This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft File: UIJpb7xB2QYWimDOCUlJAiz2Keg.mft (raw, json) Hash identifier: gcJH93GQeZ3Old4vnCR8bIJNWRJgMkNnfakn+goG2vs= Subject key identifier: 31:12:27:61:1E:A4:53:90:78:4F:15:13:C2:19:16:37:C4:C9:E3:BD Authority key identifier: 50:82:69:6F:BC:41:D9:06:16:8A:60:CE:09:49:49:02:2C:F6:29:E8 Certificate issuer: /CN=5082696fbc41d906168a60ce094949022cf629e8 Certificate serial: 019C42B49E2C435638DCDBD239C72F28BE70 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft Manifest number: 0597 Signing time: Mon 09 Feb 2026 14:00:59 +0000 Manifest this update: Mon 09 Feb 2026 14:00:59 +0000 Manifest next update: Tue 10 Feb 2026 14:00:59 +0000 Files and hashes: 1: UIJpb7xB2QYWimDOCUlJAiz2Keg.crl (hash: GgT4hV9BUSHHmhIcFuF2inSEMWFhHPoNAJ7+pAj3OFk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.crl rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:9e:2c:43:56:38:dc:db:d2:39:c7:2f:28:be:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5082696fbc41d906168a60ce094949022cf629e8 Validity Not Before: Feb 9 14:00:59 2026 GMT Not After : Feb 10 14:00:59 2026 GMT Subject: CN=311227611ea45390784f1513c2191637c4c9e3bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d5:af:3b:50:49:91:06:95:5d:0c:a2:1a:92: 94:a2:58:c6:ab:b2:6c:5d:57:61:d0:37:9e:58:54: 84:53:00:36:04:fc:74:aa:35:87:08:59:17:05:41: 35:ca:7d:28:41:ff:b7:64:29:76:79:9e:b3:39:24: 53:e4:7c:39:9a:db:0d:da:30:05:76:8f:06:fc:21: 05:18:74:42:b9:e2:62:63:6d:69:bf:72:6d:bf:4c: bb:61:82:d9:5e:6a:8a:a5:97:22:70:57:82:4a:e1: 7c:3a:b7:15:dc:a4:57:3b:b4:42:d7:1d:c6:14:31: d4:5e:54:93:11:5c:46:02:78:88:a9:03:9a:7f:cb: e1:47:5b:6b:f0:bf:37:e2:16:56:9b:e1:6a:de:ef: f7:46:68:bd:50:57:70:ec:3c:ea:d8:75:06:3e:21: 62:90:83:2a:1b:4d:55:a8:32:27:4a:0c:bc:35:5d: 3f:1c:16:e6:52:0b:f6:93:81:ea:e6:ab:0a:67:e0: 9f:83:21:db:9b:09:96:52:c5:ff:90:07:ac:e9:43: f7:6a:1c:79:0b:45:e4:b9:07:fb:c9:d4:8f:9c:53: 9b:fb:38:63:a4:74:60:48:b8:67:cd:4f:11:32:14: e8:a1:44:c6:61:d3:84:2a:c9:4d:c4:a4:5c:82:bb: 35:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:12:27:61:1E:A4:53:90:78:4F:15:13:C2:19:16:37:C4:C9:E3:BD X509v3 Authority Key Identifier: keyid:50:82:69:6F:BC:41:D9:06:16:8A:60:CE:09:49:49:02:2C:F6:29:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:c8:34:e7:e6:af:58:ff:fd:00:ac:02:af:6d:d2:30:dc:13: b4:9c:e8:4a:97:c9:08:0c:14:a3:17:7a:0b:d5:9a:3a:e1:66: 