This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft File: uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft (raw, json) Hash identifier: TCjulWvBooiB9F3qV7VGARoJM8bik+AegK4tLjn3gc8= Subject key identifier: 2A:0A:DE:EE:9A:3C:42:D6:CF:01:27:CA:70:15:21:BD:E4:98:71:8D Authority key identifier: B8:5E:0B:E6:B7:27:9C:DE:CF:78:BD:D6:41:05:F8:44:3D:0C:0C:02 Certificate issuer: /CN=b85e0be6b7279cdecf78bdd64105f8443d0c0c02 Certificate serial: 019C43221E6D30AB042E56D3AE7BA15E0C5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uF4L5rcnnN7PeL3WQQX4RD0MDAI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft Manifest number: 1261 Signing time: Mon 09 Feb 2026 16:00:35 +0000 Manifest this update: Mon 09 Feb 2026 16:00:35 +0000 Manifest next update: Tue 10 Feb 2026 16:00:35 +0000 Files and hashes: 1: uF4L5rcnnN7PeL3WQQX4RD0MDAI.crl (hash: C8Y0mmIds/BR7K4Lrjk4udGzFTqbEjLivxkU5txGtHk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.crl rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft rsync://rpki.ripe.net/repository/DEFAULT/uF4L5rcnnN7PeL3WQQX4RD0MDAI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:1e:6d:30:ab:04:2e:56:d3:ae:7b:a1:5e:0c:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b85e0be6b7279cdecf78bdd64105f8443d0c0c02 Validity Not Before: Feb 9 16:00:35 2026 GMT Not After : Feb 10 16:00:35 2026 GMT Subject: CN=2a0adeee9a3c42d6cf0127ca701521bde498718d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bc:6b:1c:2c:28:0c:ea:5a:73:94:41:64:1e: e6:22:25:af:35:8c:08:dc:7f:6b:a0:ac:bf:a9:53: cf:b2:f6:79:7e:84:8b:db:c7:11:32:fc:92:93:e6: 1b:c2:84:67:88:3f:1a:6f:4b:1b:55:9d:de:cb:6f: e2:7d:b7:2a:f7:27:9f:71:7d:c3:f3:07:34:8a:46: e3:ec:33:ea:44:83:7d:fc:96:fe:d7:ee:42:7d:64: 46:86:1a:d6:92:bf:7f:4e:91:24:97:cd:09:f5:90: 0b:75:9d:19:c1:f2:38:09:fd:91:cb:b7:76:9f:50: 68:83:af:9d:e5:99:e9:1e:10:90:17:be:f1:d7:2f: 96:e4:28:35:aa:e9:29:c4:47:72:27:c6:b3:56:7e: 7a:9e:0f:50:05:b3:2b:a7:0b:37:45:56:2e:ad:4e: 20:94:f0:ca:dd:cd:a0:81:b4:f3:de:65:56:f2:91: 28:1e:0d:f8:dc:e2:44:0b:a4:33:29:d1:91:23:72: 20:89:6e:26:f3:29:f4:33:6e:69:e4:a4:f0:e6:63: 87:72:bb:23:45:f8:1c:9c:ba:bb:36:e6:28:70:53: 63:aa:33:5f:50:e1:f1:23:cb:7f:6b:67:0c:97:b4: c2:eb:b0:c9:35:0f:a0:e4:f2:ec:ae:47:38:76:07: 8c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:0A:DE:EE:9A:3C:42:D6:CF:01:27:CA:70:15:21:BD:E4:98:71:8D X509v3 Authority Key Identifier: keyid:B8:5E:0B:E6:B7:27:9C:DE:CF:78:BD:D6:41:05:F8:44:3D:0C:0C:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uF4L5rcnnN7PeL3WQQX4RD0MDAI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ba:a9:6d:db:7a:04:47:dd:27:aa:f6:c2:80:dd:d0:f2:64:d7: