This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/03d3fa-9e22-441e-b5c5-d203e20018f5/1/ulnZ9a887kQgFLc1lhxzuWkmDhk.mft File: ulnZ9a887kQgFLc1lhxzuWkmDhk.mft (raw, json) Hash identifier: 2AFiAhJt9HqBCt+iYa2X2uMVOoGIg3m34p+zq/ycP4I= Subject key identifier: B2:84:5F:74:BC:27:DE:93:56:42:0F:30:40:EF:93:4D:22:AE:5B:C3 Authority key identifier: BA:59:D9:F5:AF:3C:EE:44:20:14:B7:35:96:1C:73:B9:69:26:0E:19 Certificate issuer: /CN=ba59d9f5af3cee442014b735961c73b969260e19 Certificate serial: 019C43228579506B153FEBFB9B8DE5383D8A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ulnZ9a887kQgFLc1lhxzuWkmDhk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/03d3fa-9e22-441e-b5c5-d203e20018f5/1/ulnZ9a887kQgFLc1lhxzuWkmDhk.mft Manifest number: 180B Signing time: Mon 09 Feb 2026 16:01:01 +0000 Manifest this update: Mon 09 Feb 2026 16:01:01 +0000 Manifest next update: Tue 10 Feb 2026 16:01:01 +0000 Files and hashes: 1: ulnZ9a887kQgFLc1lhxzuWkmDhk.crl (hash: 3sgdjLjD/BL6lRvr26nziPJvl85WdJVH9ec+YFXt8Z4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/03d3fa-9e22-441e-b5c5-d203e20018f5/1/ulnZ9a887kQgFLc1lhxzuWkmDhk.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/03d3fa-9e22-441e-b5c5-d203e20018f5/1/ulnZ9a887kQgFLc1lhxzuWkmDhk.mft rsync://rpki.ripe.net/repository/DEFAULT/ulnZ9a887kQgFLc1lhxzuWkmDhk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:85:79:50:6b:15:3f:eb:fb:9b:8d:e5:38:3d:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba59d9f5af3cee442014b735961c73b969260e19 Validity Not Before: Feb 9 16:01:01 2026 GMT Not After : Feb 10 16:01:01 2026 GMT Subject: CN=b2845f74bc27de9356420f3040ef934d22ae5bc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:9a:a4:7e:06:cd:e5:2f:4b:de:41:66:83:99: 32:aa:4b:50:97:f3:30:aa:74:1b:7d:e4:9c:20:7f: f5:2b:55:67:35:12:af:45:ce:1c:7d:ef:63:ac:9f: cf:20:f9:ce:5e:17:e1:50:3e:e1:b9:79:06:5b:ae: be:2f:30:da:e0:f0:25:4f:02:b1:b0:ac:c6:51:d7: d9:51:2b:65:3e:1f:9c:44:5d:83:fb:0d:0a:13:da: 1c:59:7b:ad:c7:9e:a9:8b:95:79:de:65:7d:ff:84: 6b:23:83:9b:8c:8d:38:b5:c7:c0:3c:92:c1:0b:37: 3a:f0:bc:54:d0:90:b9:90:f8:0b:5c:a3:e0:6a:65: be:7c:d0:0e:84:69:7c:9c:e3:0b:31:21:a6:16:73: 0f:93:2c:2f:8d:f9:a7:4d:fb:43:0c:23:12:74:d4: 0a:5e:ce:f9:7c:6b:9b:b1:2a:45:90:a0:77:e6:64: 83:27:f1:86:d3:64:88:71:39:78:07:be:49:f9:ad: f1:d7:74:b5:67:a1:78:96:14:54:ea:24:54:0a:fd: db:15:30:2c:0a:94:73:15:16:51:70:a7:ce:da:72: 47:30:72:96:be:fc:09:d0:d1:ed:c1:6b:97:53:06: 24:a0:72:f9:74:58:68:39:8b:9f:72:fd:cb:51:be: 3f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:84:5F:74:BC:27:DE:93:56:42:0F:30:40:EF:93:4D:22:AE:5B:C3 X509v3 Authority Key Identifier: keyid:BA:59:D9:F5:AF:3C:EE:44:20:14:B7:35:96:1C:73:B9:69:26:0E:19 