This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/10429b-8049-47a2-ab99-256db3ed8335/1/UpJ4MtOYUOhR7staBRFpKZHdpdk.mft File: UpJ4MtOYUOhR7staBRFpKZHdpdk.mft (raw, json) Hash identifier: l98bA8LHxpzLMrVaNVna0TNDWo5s6U9krnwQDJNCArU= Subject key identifier: CA:2D:FF:E2:A7:32:98:A8:BC:F3:5F:49:B6:6E:A5:EB:DC:1E:94:BB Authority key identifier: 52:92:78:32:D3:98:50:E8:51:EE:CB:5A:05:11:69:29:91:DD:A5:D9 Certificate issuer: /CN=52927832d39850e851eecb5a0511692991dda5d9 Certificate serial: 019C4133BDE1F67CC4110E71CCDE4ABE9180 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UpJ4MtOYUOhR7staBRFpKZHdpdk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/10429b-8049-47a2-ab99-256db3ed8335/1/UpJ4MtOYUOhR7staBRFpKZHdpdk.mft Manifest number: 180B Signing time: Mon 09 Feb 2026 07:00:35 +0000 Manifest this update: Mon 09 Feb 2026 07:00:35 +0000 Manifest next update: Tue 10 Feb 2026 07:00:35 +0000 Files and hashes: 1: UpJ4MtOYUOhR7staBRFpKZHdpdk.crl (hash: AFQOyKukjqOnx4OwSKWjUA/QGAohz6zWDmSyZGap7yU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/10429b-8049-47a2-ab99-256db3ed8335/1/UpJ4MtOYUOhR7staBRFpKZHdpdk.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/10429b-8049-47a2-ab99-256db3ed8335/1/UpJ4MtOYUOhR7staBRFpKZHdpdk.mft rsync://rpki.ripe.net/repository/DEFAULT/UpJ4MtOYUOhR7staBRFpKZHdpdk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:bd:e1:f6:7c:c4:11:0e:71:cc:de:4a:be:91:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52927832d39850e851eecb5a0511692991dda5d9 Validity Not Before: Feb 9 07:00:35 2026 GMT Not After : Feb 10 07:00:35 2026 GMT Subject: CN=ca2dffe2a73298a8bcf35f49b66ea5ebdc1e94bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:99:82:27:67:d1:4e:4f:fa:5e:c9:f0:2f:ae: be:15:0e:c3:1e:f9:7e:11:ff:6c:ae:f3:de:2b:0a: 54:4c:c4:82:d8:52:14:e4:d1:b2:c3:8c:a5:85:17: ad:49:cf:ad:e2:ca:1e:2d:66:8d:87:92:79:2c:b1: c1:3c:8b:99:04:9f:1b:57:2c:84:cf:ba:98:64:6c: 67:9a:74:89:6d:dc:5b:4f:79:a2:22:5d:b0:00:ba: 26:95:e1:5f:de:56:0a:e3:57:44:93:46:fe:87:ca: 09:90:72:6c:1d:32:88:51:53:8c:f8:08:6d:4d:ec: 51:11:db:fc:d4:8a:c6:96:75:c2:be:42:c0:5b:f3: 03:a4:83:70:78:84:0d:35:ce:06:c5:20:6c:e4:e3: 9b:0a:5a:ee:8c:ea:fe:ff:b7:44:08:cf:df:7f:70: 2d:92:39:49:13:27:2e:8e:6f:48:6d:4b:17:48:92: 3f:9f:54:f5:b8:e4:dc:9e:c4:a1:d6:2b:9a:8e:4e: e7:87:2b:62:37:15:99:2a:7e:27:d8:cd:25:ba:4f: 44:17:0f:fa:d9:98:ab:66:d5:5c:46:5c:eb:86:8d: 6e:66:a7:4e:1b:9d:58:2f:10:8d:ea:8b:51:08:c2: 97:93:60:af:ea:71:d1:fe:18:90:fe:d7:21:4e:33: 85:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:2D:FF:E2:A7:32:98:A8:BC:F3:5F:49:B6:6E:A5:EB:DC:1E:94:BB X509v3 Authority Key Identifier: keyid:52:92:78:32:D3:98:50:E8:51:EE:CB:5A:05:11:69:29:91:DD:A5:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpJ4MtOYUOhR7staBRFpKZHdpdk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/10429b-8049-47a2-ab99-256db3ed8335/1/UpJ4MtOYUOhR7staBRFpKZHdpdk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/10429b-8049-47a2-ab99-256db3ed8335/1/UpJ4MtOYUOhR7staBRFpKZHdpdk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:5b:13:11:85:66:45:e9:62:15:e3:3d:df:a7:fa:9f:af:96: 5e:7d:96:1c:cd:bd:c0:99:63:64:13:66:10:4a:0f:6e:18:12: 7e:2f:50:d2:bc:ff:7e:1e:d0:b4:89:6c:8e:73:80:7a:3e:51: ac:b0:d0:9a:4e:07:e7:1b:4e:5f:18:3a:98:9e:f4:33:14:0c: 31:3a:ba:82:c8:45:e4:14:bd:cf:e3:91:d9:26:90:d9:50:6f: 7c:b0:9d:02:02:be:8a:5d:12:7e:51:4b:e5:7f:dc:76:4e:e5: 6b:75:c6:11:40:6b:73:4b:9f:9a:11:9d:2e:2b:85:54:f2:8f: 95:f7:04:39:34:79:b6:dd:8f:c5:8b:37:40:59:08:eb:d3:0a: 03:b2:17:a7:e4:34:15:42:ba:4c:9f:d8:6c:30:4d:33:c1:a2: fe:03:d3:e0:98:93:49:27:87:ee:1d:72:4d:f1:75:57:a4:f7: 5a:f1:ef:2a:45:b5:00:1b:b1:3e:6c:ff:8c:8c:0b:05:de:f9: bf:20:9b:83:11:28:91:51:be:0e:99:31:3f:91:19:c2:94:b6: 0a:22:4b:30:85:58:2b:77:ec:37:83:70:70:99:71:80:a0:3d: 2b:d0:b9:04:b7:68:d6:35:fd:6d:ad:9c:c6:c8:ff:e1:8d:44: e8:ce:50:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM73h9nzEEQ5xzN5KvpGAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyOTI3ODMyZDM5ODUwZTg1MWVlY2I1YTA1MTE2OTI5OTFk ZGE1ZDkwHhcNMjYwMjA5MDcwMDM1WhcNMjYwMjEwMDcwMDM1WjAzMTEwLwYDVQQD EyhjYTJkZmZlMmE3MzI5OGE4YmNmMzVmNDliNjZlYTVlYmRjMWU5NGJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx5mCJ2fRTk/6XsnwL66+FQ7DHvl+ Ef9srvPeKwpUTMSC2FIU5NGyw4ylhRetSc+t4soeLWaNh5J5LLHBPIuZBJ8bVyyE z7qYZGxnmnSJbdxbT3miIl2wALomleFf3lYK41dEk0b+h8oJkHJsHTKIUVOM+Aht TexREdv81IrGlnXCvkLAW/MDpINweIQNNc4GxSBs5OObClrujOr+/7dECM/ff3At kjlJEycujm9IbUsXSJI/n1T1uOTcnsSh1iuajk7nhytiNxWZKn4n2M0luk9EFw/6 2ZirZtVcRlzrho1uZqdOG51YLxCN6otRCMKXk2Cv6nHR/hiQ/tchTjOFrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMot/+KnMpiovPNfSbZupevcHpS7MB8GA1UdIwQY MBaAFFKSeDLTmFDoUe7LWgURaSmR3aXZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXBKNE10T1lVT2hSN3N0YUJSRnBLWkhkcGRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8xMDQyOWItODA0OS00N2EyLWFiOTkt MjU2ZGIzZWQ4MzM1LzEvVXBKNE10T1lVT2hSN3N0YUJSRnBLWkhkcGRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi8xMDQyOWItODA0OS00N2EyLWFiOTktMjU2ZGIzZWQ4MzM1 LzEvVXBKNE10T1lVT2hSN3N0YUJSRnBLWkhkcGRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAlsTEYVm ReliFeM936f6n6+WXn2WHM29wJljZBNmEEoPbhgSfi9Q0rz/fh7QtIlsjnOAej5R rLDQmk4H5xtOXxg6mJ70MxQMMTq6gshF5BS9z+OR2SaQ2VBvfLCdAgK+il0SflFL 5X/cdk7la3XGEUBrc0ufmhGdLiuFVPKPlfcEOTR5tt2PxYs3QFkI69MKA7IXp+Q0 FUK6TJ/YbDBNM8Gi/gPT4JiTSSeH7h1yTfF1V6T3WvHvKkW1ABuxPmz/jIwLBd75 vyCbgxEokVG+DpkxP5EZwpS2CiJLMIVYK3fsN4NwcJlxgKA9K9C5BLdo1jX9ba2c xsj/4Y1E6M5Qfw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:48 2026 by rpki-client