This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
File: uhzvb56e3EXjzSjvQCUZeVLUYOk.mft (raw, json)
Hash identifier: ZEoNBhsT6om6nyht0KK/C2Qf8RtiPhUJihSBUbzEaVw=
Subject key identifier: 76:C9:AB:21:9C:0B:3D:15:D9:F2:A2:4B:7B:E0:2E:2A:C5:5F:1A:2D
Authority key identifier: BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9
Certificate issuer: /CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9
Certificate serial: 019C44DA4AAEAADE682ACC6571234C0B590B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
Manifest number: 0E42
Signing time: Tue 10 Feb 2026 00:01:22 +0000
Manifest this update: Tue 10 Feb 2026 00:01:22 +0000
Manifest next update: Wed 11 Feb 2026 00:01:22 +0000
Files and hashes: 1: sQXNrRfabqEAqxGuf8P5f2NecXw.roa (hash: 2PpXo8MephsPJxKEGzhYMR57A346BOGMuHA13iu9pZo=)
2: uhzvb56e3EXjzSjvQCUZeVLUYOk.crl (hash: s3X/lQxx7tYJDKxEwki/Ai6sYvf0WWoPNd2rju+Rqlw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Feb 2026 21:05:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:44:da:4a:ae:aa:de:68:2a:cc:65:71:23:4c:0b:59:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9
Validity
Not Before: Feb 10 00:01:22 2026 GMT
Not After : Feb 11 00:01:22 2026 GMT
Subject: CN=76c9ab219c0b3d15d9f2a24b7be02e2ac55f1a2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:55:77:76:85:d6:33:a4:70:fc:ea:91:aa:3b:
53:bb:c7:1a:5a:cc:ee:6c:1e:ca:47:47:f8:e5:42:
7f:7e:27:0e:f7:c6:26:48:c1:dd:ae:c7:bf:a5:c0:
61:f4:a4:7a:e7:ea:d6:06:31:b8:d9:fb:12:6f:ce:
e5:8c:a3:37:f3:81:a0:77:9d:7f:74:cc:a3:57:83:
29:7a:e2:46:57:cf:ca:99:50:66:5f:53:a8:de:6c:
49:7c:d0:f6:0f:91:08:2f:e7:dd:a8:d1:9c:80:ed:
90:37:fa:d1:1b:25:8c:ee:b1:73:90:19:ca:e9:f3:
ad:d8:18:b1:1b:ff:a6:a5:55:f4:68:f5:fd:a1:4d:
c4:e4:1f:88:9f:fe:c3:79:1f:7f:b2:24:89:64:f3:
c0:29:87:3d:e7:2e:d2:37:4b:51:1d:63:91:ad:2b:
9f:ed:bd:b1:4b:68:c1:e2:dd:5d:ec:1c:4c:84:ed:
5e:50:04:ad:35:a7:66:7f:b6:fc:27:a1:4e:51:93:
94:d8:09:33:5b:b3:a1:7d:6a:6a:ec:26:e4:86:97:
79:cd:e5:7b:02:03:05:f9:c5:bd:04:56:5c:25:23:
88:60:63:63:37:36:bc:8b:b5:39:49:ac:dd:e6:cc:
37:fd:3b:0b:e6:07:45:e1:96:4f:60:b1:fe:31:b6:
e7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:C9:AB:21:9C:0B:3D:15:D9:F2:A2:4B:7B:E0:2E:2A:C5:5F:1A:2D
X509v3 Authority Key Identifier:
keyid:BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:13:26:10:0f:51:75:51:40:d2:27:4f:75:9c:a7:38:74:f5:
e9:b9:fd:21:b5:dd:4f:02:65:ed:9e:51:74:0c:e5:3b:96:56:
20:7b:a8:97:ca:74:ab:9a:71:08:f8:42:5f:a2:2a:f1:69:3b:
f7:a7:06:4e:b8:c1:c8:cb:c9:3a:ee:44:e0:36:72:6c:6c:97:
32:72:e3:42:da:5d:b8:1f:15:1e:0b:08:d7:0c:24:c1:d3:95:
20:e6:27:81:0e:f1:70:f9:c2:1f:ec:97:a2:46:4f:cd:54:4a:
cb:a6:75:f1:95:f6:0c:ce:fc:18:11:79:ce:35:df:a2:a8:0e:
97:31:04:83:ec:6e:4e:69:6a:4b:95:8f:33:91:5e:7f:ca:d3:
fa:46:6d:3a:28:15:2b:0b:93:61:41:9e:b9:74:b5:7a:ea:3d:
e1:ab:e1:1e:c3:7f:92:c0:01:8b:fd:b1:14:49:a3:97:89:75:
bf:f9:05:63:f5:05:76:92:74:c3:5a:3d:72:bb:b2:9e:d0:a1:
13:7b:51:a6:89:ff:37:6b:05:71:d0:ba:69:b0:12:42:4b:0d:
d9:24:27:4d:72:8e:52:41:ff:17:35:cc:76:aa:37:27:8c:27:
07:f9:4b:e6:e0:c1:92:60:80:65:96:5b:33:79:1c:16:3a:65:
7b:a2:fe:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 10 01:42:21 2026 by rpki-client