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ulnZ9a887kQgFLc1lhxzuWkmDhk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/03d3fa-9e22-441e-b5c5-d203e20018f5/1/ulnZ9a887kQgFLc1lhxzuWkmDhk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/03d3fa-9e22-441e-b5c5-d203e20018f5/1/ulnZ9a887kQgFLc1lhxzuWkmDhk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:13:48:e8:ca:06:b4:dc:f3:fe:a0:e3:01:bb:d0:8f:e9:5b: 64:8f:3a:b4:57:66:18:54:c0:2e:1e:7d:8f:50:35:f6:ed:9d: eb:77:a0:f3:c4:b0:d3:b4:93:54:91:6f:c1:4a:84:f2:83:02: 98:05:6a:2a:25:14:88:83:e4:d5:ca:fc:b6:1c:d4:71:62:ab: 3f:3d:72:bd:c8:69:42:b9:5f:ad:83:4e:c9:20:68:11:5b:74: 7a:2a:eb:b3:63:cf:99:f4:85:8e:58:d8:3f:c9:86:f2:2a:4e: 42:29:98:20:35:ab:da:15:0e:90:81:d9:20:6a:3e:9e:c4:e2: e6:e8:90:bc:7c:fb:2b:dc:f5:e1:94:1c:1f:9b:7f:de:8c:6c: 81:b6:64:de:b9:2e:99:1d:2b:03:b3:ec:6d:1f:9b:01:0a:84: 4f:ae:a0:08:ac:86:09:7b:bc:75:a5:73:94:af:ec:89:83:f4: d7:3f:98:31:bd:d3:a3:ed:c1:b7:e3:78:33:de:aa:cd:d0:5a: cc:b2:02:34:e3:68:14:67:ec:30:54:89:7d:83:42:03:40:e7: 35:28:1b:3b:7a:36:6f:69:3f:2d:b0:7e:a5:5f:d8:e2:34:72: 7d:de:fc:c5:4f:35:c7:4c:05:92:0a:1b:47:c2:98:53:b0:d0: c0:82:f4:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIoV5UGsVP+v7m43lOD2KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNTlkOWY1YWYzY2VlNDQyMDE0YjczNTk2MWM3M2I5Njky NjBlMTkwHhcNMjYwMjA5MTYwMTAxWhcNMjYwMjEwMTYwMTAxWjAzMTEwLwYDVQQD EyhiMjg0NWY3NGJjMjdkZTkzNTY0MjBmMzA0MGVmOTM0ZDIyYWU1YmMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnpqkfgbN5S9L3kFmg5kyqktQl/Mw qnQbfeScIH/1K1VnNRKvRc4cfe9jrJ/PIPnOXhfhUD7huXkGW66+LzDa4PAlTwKx sKzGUdfZUStlPh+cRF2D+w0KE9ocWXutx56pi5V53mV9/4RrI4ObjI04tcfAPJLB Czc68LxU0JC5kPgLXKPgamW+fNAOhGl8nOMLMSGmFnMPkywvjfmnTftDDCMSdNQK Xs75fGubsSpFkKB35mSDJ/GG02SIcTl4B75J+a3x13S1Z6F4lhRU6iRUCv3bFTAs CpRzFRZRcKfO2nJHMHKWvvwJ0NHtwWuXUwYkoHL5dFhoOYufcv3LUb4/VwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLKEX3S8J96TVkIPMEDvk00irlvDMB8GA1UdIwQY MBaAFLpZ2fWvPO5EIBS3NZYcc7lpJg4ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWxuWjlhODg3a1FnRkxjMWxoeHp1V2ttRGhrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC8wM2QzZmEtOWUyMi00NDFlLWI1YzUt ZDIwM2UyMDAxOGY1LzEvdWxuWjlhODg3a1FnRkxjMWxoeHp1V2ttRGhrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC8wM2QzZmEtOWUyMi00NDFlLWI1YzUtZDIwM2UyMDAxOGY1 LzEvdWxuWjlhODg3a1FnRkxjMWxoeHp1V2ttRGhrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAghNI6MoG tNzz/qDjAbvQj+lbZI86tFdmGFTALh59j1A19u2d63eg88Sw07STVJFvwUqE8oMC mAVqKiUUiIPk1cr8thzUcWKrPz1yvchpQrlfrYNOySBoEVt0eirrs2PPmfSFjljY P8mG8ipOQimYIDWr2hUOkIHZIGo+nsTi5uiQvHz7K9z14ZQcH5t/3oxsgbZk3rku mR0rA7PsbR+bAQqET66gCKyGCXu8daVzlK/siYP01z+YMb3To+3Bt+N4M96qzdBa zLICNONoFGfsMFSJfYNCA0DnNSgbO3o2b2k/LbB+pV/Y4jRyfd78xU81x0wFkgob R8KYU7DQwIL0Ng== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:12 2026 by rpki-client