This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft File: U6hLUj3-Mriom5zdMKn4cRAH_bk.mft (raw, json) Hash identifier: H7aw2JkMuL1uT2BiwpkodHhfWjaO2reYUnDRiS5BA7I= Subject key identifier: D3:CD:10:97:18:24:BD:AE:1F:1B:7C:1A:2C:84:0E:C6:22:58:08:76 Authority key identifier: 53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9 Certificate issuer: /CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9 Certificate serial: 019C41A1B7830527B1944E3DDBE9FED7D848 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft Manifest number: 0EE6 Signing time: Mon 09 Feb 2026 09:00:42 +0000 Manifest this update: Mon 09 Feb 2026 09:00:42 +0000 Manifest next update: Tue 10 Feb 2026 09:00:42 +0000 Files and hashes: 1: U6hLUj3-Mriom5zdMKn4cRAH_bk.crl (hash: Iqs6xEmFb+ym40uTx/JVIXiA9ff6aijRqYd+2Ww1XYg=) 2: e7AHTN6GMHGk_8dAcf_gVZnvxVI.roa (hash: IevTKfUQJkqwDYYU6PQJwFiwDh/wjsGFxyO8+JdLEM4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:b7:83:05:27:b1:94:4e:3d:db:e9:fe:d7:d8:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9 Validity Not Before: Feb 9 09:00:42 2026 GMT Not After : Feb 10 09:00:42 2026 GMT Subject: CN=d3cd10971824bdae1f1b7c1a2c840ec622580876 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cc:0a:16:62:65:17:4e:2e:2f:d0:99:3c:74: 98:76:65:2e:bc:9c:b5:90:c1:86:10:54:ac:a6:b7: be:58:e1:b8:29:e4:e8:02:2a:06:ff:ac:42:ed:f2: 01:24:73:45:aa:bc:9d:f7:9e:f1:02:e4:d3:c6:da: 80:a3:03:ae:78:28:48:17:23:c6:6f:68:e0:f7:a8: 96:c5:42:d5:eb:5f:5a:fe:f5:dd:42:41:5e:a4:e9: 06:ec:65:7c:13:05:1a:a6:49:38:d0:8e:7a:bb:c5: b6:83:3a:30:fb:be:30:7e:c3:8e:cc:81:b9:a5:df: 2c:06:fa:42:25:fc:f6:db:c4:88:f4:b7:14:9b:fc: 7b:93:f1:27:18:c7:9b:0d:2e:97:a9:08:0b:31:3c: eb:ea:22:b0:58:5d:a7:cd:38:b2:8b:9b:ea:f3:c8: 93:8b:0f:48:93:f6:5d:65:52:49:e9:83:fe:89:7b: 68:f0:cc:c9:d4:e8:46:7e:3b:2a:d4:a4:e6:a8:32: 1d:2a:48:3a:96:36:88:ed:e9:af:3b:94:f6:b8:37: fa:35:3f:63:4a:8d:d4:58:c4:b0:e4:d5:51:88:48: 1e:8b:cc:9a:8b:a7:de:cb:d9:28:92:f6:c2:b9:91: cd:08:f7:92:f4:8a:e6:65:07:35:6c:bd:7c:0c:5a: 26:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:CD:10:97:18:24:BD:AE:1F:1B:7C:1A:2C:84:0E:C6:22:58:08:76 X509v3 Authority Key Identifier: keyid:53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:2b:27:d4:26:a9:55:3a:22:e3:01:62:0c:b9:c4:76:f8:9d: cd:9f:ad:c5:a4:c0:ac:76:5b:fb:fd:8f:c1:45:6f:ce:73:95: 