This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/8a06f4-986e-4669-bdf9-8ee2f9dcb1ed/1/uaY9guJ4W32wBSjcVacGncUQpC8.mft File: uaY9guJ4W32wBSjcVacGncUQpC8.mft (raw, json) Hash identifier: DJ2JLOEsOhCU2l9pBTbjVG8EAMBNOBXxlMsR9Y03uhA= Subject key identifier: 63:C7:68:42:3F:2F:C7:16:22:49:32:F7:53:FD:7C:59:3D:C7:0E:BA Authority key identifier: B9:A6:3D:82:E2:78:5B:7D:B0:05:28:DC:55:A7:06:9D:C5:10:A4:2F Certificate issuer: /CN=b9a63d82e2785b7db00528dc55a7069dc510a42f Certificate serial: 019C40FCD5CFA8D954623BEB9DF1CD94326A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uaY9guJ4W32wBSjcVacGncUQpC8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/8a06f4-986e-4669-bdf9-8ee2f9dcb1ed/1/uaY9guJ4W32wBSjcVacGncUQpC8.mft Manifest number: 06C0 Signing time: Mon 09 Feb 2026 06:00:37 +0000 Manifest this update: Mon 09 Feb 2026 06:00:37 +0000 Manifest next update: Tue 10 Feb 2026 06:00:37 +0000 Files and hashes: 1: uaY9guJ4W32wBSjcVacGncUQpC8.crl (hash: 652JrPNuMzCcUiUc3xfp/BDqUeLoY95kVQqmmC6MAiE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/8a06f4-986e-4669-bdf9-8ee2f9dcb1ed/1/uaY9guJ4W32wBSjcVacGncUQpC8.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/8a06f4-986e-4669-bdf9-8ee2f9dcb1ed/1/uaY9guJ4W32wBSjcVacGncUQpC8.mft rsync://rpki.ripe.net/repository/DEFAULT/uaY9guJ4W32wBSjcVacGncUQpC8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fc:d5:cf:a8:d9:54:62:3b:eb:9d:f1:cd:94:32:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9a63d82e2785b7db00528dc55a7069dc510a42f Validity Not Before: Feb 9 06:00:37 2026 GMT Not After : Feb 10 06:00:37 2026 GMT Subject: CN=63c768423f2fc716224932f753fd7c593dc70eba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d2:25:9c:67:97:7f:96:c1:be:db:f6:fb:2b: 43:19:c0:30:64:31:5d:6d:56:56:50:4b:4d:97:c5: 33:3b:cd:18:12:cc:fd:9d:9b:79:c2:e1:c4:5b:fe: b3:d5:22:24:23:86:9a:8b:fd:8f:2c:9d:c8:9d:fe: c4:7c:0a:72:0b:d7:3d:0f:cf:3d:90:79:b8:5a:f4: ba:ca:f3:e7:f1:79:8e:80:ee:50:cd:10:f9:f9:f4: bd:cf:0c:ba:e3:cc:4b:02:dc:58:06:83:ad:6c:f9: bd:b3:54:c2:a6:54:e9:b2:f4:81:a3:d9:6b:45:10: fa:6d:80:fa:0b:91:5b:ff:e2:3b:d0:6e:e8:e3:40: 2a:a3:62:7c:44:53:be:5e:e3:46:08:ed:d6:e5:82: 24:33:07:48:a0:cd:c4:75:18:2a:5d:90:8b:ae:35: f3:4c:88:3e:ef:1b:b5:a8:67:f9:0b:51:1c:f8:90: a6:83:40:49:67:62:bc:3d:1b:da:fa:7b:1f:bf:20: d6:5b:64:23:f6:d7:62:d7:62:f6:61:b6:0f:74:cd: 8c:fd:7c:54:07:22:29:dc:1a:02:46:b0:28:b4:3a: 2d:78:f6:24:50:26:1c:bf:e3:fa:46:1a:1c:39:09: c0:8b:a1:fc:12:de:79:c6:ac:f2:06:e6:49:5d:07: 90:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:C7:68:42:3F:2F:C7:16:22:49:32:F7:53:FD:7C:59:3D:C7:0E:BA X509v3 Authority Key Identifier: