This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft File: uvzQImt58j3kemr95RRLGynii1w.mft (raw, json) Hash identifier: i1PLzmAFYO7dpMnikuA4pvxKuNmsm2OPO/3byixxZ7c= Subject key identifier: 22:49:D2:4F:DF:7B:74:9E:1D:74:17:40:66:A6:6A:3D:73:7B:44:AE Authority key identifier: BA:FC:D0:22:6B:79:F2:3D:E4:7A:6A:FD:E5:14:4B:1B:29:E2:8B:5C Certificate issuer: /CN=bafcd0226b79f23de47a6afde5144b1b29e28b5c Certificate serial: 019C43C6E734604E25205C84C48F7746C378 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uvzQImt58j3kemr95RRLGynii1w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft Manifest number: 09E7 Signing time: Mon 09 Feb 2026 19:00:34 +0000 Manifest this update: Mon 09 Feb 2026 19:00:34 +0000 Manifest next update: Tue 10 Feb 2026 19:00:34 +0000 Files and hashes: 1: uvzQImt58j3kemr95RRLGynii1w.crl (hash: sD/R/6mIblJRE76H0UbFJHmaPh83ERjmV5rLofO81pg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft rsync://rpki.ripe.net/repository/DEFAULT/uvzQImt58j3kemr95RRLGynii1w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:e7:34:60:4e:25:20:5c:84:c4:8f:77:46:c3:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bafcd0226b79f23de47a6afde5144b1b29e28b5c Validity Not Before: Feb 9 19:00:34 2026 GMT Not After : Feb 10 19:00:34 2026 GMT Subject: CN=2249d24fdf7b749e1d74174066a66a3d737b44ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:51:ac:ea:b4:da:ba:a5:76:6c:92:40:1e:30: 73:ef:d5:db:74:b0:68:97:70:21:65:65:6c:09:92: 4b:a7:8b:69:a1:15:aa:79:32:ab:bb:e6:aa:fc:c7: 8f:0a:36:86:f5:20:1f:95:80:1e:b8:e0:14:02:e1: 7c:be:80:4e:b8:75:97:73:05:3c:03:2e:0c:47:8a: 53:ea:21:04:83:76:1a:52:7c:7e:f0:18:81:62:aa: c4:f3:0a:b8:96:34:28:40:0d:cb:fc:28:f2:8d:74: 7e:69:fb:a1:97:98:44:ec:86:77:c4:93:01:f4:92: c6:f3:b7:19:04:57:60:76:d2:95:d4:a5:9b:7a:32: bf:56:a6:47:4e:f7:f3:90:bd:20:02:48:5b:6b:04: b3:b3:34:81:db:4e:fd:be:54:ae:b5:73:0e:6d:d9: 0d:cc:d2:43:cf:5b:d5:cb:5e:df:87:4b:b7:3d:14: d0:57:68:21:b9:06:2c:7b:ce:35:2b:d6:db:1c:ca: cf:ce:36:32:28:2a:95:28:f8:cb:87:f7:79:cb:c3: 25:45:76:89:eb:58:32:fd:61:09:c1:fb:3c:57:a7: 9d:18:e0:0c:38:52:a2:06:2c:1c:b2:ee:87:46:06: 60:8e:93:7f:ff:d6:32:9a:2f:1b:6d:81:3d:b7:71: 78:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:49:D2:4F:DF:7B:74:9E:1D:74:17:40:66:A6:6A:3D:73:7B:44:AE X509v3 Authority Key Identifier: keyid:BA:FC:D0:22:6B:79:F2:3D:E4:7A:6A:FD:E5:14:4B:1B:29:E2:8B:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uvzQImt58j3kemr95RRLGynii1w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:13:d1:08:4c:51:82:cc:e2:71:6d:70:e5:98:70:18:65:09: b7:cb:fc:cb:b1:7f:1b:24:a3:7f:be:e1:79:6a:15:c1:2e:ad: bc:5a:9e:f5:9e:bb:f3:62:69:53:ac:ea:8f:cf:bc:22:dd:74: 7e:41:13:82:6b:96:68:fb:d0:cd:ec:06:7c:81:ba:5c:2a:c6: 7f:15:a9:9b:bc:83:56:42:fe:03:0a:e5:00:73:a3:b8:72:d9: 4f:c8:ad:86:e9:91:2a:9b:a7:df:6b:6a:47:4e:b4:d3:25:5b: 71:4e:b9:c3:66:73:a0:76:02:ed:79:c9:81:9c:67:3b:e4:74: 67:65:64:85:73:b2:21:cb:aa:d4:42:9a:e0:3d:2b:75:61:69: 65:f0:14:84:01:5f:42:95:2e:98:32:50:d2:04:fe:a2:8f:3f: 1d:6d:29:03:34:8e:e0:f8:67:68:2e:2e:4c:04:0b:d5:96:70: 02:dd:44:34:2f:4b:3f:e3:07:58:04:9d:fc:73:2d:44:92:17: 73:46:09:5e:70:09:e5:02:36:04:1e:9b:a5:ac:3f:df:ce:84: d4:3b:a2:25:b5:c2:50:98:94:9e:4f:7b:58:f4:91:37:21:2c: 9b:1c:94:cb:27:5f:27:9b:5c:44:01:69:34:ae:b3:e6:f2:e9: 42:16:23:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxuc0YE4lIFyExI93RsN4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhZmNkMDIyNmI3OWYyM2RlNDdhNmFmZGU1MTQ0YjFiMjll MjhiNWMwHhcNMjYwMjA5MTkwMDM0WhcNMjYwMjEwMTkwMDM0WjAzMTEwLwYDVQQD EygyMjQ5ZDI0ZmRmN2I3NDllMWQ3NDE3NDA2NmE2NmEzZDczN2I0NGFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoFGs6rTauqV2bJJAHjBz79XbdLBo l3AhZWVsCZJLp4tpoRWqeTKru+aq/MePCjaG9SAflYAeuOAUAuF8voBOuHWXcwU8 Ay4MR4pT6iEEg3YaUnx+8BiBYqrE8wq4ljQoQA3L/CjyjXR+afuhl5hE7IZ3xJMB 9JLG87cZBFdgdtKV1KWbejK/VqZHTvfzkL0gAkhbawSzszSB2079vlSutXMObdkN zNJDz1vVy17fh0u3PRTQV2ghuQYse841K9bbHMrPzjYyKCqVKPjLh/d5y8MlRXaJ 61gy/WEJwfs8V6edGOAMOFKiBiwcsu6HRgZgjpN//9Yymi8bbYE9t3F4bwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCJJ0k/fe3SeHXQXQGamaj1ze0SuMB8GA1UdIwQY MBaAFLr80CJrefI95Hpq/eUUSxsp4otcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXZ6UUltdDU4ajNrZW1yOTVSUkxHeW5paTF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS82YTEyY2UtYWZiYy00NTgzLTk3NzMt YzE4MTM5NDdlMjMzLzEvdXZ6UUltdDU4ajNrZW1yOTVSUkxHeW5paTF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS82YTEyY2UtYWZiYy00NTgzLTk3NzMtYzE4MTM5NDdlMjMz LzEvdXZ6UUltdDU4ajNrZW1yOTVSUkxHeW5paTF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQRPRCExR gszicW1w5ZhwGGUJt8v8y7F/GySjf77heWoVwS6tvFqe9Z6782JpU6zqj8+8It10 fkETgmuWaPvQzewGfIG6XCrGfxWpm7yDVkL+AwrlAHOjuHLZT8ithumRKpun32tq R0600yVbcU65w2ZzoHYC7XnJgZxnO+R0Z2VkhXOyIcuq1EKa4D0rdWFpZfAUhAFf QpUumDJQ0gT+oo8/HW0pAzSO4PhnaC4uTAQL1ZZwAt1ENC9LP+MHWASd/HMtRJIX c0YJXnAJ5QI2BB6bpaw/386E1DuiJbXCUJiUnk97WPSRNyEsmxyUyydfJ5tcRAFp NK6z5vLpQhYjwA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:06 2026 by rpki-client