This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/150033-06ed-474f-a9e9-9162feb43a0a/1/UBgkf7zuOIV32aTE3_wTdEYb-Jo.mft File: UBgkf7zuOIV32aTE3_wTdEYb-Jo.mft (raw, json) Hash identifier: HVpzT1/zVrfbyvPU1EJCB0bn+q+W8+qVBjju+DqPXhI= Subject key identifier: 20:D3:1D:92:44:90:8A:F6:04:67:C7:3D:C6:64:3E:F1:10:36:C3:B8 Authority key identifier: 50:18:24:7F:BC:EE:38:85:77:D9:A4:C4:DF:FC:13:74:46:1B:F8:9A Certificate issuer: /CN=5018247fbcee388577d9a4c4dffc1374461bf89a Certificate serial: 019C4359081F676D9FD48DBB29A366E46F5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UBgkf7zuOIV32aTE3_wTdEYb-Jo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/150033-06ed-474f-a9e9-9162feb43a0a/1/UBgkf7zuOIV32aTE3_wTdEYb-Jo.mft Manifest number: 57 Signing time: Mon 09 Feb 2026 17:00:34 +0000 Manifest this update: Mon 09 Feb 2026 17:00:34 +0000 Manifest next update: Tue 10 Feb 2026 17:00:34 +0000 Files and hashes: 1: UBgkf7zuOIV32aTE3_wTdEYb-Jo.crl (hash: 0IQf/KA82G+2uNUeB/EoF29O3gPWiQ9uMEGwyTt6bfI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/150033-06ed-474f-a9e9-9162feb43a0a/1/UBgkf7zuOIV32aTE3_wTdEYb-Jo.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/150033-06ed-474f-a9e9-9162feb43a0a/1/UBgkf7zuOIV32aTE3_wTdEYb-Jo.mft rsync://rpki.ripe.net/repository/DEFAULT/UBgkf7zuOIV32aTE3_wTdEYb-Jo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:08:1f:67:6d:9f:d4:8d:bb:29:a3:66:e4:6f:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5018247fbcee388577d9a4c4dffc1374461bf89a Validity Not Before: Feb 9 17:00:34 2026 GMT Not After : Feb 10 17:00:34 2026 GMT Subject: CN=20d31d9244908af60467c73dc6643ef11036c3b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0a:31:43:33:68:22:08:00:89:ed:e9:6b:0d: 24:b9:79:ef:c9:12:0d:7f:bc:3e:8e:1d:60:15:f1: 21:ad:0f:9a:68:5a:b6:c2:2d:51:3c:b2:7f:bd:c9: 51:e8:c1:1a:69:aa:20:72:85:da:72:b4:6b:c3:ea: 1e:04:2d:e2:bc:62:5c:e4:51:cc:4b:97:74:e8:c3: a0:4c:d8:a5:e2:b2:33:e6:5a:95:0a:7a:e7:f6:fc: 7a:d2:36:51:6d:fa:21:f4:b9:c4:e7:3b:fe:da:ed: b0:bb:3a:50:e6:d3:be:49:71:46:3a:47:b0:7b:e3: c8:28:25:23:9e:8f:1c:7d:a8:48:85:c3:1b:21:4b: 13:36:03:56:a8:8e:22:86:94:92:ca:df:8a:82:a3: f3:3b:09:b6:f5:e3:9e:26:e3:f1:45:2a:dc:78:ae: ca:3f:34:08:3d:73:10:02:ad:e2:63:52:5c:89:8c: 02:d0:a6:b8:68:a0:12:fb:c5:20:13:d4:f9:ce:e0: 72:3c:c9:49:e5:67:c9:95:40:9c:93:91:20:ae:0d: 51:31:d4:f6:ac:88:42:37:36:60:ec:92:83:a7:b4: 07:a8:34:6a:76:13:f4:d3:fe:71:66:73:99:ef:ea: 55:00:53:40:39:f0:fd:dd:78:e6:d9:0a:37:a2:3a: 9f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:D3:1D:92:44:90:8A:F6:04:67:C7:3D:C6:64:3E:F1:10:36:C3:B8 X509v3 Authority Key Identifier: keyid:50:18:24:7F:BC:EE:38:85:77:D9:A4:C4:DF:FC:13:74:46:1B:F8:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UBgkf7zuOIV32aTE3_wTdEYb-Jo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/150033-06ed-474f-a9e9-9162feb43a0a/1/UBgkf7zuOIV32aTE3_wTdEYb-Jo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/150033-06ed-474f-a9e9-9162feb43a0a/1/UBgkf7zuOIV32aTE3_wTdEYb-Jo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:59:33:20:bf:d2:ae:19:48:b2:96:68:a0:b7:aa:c3:72:86: a8:17:00:54:80:7e:25:61:7c:99:4c:67:a2:04:2a:11:76:72: 35:f5:15:ea:b4:c7:7e:ec:cc:ab:29:3f:cb:e1:e6:96:5e:9a: 7a:44:6e:08:07:b0:d5:02:a3:70:75:e9:25:75:7a:f7:ba:43: 92:83:47:55:2d:1b:c6:28:d5:9a:b2:a6:7c:e1:ff:74:e4:56: c2:cd:4f:5e:ca:09:b9:24:72:ae:d5:96:2a:92:c8:6f:97:97: f7:56:13:c5:95:6d:55:e2:44:3d:ca:db:97:13:1f:75:3d:6f: 55:d9:3b:48:61:d7:c9:94:28:73:7e:67:fb:71:a8:44:28:5c: b3:70:48:65:7b:62:f8:cc:6c:46:37:d5:08:64:54:01:4b:46: 32:7a:b6:0c:5f:7c:ab:b7:8f:8f:1c:c6:8e:f3:ba:26:5e:1c: 89:68:88:41:fc:56:86:8c:97:a4:db:d7:0e:c2:34:5f:db:08: 9d:27:96:a0:1e:5e:b6:e3:45:d8:9f:6c:57:cb:2e:35:d5:1e: a5:45:65:1f:dc:0e:c7:e2:a7:45:4d:bf:0a:97:c0:f0:f6:80: 9a:8d:04:26:59:8e:4b:6e:a1:83:33:b3:8f:66:cd:34:a8:e6: 83:68:db:d1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWQgfZ22f1I27KaNm5G9aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwMTgyNDdmYmNlZTM4ODU3N2Q5YTRjNGRmZmMxMzc0NDYx YmY4OWEwHhcNMjYwMjA5MTcwMDM0WhcNMjYwMjEwMTcwMDM0WjAzMTEwLwYDVQQD EygyMGQzMWQ5MjQ0OTA4YWY2MDQ2N2M3M2RjNjY0M2VmMTEwMzZjM2I4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwgoxQzNoIggAie3paw0kuXnvyRIN f7w+jh1gFfEhrQ+aaFq2wi1RPLJ/vclR6MEaaaogcoXacrRrw+oeBC3ivGJc5FHM S5d06MOgTNil4rIz5lqVCnrn9vx60jZRbfoh9LnE5zv+2u2wuzpQ5tO+SXFGOkew e+PIKCUjno8cfahIhcMbIUsTNgNWqI4ihpSSyt+KgqPzOwm29eOeJuPxRSrceK7K PzQIPXMQAq3iY1JciYwC0Ka4aKAS+8UgE9T5zuByPMlJ5WfJlUCck5Egrg1RMdT2 rIhCNzZg7JKDp7QHqDRqdhP00/5xZnOZ7+pVAFNAOfD93Xjm2Qo3ojqf+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCDTHZJEkIr2BGfHPcZkPvEQNsO4MB8GA1UdIwQY MBaAFFAYJH+87jiFd9mkxN/8E3RGG/iaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUJna2Y3enVPSVYzMmFURTNfd1RkRVliLUpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy8xNTAwMzMtMDZlZC00NzRmLWE5ZTkt OTE2MmZlYjQzYTBhLzEvVUJna2Y3enVPSVYzMmFURTNfd1RkRVliLUpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy8xNTAwMzMtMDZlZC00NzRmLWE5ZTktOTE2MmZlYjQzYTBh LzEvVUJna2Y3enVPSVYzMmFURTNfd1RkRVliLUpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArFkzIL/S rhlIspZooLeqw3KGqBcAVIB+JWF8mUxnogQqEXZyNfUV6rTHfuzMqyk/y+Hmll6a ekRuCAew1QKjcHXpJXV697pDkoNHVS0bxijVmrKmfOH/dORWws1PXsoJuSRyrtWW KpLIb5eX91YTxZVtVeJEPcrblxMfdT1vVdk7SGHXyZQoc35n+3GoRChcs3BIZXti +MxsRjfVCGRUAUtGMnq2DF98q7ePjxzGjvO6Jl4ciWiIQfxWhoyXpNvXDsI0X9sI nSeWoB5etuNF2J9sV8suNdUepUVlH9wOx+KnRU2/CpfA8PaAmo0EJlmOS26hgzOz j2bNNKjmg2jb0Q== -----END CERTIFICATE-----Generated at Mon Feb 9 19:38:27 2026 by rpki-client