This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.mft File: uglQnQRuXLar5boZqxurpUPTffg.mft (raw, json) Hash identifier: r7N8olD8aaN2ByCzKSVGYaDhoPfm2Z3rHf73mume6co= Subject key identifier: 57:C0:65:DD:EB:D6:3B:52:DE:75:C0:4E:86:4A:3E:49:E5:5B:0D:BD Authority key identifier: BA:09:50:9D:04:6E:5C:B6:AB:E5:BA:19:AB:1B:AB:A5:43:D3:7D:F8 Certificate issuer: /CN=ba09509d046e5cb6abe5ba19ab1baba543d37df8 Certificate serial: 019C4321D0785222549479EB456F154777E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uglQnQRuXLar5boZqxurpUPTffg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.mft Manifest number: 0B95 Signing time: Mon 09 Feb 2026 16:00:15 +0000 Manifest this update: Mon 09 Feb 2026 16:00:15 +0000 Manifest next update: Tue 10 Feb 2026 16:00:15 +0000 Files and hashes: 1: uglQnQRuXLar5boZqxurpUPTffg.crl (hash: AhZKTNJiNNhW7BsCshW2xMaEUKkB6nMQK30IL8PJTNg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.mft rsync://rpki.ripe.net/repository/DEFAULT/uglQnQRuXLar5boZqxurpUPTffg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:d0:78:52:22:54:94:79:eb:45:6f:15:47:77:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba09509d046e5cb6abe5ba19ab1baba543d37df8 Validity Not Before: Feb 9 16:00:15 2026 GMT Not After : Feb 10 16:00:15 2026 GMT Subject: CN=57c065ddebd63b52de75c04e864a3e49e55b0dbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:65:cc:71:45:3d:cb:9d:2e:72:48:f7:f3:d9: 0d:21:a3:8d:28:21:61:66:54:4d:33:c3:e2:6c:d5: 08:7b:85:69:e8:a2:89:73:08:d5:22:2e:90:b5:fe: 7c:98:65:14:93:4c:f2:8d:fd:92:a6:b2:26:72:00: 3a:30:3d:9b:aa:54:53:f2:e1:11:e0:3e:1c:e0:a9: 46:2b:26:e2:19:5e:d7:cd:6e:ef:ee:83:e4:1b:e7: 44:26:70:e9:f9:fe:e9:87:9c:e4:a4:12:54:26:f7: 38:7c:76:3b:a6:00:27:27:cb:e6:03:ae:58:8b:1e: 03:0c:3e:8c:13:d6:79:4f:3c:d1:00:f1:8e:f1:8d: b6:b2:18:f7:5e:c5:34:4b:5c:c1:ca:70:84:61:69: c4:37:b8:c0:c1:13:18:21:a2:45:59:5b:b6:d4:cf: 95:1e:34:9d:9f:56:45:1b:87:20:22:bf:2d:ce:e1: fa:91:c2:7d:c9:50:6a:20:13:94:ea:85:fb:cc:68: 9c:0e:49:21:db:47:56:74:a5:ce:12:57:1c:b8:7a: 3e:db:51:ed:b3:4a:96:80:58:fe:1c:35:47:1c:96: 56:29:26:df:80:1a:d8:d5:f8:ea:62:70:fc:01:23: 3f:6a:48:91:87:de:d9:b4:b3:b9:21:05:e5:e7:56: 2f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:C0:65:DD:EB:D6:3B:52:DE:75:C0:4E:86:4A:3E:49:E5:5B:0D:BD X509v3 Authority Key Identifier: keyid:BA:09:50:9D:04:6E:5C:B6:AB:E5:BA:19:AB:1B:AB:A5:43:D3:7D:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uglQnQRuXLar5boZqxurpUPTffg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:f9:da:cb:fc:f6:84:3f:b2:60:b4:3e:87:9f:c7:65:f4:a4: 