This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft File: ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft (raw, json) Hash identifier: U1gbM91kAir2FlVLqGS8irTsrGvO44p02bAeWRwBMYs= Subject key identifier: 9B:B0:71:24:64:73:56:16:0B:FB:AA:10:10:BA:4B:BC:E8:A4:5F:39 Authority key identifier: B9:F1:D5:B0:6F:57:01:55:5F:F5:88:81:54:DD:14:1B:48:89:61:17 Certificate issuer: /CN=b9f1d5b06f5701555ff5888154dd141b48896117 Certificate serial: 019C4321DF0A73B489612133D5C4255C1444 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft Manifest number: 1827 Signing time: Mon 09 Feb 2026 16:00:19 +0000 Manifest this update: Mon 09 Feb 2026 16:00:19 +0000 Manifest next update: Tue 10 Feb 2026 16:00:19 +0000 Files and hashes: 1: ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl (hash: 8C4Jwm9kzAMv8Gh1MktvlqWqePXOInr6/2k2lb89a8Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:df:0a:73:b4:89:61:21:33:d5:c4:25:5c:14:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9f1d5b06f5701555ff5888154dd141b48896117 Validity Not Before: Feb 9 16:00:19 2026 GMT Not After : Feb 10 16:00:19 2026 GMT Subject: CN=9bb07124647356160bfbaa1010ba4bbce8a45f39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:22:4e:65:cc:0f:6a:5b:66:dc:66:94:2b:3a: 54:47:06:1e:f8:1f:46:d7:a1:d4:5d:d7:25:35:11: ca:d5:3d:73:ec:0f:0d:74:c4:f5:7e:fe:31:2d:49: ec:7e:36:90:80:b0:73:7b:b5:3e:b1:49:c9:3e:ec: db:62:db:f2:fc:73:24:c1:58:f2:16:aa:18:ce:35: d2:57:08:99:cd:62:ab:29:cd:01:4e:a3:17:e9:27: 43:bd:b3:1e:f8:c3:e0:c8:66:b1:5f:14:04:31:3c: 8b:30:b0:95:3e:6a:30:90:a7:9c:8b:bc:f7:8d:91: b8:3d:32:94:13:6e:57:93:0f:38:4e:43:58:d8:de: fe:5c:52:56:46:d0:fd:f8:24:e7:48:bc:f3:42:9c: 7d:21:aa:2d:8c:16:c2:14:c2:10:e6:63:6f:45:02: be:4a:bf:ba:9e:68:58:39:9d:26:b0:14:ab:2c:75: 36:22:62:63:6e:88:f9:8f:4b:9f:ce:e4:c9:74:05: fd:3c:16:65:98:07:fe:34:75:28:75:08:87:8b:a5: 28:7f:06:2a:44:fa:9c:84:6f:8a:5e:3e:5f:9c:fd: 8a:dd:d2:5e:35:bc:8c:39:d8:3f:c2:e8:8a:99:00: ee:ff:b2:66:df:3a:80:a1:af:00:0a:ce:d1:7b:e9: 2a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:B0:71:24:64:73:56:16:0B:FB:AA:10:10:BA:4B:BC:E8:A4:5F:39 X509v3 Authority Key Identifier: keyid:B9:F1:D5:B0:6F:57:01:55:5F:F5:88:81:54:DD:14:1B:48:89:61:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:d2:46:46:1a:6f:e2:f3:f8:4a:53:6b:97:d6:88:66:29:1a: 36:1f:16:54:57:33:29:83:6a:f2:a7:53:7f:dc:66:89:ad:2c: ac:74:2e:40:00:dd:75:37:ab:5d:a9:85:fc:1a:e8:f1:15:ac: f4:83:6a:6d:0c:83:0a:a5:89:c2:85:51:e0:e7:15:37:82:50: 21:9d:a6:38:76:35:73:18:30:28:12:7a:6d:c2:2a:ee:c0:a9: 4d:cb:92:94:d1:fa:ee:ad:90:9c:06:8e:3f:f7:81:5d:60:5f: ad:40:61:85:3a:5e:49:75:45:ad:89:72:96:bd:7a:be:d3:b6: 2a:c6:03:b5:86:06:ff:a5:53:de:86:0d:eb:47:9b:25:c6:03: ba:64:7f:b5:3f:d8:21:01:a1:56:fe:c2:36:22:82:ec:02:69: fa:21:27:c8:37:8e:45:42:0e:e5:92:5d:65:6c:91:78:3b:6a: 80:82:4f:91:6f:64:bc:3d:7b:71:c7:6d:c3:93:7c:dc:ec:a3: 1c:56:13:ef:d7:72:26:7b:d6:89:5b:fa:5a:6d:28:dc:d0:ff: 3e:f6:7c:ce:d6:8b:79:d3:62:23:05:61:3b:e0:c0:88:e6:2e: 8d:0b:86:87:18:06:eb:7a:c7:bf:e3:a6:50:73:0b:28:e7:ee: fc:d1:76:ff -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDId8Kc7SJYSEz1cQlXBREMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5ZjFkNWIwNmY1NzAxNTU1ZmY1ODg4MTU0ZGQxNDFiNDg4 OTYxMTcwHhcNMjYwMjA5MTYwMDE5WhcNMjYwMjEwMTYwMDE5WjAzMTEwLwYDVQQD Eyg5YmIwNzEyNDY0NzM1NjE2MGJmYmFhMTAxMGJhNGJiY2U4YTQ1ZjM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5yJOZcwPaltm3GaUKzpURwYe+B9G 16HUXdclNRHK1T1z7A8NdMT1fv4xLUnsfjaQgLBze7U+sUnJPuzbYtvy/HMkwVjy FqoYzjXSVwiZzWKrKc0BTqMX6SdDvbMe+MPgyGaxXxQEMTyLMLCVPmowkKeci7z3 jZG4PTKUE25Xkw84TkNY2N7+XFJWRtD9+CTnSLzzQpx9IaotjBbCFMIQ5mNvRQK+ Sr+6nmhYOZ0msBSrLHU2ImJjboj5j0ufzuTJdAX9PBZlmAf+NHUodQiHi6UofwYq RPqchG+KXj5fnP2K3dJeNbyMOdg/wuiKmQDu/7Jm3zqAoa8ACs7Re+kqhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJuwcSRkc1YWC/uqEBC6S7zopF85MB8GA1UdIwQY MBaAFLnx1bBvVwFVX/WIgVTdFBtIiWEXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWZIVnNHOVhBVlZmOVlpQlZOMFVHMGlKWVJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9jYWY1ZWEtNjI2ZS00NTVhLTg3MDgt ZjVjYThmYTcyNzBkLzEvdWZIVnNHOVhBVlZmOVlpQlZOMFVHMGlKWVJjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS9jYWY1ZWEtNjI2ZS00NTVhLTg3MDgtZjVjYThmYTcyNzBk LzEvdWZIVnNHOVhBVlZmOVlpQlZOMFVHMGlKWVJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKtJGRhpv 4vP4SlNrl9aIZikaNh8WVFczKYNq8qdTf9xmia0srHQuQADddTerXamF/Bro8RWs 9INqbQyDCqWJwoVR4OcVN4JQIZ2mOHY1cxgwKBJ6bcIq7sCpTcuSlNH67q2QnAaO P/eBXWBfrUBhhTpeSXVFrYlylr16vtO2KsYDtYYG/6VT3oYN60ebJcYDumR/tT/Y IQGhVv7CNiKC7AJp+iEnyDeORUIO5ZJdZWyReDtqgIJPkW9kvD17ccdtw5N83Oyj HFYT79dyJnvWiVv6Wm0o3ND/PvZ8ztaLedNiIwVhO+DAiOYujQuGhxgG63rHv+Om UHMLKOfu/NF2/w== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:41 2026 by rpki-client