This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft File: UgX1htgmO7BtZAUPj0hMFOgDxLI.mft (raw, json) Hash identifier: HMpuve0OQbca75kX7O1RKCgNHigy4WL+Gti65yJkhvo= Subject key identifier: 40:22:88:50:1A:BE:94:69:9A:4B:CA:51:27:EE:EC:0C:46:64:DB:31 Authority key identifier: 52:05:F5:86:D8:26:3B:B0:6D:64:05:0F:8F:48:4C:14:E8:03:C4:B2 Certificate issuer: /CN=5205f586d8263bb06d64050f8f484c14e803c4b2 Certificate serial: 019C4322F3C953F9E5C2AD4165D5863BC3C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft Manifest number: 0E4E Signing time: Mon 09 Feb 2026 16:01:29 +0000 Manifest this update: Mon 09 Feb 2026 16:01:29 +0000 Manifest next update: Tue 10 Feb 2026 16:01:29 +0000 Files and hashes: 1: UgX1htgmO7BtZAUPj0hMFOgDxLI.crl (hash: ol47xL+zs4HFUiuAUnZA+qZLpxKK1xhcj/h1gvBT8dA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.crl rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:f3:c9:53:f9:e5:c2:ad:41:65:d5:86:3b:c3:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5205f586d8263bb06d64050f8f484c14e803c4b2 Validity Not Before: Feb 9 16:01:29 2026 GMT Not After : Feb 10 16:01:29 2026 GMT Subject: CN=402288501abe94699a4bca5127eeec0c4664db31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:93:6e:2d:21:06:31:19:7b:05:8e:b0:f8:dc: af:8b:7b:7e:e6:4c:e2:42:67:23:69:77:1b:04:cc: da:17:53:0f:69:7f:ff:63:0e:3c:35:b3:16:87:81: c9:04:08:18:64:4e:74:d6:39:48:17:c8:09:77:14: 5b:36:3f:ba:f5:0c:29:5f:a1:18:d5:db:36:c2:82: 9c:8e:36:e4:3e:24:1c:73:7e:6d:be:86:86:61:9f: 29:57:c5:d4:28:31:27:81:c4:bc:07:e7:d8:a7:b4: 79:2d:a7:02:01:66:fe:9d:12:ca:91:c6:59:3b:9e: 0f:42:c7:2f:1a:c0:55:c6:f6:c6:f8:06:1f:bc:0a: c4:76:0d:66:ef:1e:8b:ba:bc:8b:05:b1:9a:16:1a: b3:4c:38:49:e5:8c:68:51:bd:e2:34:e9:89:29:3e: 90:cf:cf:e6:8d:ea:b3:3e:27:6a:df:f5:b1:2a:f8: b1:85:10:74:19:2e:8f:74:8f:ce:f8:5d:e5:d3:28: 52:7c:44:5d:a6:68:c5:70:3c:dc:d9:ee:23:be:84: 01:5f:57:3e:0c:92:13:ad:95:98:cd:ba:78:dd:4c: 3c:f1:c2:e5:07:08:59:ef:6d:bf:51:77:f9:9c:b2: 01:a3:24:21:d4:3e:43:68:b0:18:19:d1:b5:14:39: a5:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:22:88:50:1A:BE:94:69:9A:4B:CA:51:27:EE:EC:0C:46:64:DB:31 X509v3 Authority Key Identifier: keyid:52:05:F5:86:D8:26:3B:B0:6D:64:05:0F:8F:48:4C:14:E8:03:C4:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:34:c8:ab:00:0d:2e:53:0d:31:74:03:d0:2c:62:dc:14:97: 32:9e:f9:b8:f3:77:0f:1c:20:dd:84:41:c2:6a:2d:96:1b:6d: 