This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/6278c4-64df-4f8f-ad34-68384ffd6e6f/1/UGG999pVZ22XGIK-7pAhvF-zFy0.mft File: UGG999pVZ22XGIK-7pAhvF-zFy0.mft (raw, json) Hash identifier: KH+x1kyMi1erBJXyybS/rOexwagNOnOdZ0e0tmxDrBY= Subject key identifier: 1D:6E:53:93:92:D0:36:AE:55:75:8E:60:F9:3A:FA:97:5A:32:8E:3D Authority key identifier: 50:61:BD:F7:DA:55:67:6D:97:18:82:BE:EE:90:21:BC:5F:B3:17:2D Certificate issuer: /CN=5061bdf7da55676d971882beee9021bc5fb3172d Certificate serial: 019C420F7459FDAD5C85740A25E71642D885 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UGG999pVZ22XGIK-7pAhvF-zFy0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/6278c4-64df-4f8f-ad34-68384ffd6e6f/1/UGG999pVZ22XGIK-7pAhvF-zFy0.mft Manifest number: 0AC6 Signing time: Mon 09 Feb 2026 11:00:34 +0000 Manifest this update: Mon 09 Feb 2026 11:00:34 +0000 Manifest next update: Tue 10 Feb 2026 11:00:34 +0000 Files and hashes: 1: UGG999pVZ22XGIK-7pAhvF-zFy0.crl (hash: 9lbe9dZMYizhFTiq++xULeyLqpH2ZJLxlG8dw2nNKwE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/6278c4-64df-4f8f-ad34-68384ffd6e6f/1/UGG999pVZ22XGIK-7pAhvF-zFy0.crl rsync://rpki.ripe.net/repository/DEFAULT/db/6278c4-64df-4f8f-ad34-68384ffd6e6f/1/UGG999pVZ22XGIK-7pAhvF-zFy0.mft rsync://rpki.ripe.net/repository/DEFAULT/UGG999pVZ22XGIK-7pAhvF-zFy0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:74:59:fd:ad:5c:85:74:0a:25:e7:16:42:d8:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5061bdf7da55676d971882beee9021bc5fb3172d Validity Not Before: Feb 9 11:00:34 2026 GMT Not After : Feb 10 11:00:34 2026 GMT Subject: CN=1d6e539392d036ae55758e60f93afa975a328e3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:55:eb:a9:cd:77:9e:b7:20:96:c6:80:04:69: 33:b6:b1:79:88:2e:5a:dd:ad:0c:36:57:66:92:9f: d8:b9:44:13:c4:8a:98:e0:56:56:da:10:98:51:68: c4:2d:d3:e0:79:eb:03:58:d8:d6:f2:31:ea:fd:e8: a2:22:e1:90:7a:fb:45:82:05:ef:51:70:0f:59:3b: a0:e2:79:ad:50:67:ce:c3:8a:b8:17:fe:c7:fd:91: 3f:fe:4a:ff:59:9d:cf:b2:ee:b6:18:ac:0b:b3:c8: 0b:f8:33:e8:91:04:87:77:91:df:d5:ab:55:aa:1b: 42:37:1f:6b:3a:e7:8e:05:94:2e:29:ff:93:d0:a8: 37:bb:fb:26:ce:4b:e8:20:d8:7a:c5:e5:4f:65:15: f8:ad:1f:3a:bb:a3:b8:4a:13:68:1c:b7:30:06:d6: 46:40:9f:95:4b:b6:20:80:f8:2c:80:f9:e5:a4:c9: c9:38:7f:dc:c1:8a:fb:f0:b8:80:4e:cf:c5:f5:30: 29:f5:57:af:01:e9:61:72:7f:ec:ce:f9:93:ca:40: 40:76:08:e6:ee:ce:a9:52:43:7b:27:3f:c3:a5:18: 50:67:c4:d6:d1:29:e3:63:0f:03:df:ac:14:31:bb: e4:f8:c3:41:13:e0:00:22:1f:76:89:33:9a:9e:61: bc:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:6E:53:93:92:D0:36:AE:55:75:8E:60:F9:3A:FA:97:5A:32:8E:3D X509v3 Authority Key Identifier: keyid:50:61:BD:F7:DA:55:67:6D:97:18:82:BE:EE:90:21:BC:5F:B3:17:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UGG999pVZ22XGIK-7pAhvF-zFy0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/6278c4-64df-4f8f-ad34-68384ffd6e6f/1/UGG999pVZ22XGIK-7pAhvF-zFy0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/6278c4-64df-4f8f-ad34-68384ffd6e6f/1/UGG999pVZ22XGIK-7pAhvF-zFy0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:0e:e4:6f:fa:01:ee:5e:e4:c5:36:f0:28:3f:62:37:8a:f6: c7:50:ad:03:e2:60:70:bd:63:30:a3:53:ee:30:80:6c:de:69: a3:ae:a1:3e:27:91:2c:1b:b9:70:94:8f:25:06:09:d7:0e:b2: 25:03:3b:26:21:eb:68:95:fd:8f:8c:f2:9b:58:3d:7b:a8:49: e4:d0:64:45:ec:1d:04:3c:b4:41:10:24:be:0f:d2:89:07:e1: c3:18:26:2a:80:51:f8:40:30:44:2a:a4:0d:de:a8:79:0a:34: 66:9d:90:7f:3e:17:9a:6a:de:84:84:0d:2b:74:fc:4e:91:59: fd:a5:cc:03:de:00:fd:38:91:3a:f7:99:be:3e:cd:d4:63:27: 7d:90:0b:b1:c8:38:bb:4c:41:ff:3f:ae:7a:e3:0e:b4:89:11: 76:8d:da:2f:df:19:60:ac:e5:90:ed:6b:d4:9f:d6:1c:d2:f0: f7:ca:e2:25:dc:77:68:b4:7f:60:ab:92:1f:d5:50:d9:e4:19: d7:6a:4a:d8:cd:64:aa:7e:51:61:88:a9:32:78:f6:50:e1:dd: b2:8f:9c:f0:e2:d6:5d:6c:1e:59:61:24:11:a8:59:4a:ba:55: 89:8a:c1:8a:e4:0a:b3:3b:80:7f:9f:c0:61:9c:ca:45:8c:23: 49:34:bd:b0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD3RZ/a1chXQKJecWQtiFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwNjFiZGY3ZGE1NTY3NmQ5NzE4ODJiZWVlOTAyMWJjNWZi MzE3MmQwHhcNMjYwMjA5MTEwMDM0WhcNMjYwMjEwMTEwMDM0WjAzMTEwLwYDVQQD EygxZDZlNTM5MzkyZDAzNmFlNTU3NThlNjBmOTNhZmE5NzVhMzI4ZTNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAklXrqc13nrcglsaABGkztrF5iC5a 3a0MNldmkp/YuUQTxIqY4FZW2hCYUWjELdPgeesDWNjW8jHq/eiiIuGQevtFggXv UXAPWTug4nmtUGfOw4q4F/7H/ZE//kr/WZ3Psu62GKwLs8gL+DPokQSHd5Hf1atV qhtCNx9rOueOBZQuKf+T0Kg3u/smzkvoINh6xeVPZRX4rR86u6O4ShNoHLcwBtZG QJ+VS7YggPgsgPnlpMnJOH/cwYr78LiATs/F9TAp9VevAelhcn/szvmTykBAdgjm 7s6pUkN7Jz/DpRhQZ8TW0SnjYw8D36wUMbvk+MNBE+AAIh92iTOanmG88wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB1uU5OS0DauVXWOYPk6+pdaMo49MB8GA1UdIwQY MBaAFFBhvffaVWdtlxiCvu6QIbxfsxctMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUdHOTk5cFZaMjJYR0lLLTdwQWh2Ri16RnkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi82Mjc4YzQtNjRkZi00ZjhmLWFkMzQt NjgzODRmZmQ2ZTZmLzEvVUdHOTk5cFZaMjJYR0lLLTdwQWh2Ri16RnkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi82Mjc4YzQtNjRkZi00ZjhmLWFkMzQtNjgzODRmZmQ2ZTZm LzEvVUdHOTk5cFZaMjJYR0lLLTdwQWh2Ri16RnkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhQ7kb/oB 7l7kxTbwKD9iN4r2x1CtA+JgcL1jMKNT7jCAbN5po66hPieRLBu5cJSPJQYJ1w6y JQM7JiHraJX9j4zym1g9e6hJ5NBkRewdBDy0QRAkvg/SiQfhwxgmKoBR+EAwRCqk Dd6oeQo0Zp2Qfz4XmmrehIQNK3T8TpFZ/aXMA94A/TiROveZvj7N1GMnfZALscg4 u0xB/z+ueuMOtIkRdo3aL98ZYKzlkO1r1J/WHNLw98riJdx3aLR/YKuSH9VQ2eQZ 12pK2M1kqn5RYYipMnj2UOHdso+c8OLWXWweWWEkEahZSrpViYrBiuQKszuAf5/A YZzKRYwjSTS9sA== -----END CERTIFICATE-----Generated at Mon Feb 9 20:07:20 2026 by rpki-client