This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft File: U8DiB45PPrpfh5UD_dgJw4O7dig.mft (raw, json) Hash identifier: CYREsGZqBSEaV6KvXX/W9tYZp28+WLF+k7MjXBi87T8= Subject key identifier: B6:53:D9:D3:C7:D1:D6:E1:04:FA:E6:DF:15:78:8F:3E:CF:11:16:75 Authority key identifier: 53:C0:E2:07:8E:4F:3E:BA:5F:87:95:03:FD:D8:09:C3:83:BB:76:28 Certificate issuer: /CN=53c0e2078e4f3eba5f879503fdd809c383bb7628 Certificate serial: 019C44A2CF2911F7F99AB7B8EE8E19CF588E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft Manifest number: 120E Signing time: Mon 09 Feb 2026 23:00:46 +0000 Manifest this update: Mon 09 Feb 2026 23:00:46 +0000 Manifest next update: Tue 10 Feb 2026 23:00:46 +0000 Files and hashes: 1: 1-GMVzwMDxSiYZaD7figfVQ0BMo8.roa (hash: 6cucZyQkv8Clqp8Dmj2mB2zHAVxhCmtUwPlqKFCqEpw=) 2: U8DiB45PPrpfh5UD_dgJw4O7dig.crl (hash: dvXfqppAYEd7QaWwz4nupYYOaIuVdUmr2aJHdvxE5Gk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:a2:cf:29:11:f7:f9:9a:b7:b8:ee:8e:19:cf:58:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53c0e2078e4f3eba5f879503fdd809c383bb7628 Validity Not Before: Feb 9 23:00:46 2026 GMT Not After : Feb 10 23:00:46 2026 GMT Subject: CN=b653d9d3c7d1d6e104fae6df15788f3ecf111675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f0:f4:9e:a8:59:fb:85:84:04:af:e6:86:fa: cd:23:f5:aa:2b:d5:88:28:80:0b:aa:22:90:ac:49: e7:26:cc:39:b4:21:f1:8c:0a:3e:7b:9d:39:79:f8: 7f:c1:6a:6f:fb:6f:84:1c:a9:2b:81:96:08:4d:c2: 35:8c:2d:47:4b:0a:45:84:68:5c:0d:f1:59:1c:18: f3:bd:f8:2d:61:77:45:e7:e5:61:bd:34:07:32:ee: f5:16:64:04:2b:39:9d:ad:df:9f:b2:9a:18:87:3d: bd:c2:0e:2c:d7:6c:22:29:03:bb:f4:bc:1a:5c:13: eb:8b:c5:3f:a4:06:67:36:a1:f8:68:a1:1b:8b:20: bc:0f:7a:3b:73:49:95:b6:12:ca:21:28:a7:85:0c: d6:b0:e6:ad:09:3f:59:7d:5b:65:3c:50:ee:98:58: f9:de:a6:90:d3:94:4d:42:e4:fb:b7:74:6f:cb:4c: ee:8e:a0:9f:38:bc:c7:77:b5:b6:f4:c4:95:8b:d6: d9:c4:3d:4d:03:10:76:e5:a9:93:68:ad:b7:a3:59: 08:2e:a4:16:2a:02:ce:68:0c:50:2b:5b:bf:81:6d: 3d:15:18:e3:a9:7a:41:3f:be:3c:7b:67:87:3f:ba: 87:3f:30:6c:ae:70:77:8c:cd:08:b0:62:cd:4c:67: 20:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:53:D9:D3:C7:D1:D6:E1:04:FA:E6:DF:15:78:8F:3E:CF:11:16:75 X509v3 Authority Key Identifier: keyid:53:C0:E2:07:8E:4F:3E:BA:5F:87:95:03:FD:D8:09:C3:83:BB:76:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:cd:3c:f1:69:36:99:54:c0:90:c9:e6:43:d7:a5:71:64:67: 