This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/42ac3c-c583-4b82-bcb7-04739402e27b/1/uIazyxP9IWfYnRIYXpNQbdRcmvk.mft File: uIazyxP9IWfYnRIYXpNQbdRcmvk.mft (raw, json) Hash identifier: yamKWQz2pxsELaJjeFGWy8HMeajUy20vYcsfkW00L7I= Subject key identifier: AB:74:84:4E:6F:7A:E5:F5:49:67:08:02:49:D4:E7:18:E7:B8:55:53 Authority key identifier: B8:86:B3:CB:13:FD:21:67:D8:9D:12:18:5E:93:50:6D:D4:5C:9A:F9 Certificate issuer: /CN=b886b3cb13fd2167d89d12185e93506dd45c9af9 Certificate serial: 019C427D58D91FDF561612AC3E8D9F3A5510 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uIazyxP9IWfYnRIYXpNQbdRcmvk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/42ac3c-c583-4b82-bcb7-04739402e27b/1/uIazyxP9IWfYnRIYXpNQbdRcmvk.mft Manifest number: 0D30 Signing time: Mon 09 Feb 2026 13:00:36 +0000 Manifest this update: Mon 09 Feb 2026 13:00:36 +0000 Manifest next update: Tue 10 Feb 2026 13:00:36 +0000 Files and hashes: 1: uIazyxP9IWfYnRIYXpNQbdRcmvk.crl (hash: 0AjJKYrK809JPud2C4kK7hMAQqqXPWsxSYThvAz1PKA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/42ac3c-c583-4b82-bcb7-04739402e27b/1/uIazyxP9IWfYnRIYXpNQbdRcmvk.crl rsync://rpki.ripe.net/repository/DEFAULT/61/42ac3c-c583-4b82-bcb7-04739402e27b/1/uIazyxP9IWfYnRIYXpNQbdRcmvk.mft rsync://rpki.ripe.net/repository/DEFAULT/uIazyxP9IWfYnRIYXpNQbdRcmvk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:58:d9:1f:df:56:16:12:ac:3e:8d:9f:3a:55:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b886b3cb13fd2167d89d12185e93506dd45c9af9 Validity Not Before: Feb 9 13:00:36 2026 GMT Not After : Feb 10 13:00:36 2026 GMT Subject: CN=ab74844e6f7ae5f54967080249d4e718e7b85553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:9c:28:cf:1f:45:e2:c2:a8:d5:ee:2a:2b:26: 10:77:34:c4:43:bf:62:35:88:08:ec:6f:99:da:33: 93:0d:d0:89:2d:cd:bd:d6:a8:fa:19:8a:23:1f:e4: 33:65:48:79:46:09:22:6a:c1:f1:00:1e:95:dd:0a: 61:6d:5e:cf:70:1f:36:ed:72:10:d4:f5:06:f8:5b: d7:2a:72:b1:56:26:00:37:fe:02:80:ff:1a:38:9d: aa:41:ab:b6:32:da:3a:d0:05:37:61:2e:0b:f4:60: 32:f7:cd:24:1b:71:b6:53:04:69:8f:6f:2d:f9:4c: 01:ce:8c:30:30:67:e8:39:d1:23:4a:fb:03:28:7a: 92:0a:02:40:8d:26:69:6b:dd:81:60:eb:8f:8c:31: c1:b0:fc:31:b9:15:95:59:0e:52:f4:5c:48:7a:aa: 4c:78:06:5c:b7:7b:28:98:de:f0:1f:a1:00:30:28: 8b:5d:3b:c9:e6:1a:7c:9f:b3:3d:c8:21:92:ba:2a: b0:bc:c9:3c:39:c0:88:3b:17:28:5c:b3:07:30:83: 0d:9b:dd:42:8d:5c:93:30:d7:a9:fd:95:aa:14:28: 33:31:6e:da:24:1d:2b:ec:68:86:81:a0:dc:5d:b9: bc:27:06:82:f5:92:52:45:14:cd:86:dd:15:62:8a: 13:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:74:84:4E:6F:7A:E5:F5:49:67:08:02:49:D4:E7:18:E7:B8:55:53 X509v3 Authority Key Identifier: keyid:B8:86:B3:CB:13:FD:21:67:D8:9D:12:18:5E:93:50:6D:D4:5C:9A:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uIazyxP9IWfYnRIYXpNQbdRcmvk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/42ac3c-c583-4b82-bcb7-04739402e27b/1/uIazyxP9IWfYnRIYXpNQbdRcmvk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/42ac3c-c583-4b82-bcb7-04739402e27b/1/uIazyxP9IWfYnRIYXpNQbdRcmvk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:54:62:fc:cb:dd:da:f3:e7:16:ed:a1:0b:b0:fd:1e:92:a3: 73:6f:79:dc:04:3b:b1:26:14:e2:aa:e1:da:a5:71:92:08:e1: 2d:a0:bc:7f:2d:42:84:56:32:7f:18:55:7a:9b:73:51:23:b9: e5:f9:f2:5a:26:6c:0d:03:1b:53:48:a8:6b:7a:cb:bf:4d:24: a4:3e:1a:5e:23:1a:5d:8f:d0:0a:0b:d7:bf:d8:c2:b4:1a:8c: 18:cd:77:78:fc:58:c0:fc:9e:66:25:e5:d4:94:27:c2:42:1a: 08:56:52:70:5a:24:7b:ea:31:2f:49:d3:b4:d3:f2:4f:5a:04: 8b:83:6f:1d:ba:2c:7c:9d:72:bd:72:31:05:61:98:fe:85:32: ad:16:1e:1a:51:c4:85:d0:f8:90:f8:fd:a7:f2:d8:16:17:66: d9:86:e3:fd:e7:a3:00:f2:e3:86:8c:18:de:a6:f0:0a:ab:70: ac:60:d1:16:7f:db:06:b6:2a:27:e6:59:df:0d:93:08:50:64: 38:f0:83:c3:ab:3b:a5:b1:5a:7d:c2:92:5a:b2:1c:bd:82:b9: 2c:89:c7:c5:2e:f0:1d:80:53:aa:8a:1c:7b:77:2a:69:33:38: eb:97:73:dc:d4:db:02:b5:eb:59:bb:a1:69:9b:6d:cd:ca:30: 10:cb:be:7e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfVjZH99WFhKsPo2fOlUQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4ODZiM2NiMTNmZDIxNjdkODlkMTIxODVlOTM1MDZkZDQ1 YzlhZjkwHhcNMjYwMjA5MTMwMDM2WhcNMjYwMjEwMTMwMDM2WjAzMTEwLwYDVQQD EyhhYjc0ODQ0ZTZmN2FlNWY1NDk2NzA4MDI0OWQ0ZTcxOGU3Yjg1NTUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Jwozx9F4sKo1e4qKyYQdzTEQ79i NYgI7G+Z2jOTDdCJLc291qj6GYojH+QzZUh5RgkiasHxAB6V3QphbV7PcB827XIQ 1PUG+FvXKnKxViYAN/4CgP8aOJ2qQau2Mto60AU3YS4L9GAy980kG3G2UwRpj28t +UwBzowwMGfoOdEjSvsDKHqSCgJAjSZpa92BYOuPjDHBsPwxuRWVWQ5S9FxIeqpM eAZct3somN7wH6EAMCiLXTvJ5hp8n7M9yCGSuiqwvMk8OcCIOxcoXLMHMIMNm91C jVyTMNep/ZWqFCgzMW7aJB0r7GiGgaDcXbm8JwaC9ZJSRRTNht0VYooTDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKt0hE5veuX1SWcIAknU5xjnuFVTMB8GA1UdIwQY MBaAFLiGs8sT/SFn2J0SGF6TUG3UXJr5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUlhenl4UDlJV2ZZblJJWVhwTlFiZFJjbXZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS80MmFjM2MtYzU4My00YjgyLWJjYjct MDQ3Mzk0MDJlMjdiLzEvdUlhenl4UDlJV2ZZblJJWVhwTlFiZFJjbXZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS80MmFjM2MtYzU4My00YjgyLWJjYjctMDQ3Mzk0MDJlMjdi LzEvdUlhenl4UDlJV2ZZblJJWVhwTlFiZFJjbXZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKVRi/Mvd 2vPnFu2hC7D9HpKjc2953AQ7sSYU4qrh2qVxkgjhLaC8fy1ChFYyfxhVeptzUSO5 5fnyWiZsDQMbU0ioa3rLv00kpD4aXiMaXY/QCgvXv9jCtBqMGM13ePxYwPyeZiXl 1JQnwkIaCFZScFoke+oxL0nTtNPyT1oEi4NvHbosfJ1yvXIxBWGY/oUyrRYeGlHE hdD4kPj9p/LYFhdm2Ybj/eejAPLjhowY3qbwCqtwrGDRFn/bBrYqJ+ZZ3w2TCFBk OPCDw6s7pbFafcKSWrIcvYK5LInHxS7wHYBTqooce3cqaTM465dz3NTbArXrWbuh aZttzcowEMu+fg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:42 2026 by rpki-client