This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/71fdd5-c29d-4d38-8ef9-4f656f29a51b/1/Vu9y3nfRt-K0RwW2y85jlCHam-8.mft File: Vu9y3nfRt-K0RwW2y85jlCHam-8.mft (raw, json) Hash identifier: kX47H9ejLy1lcRU8p6WWnBZdbD/6BwpQIcHwf+3kT0M= Subject key identifier: 48:E5:38:9E:17:4C:FE:BD:14:0D:85:8A:F4:9E:A6:04:54:30:A5:9B Authority key identifier: 56:EF:72:DE:77:D1:B7:E2:B4:47:05:B6:CB:CE:63:94:21:DA:9B:EF Certificate issuer: /CN=56ef72de77d1b7e2b44705b6cbce639421da9bef Certificate serial: 019C41A221C174BD3410743411986D283695 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vu9y3nfRt-K0RwW2y85jlCHam-8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/71fdd5-c29d-4d38-8ef9-4f656f29a51b/1/Vu9y3nfRt-K0RwW2y85jlCHam-8.mft Manifest number: 0651 Signing time: Mon 09 Feb 2026 09:01:10 +0000 Manifest this update: Mon 09 Feb 2026 09:01:10 +0000 Manifest next update: Tue 10 Feb 2026 09:01:10 +0000 Files and hashes: 1: Vu9y3nfRt-K0RwW2y85jlCHam-8.crl (hash: ABLFfgA4xGFbNQIpPjh74L53YW5yGhWkHm2y4nwi3h4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/71fdd5-c29d-4d38-8ef9-4f656f29a51b/1/Vu9y3nfRt-K0RwW2y85jlCHam-8.crl rsync://rpki.ripe.net/repository/DEFAULT/63/71fdd5-c29d-4d38-8ef9-4f656f29a51b/1/Vu9y3nfRt-K0RwW2y85jlCHam-8.mft rsync://rpki.ripe.net/repository/DEFAULT/Vu9y3nfRt-K0RwW2y85jlCHam-8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:21:c1:74:bd:34:10:74:34:11:98:6d:28:36:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56ef72de77d1b7e2b44705b6cbce639421da9bef Validity Not Before: Feb 9 09:01:10 2026 GMT Not After : Feb 10 09:01:10 2026 GMT Subject: CN=48e5389e174cfebd140d858af49ea6045430a59b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:21:81:e3:6a:05:98:a3:1a:3a:60:1b:5f:57: f5:b6:b6:ab:6a:ba:90:11:c1:82:94:50:fa:73:a9: 1c:45:6a:f3:70:3d:e8:ff:c6:93:96:d3:af:c2:1d: 59:20:3b:4b:95:64:47:bd:ce:27:7d:e1:55:71:ae: 98:94:62:8c:74:80:56:ad:ef:37:91:f9:fb:80:20: 15:d8:3d:c7:f1:bd:8d:47:52:b2:2e:1b:01:8d:c6: 8a:9d:41:f6:c1:9f:e9:50:e8:cb:df:56:56:d0:83: 2e:57:bf:90:a6:b1:8a:e3:04:f2:d3:c4:ca:96:55: 28:ad:1e:64:11:b0:8f:10:b9:b3:66:a2:16:b7:94: 3e:75:76:b7:c9:42:e1:c8:d3:f5:8f:ef:32:fb:0e: ea:8e:6a:28:f2:a5:f3:59:6a:40:80:64:ff:a7:df: 54:22:35:91:9b:e7:19:31:27:39:87:7b:7d:25:e6: 06:bf:ae:46:8d:e4:84:7e:53:b7:fd:8c:6d:c5:37: b6:53:63:e1:f0:ed:ad:07:11:90:22:05:66:ed:14: 2f:c8:e3:0e:81:5f:ab:c8:56:9f:b4:ab:48:6c:16: c1:b6:7a:0f:ef:3c:65:0a:03:ba:80:28:39:1e:4a: 21:c0:6f:2a:0b:e4:08:04:27:2a:f9:d9:9a:40:29: c2:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:E5:38:9E:17:4C:FE:BD:14:0D:85:8A:F4:9E:A6:04:54:30:A5:9B X509v3 Authority Key Identifier: keyid:56:EF:72:DE:77:D1:B7:E2:B4:47:05:B6:CB:CE:63:94:21:DA:9B:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vu9y3nfRt-K0RwW2y85jlCHam-8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/71fdd5-c29d-4d38-8ef9-4f656f29a51b/1/Vu9y3nfRt-K0RwW2y85jlCHam-8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/71fdd5-c29d-4d38-8ef9-4f656f29a51b/1/Vu9y3nfRt-K0RwW2y85jlCHam-8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:3e:5e:6a:1a:4e:c0:5c:b6:09:40:20:95:87:56:e6:a8:fd: ee:8d:8d:60:ea:7f:4c:ac:5e:ef:9d:ed:ad:39:8e:24:df:83: 4f:df:0f:06:20:ea:2b:32:7c:de:b1:ae:d0:9c:95:d6:59:28: ab:0f:16:95:16:11:99:ab:29:13:41:5e:5c:ac:21:4c:55:05: 79:16:24:24:f2:c7:bb:e0:5a:bc:b8:c3:b6:8d:c6:fa:e4:a1: 37:fb:d1:c1:99:ff:67:c1:45:22:9a:e1:b7:4e:a8:f7:e3:4a: 66:e5:9b:53:09:b8:b3:e0:43:fa:36:75:45:f5:06:9b:48:12: cf:d1:1a:ec:af:3e:7f:b2:11:59:58:23:6d:da:9c:f9:85:7e: ed:02:a8:1d:2d:b2:d8:c5:4d:6a:94:5e:55:fa:3d:7c:16:56: 1a:1e:c0:0d:cf:1a:88:42:fb:40:39:f4:9d:cf:a6:f6:f3:60: 00:b6:a7:c4:45:35:12:94:bc:8a:6a:5c:aa:ce:8e:db:57:2b: 96:b7:8d:a2:b7:37:4a:67:3e:ad:86:0c:de:af:71:e0:28:e2: 47:bd:18:bb:d4:65:fb:48:64:93:75:cb:41:97:7d:7c:67:30: 34:da:28:d0:2d:a7:c2:02:4f:f2:fa:5b:a2:0b:84:74:fd:d2: 4a:b5:78:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoiHBdL00EHQ0EZhtKDaVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2ZWY3MmRlNzdkMWI3ZTJiNDQ3MDViNmNiY2U2Mzk0MjFk YTliZWYwHhcNMjYwMjA5MDkwMTEwWhcNMjYwMjEwMDkwMTEwWjAzMTEwLwYDVQQD Eyg0OGU1Mzg5ZTE3NGNmZWJkMTQwZDg1OGFmNDllYTYwNDU0MzBhNTliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtCGB42oFmKMaOmAbX1f1trararqQ EcGClFD6c6kcRWrzcD3o/8aTltOvwh1ZIDtLlWRHvc4nfeFVca6YlGKMdIBWre83 kfn7gCAV2D3H8b2NR1KyLhsBjcaKnUH2wZ/pUOjL31ZW0IMuV7+QprGK4wTy08TK llUorR5kEbCPELmzZqIWt5Q+dXa3yULhyNP1j+8y+w7qjmoo8qXzWWpAgGT/p99U IjWRm+cZMSc5h3t9JeYGv65GjeSEflO3/YxtxTe2U2Ph8O2tBxGQIgVm7RQvyOMO gV+ryFaftKtIbBbBtnoP7zxlCgO6gCg5HkohwG8qC+QIBCcq+dmaQCnCwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEjlOJ4XTP69FA2FivSepgRUMKWbMB8GA1UdIwQY MBaAFFbvct530bfitEcFtsvOY5Qh2pvvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVnU5eTNuZlJ0LUswUndXMnk4NWpsQ0hhbS04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My83MWZkZDUtYzI5ZC00ZDM4LThlZjkt NGY2NTZmMjlhNTFiLzEvVnU5eTNuZlJ0LUswUndXMnk4NWpsQ0hhbS04Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My83MWZkZDUtYzI5ZC00ZDM4LThlZjktNGY2NTZmMjlhNTFi LzEvVnU5eTNuZlJ0LUswUndXMnk4NWpsQ0hhbS04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlj5eahpO wFy2CUAglYdW5qj97o2NYOp/TKxe753trTmOJN+DT98PBiDqKzJ83rGu0JyV1lko qw8WlRYRmaspE0FeXKwhTFUFeRYkJPLHu+BavLjDto3G+uShN/vRwZn/Z8FFIprh t06o9+NKZuWbUwm4s+BD+jZ1RfUGm0gSz9Ea7K8+f7IRWVgjbdqc+YV+7QKoHS2y 2MVNapReVfo9fBZWGh7ADc8aiEL7QDn0nc+m9vNgALanxEU1EpS8impcqs6O21cr lreNorc3Smc+rYYM3q9x4CjiR70Yu9Rl+0hkk3XLQZd9fGcwNNoo0C2nwgJP8vpb oguEdP3SSrV41A== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:50 2026 by rpki-client