keyid:B9:A6:3D:82:E2:78:5B:7D:B0:05:28:DC:55:A7:06:9D:C5:10:A4:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uaY9guJ4W32wBSjcVacGncUQpC8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/8a06f4-986e-4669-bdf9-8ee2f9dcb1ed/1/uaY9guJ4W32wBSjcVacGncUQpC8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/8a06f4-986e-4669-bdf9-8ee2f9dcb1ed/1/uaY9guJ4W32wBSjcVacGncUQpC8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:55:8c:09:27:28:e3:cf:fa:74:24:2e:5a:47:64:02:3e:cc: 2f:3d:a1:f2:86:88:7c:d3:e7:b9:89:84:de:a3:79:a5:a2:66: 60:d2:33:fb:da:17:c2:dc:73:42:ab:70:b6:37:ac:74:25:9d: b0:ec:b4:ae:38:a7:e0:21:17:cd:24:e1:63:88:98:d6:3c:41: 6d:da:65:92:e4:d0:a9:d0:40:cc:c3:b0:59:36:1e:4a:ae:dd: 42:ef:9b:81:9c:3c:5b:ca:18:c3:a2:92:77:57:b2:84:9b:a1: 9d:ad:68:fc:b5:bc:4f:c9:b0:e0:73:81:bf:47:d4:f6:2e:a7: b4:a4:2d:ed:6c:c7:7d:15:60:bf:5c:57:9a:ff:15:62:d7:87: a7:83:73:d2:51:db:66:ec:50:b7:8b:86:6f:4d:39:62:cb:31: 6a:05:ff:dd:1e:6c:3f:38:44:80:59:bb:66:13:55:67:47:ef: 08:47:e7:f9:31:53:84:61:0c:38:fc:2a:3d:ac:f7:11:7d:91: a1:aa:4a:dd:15:23:cd:77:30:2d:8a:b8:e2:09:ab:5e:cc:dd: f1:3e:c0:ea:5c:22:89:5f:cb:7e:df:02:73:20:73:fe:7e:9f: f4:02:4c:b2:e6:b2:dd:c8:ea:13:ff:0a:b0:a3:7f:d9:3e:8e: c4:9d:48:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/NXPqNlUYjvrnfHNlDJqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5YTYzZDgyZTI3ODViN2RiMDA1MjhkYzU1YTcwNjlkYzUx MGE0MmYwHhcNMjYwMjA5MDYwMDM3WhcNMjYwMjEwMDYwMDM3WjAzMTEwLwYDVQQD Eyg2M2M3Njg0MjNmMmZjNzE2MjI0OTMyZjc1M2ZkN2M1OTNkYzcwZWJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzdIlnGeXf5bBvtv2+ytDGcAwZDFd bVZWUEtNl8UzO80YEsz9nZt5wuHEW/6z1SIkI4aai/2PLJ3Inf7EfApyC9c9D889 kHm4WvS6yvPn8XmOgO5QzRD5+fS9zwy648xLAtxYBoOtbPm9s1TCplTpsvSBo9lr RRD6bYD6C5Fb/+I70G7o40Aqo2J8RFO+XuNGCO3W5YIkMwdIoM3EdRgqXZCLrjXz TIg+7xu1qGf5C1Ec+JCmg0BJZ2K8PRva+nsfvyDWW2Qj9tdi12L2YbYPdM2M/XxU ByIp3BoCRrAotDotePYkUCYcv+P6RhocOQnAi6H8Et55xqzyBuZJXQeQ9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGPHaEI/L8cWIkky91P9fFk9xw66MB8GA1UdIwQY MBaAFLmmPYLieFt9sAUo3FWnBp3FEKQvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWFZOWd1SjRXMzJ3QlNqY1ZhY0duY1VRcEM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC84YTA2ZjQtOTg2ZS00NjY5LWJkZjkt OGVlMmY5ZGNiMWVkLzEvdWFZOWd1SjRXMzJ3QlNqY1ZhY0duY1VRcEM4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC84YTA2ZjQtOTg2ZS00NjY5LWJkZjktOGVlMmY5ZGNiMWVk LzEvdWFZOWd1SjRXMzJ3QlNqY1ZhY0duY1VRcEM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAglWMCSco 48/6dCQuWkdkAj7MLz2h8oaIfNPnuYmE3qN5paJmYNIz+9oXwtxzQqtwtjesdCWd sOy0rjin4CEXzSThY4iY1jxBbdplkuTQqdBAzMOwWTYeSq7dQu+bgZw8W8oYw6KS d1eyhJuhna1o/LW8T8mw4HOBv0fU9i6ntKQt7WzHfRVgv1xXmv8VYteHp4Nz0lHb ZuxQt4uGb005YssxagX/3R5sPzhEgFm7ZhNVZ0fvCEfn+TFThGEMOPwqPaz3EX2R oapK3RUjzXcwLYq44gmrXszd8T7A6lwiiV/Lft8CcyBz/n6f9AJMsuay3cjqE/8K sKN/2T6OxJ1IhQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:59:41 2026 by rpki-client