This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft File: uhzvb56e3EXjzSjvQCUZeVLUYOk.mft (raw, json) Hash identifier: ZEoNBhsT6om6nyht0KK/C2Qf8RtiPhUJihSBUbzEaVw= Subject key identifier: 76:C9:AB:21:9C:0B:3D:15:D9:F2:A2:4B:7B:E0:2E:2A:C5:5F:1A:2D Authority key identifier: BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9 Certificate issuer: /CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9 Certificate serial: 019C44DA4AAEAADE682ACC6571234C0B590B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft Manifest number: 0E42 Signing time: Tue 10 Feb 2026 00:01:22 +0000 Manifest this update: Tue 10 Feb 2026 00:01:22 +0000 Manifest next update: Wed 11 Feb 2026 00:01:22 +0000 Files and hashes: 1: sQXNrRfabqEAqxGuf8P5f2NecXw.roa (hash: 2PpXo8MephsPJxKEGzhYMR57A346BOGMuHA13iu9pZo=) 2: uhzvb56e3EXjzSjvQCUZeVLUYOk.crl (hash: s3X/lQxx7tYJDKxEwki/Ai6sYvf0WWoPNd2rju+Rqlw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:da:4a:ae:aa:de:68:2a:cc:65:71:23:4c:0b:59:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9 Validity Not Before: Feb 10 00:01:22 2026 GMT Not After : Feb 11 00:01:22 2026 GMT Subject: CN=76c9ab219c0b3d15d9f2a24b7be02e2ac55f1a2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:55:77:76:85:d6:33:a4:70:fc:ea:91:aa:3b: 53:bb:c7:1a:5a:cc:ee:6c:1e:ca:47:47:f8:e5:42: 7f:7e:27:0e:f7:c6:26:48:c1:dd:ae:c7:bf:a5:c0: 61:f4:a4:7a:e7:ea:d6:06:31:b8:d9:fb:12:6f:ce: e5:8c:a3:37:f3:81:a0:77:9d:7f:74:cc:a3:57:83: 29:7a:e2:46:57:cf:ca:99:50:66:5f:53:a8:de:6c: 49:7c:d0:f6:0f:91:08:2f:e7:dd:a8:d1:9c:80:ed: 90:37:fa:d1:1b:25:8c:ee:b1:73:90:19:ca:e9:f3: ad:d8:18:b1:1b:ff:a6:a5:55:f4:68:f5:fd:a1:4d: c4:e4:1f:88:9f:fe:c3:79:1f:7f:b2:24:89:64:f3: c0:29:87:3d:e7:2e:d2:37:4b:51:1d:63:91:ad:2b: 9f:ed:bd:b1:4b:68:c1:e2:dd:5d:ec:1c:4c:84:ed: 5e:50:04:ad:35:a7:66:7f:b6:fc:27:a1:4e:51:93: 94:d8:09:33:5b:b3:a1:7d:6a:6a:ec:26:e4:86:97: 79:cd:e5:7b:02:03:05:f9:c5:bd:04:56:5c:25:23: 88:60:63:63:37:36:bc:8b:b5:39:49:ac:dd:e6:cc: 37:fd:3b:0b:e6:07:45:e1:96:4f:60:b1:fe:31:b6: e7:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:C9:AB:21:9C:0B:3D:15:D9:F2:A2:4B:7B:E0:2E:2A:C5:5F:1A:2D X509v3 Authority Key Identifier: keyid:BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:13:26:10:0f:51:75:51:40:d2:27:4f:75:9c:a7:38:74:f5: e9:b9:fd:21:b5:dd:4f:02:65:ed:9e:51:74:0c:e5:3b:96:56: 