f3:92:0a:1c:dc:78:fb:93:78:51:ea:3b:63:3e:31:db:8f:74: de:6e:85:e0:88:16:fd:ec:30:d9:a4:01:15:a9:c3:62:a9:3f: 91:ff:9a:7e:e2:e2:8d:5a:14:e1:f4:87:24:23:55:c5:19:c8: 62:32:5a:7e:b1:ab:8f:7f:2f:77:10:57:f7:37:69:42:77:12: 1c:fc:5d:bb:63:db:ab:0d:b2:6f:d9:52:03:f8:9b:28:86:6c: ef:94:a9:eb:78:e7:91:3b:54:86:64:d8:c3:65:fb:85:17:ce: 16:df:97:c4:f1:36:5d:fa:7d:72:05:f8:95:a7:15:89:54:3c: 00:51:9c:11:33:c5:f4:d7:25:21:29:a0:58:73:6a:92:4c:55: c1:ce:ca:64:6b:5d:00:c6:dc:cc:88:1c:23:29:b0:af:9b:38: 7e:eb:75:5b:10:2e:17:f6:49:d1:c2:50:00:91:2f:91:e2:c3: c9:dc:d7:51:76:a2:3d:7b:15:96:a3:c0:c1:ad:4e:c8:c4:99: 6b:d5:87:b8:26:94:7e:83:32:63:22:a3:a0:18:ac:e9:71:43: 0c:0d:2f:10:f1:42:81:b7:50:3f:60:e3:51:85:b2:1c:dc:31: 03:af:ff:f8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIh5tMKsELlbTrnuhXgxeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4NWUwYmU2YjcyNzljZGVjZjc4YmRkNjQxMDVmODQ0M2Qw YzBjMDIwHhcNMjYwMjA5MTYwMDM1WhcNMjYwMjEwMTYwMDM1WjAzMTEwLwYDVQQD EygyYTBhZGVlZTlhM2M0MmQ2Y2YwMTI3Y2E3MDE1MjFiZGU0OTg3MThkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvbxrHCwoDOpac5RBZB7mIiWvNYwI 3H9roKy/qVPPsvZ5foSL28cRMvySk+YbwoRniD8ab0sbVZ3ey2/ifbcq9yefcX3D 8wc0ikbj7DPqRIN9/Jb+1+5CfWRGhhrWkr9/TpEkl80J9ZALdZ0ZwfI4Cf2Ry7d2 n1Bog6+d5ZnpHhCQF77x1y+W5Cg1qukpxEdyJ8azVn56ng9QBbMrpws3RVYurU4g lPDK3c2ggbTz3mVW8pEoHg343OJEC6QzKdGRI3IgiW4m8yn0M25p5KTw5mOHcrsj RfgcnLq7NuYocFNjqjNfUOHxI8t/a2cMl7TC67DJNQ+g5PLsrkc4dgeMoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCoK3u6aPELWzwEnynAVIb3kmHGNMB8GA1UdIwQY MBaAFLheC+a3J5zez3i91kEF+EQ9DAwCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUY0TDVyY25uTjdQZUwzV1FRWDRSRDBNREFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC82ZTFmMzgtNjgwNy00ODY2LWE5ZWQt NDNiZjFjNDNlYzBmLzEvdUY0TDVyY25uTjdQZUwzV1FRWDRSRDBNREFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC82ZTFmMzgtNjgwNy00ODY2LWE5ZWQtNDNiZjFjNDNlYzBm LzEvdUY0TDVyY25uTjdQZUwzV1FRWDRSRDBNREFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuqlt23oE R90nqvbCgN3Q8mTX85IKHNx4+5N4Ueo7Yz4x24903m6F4IgW/eww2aQBFanDYqk/ kf+afuLijVoU4fSHJCNVxRnIYjJafrGrj38vdxBX9zdpQncSHPxdu2Pbqw2yb9lS A/ibKIZs75Sp63jnkTtUhmTYw2X7hRfOFt+XxPE2Xfp9cgX4lacViVQ8AFGcETPF 9NclISmgWHNqkkxVwc7KZGtdAMbczIgcIymwr5s4fut1WxAuF/ZJ0cJQAJEvkeLD ydzXUXaiPXsVlqPAwa1OyMSZa9WHuCaUfoMyYyKjoBis6XFDDA0vEPFCgbdQP2Dj UYWyHNwxA6//+A== -----END CERTIFICATE-----Generated at Mon Feb 9 22:18:53 2026 by rpki-client