This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft File: UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft (raw, json) Hash identifier: FSfliBTy2uJ7pTvusFT74GUCog1hQHM4y1uB4cqdtQA= Subject key identifier: 65:5D:42:42:FE:05:A9:3C:51:03:7C:96:77:46:73:F6:D1:22:1B:81 Authority key identifier: 52:62:D3:F2:7C:C0:5B:E5:92:4B:B7:BD:89:0F:7E:6D:EF:FB:49:7D Certificate issuer: /CN=5262d3f27cc05be5924bb7bd890f7e6deffb497d Certificate serial: 019C420F43D2862F6FD57E7D9CC7240E8E09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmLT8nzAW-WSS7e9iQ9-be_7SX0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft Manifest number: 176D Signing time: Mon 09 Feb 2026 11:00:22 +0000 Manifest this update: Mon 09 Feb 2026 11:00:22 +0000 Manifest next update: Tue 10 Feb 2026 11:00:22 +0000 Files and hashes: 1: UmLT8nzAW-WSS7e9iQ9-be_7SX0.crl (hash: UIJrHJBRLxGpJpqxGxJTw2hHQMmJFj+5qd5twtK6jns=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.crl rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft rsync://rpki.ripe.net/repository/DEFAULT/UmLT8nzAW-WSS7e9iQ9-be_7SX0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:43:d2:86:2f:6f:d5:7e:7d:9c:c7:24:0e:8e:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5262d3f27cc05be5924bb7bd890f7e6deffb497d Validity Not Before: Feb 9 11:00:22 2026 GMT Not After : Feb 10 11:00:22 2026 GMT Subject: CN=655d4242fe05a93c51037c96774673f6d1221b81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a0:3f:5f:88:14:45:cc:b1:c7:0d:7a:8d:c8: c8:2c:05:40:87:e7:bf:03:a6:d5:6e:a1:b3:d7:ca: 20:58:cd:5d:0f:d3:77:b3:fc:1f:da:9d:ed:77:f3: c3:d3:53:28:b2:5b:47:93:75:ce:0a:26:0f:ac:7a: b3:fe:ca:8a:67:23:49:78:5c:c2:e6:45:07:07:f2: 8b:b5:17:7e:53:d7:fe:59:f0:42:82:d4:3c:9d:7b: cc:b2:65:54:80:c2:3e:41:da:40:83:31:d6:46:b2: 01:61:8d:81:65:a9:3a:e9:c6:79:5f:11:31:63:82: b8:ef:fe:00:ea:03:92:04:f8:01:46:6a:9e:0a:5b: ed:08:22:d3:b3:2b:bf:83:3f:39:8f:dd:39:40:82: dc:ca:2c:67:c8:75:85:01:85:7d:16:b4:c7:af:b4: 5a:19:d2:2f:0f:ae:6a:77:27:03:60:83:27:fd:bb: 9e:7d:e6:3e:12:8d:a1:db:21:b8:1f:82:02:d1:08: 00:d7:7c:d7:38:4f:8e:c5:13:44:e3:e4:63:f2:5f: 24:8c:d3:1a:de:16:c2:f9:36:96:6f:17:db:1b:69: fc:47:af:35:01:2c:4d:93:24:09:6a:9d:f1:14:28: 74:ac:14:9c:6c:3c:14:ed:b3:bb:c2:3e:dc:af:9e: b9:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:5D:42:42:FE:05:A9:3C:51:03:7C:96:77:46:73:F6:D1:22:1B:81 X509v3 Authority Key Identifier: keyid:52:62:D3:F2:7C:C0:5B:E5:92:4B:B7:BD:89:0F:7E:6D:EF:FB:49:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmLT8nzAW-WSS7e9iQ9-be_7SX0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bd:43:b1:ff:ec:bd:3a:c9:bc:75:9e:5e:bc:73:8c:dd:ae:10: d2:11:c2:84:6a:cd:f1:c6:18:ea:1a:ee:65:f3:14:a6:75:b6: 25:0e:96:1b:5f:cf:93:33:a8:da:b2:d2:71:80:5f:8d:ae:80: a2:ed:fb:95:3b:4a:57:96:6e:c6:28:4e:26:a4:b3:f6:cf:46: 6f:88:80:7d:a7:f6:c4:56:20:95:ae:f5:d5:cb:57:1b:5b:b1: 5b:60:e7:3f:bb:c6:31:47:24:56:80:21:47:a4:7b:7c:53:27: c3:2e:3a:4b:de:88:eb:de:0a:97:22:cc:78:b6:ce:6f:05:01: 09:b7:c1:af:a1:82:a7:4b:b3:e8:8f:d8:c8:66:e6:a9:e0:bb: ba:a8:72:eb:9e:22:e5:55:25:cd:65:b9:ea:3f:01:7a:e1:30: 6a:c7:17:5e:55:9c:16:6c:32:2e:2e:a2:c2:ed:f7:67:a0:3c: a2:c2:03:95:0b:22:35:7b:89:c7:8c:a0:da:fc:bd:ee:ba:c4: 36:e6:38:c8:ef:40:ee:47:39:9c:bd:ec:02:d4:62:3c:d5:98: 63:13:bc:92:53:ab:ab:1a:f8:0e:bd:81:ec:77:96:df:ec:bd: cf:38:c9:e0:60:07:35:e9:0c:27:34:60:cf:25:30:4a:8e:fd: 27:70:b1:a4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD0PShi9v1X59nMckDo4JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyNjJkM2YyN2NjMDViZTU5MjRiYjdiZDg5MGY3ZTZkZWZm YjQ5N2QwHhcNMjYwMjA5MTEwMDIyWhcNMjYwMjEwMTEwMDIyWjAzMTEwLwYDVQQD Eyg2NTVkNDI0MmZlMDVhOTNjNTEwMzdjOTY3NzQ2NzNmNmQxMjIxYjgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvKA/X4gURcyxxw16jcjILAVAh+e/ A6bVbqGz18ogWM1dD9N3s/wf2p3td/PD01MosltHk3XOCiYPrHqz/sqKZyNJeFzC 5kUHB/KLtRd+U9f+WfBCgtQ8nXvMsmVUgMI+QdpAgzHWRrIBYY2BZak66cZ5XxEx Y4K47/4A6gOSBPgBRmqeClvtCCLTsyu/gz85j905QILcyixnyHWFAYV9FrTHr7Ra GdIvD65qdycDYIMn/buefeY+Eo2h2yG4H4IC0QgA13zXOE+OxRNE4+Rj8l8kjNMa 3hbC+TaWbxfbG2n8R681ASxNkyQJap3xFCh0rBScbDwU7bO7wj7cr565LQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGVdQkL+Bak8UQN8lndGc/bRIhuBMB8GA1UdIwQY MBaAFFJi0/J8wFvlkku3vYkPfm3v+0l9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVW1MVDhuekFXLVdTUzdlOWlROS1iZV83U1gwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS81OTc0ZDYtNmM2Ny00NDJiLTk5M2Et N2FlNTk4N2JlZTYyLzEvVW1MVDhuekFXLVdTUzdlOWlROS1iZV83U1gwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZS81OTc0ZDYtNmM2Ny00NDJiLTk5M2EtN2FlNTk4N2JlZTYy LzEvVW1MVDhuekFXLVdTUzdlOWlROS1iZV83U1gwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvUOx/+y9 Osm8dZ5evHOM3a4Q0hHChGrN8cYY6hruZfMUpnW2JQ6WG1/PkzOo2rLScYBfja6A ou37lTtKV5ZuxihOJqSz9s9Gb4iAfaf2xFYgla711ctXG1uxW2DnP7vGMUckVoAh R6R7fFMnwy46S96I694KlyLMeLbObwUBCbfBr6GCp0uz6I/YyGbmqeC7uqhy654i 5VUlzWW56j8BeuEwascXXlWcFmwyLi6iwu33Z6A8osIDlQsiNXuJx4yg2vy97rrE NuY4yO9A7kc5nL3sAtRiPNWYYxO8klOrqxr4Dr2B7HeW3+y9zzjJ4GAHNekMJzRg zyUwSo79J3CxpA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:52 2026 by rpki-client