This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.mft File: UtlINdtX9r4TjoZPWT7mrai4PtA.mft (raw, json) Hash identifier: ZtSjTlwBgrWWiYzd0uY6q5GTmA0o6vwCCX5VSFqutzY= Subject key identifier: 8A:23:79:C2:15:B2:18:90:C8:D8:1D:F6:16:60:A8:75:70:A2:20:88 Authority key identifier: 52:D9:48:35:DB:57:F6:BE:13:8E:86:4F:59:3E:E6:AD:A8:B8:3E:D0 Certificate issuer: /CN=52d94835db57f6be138e864f593ee6ada8b83ed0 Certificate serial: 019C432285A6243AA6C70829DCE8FD43A542 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtlINdtX9r4TjoZPWT7mrai4PtA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.mft Manifest number: 02C4 Signing time: Mon 09 Feb 2026 16:01:01 +0000 Manifest this update: Mon 09 Feb 2026 16:01:01 +0000 Manifest next update: Tue 10 Feb 2026 16:01:01 +0000 Files and hashes: 1: UtlINdtX9r4TjoZPWT7mrai4PtA.crl (hash: zN+TTmMgD88wLfpa4MC2+JAK8DdJayqfx8CzQuhGF7M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.mft rsync://rpki.ripe.net/repository/DEFAULT/UtlINdtX9r4TjoZPWT7mrai4PtA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:85:a6:24:3a:a6:c7:08:29:dc:e8:fd:43:a5:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52d94835db57f6be138e864f593ee6ada8b83ed0 Validity Not Before: Feb 9 16:01:01 2026 GMT Not After : Feb 10 16:01:01 2026 GMT Subject: CN=8a2379c215b21890c8d81df61660a87570a22088 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9e:9b:67:71:c5:9d:8c:c7:0a:52:b4:bd:51: 6f:08:66:32:a6:bd:16:bd:d6:c7:df:b4:b6:e2:2a: 9e:fe:4b:39:30:fe:38:88:05:95:6a:78:46:cd:85: da:bc:29:05:02:8a:58:91:9b:be:47:5e:80:ba:b7: 8f:9d:88:8a:74:4b:f3:e0:33:60:3d:61:2f:81:1a: 56:d0:e9:fc:3d:ca:89:15:bf:2b:88:21:5a:c2:91: 96:07:12:0d:e2:c3:5e:da:b0:cb:0a:29:90:05:e8: 61:62:e6:97:d3:c0:49:29:1f:13:90:b0:09:33:f6: dd:c9:24:f8:cb:d0:d4:fa:ad:7c:f4:05:33:b9:a3: 85:de:24:ac:63:54:d2:47:b1:ad:0b:23:94:d8:f0: e3:ed:2c:8a:43:0d:19:80:55:0e:46:f2:a0:95:92: 51:1b:b1:13:70:a1:3f:f4:d1:d6:e0:78:c3:94:7b: 94:b7:7a:fa:1a:46:5e:31:48:01:c9:5d:81:a1:ef: 71:69:f2:2d:44:4d:fa:3a:13:56:1e:71:ba:cd:ab: 05:bf:ce:74:0d:3f:27:eb:eb:aa:ae:a7:e4:20:87: 94:6a:c1:ad:d5:02:e2:e4:74:80:17:bc:b4:74:c3: fe:65:54:d4:d7:cd:2b:e3:6b:bc:66:51:74:04:d0: b6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:23:79:C2:15:B2:18:90:C8:D8:1D:F6:16:60:A8:75:70:A2:20:88 X509v3 Authority Key Identifier: keyid:52:D9:48:35:DB:57:F6:BE:13:8E:86:4F:59:3E:E6:AD:A8:B8:3E:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtlINdtX9r4TjoZPWT7mrai4PtA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:46:9d:34:a1:1d:d5:9b:a8:1f:29:50:b7:73:b7:0a:64:80: 