This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/d0b571-3276-4177-8163-0069030763db/1/U2XQP9hSJnTrF6x2cpTNEfcpOdE.mft File: U2XQP9hSJnTrF6x2cpTNEfcpOdE.mft (raw, json) Hash identifier: pM6/p3kK1pO+ybzmEoU0CI4YjSu2lFiw7csVY8iwSPw= Subject key identifier: 9D:94:B9:6C:C0:E6:D9:FE:80:04:1F:4D:B2:80:85:A4:15:18:CC:2F Authority key identifier: 53:65:D0:3F:D8:52:26:74:EB:17:AC:76:72:94:CD:11:F7:29:39:D1 Certificate issuer: /CN=5365d03fd8522674eb17ac767294cd11f72939d1 Certificate serial: 019C42B45536ABFB64DB52743D74F8F30AF4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U2XQP9hSJnTrF6x2cpTNEfcpOdE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/d0b571-3276-4177-8163-0069030763db/1/U2XQP9hSJnTrF6x2cpTNEfcpOdE.mft Manifest number: 0154 Signing time: Mon 09 Feb 2026 14:00:40 +0000 Manifest this update: Mon 09 Feb 2026 14:00:40 +0000 Manifest next update: Tue 10 Feb 2026 14:00:40 +0000 Files and hashes: 1: U2XQP9hSJnTrF6x2cpTNEfcpOdE.crl (hash: hUxb7jkb+Fws78b83K3pqt9//BgJ5HG6/tZdto0mzSQ=) 2: gRIS3IOjEAgDn__cPvDxP1mU1_8.roa (hash: hSl8/IpiF3/9ilxJHWR9J4Hc4H+z1qdb5D3HNsLaVuo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/d0b571-3276-4177-8163-0069030763db/1/U2XQP9hSJnTrF6x2cpTNEfcpOdE.crl rsync://rpki.ripe.net/repository/DEFAULT/83/d0b571-3276-4177-8163-0069030763db/1/U2XQP9hSJnTrF6x2cpTNEfcpOdE.mft rsync://rpki.ripe.net/repository/DEFAULT/U2XQP9hSJnTrF6x2cpTNEfcpOdE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:55:36:ab:fb:64:db:52:74:3d:74:f8:f3:0a:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5365d03fd8522674eb17ac767294cd11f72939d1 Validity Not Before: Feb 9 14:00:40 2026 GMT Not After : Feb 10 14:00:40 2026 GMT Subject: CN=9d94b96cc0e6d9fe80041f4db28085a41518cc2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ad:67:2a:14:c0:7c:68:33:eb:66:4e:02:82: 1f:00:c6:9a:6f:76:e0:e7:96:a5:fd:57:c5:3b:a6: 06:80:b1:84:39:f9:93:91:cf:7f:d4:1a:f9:c8:89: e4:e6:39:3c:75:a5:67:d6:25:ba:0f:32:70:94:d3: 69:f8:65:28:a1:c0:b4:7d:ec:c3:95:6a:f3:43:d6: 8e:0e:85:ee:1b:86:71:04:59:88:84:16:a6:03:34: da:f7:1b:ea:63:e7:e6:cb:1c:5b:c9:55:79:1f:63: dd:76:09:b8:66:3c:ff:7c:fe:a2:f5:76:1d:fa:50: d3:d0:4f:96:5d:d9:e1:7f:c0:93:55:93:d0:20:30: ea:22:1d:64:66:d7:22:30:f7:34:ed:3a:e0:bb:1f: 0a:2d:bf:2e:44:f3:fb:46:21:e8:6a:bb:2e:eb:91: 29:bd:7b:31:6e:db:75:53:7d:ae:7c:ff:6b:0e:70: 37:ac:89:67:d1:86:92:52:9b:69:01:ba:e0:06:f9: 06:ae:e0:c0:ac:53:e0:ed:bf:60:3b:ba:31:eb:f1: 53:81:2f:32:0b:03:6e:e9:d0:71:e6:c9:c6:39:57: 69:0b:91:0b:bc:84:38:30:d2:68:c1:8c:ae:70:44: df:bd:01:f8:ab:34:1c:74:72:e9:7b:d7:ff:ee:e7: 83:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:94:B9:6C:C0:E6:D9:FE:80:04:1F:4D:B2:80:85:A4:15:18:CC:2F X509v3 Authority Key Identifier: keyid:53:65:D0:3F:D8:52:26:74:EB:17:AC:76:72:94:CD:11:F7:29:39:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U2XQP9hSJnTrF6x2cpTNEfcpOdE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d0b571-3276-4177-8163-0069030763db/1/U2XQP9hSJnTrF6x2cpTNEfcpOdE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d0b571-3276-4177-8163-0069030763db/1/U2XQP9hSJnTrF6x2cpTNEfcpOdE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:ea:98:be:94:99:4d:90:66:b5:60:2b:32:ba:73:b3:5f:79: 28:3e:03:ad:55:b2:d4:5f:85:2e:0a:0d:f9:9a:92:92:5f:32: 24:92:e0:87:c6:5c:04:66:63:16:f8:d2:c6:eb:97:86:da:79: ca:28:74:b8:7a:94:8b:b6:c9:9f:b7:1b:db:6f:fb:62:bb:08: a6:f0:89:63:1b:89:73:30:68:a3:a7:7c:4e:ac:12:cf:4f:d7: b7:64:78:a9:a4:a2:e1:57:65:13:dc:3a:47:d0:25:40:35:93: 22:a2:b6:42:b0:ac:11:c5:89:ba:28:b4:f7:67:00:74:43:74: 3b:e2:66:7f:38:33:81:a3:32:1e:96:69:39:b7:5f:c0:1c:3c: e9:a4:ea:50:d6:56:51:77:2b:86:b8:36:3e:7b:59:e1:de:70: 9d:1e:d2:f4:38:e7:cf:50:60:1a:30:eb:42:e8:fa:e6:64:22: e6:cd:3d:bf:e6:f9:05:38:1d:50:44:34:8e:10:26:14:b2:72: b0:87:a8:b0:4a:f9:7f:6d:70:b2:16:d6:d7:98:4f:ea:f6:68: 46:33:56:2b:aa:16:fa:74:3c:fd:ed:6b:0b:0f:e5:2a:fa:82: 5f:da:a0:19:60:73:2b:ed:a3:39:cd:1f:26:4f:1f:fe:31:07: c0:14:c2:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtFU2q/tk21J0PXT48wr0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNjVkMDNmZDg1MjI2NzRlYjE3YWM3NjcyOTRjZDExZjcy OTM5ZDEwHhcNMjYwMjA5MTQwMDQwWhcNMjYwMjEwMTQwMDQwWjAzMTEwLwYDVQQD Eyg5ZDk0Yjk2Y2MwZTZkOWZlODAwNDFmNGRiMjgwODVhNDE1MThjYzJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApq1nKhTAfGgz62ZOAoIfAMaab3bg 55al/VfFO6YGgLGEOfmTkc9/1Br5yInk5jk8daVn1iW6DzJwlNNp+GUoocC0fezD lWrzQ9aODoXuG4ZxBFmIhBamAzTa9xvqY+fmyxxbyVV5H2Pddgm4Zjz/fP6i9XYd +lDT0E+WXdnhf8CTVZPQIDDqIh1kZtciMPc07Trgux8KLb8uRPP7RiHoarsu65Ep vXsxbtt1U32ufP9rDnA3rIln0YaSUptpAbrgBvkGruDArFPg7b9gO7ox6/FTgS8y CwNu6dBx5snGOVdpC5ELvIQ4MNJowYyucETfvQH4qzQcdHLpe9f/7ueDZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ2UuWzA5tn+gAQfTbKAhaQVGMwvMB8GA1UdIwQY MBaAFFNl0D/YUiZ06xesdnKUzRH3KTnRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTJYUVA5aFNKblRyRjZ4MmNwVE5FZmNwT2RFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My9kMGI1NzEtMzI3Ni00MTc3LTgxNjMt MDA2OTAzMDc2M2RiLzEvVTJYUVA5aFNKblRyRjZ4MmNwVE5FZmNwT2RFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My9kMGI1NzEtMzI3Ni00MTc3LTgxNjMtMDA2OTAzMDc2M2Ri LzEvVTJYUVA5aFNKblRyRjZ4MmNwVE5FZmNwT2RFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo+qYvpSZ TZBmtWArMrpzs195KD4DrVWy1F+FLgoN+ZqSkl8yJJLgh8ZcBGZjFvjSxuuXhtp5 yih0uHqUi7bJn7cb22/7YrsIpvCJYxuJczBoo6d8TqwSz0/Xt2R4qaSi4VdlE9w6 R9AlQDWTIqK2QrCsEcWJuii092cAdEN0O+JmfzgzgaMyHpZpObdfwBw86aTqUNZW UXcrhrg2PntZ4d5wnR7S9Djnz1BgGjDrQuj65mQi5s09v+b5BTgdUEQ0jhAmFLJy sIeosEr5f21wshbW15hP6vZoRjNWK6oW+nQ8/e1rCw/lKvqCX9qgGWBzK+2jOc0f Jk8f/jEHwBTCMg== -----END CERTIFICATE-----Generated at Tue Feb 10 00:00:46 2026 by rpki-client