This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/281cc2-959e-4192-bdde-8c70bc847bc5/1/udCVzONbOja-8QjvdipiGvRmJiE.mft File: udCVzONbOja-8QjvdipiGvRmJiE.mft (raw, json) Hash identifier: ssHgm3c+34KYcip3grx60+htQV3jTD0U/ETAVQj/s3s= Subject key identifier: 78:C1:44:20:62:EA:AA:02:44:A4:19:54:F8:91:2A:AD:04:AB:C2:04 Authority key identifier: B9:D0:95:CC:E3:5B:3A:36:BE:F1:08:EF:76:2A:62:1A:F4:66:26:21 Certificate issuer: /CN=b9d095cce35b3a36bef108ef762a621af4662621 Certificate serial: 019C44A24C467878DEAAC1585EB3870AC45C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/udCVzONbOja-8QjvdipiGvRmJiE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/281cc2-959e-4192-bdde-8c70bc847bc5/1/udCVzONbOja-8QjvdipiGvRmJiE.mft Manifest number: 0565 Signing time: Mon 09 Feb 2026 23:00:12 +0000 Manifest this update: Mon 09 Feb 2026 23:00:12 +0000 Manifest next update: Tue 10 Feb 2026 23:00:12 +0000 Files and hashes: 1: udCVzONbOja-8QjvdipiGvRmJiE.crl (hash: RQCl+MnrSwMMRA26giAdhzBJPBcYTOmORcPGkoETfv8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/281cc2-959e-4192-bdde-8c70bc847bc5/1/udCVzONbOja-8QjvdipiGvRmJiE.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/281cc2-959e-4192-bdde-8c70bc847bc5/1/udCVzONbOja-8QjvdipiGvRmJiE.mft rsync://rpki.ripe.net/repository/DEFAULT/udCVzONbOja-8QjvdipiGvRmJiE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:a2:4c:46:78:78:de:aa:c1:58:5e:b3:87:0a:c4:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9d095cce35b3a36bef108ef762a621af4662621 Validity Not Before: Feb 9 23:00:12 2026 GMT Not After : Feb 10 23:00:12 2026 GMT Subject: CN=78c1442062eaaa0244a41954f8912aad04abc204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9d:42:a6:27:18:73:48:1a:94:f9:fe:f6:55: 37:87:6f:b4:b7:94:71:04:c2:38:c7:c7:4b:f1:2c: 77:da:3c:d3:54:b4:20:dd:83:ff:c1:d7:ed:46:a7: 71:ab:e6:ff:86:bd:85:61:5f:a1:e6:7f:3f:4a:6d: 93:09:d0:82:77:a6:b3:e1:fc:f7:10:2a:52:a8:45: 2d:04:97:8d:bc:30:50:4a:f2:15:e5:02:73:7a:ef: 6c:3d:5c:ea:e7:c7:4c:24:e2:d7:70:b2:2b:8f:ea: a4:68:b1:b4:a9:1c:e9:02:77:7d:53:32:ca:65:16: c2:8d:85:b5:68:7b:c5:38:55:79:4a:6e:15:4b:e1: cf:f5:d0:09:e7:90:75:13:81:b4:8c:eb:b5:e6:f9: da:0a:9e:5b:bd:8d:a2:e1:17:f2:21:41:4c:2e:e5: 50:c4:c6:4e:ab:6f:1d:ec:a9:14:40:e2:6d:8c:f5: 8c:00:88:ce:4a:4a:56:c0:0e:5a:08:5b:fe:c8:a8: db:b8:7a:af:c0:8b:29:84:c2:ef:82:5a:73:a0:b6: 88:df:16:79:b3:51:7c:78:fd:fe:d2:49:c5:93:f4: 28:c2:63:a2:23:8a:47:db:de:e5:bb:40:37:72:12: a3:9d:2a:de:6b:54:73:79:c9:f4:af:ac:a9:09:15: 3f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C1:44:20:62:EA:AA:02:44:A4:19:54:F8:91:2A:AD:04:AB:C2:04 X509v3 Authority Key Identifier: keyid:B9:D0:95:CC:E3:5B:3A:36:BE:F1:08:EF:76:2A:62:1A:F4:66:26:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/udCVzONbOja-8QjvdipiGvRmJiE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/281cc2-959e-4192-bdde-8c70bc847bc5/1/udCVzONbOja-8QjvdipiGvRmJiE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/281cc2-959e-4192-bdde-8c70bc847bc5/1/udCVzONbOja-8QjvdipiGvRmJiE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:54:27:82:fa:ef:ba:56:bb:fd:13:d7:23:48:f0:90:ae:57: 6c:fa:bc:5f:be:7d:5b:04:24:bd:b7:a1:91:f9:f0:19:d1:02: 4e:3a:7b:5f:74:bc:28:eb:3d:79:c4:15:01:0f:dc:03:d4:ba: c4:f8:02:13:16:20:df:5f:84:7b:78:e2:5d:89:ff:55:fe:18: ed:1c:ff:57:79:c4:4a:57:a4:d8:f6:ad:f3:55:f3:5c:58:ad: 43:96:d0:44:f5:e6:60:fe:48:2b:b8:c8:5c:c0:a1:ed:1f:7a: b3:e8:e1:3c:b8:3b:b6:d8:17:dc:c0:3a:2d:2a:92:21:a7:99: 6d:0b:5d:82:36:ae:65:2c:2a:fd:f6:ba:12:3f:b5:4e:2f:78: 7d:c4:a9:d3:31:a8:c3:30:ac:fd:9c:62:e8:92:31:00:82:0a: ae:78:83:0f:5d:81:ec:2e:a9:5e:67:3f:8b:1f:8c:55:98:54: 42:a9:05:2c:6f:2a:fe:63:9c:98:57:8f:d7:bb:e0:ff:ee:53: ac:5c:4c:ff:15:7e:48:ad:35:27:c4:01:b3:5d:50:83:e5:25: ed:af:21:4a:7e:e4:3d:d0:36:cd:b8:5e:ab:85:d8:db:9c:5d: 8c:4e:f7:65:60:1a:d3:bf:45:ce:a7:06:b3:10:bf:4e:a0:8a: e0:ed:ff:16 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEokxGeHjeqsFYXrOHCsRcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5ZDA5NWNjZTM1YjNhMzZiZWYxMDhlZjc2MmE2MjFhZjQ2 NjI2MjEwHhcNMjYwMjA5MjMwMDEyWhcNMjYwMjEwMjMwMDEyWjAzMTEwLwYDVQQD Eyg3OGMxNDQyMDYyZWFhYTAyNDRhNDE5NTRmODkxMmFhZDA0YWJjMjA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJ1CpicYc0galPn+9lU3h2+0t5Rx BMI4x8dL8Sx32jzTVLQg3YP/wdftRqdxq+b/hr2FYV+h5n8/Sm2TCdCCd6az4fz3 ECpSqEUtBJeNvDBQSvIV5QJzeu9sPVzq58dMJOLXcLIrj+qkaLG0qRzpAnd9UzLK ZRbCjYW1aHvFOFV5Sm4VS+HP9dAJ55B1E4G0jOu15vnaCp5bvY2i4RfyIUFMLuVQ xMZOq28d7KkUQOJtjPWMAIjOSkpWwA5aCFv+yKjbuHqvwIsphMLvglpzoLaI3xZ5 s1F8eP3+0knFk/QowmOiI4pH297lu0A3chKjnSrea1Rzecn0r6ypCRU/VwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHjBRCBi6qoCRKQZVPiRKq0Eq8IEMB8GA1UdIwQY MBaAFLnQlczjWzo2vvEI73YqYhr0ZiYhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWRDVnpPTmJPamEtOFFqdmRpcGlHdlJtSmlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS8yODFjYzItOTU5ZS00MTkyLWJkZGUt OGM3MGJjODQ3YmM1LzEvdWRDVnpPTmJPamEtOFFqdmRpcGlHdlJtSmlFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS8yODFjYzItOTU5ZS00MTkyLWJkZGUtOGM3MGJjODQ3YmM1 LzEvdWRDVnpPTmJPamEtOFFqdmRpcGlHdlJtSmlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPVQngvrv ula7/RPXI0jwkK5XbPq8X759WwQkvbehkfnwGdECTjp7X3S8KOs9ecQVAQ/cA9S6 xPgCExYg31+Ee3jiXYn/Vf4Y7Rz/V3nESlek2Pat81XzXFitQ5bQRPXmYP5IK7jI XMCh7R96s+jhPLg7ttgX3MA6LSqSIaeZbQtdgjauZSwq/fa6Ej+1Ti94fcSp0zGo wzCs/Zxi6JIxAIIKrniDD12B7C6pXmc/ix+MVZhUQqkFLG8q/mOcmFeP17vg/+5T rFxM/xV+SK01J8QBs11Qg+Ul7a8hSn7kPdA2zbheq4XY25xdjE73ZWAa079FzqcG sxC/TqCK4O3/Fg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:45:57 2026 by rpki-client