This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.mft File: UFrRf0xiDVjUU9X218kjP84SZJk.mft (raw, json) Hash identifier: f1hnWZlQuiGsKzngX2KhHzBYs3SLCsHEkbeZdJKPkjE= Subject key identifier: 82:75:E3:A1:E6:0F:EF:DC:A7:DE:D7:D2:48:22:D9:E2:84:04:53:FC Authority key identifier: 50:5A:D1:7F:4C:62:0D:58:D4:53:D5:F6:D7:C9:23:3F:CE:12:64:99 Certificate issuer: /CN=505ad17f4c620d58d453d5f6d7c9233fce126499 Certificate serial: 019C435942CCE49D881D3D7CE0011FFD9C76 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFrRf0xiDVjUU9X218kjP84SZJk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.mft Manifest number: 089B Signing time: Mon 09 Feb 2026 17:00:49 +0000 Manifest this update: Mon 09 Feb 2026 17:00:49 +0000 Manifest next update: Tue 10 Feb 2026 17:00:49 +0000 Files and hashes: 1: UFrRf0xiDVjUU9X218kjP84SZJk.crl (hash: Kel0WWEMevaF74Ds3WNFSzAUm5Ed+TkvjrLVLqO7/3k=) 2: n29c-eqwdShZtcEOhZv3Ign1VGo.roa (hash: uxh/IP+egHWNQsX3vB68RQ/0/wzosXKCxI7jga5PL14=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.mft rsync://rpki.ripe.net/repository/DEFAULT/UFrRf0xiDVjUU9X218kjP84SZJk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:42:cc:e4:9d:88:1d:3d:7c:e0:01:1f:fd:9c:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=505ad17f4c620d58d453d5f6d7c9233fce126499 Validity Not Before: Feb 9 17:00:49 2026 GMT Not After : Feb 10 17:00:49 2026 GMT Subject: CN=8275e3a1e60fefdca7ded7d24822d9e2840453fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:6f:d8:d0:9d:3c:2d:69:0f:b9:7e:e8:fc:e2: 70:b3:78:ce:8d:13:24:79:91:b4:29:ba:bd:31:f7: 5d:39:3b:ee:08:76:38:d2:12:7f:28:32:a3:0f:ff: 20:59:14:21:f0:91:69:0b:3a:0e:3d:b8:6f:2e:90: 67:91:01:ce:eb:cf:5e:85:ce:29:9c:ca:ba:4c:4a: dd:5c:c9:4b:79:73:5a:2a:7e:81:bc:50:00:74:aa: 28:c2:9f:de:f9:d2:d5:bf:28:53:d7:79:d0:4a:c4: bd:36:f6:2d:a3:ec:11:1a:21:ec:62:b7:e1:a3:08: f6:6f:81:58:e2:d8:29:3e:fa:9d:0e:19:47:2f:85: 47:e4:72:fe:9f:46:fe:aa:77:50:82:13:f1:4c:ff: 7c:7c:ab:1d:b5:fd:bd:da:97:59:2c:76:e7:22:98: 86:c3:86:61:c4:07:86:fc:fa:6e:ec:5b:36:69:02: 46:78:f1:23:a0:35:34:e3:5b:9f:b1:65:fc:b3:05: 44:d0:ee:61:ca:4f:a5:95:08:37:6a:d7:a6:f1:4f: f6:ba:b9:11:69:2d:a1:46:11:5e:f6:64:e8:e6:af: 6e:0e:31:6a:3d:27:88:05:f2:2a:34:27:9f:a4:96: f7:b4:8f:0c:86:38:bd:18:b9:85:33:34:62:39:9a: cd:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:75:E3:A1:E6:0F:EF:DC:A7:DE:D7:D2:48:22:D9:E2:84:04:53:FC X509v3 Authority Key Identifier: