This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft File: USd7w4wS4ELt31bX519QVjxL0ic.mft (raw, json) Hash identifier: NqRn0hdChvLdbjhz5MRRi5rZvNxyz8toxM4N6k7Bv9c= Subject key identifier: CD:CA:2D:0B:3A:A0:1A:96:B8:B1:14:CB:0B:FF:C9:17:6C:D1:19:48 Authority key identifier: 51:27:7B:C3:8C:12:E0:42:ED:DF:56:D7:E7:5F:50:56:3C:4B:D2:27 Certificate issuer: /CN=51277bc38c12e042eddf56d7e75f50563c4bd227 Certificate serial: 019C43227B5A802D249F9D08777A80DE4E22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USd7w4wS4ELt31bX519QVjxL0ic.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 16:00:59 +0000 Manifest this update: Mon 09 Feb 2026 16:00:59 +0000 Manifest next update: Tue 10 Feb 2026 16:00:59 +0000 Files and hashes: 1: USd7w4wS4ELt31bX519QVjxL0ic.crl (hash: BewQfQnXk5TieAADwM7H/RtpSZyiczjGxQJEhlDdqD0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.crl rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft rsync://rpki.ripe.net/repository/DEFAULT/USd7w4wS4ELt31bX519QVjxL0ic.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:7b:5a:80:2d:24:9f:9d:08:77:7a:80:de:4e:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51277bc38c12e042eddf56d7e75f50563c4bd227 Validity Not Before: Feb 9 16:00:59 2026 GMT Not After : Feb 10 16:00:59 2026 GMT Subject: CN=cdca2d0b3aa01a96b8b114cb0bffc9176cd11948 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5d:c6:6e:d0:fe:91:1e:ae:96:7e:47:c3:f4: 1d:43:7d:88:68:0e:19:50:48:1e:27:cb:23:fd:2c: 98:a0:e6:76:a9:60:ac:a5:09:25:3a:76:d0:a3:2a: 45:66:41:03:09:c8:6e:c5:43:ba:db:da:46:53:72: bb:84:6a:36:8b:89:cc:61:ba:c2:49:4b:bd:0b:76: 2c:b0:cf:61:37:de:f8:01:ef:c3:75:d2:78:ff:91: 38:a9:82:b8:1a:60:4e:a9:ab:da:11:a3:f6:8a:5a: ad:d8:00:a3:fd:83:29:0b:b2:a0:c6:ea:4d:f3:c1: ce:a6:3c:dc:bc:7d:3c:27:e7:11:43:f7:6f:05:69: c7:11:35:fc:e4:a9:88:7e:72:f9:0e:56:a7:d6:34: fd:72:92:5c:8e:7e:5c:27:1c:54:34:66:07:a7:b2: 62:c4:9f:2d:c5:f7:48:ea:5c:73:a0:61:ba:5c:7b: 1c:c1:13:32:d0:8d:39:3e:ac:ec:1f:68:4c:58:f7: 7a:f9:34:22:fb:71:5e:40:70:f4:4a:37:ec:97:a9: 08:6e:1b:4e:61:a9:f6:f5:0d:20:36:c9:3f:2e:b8: 80:39:ee:6b:e8:4b:1d:51:01:60:48:1c:27:f2:a3: 62:a3:9f:29:9b:61:b1:6c:d6:0e:e3:3b:f0:45:e5: da:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:CA:2D:0B:3A:A0:1A:96:B8:B1:14:CB:0B:FF:C9:17:6C:D1:19:48 X509v3 Authority Key Identifier: keyid:51:27:7B:C3:8C:12:E0:42:ED:DF:56:D7:E7:5F:50:56:3C:4B:D2:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USd7w4wS4ELt31bX519QVjxL0ic.