This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/42b317-12c8-4dd1-9c55-bfa969e567b1/1/UTNdj7orxzOYOV-90-DW8_89G2Q.mft File: UTNdj7orxzOYOV-90-DW8_89G2Q.mft (raw, json) Hash identifier: R0J/9xhiq/WsT/u4/fNcEmDpiOAAoqQvz30yj+c+gMA= Subject key identifier: 49:8B:3F:64:83:B5:64:0F:2B:2B:A2:F9:61:CD:6C:67:49:00:F8:BD Authority key identifier: 51:33:5D:8F:BA:2B:C7:33:98:39:5F:BD:D3:E0:D6:F3:FF:3D:1B:64 Certificate issuer: /CN=51335d8fba2bc73398395fbdd3e0d6f3ff3d1b64 Certificate serial: 019C43FE06CC68A9F523B2993C664CE43201 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UTNdj7orxzOYOV-90-DW8_89G2Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/42b317-12c8-4dd1-9c55-bfa969e567b1/1/UTNdj7orxzOYOV-90-DW8_89G2Q.mft Manifest number: 13A4 Signing time: Mon 09 Feb 2026 20:00:47 +0000 Manifest this update: Mon 09 Feb 2026 20:00:47 +0000 Manifest next update: Tue 10 Feb 2026 20:00:47 +0000 Files and hashes: 1: UTNdj7orxzOYOV-90-DW8_89G2Q.crl (hash: wUPFn+ztZ8JOlJLpfCYFtQraA9QyfeTW+mM8E9It7lM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/42b317-12c8-4dd1-9c55-bfa969e567b1/1/UTNdj7orxzOYOV-90-DW8_89G2Q.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/42b317-12c8-4dd1-9c55-bfa969e567b1/1/UTNdj7orxzOYOV-90-DW8_89G2Q.mft rsync://rpki.ripe.net/repository/DEFAULT/UTNdj7orxzOYOV-90-DW8_89G2Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:06:cc:68:a9:f5:23:b2:99:3c:66:4c:e4:32:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51335d8fba2bc73398395fbdd3e0d6f3ff3d1b64 Validity Not Before: Feb 9 20:00:47 2026 GMT Not After : Feb 10 20:00:47 2026 GMT Subject: CN=498b3f6483b5640f2b2ba2f961cd6c674900f8bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:07:09:64:5f:d0:5a:9c:b0:38:8e:d0:c4:72: cf:90:53:29:91:c9:16:05:fb:4e:f0:18:43:f7:5a: 07:06:b6:b7:77:9f:3f:fb:d5:ad:75:24:bd:ee:18: 31:84:6f:03:b6:ee:8b:03:9a:9e:50:a7:65:6b:2f: f2:3f:1c:7c:ca:bd:75:72:76:f2:ee:2e:31:90:be: f4:e7:b2:5b:c5:60:fb:50:05:36:c2:59:1a:3f:ad: 52:e1:10:67:c6:51:ac:b0:5c:77:98:af:9a:85:9b: af:c3:d0:f7:bc:39:c3:00:cf:3a:90:51:46:80:d0: e5:6f:c1:0d:a1:99:2c:dc:a3:6c:a2:50:c5:35:0d: 45:61:97:58:df:7f:1d:d1:c1:70:96:2f:46:94:54: 4a:3f:10:cb:d2:6c:ee:b2:6b:d0:a2:b1:9b:b7:f5: 5f:5b:b9:b6:0d:ca:4c:e1:35:69:0b:79:2a:d6:e3: 6a:aa:5d:2c:99:04:0c:38:f3:db:db:bf:b4:f2:55: 8b:60:82:bf:a4:3a:25:f3:6d:28:3e:1f:ea:96:4b: 8b:13:19:fa:ab:b8:00:5c:26:9a:13:05:7b:16:22: 41:4c:a8:ae:df:f3:11:e6:54:49:d3:34:28:1e:21: 62:48:ac:55:d6:98:bf:af:7b:b8:2d:7f:cd:b1:c1: cf:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:8B:3F:64:83:B5:64:0F:2B:2B:A2:F9:61:CD:6C:67:49:00:F8:BD X509v3 Authority