This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft File: vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft (raw, json) Hash identifier: WbYn1eZuc49TwZyYYdtUrocayY7BkblnFxzS+LAk5GU= Subject key identifier: F6:CD:00:92:FC:2D:FF:6E:8F:C3:7D:A6:8D:68:C1:D5:DA:B6:D4:C0 Authority key identifier: BE:55:39:AF:E9:25:DB:80:B4:15:EF:B1:4C:63:1B:2D:82:C8:CE:DD Certificate issuer: /CN=be5539afe925db80b415efb14c631b2d82c8cedd Certificate serial: 019C43C6B8D06388F2D0D206E5F453950507 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft Manifest number: 03ED Signing time: Mon 09 Feb 2026 19:00:22 +0000 Manifest this update: Mon 09 Feb 2026 19:00:22 +0000 Manifest next update: Tue 10 Feb 2026 19:00:22 +0000 Files and hashes: 1: vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl (hash: 4rnApArBZIgZrBU2DrkYsbTNl92AkJ7jPYFRXajv0UI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:b8:d0:63:88:f2:d0:d2:06:e5:f4:53:95:05:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be5539afe925db80b415efb14c631b2d82c8cedd Validity Not Before: Feb 9 19:00:22 2026 GMT Not After : Feb 10 19:00:22 2026 GMT Subject: CN=f6cd0092fc2dff6e8fc37da68d68c1d5dab6d4c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ba:8e:e6:73:7c:2c:a7:ed:20:d7:a5:91:ed: 1e:c9:c1:99:07:f0:1f:64:39:f4:ab:2b:d0:b8:d0: c6:10:38:09:7d:e1:82:6f:a4:e6:47:a0:f2:a1:b2: 88:48:eb:e6:fb:ef:06:6b:91:92:e8:94:19:02:70: 05:56:6b:2a:50:53:08:3b:5b:8c:b3:20:44:e2:ed: 0a:e2:68:ae:28:1d:6d:cd:65:91:23:3a:dc:97:6f: 99:b2:29:53:15:e0:7e:4f:97:9a:ca:d1:aa:f6:13: b2:62:1d:f1:4f:93:13:12:f6:e5:c8:3d:23:02:0e: 36:23:39:64:51:ae:f6:61:28:ae:ad:59:a0:9c:1b: cb:26:18:6a:85:ac:80:f5:22:06:ed:f6:eb:e2:e4: 12:69:45:bd:4d:5d:59:e1:7f:b6:e4:07:d0:ba:38: b2:74:09:04:2b:2a:83:ec:ce:7f:6b:46:27:3c:e1: 4b:46:92:d8:69:50:45:fd:5a:d5:1b:cf:aa:10:1a: fb:42:46:11:4d:45:e2:ba:90:21:74:22:8b:5e:26: e8:e3:46:ae:eb:27:99:40:ee:bb:68:c0:c3:f4:61: 20:59:fb:c3:ec:b5:a0:c8:c8:11:5e:f3:59:b3:20: 5c:58:31:2f:dd:97:05:ec:82:82:77:4c:19:03:00: e4:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:CD:00:92:FC:2D:FF:6E:8F:C3:7D:A6:8D:68:C1:D5:DA:B6:D4:C0 X509v3 Authority Key Identifier: keyid:BE:55:39:AF:E9:25:DB:80:B4:15:EF:B1:4C:63:1B:2D:82:C8:CE:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:6e:94:9b:c4:cd:0b:c9:a3:10:3f:50:d1:11:e5:85:ad:e1: 29:65:13:42:a3:f9:d2:27:59:22:05:9e:17:6b:a7:35:c7:47: d5:7d:22:c0:c1:aa:02:b8:4a:c1:57:8d:33:93:b7:a4:30:92: a5:3e:ea:13:b3:95:f1:14:58:10:46:15:19:78:b4:9f:da:c2: 65:26:01:6b:8a:46:f3:1d:29:e1:e1:d4:6b:fe:48:a1:a5:2b: a7:1a:dc:a9:24:67:80:57:30:24:a9:d7:f8:5d:8e:a1:eb:49: f6:93:8c:b3:a1:64:d1:11:aa:18:f4:2f:7f:be:a3:ce:16:24: f4:02:ac:bd:c5:b5:f7:ef:b4:fa:60:0f:75:9d:54:13:cb:35: cd:1a:9d:08:58:f4:f5:a8:7c:0f:00:84:db:85:da:43:85:23: fb:87:c1:bf:2f:46:47:54:8f:c8:03:3f:80:9b:c6:58:81:d1: 45:01:a7:dc:15:34:a3:10:a0:ad:08:30:ae:9c:59:d8:a4:e6: 1d:2c:da:87:dc:58:51:ed:d8:30:22:cd:52:15:58:01:54:6f: c9:0c:93:64:da:35:cd:77:57:e9:79:e6:76:4b:d4:a6:44:d6: 0c:e9:4e:21:75:1e:08:b9:23:ba:d6:08:92:5a:3d:44:e7:98: b3:c9:af:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxrjQY4jy0NIG5fRTlQUHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlNTUzOWFmZTkyNWRiODBiNDE1ZWZiMTRjNjMxYjJkODJj OGNlZGQwHhcNMjYwMjA5MTkwMDIyWhcNMjYwMjEwMTkwMDIyWjAzMTEwLwYDVQQD EyhmNmNkMDA5MmZjMmRmZjZlOGZjMzdkYTY4ZDY4YzFkNWRhYjZkNGMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyrqO5nN8LKftINelke0eycGZB/Af ZDn0qyvQuNDGEDgJfeGCb6TmR6DyobKISOvm++8Ga5GS6JQZAnAFVmsqUFMIO1uM syBE4u0K4miuKB1tzWWRIzrcl2+ZsilTFeB+T5eaytGq9hOyYh3xT5MTEvblyD0j Ag42IzlkUa72YSiurVmgnBvLJhhqhayA9SIG7fbr4uQSaUW9TV1Z4X+25AfQujiy dAkEKyqD7M5/a0YnPOFLRpLYaVBF/VrVG8+qEBr7QkYRTUXiupAhdCKLXibo40au 6yeZQO67aMDD9GEgWfvD7LWgyMgRXvNZsyBcWDEv3ZcF7IKCd0wZAwDkEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPbNAJL8Lf9uj8N9po1owdXattTAMB8GA1UdIwQY MBaAFL5VOa/pJduAtBXvsUxjGy2CyM7dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmxVNXIta2wyNEMwRmUteFRHTWJMWUxJenQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MzNkYWUtMDAyMS00NGU1LTkyZTUt MjUwMGY0ZWZhYjY5LzEvdmxVNXIta2wyNEMwRmUteFRHTWJMWUxJenQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi83MzNkYWUtMDAyMS00NGU1LTkyZTUtMjUwMGY0ZWZhYjY5 LzEvdmxVNXIta2wyNEMwRmUteFRHTWJMWUxJenQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeW6Um8TN C8mjED9Q0RHlha3hKWUTQqP50idZIgWeF2unNcdH1X0iwMGqArhKwVeNM5O3pDCS pT7qE7OV8RRYEEYVGXi0n9rCZSYBa4pG8x0p4eHUa/5IoaUrpxrcqSRngFcwJKnX +F2OoetJ9pOMs6Fk0RGqGPQvf76jzhYk9AKsvcW19++0+mAPdZ1UE8s1zRqdCFj0 9ah8DwCE24XaQ4Uj+4fBvy9GR1SPyAM/gJvGWIHRRQGn3BU0oxCgrQgwrpxZ2KTm HSzah9xYUe3YMCLNUhVYAVRvyQyTZNo1zXdX6XnmdkvUpkTWDOlOIXUeCLkjutYI klo9ROeYs8mv0A== -----END CERTIFICATE-----Generated at Mon Feb 9 21:09:09 2026 by rpki-client