This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/34e759-c9e3-45ba-881b-0873865e4432/1/ubrpYJaypQez1LDCdLwv9Ynp-aI.mft File: ubrpYJaypQez1LDCdLwv9Ynp-aI.mft (raw, json) Hash identifier: T9iXLIxp9/z/3SxLs49KOBxbYQyrjMWIVfWyyF34Fwg= Subject key identifier: BC:70:99:22:15:6D:EB:FC:B1:C7:7F:B0:EC:21:3D:30:35:98:39:5A Authority key identifier: B9:BA:E9:60:96:B2:A5:07:B3:D4:B0:C2:74:BC:2F:F5:89:E9:F9:A2 Certificate issuer: /CN=b9bae96096b2a507b3d4b0c274bc2ff589e9f9a2 Certificate serial: 019C43595EFA010C06E632DC933CC25C403C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubrpYJaypQez1LDCdLwv9Ynp-aI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/34e759-c9e3-45ba-881b-0873865e4432/1/ubrpYJaypQez1LDCdLwv9Ynp-aI.mft Manifest number: 0216 Signing time: Mon 09 Feb 2026 17:00:56 +0000 Manifest this update: Mon 09 Feb 2026 17:00:56 +0000 Manifest next update: Tue 10 Feb 2026 17:00:56 +0000 Files and hashes: 1: ubrpYJaypQez1LDCdLwv9Ynp-aI.crl (hash: o8OnJvgvd/Byl6NRV99aLqUXEwGSUffNiun+6NRVj6M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/34e759-c9e3-45ba-881b-0873865e4432/1/ubrpYJaypQez1LDCdLwv9Ynp-aI.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/34e759-c9e3-45ba-881b-0873865e4432/1/ubrpYJaypQez1LDCdLwv9Ynp-aI.mft rsync://rpki.ripe.net/repository/DEFAULT/ubrpYJaypQez1LDCdLwv9Ynp-aI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:5e:fa:01:0c:06:e6:32:dc:93:3c:c2:5c:40:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9bae96096b2a507b3d4b0c274bc2ff589e9f9a2 Validity Not Before: Feb 9 17:00:56 2026 GMT Not After : Feb 10 17:00:56 2026 GMT Subject: CN=bc709922156debfcb1c77fb0ec213d303598395a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:6f:0a:95:d7:40:4d:60:3f:ee:ed:83:93:51: 8e:23:cd:01:02:2f:35:ca:64:d2:3a:92:81:9c:3b: 91:df:a4:5c:b6:13:f6:8c:b4:4a:15:c2:ea:54:cc: 60:cf:18:51:7a:a1:c2:50:62:c6:07:12:01:d9:f7: 3c:f6:7f:fd:7e:dc:eb:39:90:ca:f1:f4:e4:99:39: 73:fa:d9:ad:cd:73:bd:4c:eb:c9:69:1b:ae:d5:73: 74:3f:58:87:c2:94:ab:a0:19:be:e3:1f:0d:12:cd: 86:7a:88:3d:64:f9:a6:36:41:63:e0:17:3d:88:05: 91:b7:21:ed:3e:a6:3d:c0:4b:a3:ad:60:b2:ae:2e: 69:77:cf:d1:03:4f:93:6d:cd:f9:aa:86:1a:e6:29: f8:5f:14:67:5b:4d:dc:45:14:34:2f:41:c7:f3:8b: d4:4e:1e:b4:c9:f6:b4:40:90:21:03:4b:88:d0:64: 1b:9e:47:d9:aa:58:4f:5b:8c:bb:dc:52:6a:f4:e7: 59:75:a9:95:02:4b:66:5e:04:4a:80:eb:eb:61:b8: f0:52:e3:4a:82:61:3b:9b:75:07:85:1c:1c:18:de: e4:91:73:15:70:b5:ed:8b:b2:1a:db:63:d6:da:67: 0c:06:3a:f1:05:81:6f:1f:1d:74:6a:cd:af:a6:e1: 2a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:70:99:22:15:6D:EB:FC:B1:C7:7F:B0:EC:21:3D:30:35:98:39:5A X509v3 Authority Key Identifier: