mft rsync://rpki.ripe.net/repository/DEFAULT/U53I-Drwei_XEh53wBzCg8ZRoIc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:ff:18:f6:be:44:87:9a:26:e2:b4:52:6a:c0:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=539dc8f83af07a2fd7121e77c01cc283c651a087 Validity Not Before: Feb 9 17:00:31 2026 GMT Not After : Feb 10 17:00:31 2026 GMT Subject: CN=6ea0397498a4cdb524944e42c8925bed260c00fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:a6:2f:ab:e8:a5:b6:71:fe:f5:c8:d2:8c:9b: 63:0b:d6:10:2b:fb:8c:63:a8:1f:95:e4:28:71:cf: 8e:7f:11:70:1a:8b:ee:7b:8f:75:2f:00:9f:96:51: 82:2f:4e:76:af:cb:ca:25:44:4f:e4:66:be:e3:81: 60:d9:fc:54:67:1d:d8:65:27:e3:96:9d:b0:e4:ea: ab:d8:55:bb:fd:b6:14:db:b6:89:d5:ce:06:82:17: b2:ec:7c:36:f6:e3:d3:69:9e:b7:b2:28:a3:2a:d4: b7:8e:bf:d1:5a:59:3d:04:f3:ae:bf:a0:de:e0:69: d3:dc:ee:0f:fa:6d:5c:3d:3c:79:4e:b4:d3:7f:b4: 04:d5:25:f2:35:b8:8b:e4:d9:03:12:03:e5:31:10: e1:30:82:0e:be:01:57:9c:f9:04:0f:be:a2:e8:95: 8c:67:be:1b:e0:6b:48:8e:3e:ca:a1:03:c4:d6:b6: 1c:c7:e7:13:d8:21:af:a3:cd:1b:40:a1:38:41:c8: 1b:3b:bd:5e:0d:2a:35:d7:0b:b4:81:b4:31:03:6b: 37:2a:b5:e3:cf:19:df:f8:b2:2b:43:64:4b:02:fb: 27:d9:46:94:77:cb:9e:f7:ec:e8:65:2e:b1:81:67: bd:0d:fb:83:ae:ee:48:db:15:75:e6:ca:c6:59:05: 22:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:A0:39:74:98:A4:CD:B5:24:94:4E:42:C8:92:5B:ED:26:0C:00:FB X509v3 Authority Key Identifier: keyid:53:9D:C8:F8:3A:F0:7A:2F:D7:12:1E:77:C0:1C:C2:83:C6:51:A0:87 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U53I-Drwei_XEh53wBzCg8ZRoIc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/732ea2-9a5c-4eda-b9b4-6276b178efdf/1/U53I-Drwei_XEh53wBzCg8ZRoIc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/732ea2-9a5c-4eda-b9b4-6276b178efdf/1/U53I-Drwei_XEh53wBzCg8ZRoIc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:10:aa:4b:51:14:50:ce:0a:08:4a:86:70:ec:52:bc:6c:5b: 50:a6:b6:93:0b:b7:5f:e6:27:9c:2e:2a:23:0d:06:e1:52:14: 1a:6f:f4:04:84:98:fb:40:25:fe:5f:69:6b:1e:6d:75:b7:15: 45:52:40:63:36:0d:62:9f:d2:89:af:8d:f3:f1:bf:42:4b:76: f9:36:ff:aa:99:97:88:be:00:86:c5:61:7e:3d:0a:fb:de:de: 1d:72:fc:0c:45:e0:c7:d8:f5:15:62:7c:4e:35:94:67:6f:d0: 02:0d:3b:a3:fc:6f:c7:c8:97:47:51:97:39:16:22:98:81:1e: d6:bf:3f:14:a7:e3:c8:96:bb:05:0b:10:67:7d:80:dc:b2:53: a8:91:b6:d4:18:8a:15:c0:b5:4e:8d:07:17:8b:2c:bb:c0:74: 2b:00:21:de:70:bf:c0:e5:b8:00:10:c0:48:94:fb:19:da:1a: 0d:93:b2:cd:f9:22:90:43:c8:73:73:91:db:7e:26:50:33:80: ee:b9:28:15:84:f0:bf:4c:d2:0b:99:0f:1c:41:07:a3:25:2c: dd:3d:e8:f4:92:6a:61:30:5e:c4:29:f0:38:a3:96:e5:af:cf: 3d:f9:d0:34:cb:0f:67:3d:92:dc:e1:5b:6a:aa:93:29:be:ef: b9:24:4a:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWP8Y9r5Eh5om4rRSasCbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzOWRjOGY4M2FmMDdhMmZkNzEyMWU3N2MwMWNjMjgzYzY1 MWEwODcwHhcNMjYwMjA5MTcwMDMxWhcNMjYwMjEwMTcwMDMxWjAzMTEwLwYDVQQD Eyg2ZWEwMzk3NDk4YTRjZGI1MjQ5NDRlNDJjODkyNWJlZDI2MGMwMGZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4aYvq+iltnH+9cjSjJtjC9YQK/uM Y6gfleQocc+OfxFwGovue491LwCfllGCL052r8vKJURP5Ga+44Fg2fxUZx3YZSfj lp2w5Oqr2FW7/bYU27aJ1c4Gghey7Hw29uPTaZ63siijKtS3jr/RWlk9BPOuv6De 4GnT3O4P+m1cPTx5TrTTf7QE1SXyNbiL5NkDEgPlMRDhMIIOvgFXnPkED76i6JWM Z74b4GtIjj7KoQPE1rYcx+cT2CGvo80bQKE4QcgbO71eDSo11wu0gbQxA2s3KrXj zxnf+LIrQ2RLAvsn2UaUd8ue9+zoZS6xgWe9DfuDru5I2xV15srGWQUixQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG6gOXSYpM21JJROQsiSW+0mDAD7MB8GA1UdIwQY MBaAFFOdyPg68Hov1xIed8AcwoPGUaCHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTUzSS1EcndlaV9YRWg1M3dCekNnOFpSb0ljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC83MzJlYTItOWE1Yy00ZWRhLWI5YjQt NjI3NmIxNzhlZmRmLzEvVTUzSS1EcndlaV9YRWg1M3dCekNnOFpSb0ljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC83MzJlYTItOWE1Yy00ZWRhLWI5YjQtNjI3NmIxNzhlZmRm LzEvVTUzSS1EcndlaV9YRWg1M3dCekNnOFpSb0ljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoxCqS1EU UM4KCEqGcOxSvGxbUKa2kwu3X+YnnC4qIw0G4VIUGm/0BISY+0Al/l9pax5tdbcV RVJAYzYNYp/Sia+N8/G/Qkt2+Tb/qpmXiL4AhsVhfj0K+97eHXL8DEXgx9j1FWJ8 TjWUZ2/QAg07o/xvx8iXR1GXORYimIEe1r8/FKfjyJa7BQsQZ32A3LJTqJG21BiK FcC1To0HF4ssu8B0KwAh3nC/wOW4ABDASJT7GdoaDZOyzfkikEPIc3OR234mUDOA 7rkoFYTwv0zSC5kPHEEHoyUs3T3o9JJqYTBexCnwOKOW5a/PPfnQNMsPZz2S3OFb aqqTKb7vuSRKKA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:30 2026 by rpki-client