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:9f:6f:f4:4a:e0:34:d8:2e:ab:75:5b:73:c8:58:be:d3:60: 8a:47:e4:57:6f:3d:9e:1c:d3:fc:3b:52:ea:65:71:19:a1:26: bc:60:c4:4f:33:37:8f:b0:79:ac:0b:37:a5:11:4e:49:46:7c: bc:de:95:77:4b:50:a8:fa:68:03:5b:4b:4d:d3:d7:b7:b0:9f: 88:2b:e5:dd:1b:aa:24:66:89:d7:2d:e6:14:01:c8:7b:3c:07: 8a:03:d3:2d:3a:17:6c:6f:2d:37:44:62:ed:5f:0c:fc:02:93: 18:25:4d:99:1b:34:8d:63:f4:01:c4:e2:ed:eb:cb:cc:29:09: 79:a1:c0:31:3c:0f:ab:1e:67:93:eb:22:45:58:75:5d:16:84: c0:01:59:59:68:ae:94:1b:5c:52:9e:09:9b:34:b7:08:fb:56: 55:21:bb:ec:c0:2c:88:c4:76:b5:dc:2f:72:7b:4a:4e:0d:f8: ea:78:ea:36:4c:3a:e5:2d:f4:5e:1c:22:00:74:74:fd:0b:3d: 12:00:22:13:75:ea:88:00:37:f2:c6:80:52:b9:19:6f:2e:47: 69:f5:72:32:e1:1a:a0:f2:40:f3:b9:da:79:e3:25:e8:58:27: 22:11:11:ec:fd:41:29:98:6e:6f:a8:e3:1f:57:70:56:4d:bd: 9b:93:a6:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIntagC0kn50Id3qA3k4iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxMjc3YmMzOGMxMmUwNDJlZGRmNTZkN2U3NWY1MDU2M2M0 YmQyMjcwHhcNMjYwMjA5MTYwMDU5WhcNMjYwMjEwMTYwMDU5WjAzMTEwLwYDVQQD EyhjZGNhMmQwYjNhYTAxYTk2YjhiMTE0Y2IwYmZmYzkxNzZjZDExOTQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyV3GbtD+kR6uln5Hw/QdQ32IaA4Z UEgeJ8sj/SyYoOZ2qWCspQklOnbQoypFZkEDCchuxUO629pGU3K7hGo2i4nMYbrC SUu9C3YssM9hN974Ae/DddJ4/5E4qYK4GmBOqavaEaP2ilqt2ACj/YMpC7KgxupN 88HOpjzcvH08J+cRQ/dvBWnHETX85KmIfnL5Dlan1jT9cpJcjn5cJxxUNGYHp7Ji xJ8txfdI6lxzoGG6XHscwRMy0I05PqzsH2hMWPd6+TQi+3FeQHD0Sjfsl6kIbhtO Yan29Q0gNsk/LriAOe5r6EsdUQFgSBwn8qNio58pm2GxbNYO4zvwReXaHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM3KLQs6oBqWuLEUywv/yRds0RlIMB8GA1UdIwQY MBaAFFEne8OMEuBC7d9W1+dfUFY8S9InMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVVNkN3c0d1M0RUx0MzFiWDUxOVFWanhMMGljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS8zYmExNjAtZTk0NS00ZDU2LWIxMjkt NTJjMTk3NThmYTE1LzEvVVNkN3c0d1M0RUx0MzFiWDUxOVFWanhMMGljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZS8zYmExNjAtZTk0NS00ZDU2LWIxMjktNTJjMTk3NThmYTE1 LzEvVVNkN3c0d1M0RUx0MzFiWDUxOVFWanhMMGljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARZ9v9Erg NNguq3Vbc8hYvtNgikfkV289nhzT/DtS6mVxGaEmvGDETzM3j7B5rAs3pRFOSUZ8 vN6Vd0tQqPpoA1tLTdPXt7CfiCvl3RuqJGaJ1y3mFAHIezwHigPTLToXbG8tN0Ri 7V8M/AKTGCVNmRs0jWP0AcTi7evLzCkJeaHAMTwPqx5nk+siRVh1XRaEwAFZWWiu lBtcUp4JmzS3CPtWVSG77MAsiMR2tdwvcntKTg346njqNkw65S30XhwiAHR0/Qs9 EgAiE3XqiAA38saAUrkZby5HafVyMuEaoPJA87naeeMl6FgnIhER7P1BKZhub6jj H1dwVk29m5OmQQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:50 2026 by rpki-client