20:7b:a8:97:ca:74:ab:9a:71:08:f8:42:5f:a2:2a:f1:69:3b: f7:a7:06:4e:b8:c1:c8:cb:c9:3a:ee:44:e0:36:72:6c:6c:97: 32:72:e3:42:da:5d:b8:1f:15:1e:0b:08:d7:0c:24:c1:d3:95: 20:e6:27:81:0e:f1:70:f9:c2:1f:ec:97:a2:46:4f:cd:54:4a: cb:a6:75:f1:95:f6:0c:ce:fc:18:11:79:ce:35:df:a2:a8:0e: 97:31:04:83:ec:6e:4e:69:6a:4b:95:8f:33:91:5e:7f:ca:d3: fa:46:6d:3a:28:15:2b:0b:93:61:41:9e:b9:74:b5:7a:ea:3d: e1:ab:e1:1e:c3:7f:92:c0:01:8b:fd:b1:14:49:a3:97:89:75: bf:f9:05:63:f5:05:76:92:74:c3:5a:3d:72:bb:b2:9e:d0:a1: 13:7b:51:a6:89:ff:37:6b:05:71:d0:ba:69:b0:12:42:4b:0d: d9:24:27:4d:72:8e:52:41:ff:17:35:cc:76:aa:37:27:8c:27: 07:f9:4b:e6:e0:c1:92:60:80:65:96:5b:33:79:1c:16:3a:65: 7b:a2:fe:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxE2kquqt5oKsxlcSNMC1kLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhMWNlZjZmOWU5ZWRjNDVlM2NkMjhlZjQwMjUxOTc5NTJk NDYwZTkwHhcNMjYwMjEwMDAwMTIyWhcNMjYwMjExMDAwMTIyWjAzMTEwLwYDVQQD Eyg3NmM5YWIyMTljMGIzZDE1ZDlmMmEyNGI3YmUwMmUyYWM1NWYxYTJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1lV3doXWM6Rw/OqRqjtTu8caWszu bB7KR0f45UJ/ficO98YmSMHdrse/pcBh9KR65+rWBjG42fsSb87ljKM384Ggd51/ dMyjV4MpeuJGV8/KmVBmX1Oo3mxJfND2D5EIL+fdqNGcgO2QN/rRGyWM7rFzkBnK 6fOt2BixG/+mpVX0aPX9oU3E5B+In/7DeR9/siSJZPPAKYc95y7SN0tRHWORrSuf 7b2xS2jB4t1d7BxMhO1eUAStNadmf7b8J6FOUZOU2AkzW7OhfWpq7Cbkhpd5zeV7 AgMF+cW9BFZcJSOIYGNjNza8i7U5Sazd5sw3/TsL5gdF4ZZPYLH+MbbniQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHbJqyGcCz0V2fKiS3vgLirFXxotMB8GA1UdIwQY MBaAFLoc72+entxF480o70AlGXlS1GDpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWh6dmI1NmUzRVhqelNqdlFDVVplVkxVWU9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC8yMWQ2NjMtNjg3NC00ODljLWFiOWUt ZDljYTAzZTY2ZmZiLzEvdWh6dmI1NmUzRVhqelNqdlFDVVplVkxVWU9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC8yMWQ2NjMtNjg3NC00ODljLWFiOWUtZDljYTAzZTY2ZmZi LzEvdWh6dmI1NmUzRVhqelNqdlFDVVplVkxVWU9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHRMmEA9R dVFA0idPdZynOHT16bn9IbXdTwJl7Z5RdAzlO5ZWIHuol8p0q5pxCPhCX6Iq8Wk7 96cGTrjByMvJOu5E4DZybGyXMnLjQtpduB8VHgsI1wwkwdOVIOYngQ7xcPnCH+yX okZPzVRKy6Z18ZX2DM78GBF5zjXfoqgOlzEEg+xuTmlqS5WPM5Fef8rT+kZtOigV KwuTYUGeuXS1euo94avhHsN/ksABi/2xFEmjl4l1v/kFY/UFdpJ0w1o9cruyntCh E3tRpon/N2sFcdC6abASQksN2SQnTXKOUkH/FzXMdqo3J4wnB/lL5uDBkmCAZZZb M3kcFjple6L+Zw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:42:21 2026 by rpki-client