30:36:33:92:c5:26:59:44:d9:db:73:c2:13:84:2c:04:8e:58: 4f:c3:78:c3:cb:70:ba:0a:71:7f:2a:55:0e:f7:9d:86:fb:85: 82:69:36:d8:ac:e0:6f:38:fe:1b:ee:ab:79:81:55:4f:aa:f5: 44:30:35:61:23:ec:23:cc:fa:dd:5d:62:09:ba:ef:3a:34:ee: 4e:c8:97:22:0c:9d:12:62:bf:9e:93:a6:7f:55:16:c3:ad:30: 1f:bd:42:01:16:db:ae:90:80:b8:bc:a2:01:b8:d4:a4:69:45: e5:74:aa:85:79:a5:8f:d3:8f:b6:71:6f:d1:d4:93:37:8f:98: 72:2e:c4:ec:39:9a:42:b4:a7:fa:16:7a:55:4e:e1:76:bd:01: 0b:ff:3c:8c:7d:2c:0b:6f:c7:b1:d2:ac:cb:e5:4d:f3:f6:d3: 3d:8b:f9:fd:db:e9:4d:fb:87:27:c8:72:82:29:47:74:94:8d: 77:ff:6c:0f:8a:46:2c:50:2a:ab:0b:59:7b:f4:86:3f:5a:7b: a7:af:89:8c:52:a2:cb:f7:79:c4:83:2b:e2:eb:70:61:1d:d1: f3:5a:06:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtJ4sQ1Y43NvSOccvKL5wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwODI2OTZmYmM0MWQ5MDYxNjhhNjBjZTA5NDk0OTAyMmNm NjI5ZTgwHhcNMjYwMjA5MTQwMDU5WhcNMjYwMjEwMTQwMDU5WjAzMTEwLwYDVQQD EygzMTEyMjc2MTFlYTQ1MzkwNzg0ZjE1MTNjMjE5MTYzN2M0YzllM2JkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAotWvO1BJkQaVXQyiGpKUoljGq7Js XVdh0DeeWFSEUwA2BPx0qjWHCFkXBUE1yn0oQf+3ZCl2eZ6zOSRT5Hw5mtsN2jAF do8G/CEFGHRCueJiY21pv3Jtv0y7YYLZXmqKpZcicFeCSuF8OrcV3KRXO7RC1x3G FDHUXlSTEVxGAniIqQOaf8vhR1tr8L834hZWm+Fq3u/3Rmi9UFdw7Dzq2HUGPiFi kIMqG01VqDInSgy8NV0/HBbmUgv2k4Hq5qsKZ+CfgyHbmwmWUsX/kAes6UP3ahx5 C0XkuQf7ydSPnFOb+zhjpHRgSLhnzU8RMhTooUTGYdOEKslNxKRcgrs17wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDESJ2EepFOQeE8VE8IZFjfEyeO9MB8GA1UdIwQY MBaAFFCCaW+8QdkGFopgzglJSQIs9inoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUlKcGI3eEIyUVlXaW1ET0NVbEpBaXoyS2VnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS9hOWYwYmItODZmNi00Y2EzLWE1M2Yt MmU5NzIxZDg2YzNkLzEvVUlKcGI3eEIyUVlXaW1ET0NVbEpBaXoyS2VnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZS9hOWYwYmItODZmNi00Y2EzLWE1M2YtMmU5NzIxZDg2YzNk LzEvVUlKcGI3eEIyUVlXaW1ET0NVbEpBaXoyS2VnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEcg05+av WP/9AKwCr23SMNwTtJzoSpfJCAwUoxd6C9WaOuFmMDYzksUmWUTZ23PCE4QsBI5Y T8N4w8twugpxfypVDvedhvuFgmk22Kzgbzj+G+6reYFVT6r1RDA1YSPsI8z63V1i CbrvOjTuTsiXIgydEmK/npOmf1UWw60wH71CARbbrpCAuLyiAbjUpGlF5XSqhXml j9OPtnFv0dSTN4+Yci7E7DmaQrSn+hZ6VU7hdr0BC/88jH0sC2/HsdKsy+VN8/bT PYv5/dvpTfuHJ8hygilHdJSNd/9sD4pGLFAqqwtZe/SGP1p7p6+JjFKiy/d5xIMr 4utwYR3R81oGlQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:04 2026 by rpki-client