4c:3c:4d:4b:2d:f0:57:ee:98:16:b8:99:9e:d8:19:36:bf:b9: 88:a7:f7:b0:b1:4e:99:f7:03:27:01:9f:49:3e:6c:36:86:4d: cb:84:8b:f2:69:8d:e2:5b:18:ad:ba:a1:cd:e3:a7:3e:9e:e2: 5f:c3:07:aa:14:64:f7:ae:da:ca:66:cb:3f:d1:9a:04:05:96: 9f:f3:26:d6:65:b1:f0:d1:4b:b7:3a:22:18:58:71:b2:7a:fb: 21:6c:57:bb:17:5c:a1:d8:11:d7:75:bf:42:69:a6:93:ef:98: 2b:c1:56:b8:a1:0a:f8:69:06:73:79:11:02:50:e4:dd:d5:b2: 8e:a2:68:3f:54:4a:9b:5d:1d:e6:17:cc:83:d7:fb:d3:3a:c6: 05:a8:13:d5:cf:f3:a2:d1:78:7b:e8:fa:c9:c7:c2:42:4e:68: e5:ea:66:a3:5b:89:99:cc:dd:20:f2:be:f1:d9:0d:0e:30:31: 2a:2f:75:cc:b2:57:90:df:a0:62:2d:5f:a3:46:db:aa:bc:d7: ac:3e:b8:da:f2:c5:ae:dc:41:61:b2:9b:57:e7:7c:5d:cb:8c: 43:be:ce:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIvPJU/nlwq1BZdWGO8PJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyMDVmNTg2ZDgyNjNiYjA2ZDY0MDUwZjhmNDg0YzE0ZTgw M2M0YjIwHhcNMjYwMjA5MTYwMTI5WhcNMjYwMjEwMTYwMTI5WjAzMTEwLwYDVQQD Eyg0MDIyODg1MDFhYmU5NDY5OWE0YmNhNTEyN2VlZWMwYzQ2NjRkYjMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5JNuLSEGMRl7BY6w+Nyvi3t+5kzi QmcjaXcbBMzaF1MPaX//Yw48NbMWh4HJBAgYZE501jlIF8gJdxRbNj+69QwpX6EY 1ds2woKcjjbkPiQcc35tvoaGYZ8pV8XUKDEngcS8B+fYp7R5LacCAWb+nRLKkcZZ O54PQscvGsBVxvbG+AYfvArEdg1m7x6LuryLBbGaFhqzTDhJ5YxoUb3iNOmJKT6Q z8/mjeqzPidq3/WxKvixhRB0GS6PdI/O+F3l0yhSfERdpmjFcDzc2e4jvoQBX1c+ DJITrZWYzbp43Uw88cLlBwhZ722/UXf5nLIBoyQh1D5DaLAYGdG1FDmlTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEAiiFAavpRpmkvKUSfu7AxGZNsxMB8GA1UdIwQY MBaAFFIF9YbYJjuwbWQFD49ITBToA8SyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWdYMWh0Z21PN0J0WkFVUGowaE1GT2dEeExJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi85OGVkODYtZmU3ZC00MDExLWFmZDMt MGYyNTczZWNhMmU0LzEvVWdYMWh0Z21PN0J0WkFVUGowaE1GT2dEeExJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi85OGVkODYtZmU3ZC00MDExLWFmZDMtMGYyNTczZWNhMmU0 LzEvVWdYMWh0Z21PN0J0WkFVUGowaE1GT2dEeExJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZTTIqwAN LlMNMXQD0Cxi3BSXMp75uPN3Dxwg3YRBwmotlhttTDxNSy3wV+6YFriZntgZNr+5 iKf3sLFOmfcDJwGfST5sNoZNy4SL8mmN4lsYrbqhzeOnPp7iX8MHqhRk967aymbL P9GaBAWWn/Mm1mWx8NFLtzoiGFhxsnr7IWxXuxdcodgR13W/Qmmmk++YK8FWuKEK +GkGc3kRAlDk3dWyjqJoP1RKm10d5hfMg9f70zrGBagT1c/zotF4e+j6ycfCQk5o 5epmo1uJmczdIPK+8dkNDjAxKi91zLJXkN+gYi1fo0bbqrzXrD642vLFrtxBYbKb V+d8XcuMQ77O+Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:01 2026 by rpki-client