This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/f9d39d-0c3e-48c7-ab0e-1134fdeb45b2/1/0uJA6f1hIN658GzBmZoKUinhu_0.mft File: 0uJA6f1hIN658GzBmZoKUinhu_0.mft (raw, json) Hash identifier: gt0XtF36IqsQYSroUMKMaSVaczlWpzTeGkh7Jr1GLfI= Subject key identifier: 4C:77:F2:4D:46:5D:20:B5:99:79:6F:D5:BE:3A:FA:F0:59:7F:54:EB Authority key identifier: D2:E2:40:E9:FD:61:20:DE:B9:F0:6C:C1:99:9A:0A:52:29:E1:BB:FD Certificate issuer: /CN=d2e240e9fd6120deb9f06cc1999a0a5229e1bbfd Certificate serial: 019C40FD5E3CCC607F7597D3C3C06339B480 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0uJA6f1hIN658GzBmZoKUinhu_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/f9d39d-0c3e-48c7-ab0e-1134fdeb45b2/1/0uJA6f1hIN658GzBmZoKUinhu_0.mft Manifest number: 5B Signing time: Mon 09 Feb 2026 06:01:12 +0000 Manifest this update: Mon 09 Feb 2026 06:01:12 +0000 Manifest next update: Tue 10 Feb 2026 06:01:12 +0000 Files and hashes: 1: 0uJA6f1hIN658GzBmZoKUinhu_0.crl (hash: Ai83nOQw/tLDIZF1mPlVU5dCdrcCB1Cg3zNQNKrAXQo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/f9d39d-0c3e-48c7-ab0e-1134fdeb45b2/1/0uJA6f1hIN658GzBmZoKUinhu_0.crl rsync://rpki.ripe.net/repository/DEFAULT/ec/f9d39d-0c3e-48c7-ab0e-1134fdeb45b2/1/0uJA6f1hIN658GzBmZoKUinhu_0.mft rsync://rpki.ripe.net/repository/DEFAULT/0uJA6f1hIN658GzBmZoKUinhu_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fd:5e:3c:cc:60:7f:75:97:d3:c3:c0:63:39:b4:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2e240e9fd6120deb9f06cc1999a0a5229e1bbfd Validity Not Before: Feb 9 06:01:12 2026 GMT Not After : Feb 10 06:01:12 2026 GMT Subject: CN=4c77f24d465d20b599796fd5be3afaf0597f54eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:28:ac:6e:62:9b:ec:46:43:c5:29:2e:96:22: 01:77:21:25:28:a6:b9:1d:20:d8:47:d5:0e:98:eb: 45:25:13:53:20:02:11:14:72:8e:00:03:e1:4b:76: 38:d9:90:87:ee:69:f7:52:48:e0:86:64:d5:c8:b9: 2b:10:0b:ce:a8:76:4a:86:88:40:65:8e:a6:11:99: f9:7b:e7:9d:32:c6:ff:65:08:63:40:57:ea:de:16: 88:25:be:53:b5:f8:00:3a:dc:ee:0a:9c:ec:6a:85: b4:fb:d3:42:58:3d:d1:89:c8:60:b1:b6:cf:85:6b: 48:28:ef:3f:b5:70:86:f1:b4:51:26:49:a8:df:f3: 88:e5:48:b2:1e:8f:d2:25:ed:12:a6:c1:23:d1:cc: 31:8d:31:fc:3a:9e:81:6f:c2:54:7f:1f:59:61:1a: 5e:97:32:b1:14:c6:1d:49:74:8c:45:85:5c:02:12: ca:22:5b:92:84:d7:02:50:2c:02:8d:b2:40:73:5f: 8a:6f:28:49:90:61:55:84:b2:a2:e3:3b:97:d5:ea: 23:a4:a4:20:32:fe:7a:99:8e:18:f4:0c:cd:f9:b0: d4:9d:e3:67:a5:b8:88:40:fe:cc:67:82:2c:77:fa: 5b:77:8e:0a:e1:ac:73:8f:92:5b:45:7f:d0:4a:97: ce:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:77:F2:4D:46:5D:20:B5:99:79:6F:D5:BE:3A:FA:F0:59:7F:54:EB X509v3 Authority Key Identifier: