This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft File: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft (raw, json) Hash identifier: hQ1m7Xod5ZGQAw72MoL+evcF3aejdOqt/L66XxGSn6k= Subject key identifier: 83:4A:DD:CD:38:8C:3F:AB:12:B0:BC:55:DD:8D:4B:39:12:0E:63:36 Authority key identifier: 53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6 Certificate issuer: /CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6 Certificate serial: 019C41D8535EBF514C27CD611BEDBA45A169 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft Manifest number: 1532 Signing time: Mon 09 Feb 2026 10:00:21 +0000 Manifest this update: Mon 09 Feb 2026 10:00:21 +0000 Manifest next update: Tue 10 Feb 2026 10:00:21 +0000 Files and hashes: 1: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl (hash: tt0CQAIDYyuox15q7vmMwFTg5QzQc30n+9j4ojDOb78=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:53:5e:bf:51:4c:27:cd:61:1b:ed:ba:45:a1:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6 Validity Not Before: Feb 9 10:00:21 2026 GMT Not After : Feb 10 10:00:21 2026 GMT Subject: CN=834addcd388c3fab12b0bc55dd8d4b39120e6336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a4:03:91:58:79:96:5f:3e:cc:c2:1f:cd:32: 03:ae:b3:c3:53:0b:0a:61:bb:68:b4:dc:a4:e6:45: 7c:21:ea:2c:2c:60:df:ac:3d:20:0e:d5:e7:ab:97: 98:b0:44:99:a4:ba:b1:a6:7c:2d:f8:6f:f8:fa:f7: f2:82:b1:82:5c:28:9a:1e:95:d0:2c:20:8a:e6:d4: 68:41:5a:2f:48:8d:68:8c:2d:3a:86:65:1a:a4:cf: 89:84:aa:24:90:b0:e1:40:89:11:8b:11:14:1b:6c: e7:10:38:5e:3b:dc:51:e7:ce:34:2f:f8:bb:42:8b: dd:51:25:7e:c7:0b:de:e4:cf:33:56:b7:e9:34:46: b9:f8:a8:ae:01:2a:99:bd:30:ac:1a:82:12:c2:dd: 03:fc:d9:11:cd:9e:db:ab:32:94:f2:38:b0:ad:7f: 0c:b1:c9:4d:58:ea:be:5b:99:31:6d:f2:06:b5:18: 00:6f:c1:67:58:86:33:e6:4e:56:48:9a:9d:87:63: 93:a3:3d:fb:c1:ae:61:b8:08:e8:ea:ba:35:f0:18: 39:5f:39:f8:c2:5b:56:d9:47:1e:a1:fc:a8:e3:10: 84:3a:81:12:db:9c:96:0d:5f:db:cb:7c:7a:c6:55: ea:31:77:29:9a:ed:05:b9:dc:b4:96:4b:a9:03:55: d3:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:4A:DD:CD:38:8C:3F:AB:12:B0:BC:55:DD:8D:4B:39:12:0E:63:36 X509v3 Authority Key Identifier: keyid:53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:1c:76:17:52:20:a9:ee:d3:dd:6b:74:b1:0e:ee:3b:7b:ba: 24:e3:9c:00:c6:13:30:24:31:d6:91:d1:72:3a:f0:f0:32:4a: 49:56:d6:9b:05:e9:ea:6b:37:86:fa:1b:b2:58:ac:ab:61:49: 4f:94:9f:9c:a7:8d:9f:69:73:f1:b6:9f:d0:3b:31:7c:c3:0f: 02:33:ed:ec:32:d8:0e:78:2f:fb:14:89:2c:02:56:db:b9:2b: f5:b9:09:a6:5e:ab:9b:29:5d:2f:7f:a0:7a:bc:3a:d7:7f:ec: 24:c2:3d:76:f9:df:75:1c:96:17:23:fe:23:f3:93:61:8e:26: b7:27:af:70:5d:6f:bb:0f:72:ee:da:b3:41:b8:4c:7d:91:0a: 40:07:3a:a8:fe:3a:b3:2f:f1:23:c8:4e:ca:53:8f:a3:3d:96: b6:7a:e9:71:56:dd:6f:2d:53:47:ed:3e:8a:b2:5f:30:9f:86: 23:b0:81:36:aa:25:8b:a7:ee:d0:9c:15:57:32:08:ab:41:fa: 1b:4c:c1:c9:ec:f9:35:4e:c1:5b:69:b1:cb:e7:6d:c3:de:15: 54:70:75:e1:f9:a0:91:de:c1:d4:7f:97:d5:8f:1e:0a:43:c7: 05:db:85:3b:1f:8e:8b:ef:e2:1f:67:4d:64:4e:47:ef:de:0e: 1b:bb:a5:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2FNev1FMJ81hG+26RaFpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYTNjNGVlNjcwZGNlYTY4YjRkNzllYTZjMzE4NWZlMDI5 ZDk3YjYwHhcNMjYwMjA5MTAwMDIxWhcNMjYwMjEwMTAwMDIxWjAzMTEwLwYDVQQD Eyg4MzRhZGRjZDM4OGMzZmFiMTJiMGJjNTVkZDhkNGIzOTEyMGU2MzM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsaQDkVh5ll8+zMIfzTIDrrPDUwsK YbtotNyk5kV8IeosLGDfrD0gDtXnq5eYsESZpLqxpnwt+G/4+vfygrGCXCiaHpXQ LCCK5tRoQVovSI1ojC06hmUapM+JhKokkLDhQIkRixEUG2znEDheO9xR5840L/i7 QovdUSV+xwve5M8zVrfpNEa5+KiuASqZvTCsGoISwt0D/NkRzZ7bqzKU8jiwrX8M sclNWOq+W5kxbfIGtRgAb8FnWIYz5k5WSJqdh2OToz37wa5huAjo6ro18Bg5Xzn4 wltW2Uceofyo4xCEOoES25yWDV/by3x6xlXqMXcpmu0Fudy0lkupA1XTkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFINK3c04jD+rErC8Vd2NSzkSDmM2MB8GA1UdIwQY MBaAFFOjxO5nDc6mi0156mwxhf4CnZe2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTZQRTdtY056cWFMVFhucWJER0ZfZ0tkbDdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9mYTRlMzAtZmQ2NC00ODZhLWJiNjIt MDQ0YzMyNTMxYWQzLzEvVTZQRTdtY056cWFMVFhucWJER0ZfZ0tkbDdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy9mYTRlMzAtZmQ2NC00ODZhLWJiNjItMDQ0YzMyNTMxYWQz LzEvVTZQRTdtY056cWFMVFhucWJER0ZfZ0tkbDdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgxx2F1Ig qe7T3Wt0sQ7uO3u6JOOcAMYTMCQx1pHRcjrw8DJKSVbWmwXp6ms3hvobslisq2FJ T5SfnKeNn2lz8baf0DsxfMMPAjPt7DLYDngv+xSJLAJW27kr9bkJpl6rmyldL3+g erw613/sJMI9dvnfdRyWFyP+I/OTYY4mtyevcF1vuw9y7tqzQbhMfZEKQAc6qP46 sy/xI8hOylOPoz2WtnrpcVbdby1TR+0+irJfMJ+GI7CBNqoli6fu0JwVVzIIq0H6 G0zByez5NU7BW2mxy+dtw94VVHB14fmgkd7B1H+X1Y8eCkPHBduFOx+Oi+/iH2dN ZE5H794OG7ulwQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:42 2026 by rpki-client