75:8b:8b:0f:d6:06:62:3b:cc:1c:4b:e3:39:8c:24:8f:d4:75: 6e:91:9a:a0:cd:fe:08:74:1c:56:f6:ba:6d:ef:bd:d1:a7:06: 78:a8:15:42:4d:1a:c6:bc:02:25:77:63:a4:42:39:b1:ac:af: 9b:50:66:b1:32:ae:11:29:5f:84:b9:8a:c3:da:a1:b7:8e:63: 95:1d:e1:98:65:6f:f2:e2:36:5d:c6:fc:46:78:dc:90:48:81: 44:86:53:35:08:01:86:7e:46:af:9c:01:f9:57:4e:3c:12:0b: bb:7b:a3:2e:2a:69:e6:57:4c:61:68:7d:4e:6d:03:a7:12:5c: 9c:62:4f:ae:e0:e9:23:2a:14:96:82:5d:f1:94:64:9f:30:cc: f8:be:25:8f:09:88:67:03:c6:d9:76:e0:71:65:b6:2c:48:2b: 14:3b:38:d5:6f:4a:63:ed:49:0a:12:f9:59:b4:5a:70:12:ee: 2b:aa:0d:41:36:a8:2b:20:0c:2c:c5:ba:34:78:39:29:a8:27: c2:9e:d4:2d:00:86:6a:35:ff:7c:fe:ec:b2:f5:7e:45:5a:26: ea:c5:8d:42:06:93:e0:9a:94:81:a7:79:d2:d8:4c:ca:92:52: 56:21:91:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIoWmJDqmxwgp3Oj9Q6VCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyZDk0ODM1ZGI1N2Y2YmUxMzhlODY0ZjU5M2VlNmFkYThi ODNlZDAwHhcNMjYwMjA5MTYwMTAxWhcNMjYwMjEwMTYwMTAxWjAzMTEwLwYDVQQD Eyg4YTIzNzljMjE1YjIxODkwYzhkODFkZjYxNjYwYTg3NTcwYTIyMDg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZ6bZ3HFnYzHClK0vVFvCGYypr0W vdbH37S24iqe/ks5MP44iAWVanhGzYXavCkFAopYkZu+R16AurePnYiKdEvz4DNg PWEvgRpW0On8PcqJFb8riCFawpGWBxIN4sNe2rDLCimQBehhYuaX08BJKR8TkLAJ M/bdyST4y9DU+q189AUzuaOF3iSsY1TSR7GtCyOU2PDj7SyKQw0ZgFUORvKglZJR G7ETcKE/9NHW4HjDlHuUt3r6GkZeMUgByV2Boe9xafItRE36OhNWHnG6zasFv850 DT8n6+uqrqfkIIeUasGt1QLi5HSAF7y0dMP+ZVTU180r42u8ZlF0BNC2vQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIojecIVshiQyNgd9hZgqHVwoiCIMB8GA1UdIwQY MBaAFFLZSDXbV/a+E46GT1k+5q2ouD7QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXRsSU5kdFg5cjRUam9aUFdUN21yYWk0UHRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS82ZGUyZGMtZWNkMi00YWY4LWJiMGEt M2QwOGFhYmQ1ZTliLzEvVXRsSU5kdFg5cjRUam9aUFdUN21yYWk0UHRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS82ZGUyZGMtZWNkMi00YWY4LWJiMGEtM2QwOGFhYmQ1ZTli LzEvVXRsSU5kdFg5cjRUam9aUFdUN21yYWk0UHRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASEadNKEd 1ZuoHylQt3O3CmSAdYuLD9YGYjvMHEvjOYwkj9R1bpGaoM3+CHQcVva6be+90acG eKgVQk0axrwCJXdjpEI5sayvm1BmsTKuESlfhLmKw9qht45jlR3hmGVv8uI2Xcb8 RnjckEiBRIZTNQgBhn5Gr5wB+VdOPBILu3ujLipp5ldMYWh9Tm0DpxJcnGJPruDp IyoUloJd8ZRknzDM+L4ljwmIZwPG2XbgcWW2LEgrFDs41W9KY+1JChL5WbRacBLu K6oNQTaoKyAMLMW6NHg5Kagnwp7ULQCGajX/fP7ssvV+RVom6sWNQgaT4JqUgad5 0thMypJSViGRwQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:48:41 2026 by rpki-client