This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft File: CUSqrH8uuymBwkdj6z1gRe-9bwY.mft (raw, json) Hash identifier: TAQ8dxu21KO1vMk7MMY84c3dHGm74pnljxCSeZY6xb0= Subject key identifier: 33:08:C2:C1:61:C7:84:97:2A:AF:F7:9D:65:73:08:54:2A:C7:D0:F6 Authority key identifier: 09:44:AA:AC:7F:2E:BB:29:81:C2:47:63:EB:3D:60:45:EF:BD:6F:06 Certificate issuer: /CN=0944aaac7f2ebb2981c24763eb3d6045efbd6f06 Certificate serial: 019C43FE4023AB5C738DF1CE9F8A601115E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft Manifest number: 0E50 Signing time: Mon 09 Feb 2026 20:01:01 +0000 Manifest this update: Mon 09 Feb 2026 20:01:01 +0000 Manifest next update: Tue 10 Feb 2026 20:01:01 +0000 Files and hashes: 1: CUSqrH8uuymBwkdj6z1gRe-9bwY.crl (hash: QV/LijTy3WCiCnLV2iid8IrhY9ZhegB6sBSsw79QcbQ=) 2: zjvZq0qDo9Cqy2lJeksXnY5wlWg.roa (hash: R3vvsBnC8yjc/6l+ae3jOrD+eH9Ah/ka0B3qOkEBjzc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.crl rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:40:23:ab:5c:73:8d:f1:ce:9f:8a:60:11:15:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0944aaac7f2ebb2981c24763eb3d6045efbd6f06 Validity Not Before: Feb 9 20:01:01 2026 GMT Not After : Feb 10 20:01:01 2026 GMT Subject: CN=3308c2c161c784972aaff79d657308542ac7d0f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:e0:ad:d9:86:14:8b:1f:9f:97:8a:e3:f2:43: 8a:b4:95:08:88:37:93:fc:e4:4d:0d:37:1d:ad:62: ee:a6:38:66:0b:e3:28:69:be:b7:ba:e1:02:99:21: bf:2e:44:3d:31:de:9a:ea:ed:02:49:f3:c0:5b:79: 55:ff:e3:5f:16:d0:5c:58:d0:51:fb:32:07:03:bb: eb:a5:35:f8:37:e9:7b:f5:69:72:87:1c:98:a3:1f: a9:c2:11:ee:2b:d9:93:98:1b:6c:69:1c:61:90:a1: c9:91:47:8b:59:2d:e7:49:82:d2:01:20:c7:26:08: 56:0a:30:a3:47:d9:62:29:1c:b5:4b:a8:78:0d:c6: 58:97:96:c0:d3:72:da:5a:c1:2e:5b:33:ba:0e:92: e7:62:50:ec:8e:78:07:5d:4a:21:f7:26:0c:ff:7d: ba:59:7c:7a:67:83:ac:78:a5:f7:23:9a:ee:4a:f0: 79:89:1e:1f:e2:b4:94:a4:25:77:20:ac:22:b5:ca: 22:4f:10:96:8e:67:4d:19:9c:0d:34:c4:57:7f:a2: 8d:0d:78:a0:7d:01:35:cc:a7:f5:40:15:d1:74:d1: f9:a4:93:45:c5:eb:c9:41:2a:15:53:77:21:e8:21: 35:00:7b:7b:40:b8:88:08:1a:6b:77:f3:d5:9b:d4: d2:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:08:C2:C1:61:C7:84:97:2A:AF:F7:9D:65:73:08:54:2A:C7:D0:F6 X509v3 Authority Key Identifier: keyid:09:44:AA:AC:7F:2E:BB:29:81:C2:47:63:EB:3D:60:45:EF:BD:6F:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:68:e3:a6:05:50:81:6c:b7:00:37:ce:67:4c:9c:73:af:ae: 