This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft File: pU3VdP7HLUOUwlU2uoUyydOPQLo.mft (raw, json) Hash identifier: WTAkFRZAixq7XXZW/WqTddyyy4q24GLRXxLdpyv89xg= Subject key identifier: 7B:FF:C0:3D:BF:7C:77:CD:94:E4:FE:75:38:9C:87:11:A5:F4:E4:A9 Authority key identifier: A5:4D:D5:74:FE:C7:2D:43:94:C2:55:36:BA:85:32:C9:D3:8F:40:BA Certificate issuer: /CN=a54dd574fec72d4394c25536ba8532c9d38f40ba Certificate serial: 019C4321E4FB417055E01434CB03BC891A48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pU3VdP7HLUOUwlU2uoUyydOPQLo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft Manifest number: 0B25 Signing time: Mon 09 Feb 2026 16:00:20 +0000 Manifest this update: Mon 09 Feb 2026 16:00:20 +0000 Manifest next update: Tue 10 Feb 2026 16:00:20 +0000 Files and hashes: 1: pU3VdP7HLUOUwlU2uoUyydOPQLo.crl (hash: i684k6gjP1zmYe4vfQwKFKl/Wspfr3mxZc1MbLSxf84=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft rsync://rpki.ripe.net/repository/DEFAULT/pU3VdP7HLUOUwlU2uoUyydOPQLo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:e4:fb:41:70:55:e0:14:34:cb:03:bc:89:1a:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a54dd574fec72d4394c25536ba8532c9d38f40ba Validity Not Before: Feb 9 16:00:20 2026 GMT Not After : Feb 10 16:00:20 2026 GMT Subject: CN=7bffc03dbf7c77cd94e4fe75389c8711a5f4e4a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9b:eb:a0:b2:35:da:e9:22:24:e7:71:17:e0: 87:84:ac:91:5d:1f:12:86:0a:5c:38:f1:a1:ea:db: 89:12:4e:a8:46:4b:1c:30:22:88:a2:df:f1:d2:77: 2d:3b:ef:e9:a3:18:b5:d7:1f:a3:9d:94:e6:f5:f4: 7e:1d:47:14:9e:ff:f0:8d:b0:64:9f:f9:99:1a:ba: 29:61:43:bd:c7:07:30:b9:a9:28:6e:67:d3:81:d8: 11:e0:10:8a:3d:13:01:4b:7a:f9:d3:83:f8:00:2c: bb:0a:ad:84:15:fc:c4:dc:ae:cd:9c:ee:9e:0b:c7: 1b:49:a7:ca:6e:e7:51:96:41:f1:79:11:ee:a7:19: 70:22:aa:4d:21:23:ff:d5:24:cd:14:f6:9c:43:00: 67:93:16:cb:50:9f:0d:03:2c:04:f6:f2:76:f9:30: b2:68:9e:1b:dc:51:ac:6a:bc:43:b6:03:c6:cf:d0: d8:4d:0c:01:3a:e7:ba:ce:06:b9:23:9d:60:27:d4: 81:ba:5e:1a:8a:ad:c1:67:46:7b:45:9d:b7:2b:96: eb:ae:79:a4:34:f2:7a:fa:8f:1e:e3:43:37:25:ef: 6d:6f:f4:07:df:27:98:3a:42:0d:42:eb:a6:f7:57: af:77:46:ba:f2:29:f2:a3:42:9d:68:c6:df:d0:61: 2a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:FF:C0:3D:BF:7C:77:CD:94:E4:FE:75:38:9C:87:11:A5:F4:E4:A9 X509v3 Authority Key Identifier: keyid:A5:4D:D5:74:FE:C7:2D:43:94:C2:55:36:BA:85:32:C9:D3:8F:40:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pU3VdP7HLUOUwlU2uoUyydOPQLo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:e2:b3:27:d6:a1:a9:35:02:83:19:c6:cd:0c:3b:f5:ad:d6: df:b8:1a:26:1a:69:83:f0:7b:f7:97:00:a3:ac:65:e4:cc:da: 2e:92:c7:82:80:f5:7e:03:1d:af:11:02:5a:37:3d:f9:51:b3: 37:ed:60:c1:af:65:a7:b7:f8:df:b9:30:2b:5f:e8:95:ca:10: cd:93:e5:2c:06:46:68:e8:f0:b0:50:f3:99:70:1d:3f:ec:34: 2a:12:0d:34:35:cc:51:da:32:65:c7:66:ca:7d:44:9a:af:d4: f7:e3:6d:b9:56:60:96:e2:37:0c:27:4f:d7:9e:6b:75:ae:63: 95:71:94:f1:24:49:ee:00:d7:0d:0a:e7:21:a8:e0:7e:2d:9d: 2b:ee:60:0d:01:3e:af:60:80:1f:39:cb:d8:74:1d:81:e0:31: 9f:db:c8:bc:74:c9:72:4f:ae:7a:72:c1:b9:8f:e3:0e:ac:bf: 85:a4:3b:d5:c1:b5:ce:b6:22:75:d1:fa:70:79:33:e7:55:cc: 67:de:fd:a0:9c:fb:5c:a5:0d:f3:54:2b:da:aa:e3:72:72:76: b5:5e:2c:1d:50:6c:eb:a4:56:6b:e5:60:05:1c:82:c7:b3:f4: eb:74:f2:7c:ff:cb:f0:5f:42:d4:2b:30:fe:a5:94:71:be:de: c0:3d:99:d8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIeT7QXBV4BQ0ywO8iRpIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1NGRkNTc0ZmVjNzJkNDM5NGMyNTUzNmJhODUzMmM5ZDM4 ZjQwYmEwHhcNMjYwMjA5MTYwMDIwWhcNMjYwMjEwMTYwMDIwWjAzMTEwLwYDVQQD Eyg3YmZmYzAzZGJmN2M3N2NkOTRlNGZlNzUzODljODcxMWE1ZjRlNGE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu5vroLI12ukiJOdxF+CHhKyRXR8S hgpcOPGh6tuJEk6oRkscMCKIot/x0nctO+/poxi11x+jnZTm9fR+HUcUnv/wjbBk n/mZGropYUO9xwcwuakobmfTgdgR4BCKPRMBS3r504P4ACy7Cq2EFfzE3K7NnO6e C8cbSafKbudRlkHxeRHupxlwIqpNISP/1STNFPacQwBnkxbLUJ8NAywE9vJ2+TCy aJ4b3FGsarxDtgPGz9DYTQwBOue6zga5I51gJ9SBul4aiq3BZ0Z7RZ23K5brrnmk NPJ6+o8e40M3Je9tb/QH3yeYOkINQuum91evd0a68inyo0KdaMbf0GEqvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHv/wD2/fHfNlOT+dTichxGl9OSpMB8GA1UdIwQY MBaAFKVN1XT+xy1DlMJVNrqFMsnTj0C6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFUzVmRQN0hMVU9Vd2xVMnVvVXl5ZE9QUUxvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS82OTM0YjUtOTZjMC00NzZkLWJmNTQt MjM3ZjY1YjY0MzI3LzEvcFUzVmRQN0hMVU9Vd2xVMnVvVXl5ZE9QUUxvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS82OTM0YjUtOTZjMC00NzZkLWJmNTQtMjM3ZjY1YjY0MzI3 LzEvcFUzVmRQN0hMVU9Vd2xVMnVvVXl5ZE9QUUxvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACuKzJ9ah qTUCgxnGzQw79a3W37gaJhppg/B795cAo6xl5MzaLpLHgoD1fgMdrxECWjc9+VGz N+1gwa9lp7f437kwK1/olcoQzZPlLAZGaOjwsFDzmXAdP+w0KhINNDXMUdoyZcdm yn1Emq/U9+NtuVZgluI3DCdP155rda5jlXGU8SRJ7gDXDQrnIajgfi2dK+5gDQE+ r2CAHznL2HQdgeAxn9vIvHTJck+uenLBuY/jDqy/haQ71cG1zrYiddH6cHkz51XM Z979oJz7XKUN81Qr2qrjcnJ2tV4sHVBs66RWa+VgBRyCx7P063TyfP/L8F9C1Csw /qWUcb7ewD2Z2A== -----END CERTIFICATE-----Generated at Mon Feb 9 23:52:51 2026 by rpki-client