This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.mft File: CUsU8URwOb33-d7l-ik4XB3OlZ0.mft (raw, json) Hash identifier: bO01cgfmamhmXO2z2DJhKjB9aGR2hpAFme11t+/8drM= Subject key identifier: 25:8F:91:45:B6:51:7E:34:EF:6C:91:86:2C:41:25:64:4F:43:B3:2E Authority key identifier: 09:4B:14:F1:44:70:39:BD:F7:F9:DE:E5:FA:29:38:5C:1D:CE:95:9D Certificate issuer: /CN=094b14f1447039bdf7f9dee5fa29385c1dce959d Certificate serial: 019C43221EA130F4153A627D1DF21E4ED793 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CUsU8URwOb33-d7l-ik4XB3OlZ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.mft Manifest number: 179F Signing time: Mon 09 Feb 2026 16:00:35 +0000 Manifest this update: Mon 09 Feb 2026 16:00:35 +0000 Manifest next update: Tue 10 Feb 2026 16:00:35 +0000 Files and hashes: 1: CUsU8URwOb33-d7l-ik4XB3OlZ0.crl (hash: fY7t9yPB1RVDE1PsNldbwYERd/DOCnx5jCRfRlP4mA4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.crl rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.mft rsync://rpki.ripe.net/repository/DEFAULT/CUsU8URwOb33-d7l-ik4XB3OlZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:1e:a1:30:f4:15:3a:62:7d:1d:f2:1e:4e:d7:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=094b14f1447039bdf7f9dee5fa29385c1dce959d Validity Not Before: Feb 9 16:00:35 2026 GMT Not After : Feb 10 16:00:35 2026 GMT Subject: CN=258f9145b6517e34ef6c91862c4125644f43b32e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5c:85:f5:13:7d:8d:ab:f8:e7:d1:1c:e1:3a: ca:0c:e0:69:fc:f3:7c:0d:30:9f:46:9f:fa:7e:0c: 2c:a7:22:fc:97:fd:3d:7e:3e:64:32:c8:c8:ac:12: 64:3b:0e:9f:f9:03:e3:bd:50:06:9c:ea:d7:41:7f: 89:d0:bc:02:8a:44:20:51:94:74:0d:f5:94:9c:f2: cd:bb:14:1d:d0:41:11:66:20:d8:8d:3d:7f:a5:6c: 3e:af:68:09:73:f8:75:7b:f9:b2:0a:bf:2f:ae:97: 6d:21:b7:ed:7f:6f:9c:51:8c:90:93:6c:7c:d9:07: 78:49:68:45:14:bf:1e:de:35:e3:6e:c5:dd:30:b5: 2a:95:c8:2d:49:0e:32:f1:08:34:bc:32:9c:d6:8c: 4e:47:b1:c1:a9:ab:73:60:59:3c:29:b9:a1:40:0c: e2:a9:1a:bb:03:c1:cb:e9:a8:86:f8:a1:95:c1:1c: e0:d3:e6:0c:bb:a5:d0:c8:e9:7b:f9:89:82:d9:bd: 02:d9:8e:7e:b6:da:ac:9b:3a:bd:14:51:eb:dc:52: 42:32:db:6c:7a:ca:7f:81:b6:03:58:ee:1e:23:36: 4c:92:b9:53:e5:fd:40:16:9e:a3:b6:1e:db:e9:1e: 54:9c:94:24:e3:9b:58:12:d2:c0:6a:aa:7c:8b:e9: 8a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:8F:91:45:B6:51:7E:34:EF:6C:91:86:2C:41:25:64:4F:43:B3:2E X509v3 Authority Key Identifier: keyid:09:4B:14:F1:44:70:39:BD:F7:F9:DE:E5:FA:29:38:5C:1D:CE:95:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CUsU8URwOb33-d7l-ik4XB3OlZ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:e1:d4:7e:98:36:c0:a1:b1:73:14:d2:cc:c5:c3:ff:63:81: a0:2b:6e:dd:e4:30:67:25:71:10:a9:a2:05:96:4a:a2:33:67: 3a:f1:9f:b4:bd:62:ff:85:af:cd:a1:c0:0f:c0:db:dc:28:4d: c5:d8:f4:82:42:00:1c:4e:2e:e0:df:50:c1:77:93:6f:a6:69: 93:51:28:e3:b2:d1:15:2d:f7:84:e5:4d:28:1e:ed:89:8f:d7: 48:e5:64:2d:c4:27:1d:5b:86:1a:33:8a:46:4e:a0:d5:1e:2e: 56:1f:a7:65:06:ae:12:30:0e:b4:0c:c6:68:ea:56:c0:2e:ec: 0e:69:16:be:09:de:24:4e:83:fe:fd:ed:b6:97:35:ea:20:36: 6f:30:76:67:2f:8b:18:06:61:35:30:8e:bd:0f:f7:93:29:39: 89:1c:69:ff:75:79:3a:a0:ae:df:41:4f:28:60:b6:70:73:1e: d8:92:54:5d:dc:3b:92:6d:7a:46:0f:d1:10:ec:f1:b7:91:a9: f4:d3:bb:30:9d:33:68:37:d1:6f:8a:c3:05:99:d5:8d:29:e7: 2f:55:89:af:be:3e:5b:a4:6d:70:70:fe:5e:85:f7:3e:5e:54: 74:1a:5f:1b:7b:5c:68:8b:00:7a:2f:7e:02:31:e2:61:1f:4e: 3d:87:86:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIh6hMPQVOmJ9HfIeTteTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5NGIxNGYxNDQ3MDM5YmRmN2Y5ZGVlNWZhMjkzODVjMWRj ZTk1OWQwHhcNMjYwMjA5MTYwMDM1WhcNMjYwMjEwMTYwMDM1WjAzMTEwLwYDVQQD EygyNThmOTE0NWI2NTE3ZTM0ZWY2YzkxODYyYzQxMjU2NDRmNDNiMzJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAulyF9RN9jav459Ec4TrKDOBp/PN8 DTCfRp/6fgwspyL8l/09fj5kMsjIrBJkOw6f+QPjvVAGnOrXQX+J0LwCikQgUZR0 DfWUnPLNuxQd0EERZiDYjT1/pWw+r2gJc/h1e/myCr8vrpdtIbftf2+cUYyQk2x8 2Qd4SWhFFL8e3jXjbsXdMLUqlcgtSQ4y8Qg0vDKc1oxOR7HBqatzYFk8KbmhQAzi qRq7A8HL6aiG+KGVwRzg0+YMu6XQyOl7+YmC2b0C2Y5+ttqsmzq9FFHr3FJCMtts esp/gbYDWO4eIzZMkrlT5f1AFp6jth7b6R5UnJQk45tYEtLAaqp8i+mKCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCWPkUW2UX4072yRhixBJWRPQ7MuMB8GA1UdIwQY MBaAFAlLFPFEcDm99/ne5fopOFwdzpWdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1VzVThVUndPYjMzLWQ3bC1pazRYQjNPbFowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi82MDY5MzktY2M2OS00Y2ZhLTg0M2Ut NTBiNjRjYmQwZmUxLzEvQ1VzVThVUndPYjMzLWQ3bC1pazRYQjNPbFowLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi82MDY5MzktY2M2OS00Y2ZhLTg0M2UtNTBiNjRjYmQwZmUx LzEvQ1VzVThVUndPYjMzLWQ3bC1pazRYQjNPbFowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAieHUfpg2 wKGxcxTSzMXD/2OBoCtu3eQwZyVxEKmiBZZKojNnOvGftL1i/4WvzaHAD8Db3ChN xdj0gkIAHE4u4N9QwXeTb6Zpk1Eo47LRFS33hOVNKB7tiY/XSOVkLcQnHVuGGjOK Rk6g1R4uVh+nZQauEjAOtAzGaOpWwC7sDmkWvgneJE6D/v3ttpc16iA2bzB2Zy+L GAZhNTCOvQ/3kyk5iRxp/3V5OqCu30FPKGC2cHMe2JJUXdw7km16Rg/REOzxt5Gp 9NO7MJ0zaDfRb4rDBZnVjSnnL1WJr74+W6RtcHD+XoX3Pl5UdBpfG3tcaIsAei9+ AjHiYR9OPYeGKA== -----END CERTIFICATE-----Generated at Tue Feb 10 00:15:13 2026 by rpki-client