22:88:83:b2:ff:72:e6:95:8a:db:90:5b:89:86:67:08:02:92: 35:54:d8:a6:eb:70:21:fb:88:f4:ed:7f:d3:97:7d:6d:2a:b9: 36:82:3c:32:5b:97:40:de:ff:2b:6d:9a:b6:20:b2:b4:46:4b: cc:8e:b5:08:aa:5e:f0:7b:be:1e:60:87:96:65:d0:98:87:90: 95:bf:96:cb:27:38:43:cc:89:32:ed:a6:08:ee:6a:43:cd:99: c0:5e:05:55:83:ef:0f:af:87:e8:e8:53:bd:c9:19:0e:f6:cc: fd:43:6d:37:44:db:c3:5e:71:9d:49:62:d7:f2:e3:8c:b3:d6: 41:11:59:a0:21:36:ca:3e:50:cf:3a:21:3f:a5:37:93:10:33: be:00:00:c0:45:12:df:eb:ef:5d:1e:8c:7d:0f:7d:b5:b5:e8: 5f:e0:8d:34:02:0c:d2:d0:a9:85:3e:a9:12:17:d2:29:5b:85: f9:d9:da:1e:bd:a3:f1:ee:45:78:48:a7:d4:f2:73:42:d1:4e: 6c:45:4e:f0:d5:ba:af:41:58:55:ef:e2:16:42:9a:19:6c:21: 68:d4:43:3f:99:bb:08:41:68:69:26:fc:d4:d8:17:c3:c2:53: ad:43:e1:dd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/kAjq1xzjfHOn4pgERXgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5NDRhYWFjN2YyZWJiMjk4MWMyNDc2M2ViM2Q2MDQ1ZWZi ZDZmMDYwHhcNMjYwMjA5MjAwMTAxWhcNMjYwMjEwMjAwMTAxWjAzMTEwLwYDVQQD EygzMzA4YzJjMTYxYzc4NDk3MmFhZmY3OWQ2NTczMDg1NDJhYzdkMGY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmeCt2YYUix+fl4rj8kOKtJUIiDeT /ORNDTcdrWLupjhmC+Moab63uuECmSG/LkQ9Md6a6u0CSfPAW3lV/+NfFtBcWNBR +zIHA7vrpTX4N+l79WlyhxyYox+pwhHuK9mTmBtsaRxhkKHJkUeLWS3nSYLSASDH JghWCjCjR9liKRy1S6h4DcZYl5bA03LaWsEuWzO6DpLnYlDsjngHXUoh9yYM/326 WXx6Z4OseKX3I5ruSvB5iR4f4rSUpCV3IKwitcoiTxCWjmdNGZwNNMRXf6KNDXig fQE1zKf1QBXRdNH5pJNFxevJQSoVU3ch6CE1AHt7QLiICBprd/PVm9TSbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDMIwsFhx4SXKq/3nWVzCFQqx9D2MB8GA1UdIwQY MBaAFAlEqqx/LrspgcJHY+s9YEXvvW8GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1VTcXJIOHV1eW1Cd2tkajZ6MWdSZS05YndZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS80MzQ4NDktODlkYS00M2FlLWIyYmUt NjZjZDAxOTYxZTQ2LzEvQ1VTcXJIOHV1eW1Cd2tkajZ6MWdSZS05YndZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZS80MzQ4NDktODlkYS00M2FlLWIyYmUtNjZjZDAxOTYxZTQ2 LzEvQ1VTcXJIOHV1eW1Cd2tkajZ6MWdSZS05YndZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARmjjpgVQ gWy3ADfOZ0ycc6+uIoiDsv9y5pWK25BbiYZnCAKSNVTYputwIfuI9O1/05d9bSq5 NoI8MluXQN7/K22atiCytEZLzI61CKpe8Hu+HmCHlmXQmIeQlb+Wyyc4Q8yJMu2m CO5qQ82ZwF4FVYPvD6+H6OhTvckZDvbM/UNtN0Tbw15xnUli1/LjjLPWQRFZoCE2 yj5QzzohP6U3kxAzvgAAwEUS3+vvXR6MfQ99tbXoX+CNNAIM0tCphT6pEhfSKVuF +dnaHr2j8e5FeEin1PJzQtFObEVO8NW6r0FYVe/iFkKaGWwhaNRDP5m7CEFoaSb8 1NgXw8JTrUPh3Q== -----END CERTIFICATE-----Generated at Tue Feb 10 01:36:59 2026 by rpki-client