5a:ee:37:bb:e3:cc:f1:3b:6c:a0:e9:12:74:14:d6:59:85:63: b6:78:e8:d8:e4:63:9b:06:1c:97:dc:e9:87:68:3e:44:6a:ad: fa:f7:20:36:38:40:0e:f9:38:2c:92:6e:57:b6:da:2c:52:bd: 2a:01:a3:a9:1d:52:2d:b4:17:53:8e:44:73:38:71:b1:43:8b: 71:20:f2:6b:dc:66:b9:15:cd:80:e5:6e:15:b8:41:9e:0b:3f: c9:6a:d2:cf:09:61:90:43:90:0d:0f:1c:16:f4:1d:0c:18:ef: 97:7a:9e:82:5c:52:d9:25:1d:9d:7e:cb:11:fa:eb:c4:c0:82: 2b:16:f6:5a:29:62:b8:2a:c4:4e:f6:a0:80:b4:4f:41:8d:05: 60:d0:df:81:ea:75:2f:5d:2b:51:be:ed:1c:9a:21:48:0f:4b: 52:d7:7f:8a:01:fc:9e:cf:35:63:12:54:cc:c8:c3:27:57:56: d0:d8:7a:4e:c2:ee:d0:c8:ee:61:91:37:33:bf:92:5a:14:b9: cb:65:14:71:f1:c8:09:72:fd:e8:26:e2:a0:c6:bb:c4:e5:30: 34:d9:e9:02:c6:24:9d:b4:ff:31:49:06:53:d7:21:d4:6c:97: b7:4d:e4:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEos8pEff5mre47o4Zz1iOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYzBlMjA3OGU0ZjNlYmE1Zjg3OTUwM2ZkZDgwOWMzODNi Yjc2MjgwHhcNMjYwMjA5MjMwMDQ2WhcNMjYwMjEwMjMwMDQ2WjAzMTEwLwYDVQQD EyhiNjUzZDlkM2M3ZDFkNmUxMDRmYWU2ZGYxNTc4OGYzZWNmMTExNjc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo/D0nqhZ+4WEBK/mhvrNI/WqK9WI KIALqiKQrEnnJsw5tCHxjAo+e505efh/wWpv+2+EHKkrgZYITcI1jC1HSwpFhGhc DfFZHBjzvfgtYXdF5+VhvTQHMu71FmQEKzmdrd+fspoYhz29wg4s12wiKQO79Lwa XBPri8U/pAZnNqH4aKEbiyC8D3o7c0mVthLKISinhQzWsOatCT9ZfVtlPFDumFj5 3qaQ05RNQuT7t3Rvy0zujqCfOLzHd7W29MSVi9bZxD1NAxB25amTaK23o1kILqQW KgLOaAxQK1u/gW09FRjjqXpBP748e2eHP7qHPzBsrnB3jM0IsGLNTGcgtQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLZT2dPH0dbhBPrm3xV4jz7PERZ1MB8GA1UdIwQY MBaAFFPA4geOTz66X4eVA/3YCcODu3YoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVThEaUI0NVBQcnBmaDVVRF9kZ0p3NE83ZGlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9iMzY2MzYtMzMwNi00NDhmLThlY2Yt NTY0ODJiMzkwNjc4LzEvVThEaUI0NVBQcnBmaDVVRF9kZ0p3NE83ZGlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi9iMzY2MzYtMzMwNi00NDhmLThlY2YtNTY0ODJiMzkwNjc4 LzEvVThEaUI0NVBQcnBmaDVVRF9kZ0p3NE83ZGlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf8088Wk2 mVTAkMnmQ9elcWRnWu43u+PM8TtsoOkSdBTWWYVjtnjo2ORjmwYcl9zph2g+RGqt +vcgNjhADvk4LJJuV7baLFK9KgGjqR1SLbQXU45EczhxsUOLcSDya9xmuRXNgOVu FbhBngs/yWrSzwlhkEOQDQ8cFvQdDBjvl3qeglxS2SUdnX7LEfrrxMCCKxb2Wili uCrETvaggLRPQY0FYNDfgep1L10rUb7tHJohSA9LUtd/igH8ns81YxJUzMjDJ1dW 0Nh6TsLu0MjuYZE3M7+SWhS5y2UUcfHICXL96CbioMa7xOUwNNnpAsYknbT/MUkG U9ch1GyXt03kKA== -----END CERTIFICATE-----Generated at Tue Feb 10 03:03:22 2026 by rpki-client