keyid:B9:BA:E9:60:96:B2:A5:07:B3:D4:B0:C2:74:BC:2F:F5:89:E9:F9:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubrpYJaypQez1LDCdLwv9Ynp-aI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/34e759-c9e3-45ba-881b-0873865e4432/1/ubrpYJaypQez1LDCdLwv9Ynp-aI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/34e759-c9e3-45ba-881b-0873865e4432/1/ubrpYJaypQez1LDCdLwv9Ynp-aI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:aa:19:50:50:16:df:30:2b:b3:07:9c:54:90:67:7f:d2:16: 20:d6:7d:b9:59:71:71:9d:48:6c:c2:0a:06:ec:43:3d:ab:ec: fb:26:8f:c1:d5:40:82:65:85:2b:42:32:60:df:aa:4b:68:96: a2:68:2c:eb:21:54:03:7e:fc:c8:68:6c:b3:b1:a5:18:0a:fe: 65:7f:cb:8b:a2:ee:3e:26:eb:e0:36:07:01:79:8d:ff:21:bb: 15:34:d5:fc:f3:f7:5b:2e:09:a2:99:64:55:ee:62:94:09:72: fd:46:33:57:75:32:c1:94:03:b4:7c:b4:f8:c0:09:63:6e:db: d8:0c:2e:bc:c5:2f:f5:e1:2e:ec:4a:cd:e5:c4:5c:cd:10:2b: 90:46:fd:3a:f9:ec:1e:64:a7:ef:9f:9c:66:06:a8:8a:5b:b5: 3e:c0:e5:e2:7a:2a:cf:f2:c2:5b:19:37:ed:23:9f:9d:6c:1e: ef:1d:22:77:ee:80:f8:03:b3:43:22:84:b6:6b:d1:5e:37:ac: d6:18:8a:e4:d1:de:9f:8c:24:63:17:57:37:3c:76:d5:e4:2b: 24:c2:22:f2:e2:10:c1:2a:64:27:4c:87:e8:ac:e3:43:b1:6d: 3c:4c:56:58:b0:d7:87:03:d0:8e:75:b6:5e:f8:48:de:84:75: 91:02:4f:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWV76AQwG5jLckzzCXEA8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5YmFlOTYwOTZiMmE1MDdiM2Q0YjBjMjc0YmMyZmY1ODll OWY5YTIwHhcNMjYwMjA5MTcwMDU2WhcNMjYwMjEwMTcwMDU2WjAzMTEwLwYDVQQD EyhiYzcwOTkyMjE1NmRlYmZjYjFjNzdmYjBlYzIxM2QzMDM1OTgzOTVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz28KlddATWA/7u2Dk1GOI80BAi81 ymTSOpKBnDuR36RcthP2jLRKFcLqVMxgzxhReqHCUGLGBxIB2fc89n/9ftzrOZDK 8fTkmTlz+tmtzXO9TOvJaRuu1XN0P1iHwpSroBm+4x8NEs2Geog9ZPmmNkFj4Bc9 iAWRtyHtPqY9wEujrWCyri5pd8/RA0+Tbc35qoYa5in4XxRnW03cRRQ0L0HH84vU Th60yfa0QJAhA0uI0GQbnkfZqlhPW4y73FJq9OdZdamVAktmXgRKgOvrYbjwUuNK gmE7m3UHhRwcGN7kkXMVcLXti7Ia22PW2mcMBjrxBYFvHx10as2vpuEqRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLxwmSIVbev8scd/sOwhPTA1mDlaMB8GA1UdIwQY MBaAFLm66WCWsqUHs9SwwnS8L/WJ6fmiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWJycFlKYXlwUWV6MUxEQ2RMd3Y5WW5wLWFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8zNGU3NTktYzllMy00NWJhLTg4MWIt MDg3Mzg2NWU0NDMyLzEvdWJycFlKYXlwUWV6MUxEQ2RMd3Y5WW5wLWFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS8zNGU3NTktYzllMy00NWJhLTg4MWItMDg3Mzg2NWU0NDMy LzEvdWJycFlKYXlwUWV6MUxEQ2RMd3Y5WW5wLWFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqaoZUFAW 3zArswecVJBnf9IWINZ9uVlxcZ1IbMIKBuxDPavs+yaPwdVAgmWFK0IyYN+qS2iW omgs6yFUA378yGhss7GlGAr+ZX/Li6LuPibr4DYHAXmN/yG7FTTV/PP3Wy4Joplk Ve5ilAly/UYzV3UywZQDtHy0+MAJY27b2AwuvMUv9eEu7ErN5cRczRArkEb9Ovns HmSn75+cZgaoilu1PsDl4noqz/LCWxk37SOfnWwe7x0id+6A+AOzQyKEtmvRXjes 1hiK5NHen4wkYxdXNzx21eQrJMIi8uIQwSpkJ0yH6KzjQ7FtPExWWLDXhwPQjnW2 XvhI3oR1kQJPtw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:45:08 2026 by rpki-client