This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.mft File: USzy1zi8akeL64yogkEB_w_IGmE.mft (raw, json) Hash identifier: RNeOwdjtgdG1IT02cT35Jmi9BKrnfeyQOVdbAb2HZks= Subject key identifier: DE:04:07:2D:86:F9:79:92:38:AC:36:33:AA:79:A6:6E:6B:EC:C3:74 Authority key identifier: 51:2C:F2:D7:38:BC:6A:47:8B:EB:8C:A8:82:41:01:FF:0F:C8:1A:61 Certificate issuer: /CN=512cf2d738bc6a478beb8ca8824101ff0fc81a61 Certificate serial: 019C41D8C4D90E6EB1684AA80D1AC5E52984 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USzy1zi8akeL64yogkEB_w_IGmE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.mft Manifest number: 05F1 Signing time: Mon 09 Feb 2026 10:00:50 +0000 Manifest this update: Mon 09 Feb 2026 10:00:50 +0000 Manifest next update: Tue 10 Feb 2026 10:00:50 +0000 Files and hashes: 1: USzy1zi8akeL64yogkEB_w_IGmE.crl (hash: fqjYoDPbuP+ziQCX1GzpPneQAu77qZwlTH8mefZMn5E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.crl rsync://rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.mft rsync://rpki.ripe.net/repository/DEFAULT/USzy1zi8akeL64yogkEB_w_IGmE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:c4:d9:0e:6e:b1:68:4a:a8:0d:1a:c5:e5:29:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=512cf2d738bc6a478beb8ca8824101ff0fc81a61 Validity Not Before: Feb 9 10:00:50 2026 GMT Not After : Feb 10 10:00:50 2026 GMT Subject: CN=de04072d86f9799238ac3633aa79a66e6becc374 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:72:84:d7:52:b6:f0:83:23:af:e6:c1:25:71: f6:97:2b:09:48:4c:c5:fc:79:37:a3:d2:04:5d:96: 2c:98:d6:69:1d:c2:f9:e6:50:a7:d9:63:95:72:7e: 26:9d:6b:f2:0e:f3:85:64:f2:61:3b:e9:4c:6e:fc: 9a:8a:90:f6:ed:04:97:c7:01:c4:58:07:e7:7c:9f: 08:47:0c:29:0e:a6:c9:44:c0:9a:92:b0:47:a8:09: 3c:ea:a8:a9:04:1a:50:45:89:9e:87:1d:af:1b:60: db:e5:b0:f7:02:8d:87:fe:8e:29:21:c0:30:47:4d: 36:a1:80:b0:58:72:c8:7c:f4:86:60:f7:25:cb:f1: f2:dd:51:61:43:d7:cc:5b:e8:08:aa:f0:81:14:e2: 77:dc:41:a5:5c:48:8a:75:10:b7:22:62:eb:16:b3: 83:cc:4e:23:19:a5:c4:19:7a:93:92:1f:28:19:a8: 98:a7:0b:5e:0a:ab:03:0f:ed:2b:05:00:8a:54:d0: 3e:99:44:c1:20:cc:12:65:d3:38:e5:a0:d9:07:e5: 69:03:2e:12:d1:3e:d3:1d:f7:61:5f:88:67:fb:d8: 73:51:81:8e:77:fc:82:42:8e:c4:2c:11:0a:84:c1: d6:cd:b4:a8:91:8d:7a:39:41:af:8e:45:5c:82:16: a4:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:04:07:2D:86:F9:79:92:38:AC:36:33:AA:79:A6:6E:6B:EC:C3:74 X509v3 Authority Key Identifier: keyid:51:2C:F2:D7:38:BC:6A:47:8B:EB:8C:A8:82:41:01:FF:0F:C8:1A:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USzy1zi8akeL64yogkEB_w_IGmE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:16:73:08:7c:87:37:b2:dd:9c:2b:d7:b3:56:0e:d4:58:04: be:e0:7c:68:32:b1:94:50:e7:61:05:a1:59:10:77:a7:ba:38: 35:0d:98:10:63:d2:8d:2c:2e:df:19:eb:b3:d2:ba:ed:7f:d7: 85:0d:02:55:10:d0:aa:5b:bf:a4:92:f2:49:ad:42:66:5e:f0: ed:c6:c6:89:f6:ba:4c:16:e7:3c:d3:e3:dd:85:a1:3b:5f:ca: 2e:59:42:cc:7e:c2:cf:1a:58:bc:77:f6:69:51:17:11:07:fa: 48:f7:16:b9:f0:a7:86:2f:3a:b3:1d:2e:55:de:c2:52:f2:28: e2:62:4c:4e:e4:9b:75:ec:bf:79:74:32:f0:c5:53:bd:68:a4: 5f:10:e9:17:7c:58:2d:15:c5:66:09:a3:41:96:17:d9:62:97: a8:66:a3:7a:3b:3b:c3:39:21:e5:aa:93:e7:0f:87:ac:c6:b1: 73:8c:da:35:46:4d:9d:b3:19:f4:7d:8f:46:24:0c:9a:12:04: 24:b1:69:f9:f2:b4:bb:21:6b:23:70:9c:bf:8b:5e:d3:4f:db: a3:48:40:94:c0:87:4e:c9:70:1a:59:b7:61:3e:f3:9b:7f:3c: 85:29:ed:02:b0:79:1e:72:b9:4c:19:e3:93:2a:56:34:8e:73: 65:f7:31:52 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2MTZDm6xaEqoDRrF5SmEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxMmNmMmQ3MzhiYzZhNDc4YmViOGNhODgyNDEwMWZmMGZj ODFhNjEwHhcNMjYwMjA5MTAwMDUwWhcNMjYwMjEwMTAwMDUwWjAzMTEwLwYDVQQD EyhkZTA0MDcyZDg2Zjk3OTkyMzhhYzM2MzNhYTc5YTY2ZTZiZWNjMzc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs3KE11K28IMjr+bBJXH2lysJSEzF /Hk3o9IEXZYsmNZpHcL55lCn2WOVcn4mnWvyDvOFZPJhO+lMbvyaipD27QSXxwHE WAfnfJ8IRwwpDqbJRMCakrBHqAk86qipBBpQRYmehx2vG2Db5bD3Ao2H/o4pIcAw R002oYCwWHLIfPSGYPcly/Hy3VFhQ9fMW+gIqvCBFOJ33EGlXEiKdRC3ImLrFrOD zE4jGaXEGXqTkh8oGaiYpwteCqsDD+0rBQCKVNA+mUTBIMwSZdM45aDZB+VpAy4S 0T7THfdhX4hn+9hzUYGOd/yCQo7ELBEKhMHWzbSokY16OUGvjkVcghakxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN4EBy2G+XmSOKw2M6p5pm5r7MN0MB8GA1UdIwQY MBaAFFEs8tc4vGpHi+uMqIJBAf8PyBphMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVVN6eTF6aThha2VMNjR5b2drRUJfd19JR21FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS80YTU0Y2YtMjQxNC00ZDZmLThiYTUt NzAwMWJhZjc3NWYyLzEvVVN6eTF6aThha2VMNjR5b2drRUJfd19JR21FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS80YTU0Y2YtMjQxNC00ZDZmLThiYTUtNzAwMWJhZjc3NWYy LzEvVVN6eTF6aThha2VMNjR5b2drRUJfd19JR21FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAORZzCHyH N7LdnCvXs1YO1FgEvuB8aDKxlFDnYQWhWRB3p7o4NQ2YEGPSjSwu3xnrs9K67X/X hQ0CVRDQqlu/pJLySa1CZl7w7cbGifa6TBbnPNPj3YWhO1/KLllCzH7CzxpYvHf2 aVEXEQf6SPcWufCnhi86sx0uVd7CUvIo4mJMTuSbdey/eXQy8MVTvWikXxDpF3xY LRXFZgmjQZYX2WKXqGajejs7wzkh5aqT5w+HrMaxc4zaNUZNnbMZ9H2PRiQMmhIE JLFp+fK0uyFrI3Ccv4te00/bo0hAlMCHTslwGlm3YT7zm388hSntArB5HnK5TBnj kypWNI5zZfcxUg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:47 2026 by rpki-client