This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/f8ea98-4fbc-4f3e-b658-e0a7ae216cb7/1/ulwqMT590aRJ4sH7JsWrA-UmgY0.mft File: ulwqMT590aRJ4sH7JsWrA-UmgY0.mft (raw, json) Hash identifier: v2/P4wSWOupTWF16VkxSsiDQ+S+NGvNff3Un9XWIOQY= Subject key identifier: F2:38:42:BE:B7:B5:84:EA:33:BC:1A:F6:DB:84:73:77:94:19:3B:49 Authority key identifier: BA:5C:2A:31:3E:7D:D1:A4:49:E2:C1:FB:26:C5:AB:03:E5:26:81:8D Certificate issuer: /CN=ba5c2a313e7dd1a449e2c1fb26c5ab03e526818d Certificate serial: 019C4246291E4D77FAF4C1ED78D0562AB534 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ulwqMT590aRJ4sH7JsWrA-UmgY0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/f8ea98-4fbc-4f3e-b658-e0a7ae216cb7/1/ulwqMT590aRJ4sH7JsWrA-UmgY0.mft Manifest number: 053C Signing time: Mon 09 Feb 2026 12:00:20 +0000 Manifest this update: Mon 09 Feb 2026 12:00:20 +0000 Manifest next update: Tue 10 Feb 2026 12:00:20 +0000 Files and hashes: 1: ulwqMT590aRJ4sH7JsWrA-UmgY0.crl (hash: zn5pPs7NO9AAzfrDY0ycMiBwv51kPc9JuuDjIO4XoBc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/f8ea98-4fbc-4f3e-b658-e0a7ae216cb7/1/ulwqMT590aRJ4sH7JsWrA-UmgY0.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/f8ea98-4fbc-4f3e-b658-e0a7ae216cb7/1/ulwqMT590aRJ4sH7JsWrA-UmgY0.mft rsync://rpki.ripe.net/repository/DEFAULT/ulwqMT590aRJ4sH7JsWrA-UmgY0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:29:1e:4d:77:fa:f4:c1:ed:78:d0:56:2a:b5:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba5c2a313e7dd1a449e2c1fb26c5ab03e526818d Validity Not Before: Feb 9 12:00:20 2026 GMT Not After : Feb 10 12:00:20 2026 GMT Subject: CN=f23842beb7b584ea33bc1af6db84737794193b49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b1:be:da:c4:0a:49:c1:b3:c5:5d:f8:4c:b5: 8b:b0:1e:cc:db:77:b9:50:43:f5:f0:91:97:02:f0: 20:3d:c1:1d:19:c2:b3:7c:5d:cc:0a:ec:ae:b2:6c: ee:12:a0:0f:f5:0d:04:69:16:e1:80:74:5b:59:27: 59:bc:00:83:dc:74:de:43:a1:25:22:b7:59:dc:8c: eb:ba:e6:75:2d:af:78:be:5f:c5:5d:be:3c:9a:9a: 4d:8c:14:59:0e:5c:36:2a:97:d7:fc:b1:ba:d9:34: 8d:50:90:a3:12:d8:09:37:95:b6:d7:fa:7d:e0:04: 1a:80:f4:32:74:67:c8:2c:fc:2f:bd:44:74:39:2f: f7:47:12:ec:42:1f:fd:60:40:7b:fe:b5:f8:8c:7a: 73:b1:3d:ed:cf:07:b5:66:13:63:70:bb:f8:33:dc: 02:f0:f3:52:42:ec:ad:39:21:06:d8:85:e0:dc:d1: 07:21:4e:d4:bd:a3:11:94:80:1b:a8:24:b2:cd:fc: 2c:68:cb:a5:19:f6:ab:04:01:f4:35:57:5c:85:c9: ce:4d:fe:af:4e:c8:cf:4c:25:32:63:6c:35:02:3b: 3d:b5:18:58:38:6a:f8:91:31:02:bf:00:bc:1c:cf: 3c:c2:50:ab:6a:f4:6f:ee:bf:1a:1c:ec:7b:2f:3e: 93:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:38:42:BE:B7:B5:84:EA:33:BC:1A:F6:DB:84:73:77:94:19:3B:49 X509v3 Authority Key Identifier: keyid:BA:5C:2A:31:3E:7D:D1:A4:49:E2:C1:FB:26:C5:AB:03:E5:26:81:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ulwqMT590aRJ4sH7JsWrA-UmgY0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/f8ea98-4fbc-4f3e-b658-e0a7ae216cb7/1/ulwqMT590aRJ4sH7JsWrA-UmgY0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/f8ea98-4fbc-4f3e-b658-e0a7ae216cb7/1/ulwqMT590aRJ4sH7JsWrA-UmgY0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:29:fa:aa:3c:26:79:1d:00:b8:d8:ab:a9:b3:4d:a8:2b:f0: 68:d9:e3:e8:f3:48:bf:64:1e:77:ef:4b:93:50:51:45:af:d3: 0d:bb:1b:64:a3:30:3b:97:8b:4e:e4:f3:aa:c0:86:e6:84:82: 1f:a3:e9:e7:4b:32:d3:e0:55:85:8d:da:80:2d:28:a7:6d:e2: 18:00:cb:36:c3:e1:fb:4a:84:82:f9:c9:50:2d:83:91:e1:c1: 27:2e:cc:15:4a:53:73:24:c3:e0:ba:36:b2:53:2b:ec:e6:00: f3:4f:cb:a4:3d:c6:83:ea:45:c8:ac:e5:62:95:6a:db:b6:8e: 68:a7:25:de:57:5b:7b:c8:88:1c:1e:73:98:2f:cb:06:c6:23: 72:9e:20:55:f3:d7:1b:71:48:af:3b:f2:ec:d5:52:b4:ce:3c: 10:ef:57:cd:ea:b7:54:af:08:97:ac:91:88:c5:fe:80:52:12: 7c:01:65:40:7a:bb:ca:89:aa:47:4e:fd:d4:ff:70:f9:a4:2d: 37:31:0f:cf:e7:e5:c4:ba:dd:b6:c5:43:6f:64:dd:64:8e:ba: dd:d8:03:ce:41:f5:5a:52:8c:f6:f0:49:c0:80:1e:b3:e3:fa: ad:2d:f1:46:9b:5c:26:2c:10:d7:c7:9d:b7:70:62:31:3f:fc: 1a:91:73:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRikeTXf69MHteNBWKrU0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNWMyYTMxM2U3ZGQxYTQ0OWUyYzFmYjI2YzVhYjAzZTUy NjgxOGQwHhcNMjYwMjA5MTIwMDIwWhcNMjYwMjEwMTIwMDIwWjAzMTEwLwYDVQQD EyhmMjM4NDJiZWI3YjU4NGVhMzNiYzFhZjZkYjg0NzM3Nzk0MTkzYjQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxLG+2sQKScGzxV34TLWLsB7M23e5 UEP18JGXAvAgPcEdGcKzfF3MCuyusmzuEqAP9Q0EaRbhgHRbWSdZvACD3HTeQ6El IrdZ3IzruuZ1La94vl/FXb48mppNjBRZDlw2KpfX/LG62TSNUJCjEtgJN5W21/p9 4AQagPQydGfILPwvvUR0OS/3RxLsQh/9YEB7/rX4jHpzsT3tzwe1ZhNjcLv4M9wC 8PNSQuytOSEG2IXg3NEHIU7UvaMRlIAbqCSyzfwsaMulGfarBAH0NVdchcnOTf6v TsjPTCUyY2w1Ajs9tRhYOGr4kTECvwC8HM88wlCravRv7r8aHOx7Lz6T6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPI4Qr63tYTqM7wa9tuEc3eUGTtJMB8GA1UdIwQY MBaAFLpcKjE+fdGkSeLB+ybFqwPlJoGNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWx3cU1UNTkwYVJKNHNIN0pzV3JBLVVtZ1kwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9mOGVhOTgtNGZiYy00ZjNlLWI2NTgt ZTBhN2FlMjE2Y2I3LzEvdWx3cU1UNTkwYVJKNHNIN0pzV3JBLVVtZ1kwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS9mOGVhOTgtNGZiYy00ZjNlLWI2NTgtZTBhN2FlMjE2Y2I3 LzEvdWx3cU1UNTkwYVJKNHNIN0pzV3JBLVVtZ1kwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZCn6qjwm eR0AuNirqbNNqCvwaNnj6PNIv2Qed+9Lk1BRRa/TDbsbZKMwO5eLTuTzqsCG5oSC H6Pp50sy0+BVhY3agC0op23iGADLNsPh+0qEgvnJUC2DkeHBJy7MFUpTcyTD4Lo2 slMr7OYA80/LpD3Gg+pFyKzlYpVq27aOaKcl3ldbe8iIHB5zmC/LBsYjcp4gVfPX G3FIrzvy7NVStM48EO9Xzeq3VK8Il6yRiMX+gFISfAFlQHq7yomqR0791P9w+aQt NzEPz+flxLrdtsVDb2TdZI663dgDzkH1WlKM9vBJwIAes+P6rS3xRptcJiwQ18ed t3BiMT/8GpFz6g== -----END CERTIFICATE-----Generated at Mon Feb 9 19:48:26 2026 by rpki-client