This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft File: uT2pHx9TY0JyxZEQh85my602FKM.mft (raw, json) Hash identifier: 4084YBTgZtH0XE+mlhbSsbqJBGjZFGoiw36GEH9mNFQ= Subject key identifier: 74:51:82:C7:11:32:83:42:CA:5B:D7:A9:76:5D:C7:DF:42:31:F8:0E Authority key identifier: B9:3D:A9:1F:1F:53:63:42:72:C5:91:10:87:CE:66:CB:AD:36:14:A3 Certificate issuer: /CN=b93da91f1f53634272c5911087ce66cbad3614a3 Certificate serial: 019C41D8ED7B4BACF94DAAECAADD9D70D585 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uT2pHx9TY0JyxZEQh85my602FKM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft Manifest number: 09AE Signing time: Mon 09 Feb 2026 10:01:01 +0000 Manifest this update: Mon 09 Feb 2026 10:01:01 +0000 Manifest next update: Tue 10 Feb 2026 10:01:01 +0000 Files and hashes: 1: T5RpUZaJxF7WS22xVaYfC5phh5w.roa (hash: 1t4IgY5FT1qa56RFkPSefpzTePRTnBiDJZBSxg9HAjA=) 2: uT2pHx9TY0JyxZEQh85my602FKM.crl (hash: WEEjGjPHsdznqVpwRHPLaST1nw2C8ZmO9TViMv8sO3U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.crl rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft rsync://rpki.ripe.net/repository/DEFAULT/uT2pHx9TY0JyxZEQh85my602FKM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:ed:7b:4b:ac:f9:4d:aa:ec:aa:dd:9d:70:d5:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b93da91f1f53634272c5911087ce66cbad3614a3 Validity Not Before: Feb 9 10:01:01 2026 GMT Not After : Feb 10 10:01:01 2026 GMT Subject: CN=745182c711328342ca5bd7a9765dc7df4231f80e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:4a:10:d6:6b:c6:c1:fc:ca:ad:c4:1b:fb:9a: 0f:82:c4:76:2e:af:68:ad:18:a5:f6:58:07:c5:06: 1d:97:02:ab:b2:e6:d1:f8:0d:c0:e0:fe:b7:92:6d: 13:13:61:dd:43:3d:0a:e8:42:e5:7c:54:a7:1f:af: 80:9e:03:33:2a:bb:a4:54:a1:af:b5:0d:e3:e1:e4: ef:b9:1c:6b:a3:1f:68:b7:24:6c:30:0f:d9:76:9a: cd:8b:71:50:34:f8:b5:27:08:77:72:10:32:76:55: 30:4d:39:20:85:5d:97:61:a9:7c:28:8b:40:77:c9: 98:74:07:5f:52:d6:f8:6c:4c:90:6b:e8:8c:20:4f: c6:70:44:ff:dc:d9:e2:3b:61:14:ae:01:d3:62:21: d8:97:99:f7:2d:0c:f3:da:2b:29:63:88:9e:5e:96: d4:3f:b8:17:40:2e:59:d1:d3:b1:3f:1c:4b:43:e6: c1:d4:f2:1f:b7:de:1f:2f:c8:b5:50:6f:bb:dd:24: aa:2f:66:d3:66:e6:54:e5:e8:94:d3:89:d4:91:f6: e7:21:25:f4:bb:34:cb:1c:78:de:eb:c1:af:af:b1: 0b:ed:44:7d:bf:fa:02:92:28:0d:c1:cc:9b:04:2a: ab:7b:35:09:d9:56:6f:e6:66:4a:4a:56:2c:3c:e4: be:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:51:82:C7:11:32:83:42:CA:5B:D7:A9:76:5D:C7:DF:42:31:F8:0E X509v3 Authority Key Identifier: keyid:B9:3D:A9:1F:1F:53:63:42:72:C5:91:10:87:CE:66:CB:AD:36:14:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uT2pHx9TY0JyxZEQh85my602FKM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:04:90:34:16:7a:e8:4d:54:37:35:c6:f0:4b:9a:1b:5d:c0: 32:56:e7:8e:e9:60:d4:16:7d:c4:0f:32:66:10:1b:e3:29:1c: 0d:c9:b2:12:7a:56:29:ce:a1:f8:2f:04:51:7a:7b:7c:a6:6d: dd:d6:a2:4a:fe:a7:25:fa:ce:03:09:5f:b2:4e:45:ce:7e:09: 94:2e:5f:61:90:6a:f0:0c:72:1e:d7:95:34:e8:05:70:93:40: 63:4a:cd:11:bb:fd:f6:bc:3c:fc:44:94:d2:b8:53:5b:34:f7: 5d:8c:57:2b:67:65:01:da:9c:e3:de:ec:99:68:f4:9d:af:23: 84:48:5e:6a:4d:af:c6:af:26:8d:cc:03:7c:4c:e3:b9:e6:1f: 7d:12:1e:9c:02:18:d1:c0:0c:05:e6:c7:26:aa:e6:3a:af:76: 9a:4e:7b:79:94:d1:eb:f0:72:71:c0:3b:fc:20:3b:bb:fc:14: 15:9b:43:22:cb:68:7d:2c:a6:3c:3b:82:24:2f:61:7d:d5:7e: 12:8c:c8:37:36:cc:6c:ce:1d:b6:07:77:e0:e3:ca:bf:81:69: 3d:ff:37:6c:a9:dc:ee:f1:5e:f4:c2:4c:57:5f:7f:10:dd:95: 94:90:5b:8d:b0:2a:2e:03:95:fb:0a:08:77:86:4f:0d:91:a4: ba:c9:62:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2O17S6z5Tarsqt2dcNWFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5M2RhOTFmMWY1MzYzNDI3MmM1OTExMDg3Y2U2NmNiYWQz NjE0YTMwHhcNMjYwMjA5MTAwMTAxWhcNMjYwMjEwMTAwMTAxWjAzMTEwLwYDVQQD Eyg3NDUxODJjNzExMzI4MzQyY2E1YmQ3YTk3NjVkYzdkZjQyMzFmODBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6UoQ1mvGwfzKrcQb+5oPgsR2Lq9o rRil9lgHxQYdlwKrsubR+A3A4P63km0TE2HdQz0K6ELlfFSnH6+AngMzKrukVKGv tQ3j4eTvuRxrox9otyRsMA/ZdprNi3FQNPi1Jwh3chAydlUwTTkghV2XYal8KItA d8mYdAdfUtb4bEyQa+iMIE/GcET/3NniO2EUrgHTYiHYl5n3LQzz2ispY4ieXpbU P7gXQC5Z0dOxPxxLQ+bB1PIft94fL8i1UG+73SSqL2bTZuZU5eiU04nUkfbnISX0 uzTLHHje68Gvr7EL7UR9v/oCkigNwcybBCqrezUJ2VZv5mZKSlYsPOS+YwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHRRgscRMoNCylvXqXZdx99CMfgOMB8GA1UdIwQY MBaAFLk9qR8fU2NCcsWREIfOZsutNhSjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdVQycEh4OVRZMEp5eFpFUWg4NW15NjAyRktNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9jYTQ0NzEtMzRkMC00ODE2LTgxZDEt OGJmNWIxZWQxMjA5LzEvdVQycEh4OVRZMEp5eFpFUWg4NW15NjAyRktNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS9jYTQ0NzEtMzRkMC00ODE2LTgxZDEtOGJmNWIxZWQxMjA5 LzEvdVQycEh4OVRZMEp5eFpFUWg4NW15NjAyRktNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAwSQNBZ6 6E1UNzXG8EuaG13AMlbnjulg1BZ9xA8yZhAb4ykcDcmyEnpWKc6h+C8EUXp7fKZt 3daiSv6nJfrOAwlfsk5Fzn4JlC5fYZBq8AxyHteVNOgFcJNAY0rNEbv99rw8/ESU 0rhTWzT3XYxXK2dlAdqc497smWj0na8jhEheak2vxq8mjcwDfEzjueYffRIenAIY 0cAMBebHJqrmOq92mk57eZTR6/ByccA7/CA7u/wUFZtDIstofSymPDuCJC9hfdV+ EozINzbMbM4dtgd34OPKv4FpPf83bKnc7vFe9MJMV19/EN2VlJBbjbAqLgOV+woI d4ZPDZGkusli6Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:47:39 2026 by rpki-client