keyid:D2:E2:40:E9:FD:61:20:DE:B9:F0:6C:C1:99:9A:0A:52:29:E1:BB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0uJA6f1hIN658GzBmZoKUinhu_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/f9d39d-0c3e-48c7-ab0e-1134fdeb45b2/1/0uJA6f1hIN658GzBmZoKUinhu_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/f9d39d-0c3e-48c7-ab0e-1134fdeb45b2/1/0uJA6f1hIN658GzBmZoKUinhu_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:18:8b:d9:f5:ad:b1:76:75:9b:71:05:b3:d6:22:76:c7:57: e8:07:2a:08:1e:58:6b:05:19:22:3d:a4:57:ab:25:0c:85:c7: 22:b3:8b:d2:8d:1f:c3:70:26:c2:d8:ec:1f:fa:a0:9f:80:bd: e9:10:88:8b:71:00:5f:e3:e8:c3:37:d9:35:e6:1b:47:c2:da: 7b:7f:9f:b9:e7:f4:22:8e:ec:5d:32:57:d5:17:f2:6d:21:1d: 51:41:7b:ca:cc:a6:29:c8:b2:d6:cf:55:38:fa:68:85:b2:46: 1e:d0:8c:5f:73:15:d1:10:68:5e:15:12:81:c5:6a:20:2f:b6: c8:4c:d0:b6:a8:80:25:ed:69:07:db:13:77:2c:e5:6c:54:9a: 32:5e:c9:13:bc:cf:6a:8e:56:90:0a:9e:67:37:02:96:2c:18: 51:21:da:54:74:6b:03:7e:ea:b9:33:69:51:ef:b0:bb:e0:c6: 09:84:0e:b8:66:d1:71:10:6c:31:3a:7d:90:9d:01:bf:67:b4: dd:d3:5f:23:dc:31:0a:29:7a:86:7a:b5:e7:79:09:01:c0:48: 5d:16:16:13:9f:cb:64:b6:fc:3c:6c:1f:f7:c5:62:41:59:2c: 34:69:74:13:7c:b5:d4:a8:cd:9b:c7:7a:50:92:23:8e:96:0b: 89:55:92:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/V48zGB/dZfTw8BjObSAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyZTI0MGU5ZmQ2MTIwZGViOWYwNmNjMTk5OWEwYTUyMjll MWJiZmQwHhcNMjYwMjA5MDYwMTEyWhcNMjYwMjEwMDYwMTEyWjAzMTEwLwYDVQQD Eyg0Yzc3ZjI0ZDQ2NWQyMGI1OTk3OTZmZDViZTNhZmFmMDU5N2Y1NGViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCisbmKb7EZDxSkuliIBdyElKKa5 HSDYR9UOmOtFJRNTIAIRFHKOAAPhS3Y42ZCH7mn3UkjghmTVyLkrEAvOqHZKhohA ZY6mEZn5e+edMsb/ZQhjQFfq3haIJb5TtfgAOtzuCpzsaoW0+9NCWD3RichgsbbP hWtIKO8/tXCG8bRRJkmo3/OI5UiyHo/SJe0SpsEj0cwxjTH8Op6Bb8JUfx9ZYRpe lzKxFMYdSXSMRYVcAhLKIluShNcCUCwCjbJAc1+KbyhJkGFVhLKi4zuX1eojpKQg Mv56mY4Y9AzN+bDUneNnpbiIQP7MZ4Isd/pbd44K4axzj5JbRX/QSpfOawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEx38k1GXSC1mXlv1b46+vBZf1TrMB8GA1UdIwQY MBaAFNLiQOn9YSDeufBswZmaClIp4bv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHVKQTZmMWhJTjY1OEd6Qm1ab0tVaW5odV8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy9mOWQzOWQtMGMzZS00OGM3LWFiMGUt MTEzNGZkZWI0NWIyLzEvMHVKQTZmMWhJTjY1OEd6Qm1ab0tVaW5odV8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYy9mOWQzOWQtMGMzZS00OGM3LWFiMGUtMTEzNGZkZWI0NWIy LzEvMHVKQTZmMWhJTjY1OEd6Qm1ab0tVaW5odV8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARhiL2fWt sXZ1m3EFs9YidsdX6AcqCB5YawUZIj2kV6slDIXHIrOL0o0fw3AmwtjsH/qgn4C9 6RCIi3EAX+PowzfZNeYbR8Lae3+fuef0Io7sXTJX1RfybSEdUUF7ysymKciy1s9V OPpohbJGHtCMX3MV0RBoXhUSgcVqIC+2yEzQtqiAJe1pB9sTdyzlbFSaMl7JE7zP ao5WkAqeZzcCliwYUSHaVHRrA37quTNpUe+wu+DGCYQOuGbRcRBsMTp9kJ0Bv2e0 3dNfI9wxCil6hnq153kJAcBIXRYWE5/LZLb8PGwf98ViQVksNGl0E3y11KjNm8d6 UJIjjpYLiVWSFA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:48:04 2026 by rpki-client