9e:4f:f6:94:be:29:45:cf:4a:6b:c2:e1:80:0c:3f:14:46:71: 60:1d:5d:91:6a:1d:7c:14:21:75:84:92:d8:80:3c:17:ab:a7: c5:8f:99:45:38:ea:8a:e8:bb:d8:e3:52:75:4c:90:07:f7:9b: ee:2d:32:a9:5a:de:52:53:b6:f5:af:88:2d:ee:b2:dc:b7:bc: 82:6b:f8:df:31:c3:48:40:ad:47:b3:ef:27:05:0e:d2:d6:85: a3:14:72:77:8e:de:64:29:8f:c9:2c:3e:e7:61:f0:b1:6c:cd: 71:de:7a:09:0d:ce:3b:43:f1:67:27:21:20:21:4f:9a:22:37: 7d:48:e4:28:1f:36:82:3e:2e:20:c4:b0:4f:9f:8f:c9:87:12: 40:56:c4:67:f3:96:c8:6b:d2:3a:49:7c:f9:75:f6:44:67:94: 21:39:bf:08:2b:b9:32:c2:c5:cf:44:ef:17:c8:34:90:c8:d0: 21:b4:51:f2:09:a1:dc:fa:93:6d:fe:ee:b5:95:64:da:b5:79: 09:91:04:55:d5:b1:1a:93:8e:c3:55:f8:20:fd:24:d4:98:ba: 3f:f2:92:66:fd:4b:6a:34:9e:9d:f4:92:5d:df:7a:33:b4:47: e0:f8:a0:72 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIdB4UiJUlHnrRW8VR3fhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhMDk1MDlkMDQ2ZTVjYjZhYmU1YmExOWFiMWJhYmE1NDNk MzdkZjgwHhcNMjYwMjA5MTYwMDE1WhcNMjYwMjEwMTYwMDE1WjAzMTEwLwYDVQQD Eyg1N2MwNjVkZGViZDYzYjUyZGU3NWMwNGU4NjRhM2U0OWU1NWIwZGJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmXMcUU9y50uckj389kNIaONKCFh ZlRNM8PibNUIe4Vp6KKJcwjVIi6Qtf58mGUUk0zyjf2SprImcgA6MD2bqlRT8uER 4D4c4KlGKybiGV7XzW7v7oPkG+dEJnDp+f7ph5zkpBJUJvc4fHY7pgAnJ8vmA65Y ix4DDD6ME9Z5TzzRAPGO8Y22shj3XsU0S1zBynCEYWnEN7jAwRMYIaJFWVu21M+V HjSdn1ZFG4cgIr8tzuH6kcJ9yVBqIBOU6oX7zGicDkkh20dWdKXOElccuHo+21Ht s0qWgFj+HDVHHJZWKSbfgBrY1fjqYnD8ASM/akiRh97ZtLO5IQXl51YvkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFfAZd3r1jtS3nXAToZKPknlWw29MB8GA1UdIwQY MBaAFLoJUJ0Ebly2q+W6Gasbq6VD0334MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWdsUW5RUnVYTGFyNWJvWnF4dXJwVVBUZmZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC85MmRmYTYtNThmNS00ZmJmLWFmZTQt ZDdlNDIyMDBhNDllLzEvdWdsUW5RUnVYTGFyNWJvWnF4dXJwVVBUZmZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC85MmRmYTYtNThmNS00ZmJmLWFmZTQtZDdlNDIyMDBhNDll LzEvdWdsUW5RUnVYTGFyNWJvWnF4dXJwVVBUZmZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJvnay/z2 hD+yYLQ+h5/HZfSknk/2lL4pRc9Ka8LhgAw/FEZxYB1dkWodfBQhdYSS2IA8F6un xY+ZRTjqiui72ONSdUyQB/eb7i0yqVreUlO29a+ILe6y3Le8gmv43zHDSECtR7Pv JwUO0taFoxRyd47eZCmPySw+52HwsWzNcd56CQ3OO0PxZychICFPmiI3fUjkKB82 gj4uIMSwT5+PyYcSQFbEZ/OWyGvSOkl8+XX2RGeUITm/CCu5MsLFz0TvF8g0kMjQ IbRR8gmh3PqTbf7utZVk2rV5CZEEVdWxGpOOw1X4IP0k1Ji6P/KSZv1LajSenfSS Xd96M7RH4Pigcg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:41:55 2026 by rpki-client