keyid:50:5A:D1:7F:4C:62:0D:58:D4:53:D5:F6:D7:C9:23:3F:CE:12:64:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFrRf0xiDVjUU9X218kjP84SZJk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:4d:d5:c7:8c:9d:05:9e:8d:fa:be:f3:ec:c2:3c:8d:5a:12: de:5b:f8:c9:1d:26:50:df:e0:8a:35:d4:fa:50:5f:ad:b1:3e: b3:be:ba:3d:f8:fb:8c:9a:f5:3d:5b:a0:88:2b:9e:1c:1e:ba: 7a:0a:98:ab:3f:f2:02:12:6b:78:8f:42:c3:62:2e:ba:72:a0: b3:eb:3b:f9:a5:c4:d1:46:9d:f6:b0:0a:a0:3d:50:06:d2:f8: 53:10:29:ed:6b:1e:09:e9:a4:bc:2b:76:71:05:52:f8:ca:8b: 11:06:4d:1e:15:76:f0:8d:40:23:9a:5e:2f:5b:27:d3:07:89: 00:e4:f6:7e:ef:84:2d:41:ce:d0:26:67:02:99:4a:96:56:2c: 46:68:55:17:fd:91:0c:48:42:97:3b:4d:c4:d3:d6:6a:14:88: 6e:fe:9c:35:e0:23:01:44:1d:5d:23:de:f2:6b:6b:4b:f0:b2: bf:3b:93:7f:30:d4:89:de:ec:43:1e:7e:76:0e:06:67:4b:fa: 06:11:7e:42:99:49:0f:3c:a6:07:fd:99:72:f7:f5:cd:40:81: f0:6c:8e:03:1e:ea:7d:98:dd:8b:49:bf:32:25:a9:a7:9a:00: 8a:b0:32:58:a8:f9:af:f1:28:b8:4f:18:ed:f5:a0:61:c6:67: 8c:dd:bc:8f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWULM5J2IHT184AEf/Zx2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwNWFkMTdmNGM2MjBkNThkNDUzZDVmNmQ3YzkyMzNmY2Ux MjY0OTkwHhcNMjYwMjA5MTcwMDQ5WhcNMjYwMjEwMTcwMDQ5WjAzMTEwLwYDVQQD Eyg4Mjc1ZTNhMWU2MGZlZmRjYTdkZWQ3ZDI0ODIyZDllMjg0MDQ1M2ZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6m/Y0J08LWkPuX7o/OJws3jOjRMk eZG0Kbq9MfddOTvuCHY40hJ/KDKjD/8gWRQh8JFpCzoOPbhvLpBnkQHO689ehc4p nMq6TErdXMlLeXNaKn6BvFAAdKoowp/e+dLVvyhT13nQSsS9NvYto+wRGiHsYrfh owj2b4FY4tgpPvqdDhlHL4VH5HL+n0b+qndQghPxTP98fKsdtf292pdZLHbnIpiG w4ZhxAeG/Ppu7Fs2aQJGePEjoDU041ufsWX8swVE0O5hyk+llQg3atem8U/2urkR aS2hRhFe9mTo5q9uDjFqPSeIBfIqNCefpJb3tI8Mhji9GLmFMzRiOZrNfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIJ146HmD+/cp97X0kgi2eKEBFP8MB8GA1UdIwQY MBaAFFBa0X9MYg1Y1FPV9tfJIz/OEmSZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUZyUmYweGlEVmpVVTlYMjE4a2pQODRTWkprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9hMmZjMTgtNTM0Yi00NDU0LTliZDEt ZmU2YmIwNDkzMzdkLzEvVUZyUmYweGlEVmpVVTlYMjE4a2pQODRTWkprLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC9hMmZjMTgtNTM0Yi00NDU0LTliZDEtZmU2YmIwNDkzMzdk LzEvVUZyUmYweGlEVmpVVTlYMjE4a2pQODRTWkprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM03Vx4yd BZ6N+r7z7MI8jVoS3lv4yR0mUN/gijXU+lBfrbE+s766Pfj7jJr1PVugiCueHB66 egqYqz/yAhJreI9Cw2IuunKgs+s7+aXE0Uad9rAKoD1QBtL4UxAp7WseCemkvCt2 cQVS+MqLEQZNHhV28I1AI5peL1sn0weJAOT2fu+ELUHO0CZnAplKllYsRmhVF/2R DEhClztNxNPWahSIbv6cNeAjAUQdXSPe8mtrS/CyvzuTfzDUid7sQx5+dg4GZ0v6 BhF+QplJDzymB/2Zcvf1zUCB8GyOAx7qfZjdi0m/MiWpp5oAirAyWKj5r/EouE8Y 7fWgYcZnjN28jw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:12 2026 by rpki-client