This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft File: UGF1T3aJFp9qFQZQlUcmcrorRYk.mft (raw, json) Hash identifier: ewNoU2FuFY833fuPes/L5PTSNkLiZTuxtAWth2p1hwU= Subject key identifier: 3A:D8:EB:F8:EB:80:16:CF:5F:38:B4:42:42:AF:1B:B9:DD:44:F4:9B Authority key identifier: 50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89 Certificate issuer: /CN=5061754f7689169f6a15065095472672ba2b4589 Certificate serial: 019C443488C659C1F2A1F2B5E6D1509BF07F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft Manifest number: 0F85 Signing time: Mon 09 Feb 2026 21:00:19 +0000 Manifest this update: Mon 09 Feb 2026 21:00:19 +0000 Manifest next update: Tue 10 Feb 2026 21:00:19 +0000 Files and hashes: 1: Dso0R9jjpUkdKEuWSQN3IKBjVm0.roa (hash: 9FQomFqWvc60F+2iE+E+hXBWJiV5IXVpIcSj2ui8bw0=) 2: UGF1T3aJFp9qFQZQlUcmcrorRYk.crl (hash: HituZ2OBYiG7DNc6eZA0IatD3MI05vT4msTXbDmTwwY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:34:88:c6:59:c1:f2:a1:f2:b5:e6:d1:50:9b:f0:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5061754f7689169f6a15065095472672ba2b4589 Validity Not Before: Feb 9 21:00:19 2026 GMT Not After : Feb 10 21:00:19 2026 GMT Subject: CN=3ad8ebf8eb8016cf5f38b44242af1bb9dd44f49b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c3:d4:c5:2e:ac:b2:65:81:35:9e:59:e2:37: f9:e2:be:f1:2b:4a:0f:57:bc:3b:06:16:4a:21:1a: f5:f0:ff:85:22:41:d5:76:99:e0:eb:7d:93:6d:84: 1f:20:bb:2e:eb:cd:a2:8b:fc:23:9e:5f:93:0a:60: b5:67:de:40:0a:b2:5b:80:3d:59:73:a9:91:de:de: ec:da:6a:e3:70:11:4e:4a:97:2f:d9:74:8d:eb:78: 42:a9:1e:c5:b3:48:46:96:80:ea:26:56:a8:58:f7: 7e:05:1c:7c:94:47:1e:40:91:8a:34:ae:ac:1a:19: 22:a5:6a:cd:11:99:5f:41:da:56:6b:68:02:14:6a: 06:b4:3b:e4:04:6c:6a:3a:ff:ec:99:87:a9:b0:b5: 2d:27:91:4a:bf:fe:a0:14:58:4f:5b:7a:d8:f6:59: d0:83:d0:05:52:b4:c5:d3:11:68:69:5c:0b:96:1a: 70:e3:a1:4f:89:48:ff:a0:84:c3:e6:30:af:69:63: a6:16:87:da:4b:12:24:eb:0b:40:51:b8:74:84:db: 4f:6d:12:d0:7e:d7:7f:ee:8e:68:ac:64:c4:38:74: 7b:6c:0c:eb:6e:28:4c:7e:56:65:b3:b1:89:4c:a8: 55:43:c4:2f:8d:94:7b:cc:95:4a:e4:19:69:f0:2c: da:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:D8:EB:F8:EB:80:16:CF:5F:38:B4:42:42:AF:1B:B9:DD:44:F4:9B X509v3 Authority Key Identifier: keyid:50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:95:8d:01:3e:46:4b:b4:5e:ed:de:99:6e:ec:ae:30:2c:74: b1:3e:b1:e7:e1:5c:24:31:09:93:8a:83:f8:0f:79:27:4d:c0: e4:58:80:62:cf:68:9b:6a:93:57:af:b2:8a:43:81:24:58:e4: 54:c6:70:4d:e3:92:a6:f6:e3:7b:54:47:d5:cf:f8:8e:24:80: a1:8e:7f:27:26:cd:90:fc:34:26:db:af:00:a0:28:d4:e5:be: 2a:3a:00:57:ab:a4:a2:71:2a:bc:6e:dd:b7:60:19:12:3f:4b: 0a:f8:f5:9d:5b:bd:ab:4b:15:5c:c5:7a:bf:57:2c:60:cf:da: e6:77:ef:3d:3d:2b:40:99:1a:37:21:6e:d3:8b:04:ea:ad:ca: 39:da:21:e3:30:52:25:61:db:76:78:5b:58:9e:93:8c:14:46: 40:e5:52:90:e3:85:79:10:51:00:44:b6:ba:b7:d5:3b:b1:7b: 62:80:3e:97:65:17:e4:07:e0:cb:c0:4d:da:00:e6:b3:a4:5f: fa:20:c5:a9:af:0b:e1:16:f4:a9:7a:24:d3:95:20:73:5e:b0: 1f:74:2d:91:91:d8:1a:8e:00:b5:c4:8d:6e:bb:e1:6c:e3:ee: 09:24:77:84:02:30:d9:ee:2e:b5:bc:f7:38:e6:f5:72:c1:d8: c1:cc:28:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxENIjGWcHyofK15tFQm/B/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwNjE3NTRmNzY4OTE2OWY2YTE1MDY1MDk1NDcyNjcyYmEy YjQ1ODkwHhcNMjYwMjA5MjEwMDE5WhcNMjYwMjEwMjEwMDE5WjAzMTEwLwYDVQQD EygzYWQ4ZWJmOGViODAxNmNmNWYzOGI0NDI0MmFmMWJiOWRkNDRmNDliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzMPUxS6ssmWBNZ5Z4jf54r7xK0oP V7w7BhZKIRr18P+FIkHVdpng632TbYQfILsu682ii/wjnl+TCmC1Z95ACrJbgD1Z c6mR3t7s2mrjcBFOSpcv2XSN63hCqR7Fs0hGloDqJlaoWPd+BRx8lEceQJGKNK6s GhkipWrNEZlfQdpWa2gCFGoGtDvkBGxqOv/smYepsLUtJ5FKv/6gFFhPW3rY9lnQ g9AFUrTF0xFoaVwLlhpw46FPiUj/oITD5jCvaWOmFofaSxIk6wtAUbh0hNtPbRLQ ftd/7o5orGTEOHR7bAzrbihMflZls7GJTKhVQ8QvjZR7zJVK5Blp8CzaLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDrY6/jrgBbPXzi0QkKvG7ndRPSbMB8GA1UdIwQY MBaAFFBhdU92iRafahUGUJVHJnK6K0WJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUdGMVQzYUpGcDlxRlFaUWxVY21jcm9yUllrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi8zYjU5ZDUtNjAyZC00MzUxLTk2YmMt YTEwODY0OWQ1MWUyLzEvVUdGMVQzYUpGcDlxRlFaUWxVY21jcm9yUllrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi8zYjU5ZDUtNjAyZC00MzUxLTk2YmMtYTEwODY0OWQ1MWUy LzEvVUdGMVQzYUpGcDlxRlFaUWxVY21jcm9yUllrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC5WNAT5G S7Re7d6ZbuyuMCx0sT6x5+FcJDEJk4qD+A95J03A5FiAYs9om2qTV6+yikOBJFjk VMZwTeOSpvbje1RH1c/4jiSAoY5/JybNkPw0JtuvAKAo1OW+KjoAV6ukonEqvG7d t2AZEj9LCvj1nVu9q0sVXMV6v1csYM/a5nfvPT0rQJkaNyFu04sE6q3KOdoh4zBS JWHbdnhbWJ6TjBRGQOVSkOOFeRBRAES2urfVO7F7YoA+l2UX5Afgy8BN2gDms6Rf +iDFqa8L4Rb0qXok05Ugc16wH3QtkZHYGo4AtcSNbrvhbOPuCSR3hAIw2e4utbz3 OOb1csHYwcwogA== -----END CERTIFICATE-----Generated at Tue Feb 10 02:55:25 2026 by rpki-client