64:34:47:0e:f0:0b:b4:86:33:28:d4:ce:a0:30:dc:97:6c:69: 86:e8:eb:3d:1e:06:17:f4:64:30:5a:65:78:80:90:f7:5e:66: 58:54:ad:d9:d2:f9:b5:ea:18:8b:9a:6f:df:8e:77:c3:09:24: 36:af:79:68:46:49:1c:cc:b5:8a:43:f4:b1:37:45:d0:fc:be: 9a:04:ab:91:81:8f:f9:bf:7a:bf:8a:b8:83:9b:ab:c3:f1:bb: c9:3d:6c:8b:8c:3d:db:6c:fa:4d:f6:11:12:5b:77:3a:12:15: 2f:0d:e0:75:40:d2:cd:c7:f4:1c:78:94:96:29:40:61:19:99: a7:bf:7c:0f:0f:05:79:46:b7:fa:91:37:93:4d:a5:7f:c9:26: c8:90:42:4b:52:88:da:2d:5b:e2:7f:7e:b0:05:f9:02:e3:39: 45:c5:e0:13:39:17:91:d4:0b:08:d5:5e:3f:5d:c8:03:3a:8a: 63:fa:38:74:a0:4f:67:61:ff:01:a8:5a:ac:3f:5f:51:c2:ce: 65:a5:ba:ff:17:a1:bb:07:58:2d:2a:2c:d4:1b:ed:3f:03:a4: af:f2:73:39 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBobeDBSexlE492+n+19hIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYTg0YjUyM2RmZTMyYjhhODliOWNkZDMwYTlmODcxMTAw N2ZkYjkwHhcNMjYwMjA5MDkwMDQyWhcNMjYwMjEwMDkwMDQyWjAzMTEwLwYDVQQD EyhkM2NkMTA5NzE4MjRiZGFlMWYxYjdjMWEyYzg0MGVjNjIyNTgwODc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvMwKFmJlF04uL9CZPHSYdmUuvJy1 kMGGEFSspre+WOG4KeToAioG/6xC7fIBJHNFqryd957xAuTTxtqAowOueChIFyPG b2jg96iWxULV619a/vXdQkFepOkG7GV8EwUapkk40I56u8W2gzow+74wfsOOzIG5 pd8sBvpCJfz228SI9LcUm/x7k/EnGMebDS6XqQgLMTzr6iKwWF2nzTiyi5vq88iT iw9Ik/ZdZVJJ6YP+iXto8MzJ1OhGfjsq1KTmqDIdKkg6ljaI7emvO5T2uDf6NT9j So3UWMSw5NVRiEgei8yai6fey9kokvbCuZHNCPeS9IrmZQc1bL18DFomFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNPNEJcYJL2uHxt8GiyEDsYiWAh2MB8GA1UdIwQY MBaAFFOoS1I9/jK4qJuc3TCp+HEQB/25MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTZoTFVqMy1NcmlvbTV6ZE1LbjRjUkFIX2JrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8wN2UxMDUtNTY4MC00MGFhLThjOWQt MGQ2NmM3NWIwMjZkLzEvVTZoTFVqMy1NcmlvbTV6ZE1LbjRjUkFIX2JrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8wN2UxMDUtNTY4MC00MGFhLThjOWQtMGQ2NmM3NWIwMjZk LzEvVTZoTFVqMy1NcmlvbTV6ZE1LbjRjUkFIX2JrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPisn1Cap VToi4wFiDLnEdvidzZ+txaTArHZb+/2PwUVvznOVZDRHDvALtIYzKNTOoDDcl2xp hujrPR4GF/RkMFpleICQ915mWFSt2dL5teoYi5pv3453wwkkNq95aEZJHMy1ikP0 sTdF0Py+mgSrkYGP+b96v4q4g5urw/G7yT1si4w922z6TfYRElt3OhIVLw3gdUDS zcf0HHiUlilAYRmZp798Dw8FeUa3+pE3k02lf8kmyJBCS1KI2i1b4n9+sAX5AuM5 RcXgEzkXkdQLCNVeP13IAzqKY/o4dKBPZ2H/AaharD9fUcLOZaW6/xehuwdYLSos 1BvtPwOkr/JzOQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:35 2026 by rpki-client