Key Identifier: keyid:51:33:5D:8F:BA:2B:C7:33:98:39:5F:BD:D3:E0:D6:F3:FF:3D:1B:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UTNdj7orxzOYOV-90-DW8_89G2Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/42b317-12c8-4dd1-9c55-bfa969e567b1/1/UTNdj7orxzOYOV-90-DW8_89G2Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/42b317-12c8-4dd1-9c55-bfa969e567b1/1/UTNdj7orxzOYOV-90-DW8_89G2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:cd:5f:c5:f6:4a:38:94:86:99:e1:cd:1f:45:e2:1b:89:d7: b9:d9:24:ee:fd:bd:57:a6:21:f1:0a:64:cf:fd:eb:88:d8:0b: e4:b0:1b:c2:ec:28:d2:83:c6:83:94:6d:23:e7:ba:77:7a:8b: b1:26:b2:b0:b0:68:55:9a:eb:48:a4:b0:e4:8b:b7:27:6f:9c: 8e:b7:23:2f:8d:1d:82:7d:28:96:0f:64:c0:92:6d:25:30:1c: 87:23:94:37:e5:1e:1a:c3:6c:33:b8:99:b5:82:9c:81:18:1d: 68:f8:9e:b2:83:5f:a9:8c:e6:3e:88:90:01:8c:9b:66:5f:88: 72:cb:59:b5:c2:fd:c8:a3:6c:16:75:27:f0:42:2e:d4:32:92: fa:60:4c:17:59:ab:1d:49:ae:04:92:b1:0d:d3:dd:f3:81:d0: 27:06:e0:ee:99:72:3f:95:7f:d7:fa:78:d5:bc:32:ab:80:4e: b9:2a:47:45:be:ba:45:e8:cf:ef:b5:92:46:41:61:66:00:12: 69:5e:c9:55:0a:42:fc:b1:36:ef:b4:a9:72:8f:6d:71:54:10: 30:d6:c8:df:1b:f6:69:58:87:b4:14:a8:50:ff:56:f6:b8:e5: 83:b2:ea:85:d8:94:c7:7e:22:61:c2:78:27:dd:df:0d:0d:84: 60:33:dc:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/gbMaKn1I7KZPGZM5DIBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxMzM1ZDhmYmEyYmM3MzM5ODM5NWZiZGQzZTBkNmYzZmYz ZDFiNjQwHhcNMjYwMjA5MjAwMDQ3WhcNMjYwMjEwMjAwMDQ3WjAzMTEwLwYDVQQD Eyg0OThiM2Y2NDgzYjU2NDBmMmIyYmEyZjk2MWNkNmM2NzQ5MDBmOGJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6QcJZF/QWpywOI7QxHLPkFMpkckW BftO8BhD91oHBra3d58/+9WtdSS97hgxhG8Dtu6LA5qeUKdlay/yPxx8yr11cnby 7i4xkL7057JbxWD7UAU2wlkaP61S4RBnxlGssFx3mK+ahZuvw9D3vDnDAM86kFFG gNDlb8ENoZks3KNsolDFNQ1FYZdY338d0cFwli9GlFRKPxDL0mzusmvQorGbt/Vf W7m2DcpM4TVpC3kq1uNqql0smQQMOPPb27+08lWLYIK/pDol820oPh/qlkuLExn6 q7gAXCaaEwV7FiJBTKiu3/MR5lRJ0zQoHiFiSKxV1pi/r3u4LX/NscHP2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEmLP2SDtWQPKyui+WHNbGdJAPi9MB8GA1UdIwQY MBaAFFEzXY+6K8czmDlfvdPg1vP/PRtkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVVROZGo3b3J4ek9ZT1YtOTAtRFc4Xzg5RzJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS80MmIzMTctMTJjOC00ZGQxLTljNTUt YmZhOTY5ZTU2N2IxLzEvVVROZGo3b3J4ek9ZT1YtOTAtRFc4Xzg5RzJRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS80MmIzMTctMTJjOC00ZGQxLTljNTUtYmZhOTY5ZTU2N2Ix LzEvVVROZGo3b3J4ek9ZT1YtOTAtRFc4Xzg5RzJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj81fxfZK OJSGmeHNH0XiG4nXudkk7v29V6Yh8Qpkz/3riNgL5LAbwuwo0oPGg5RtI+e6d3qL sSaysLBoVZrrSKSw5Iu3J2+cjrcjL40dgn0olg9kwJJtJTAchyOUN+UeGsNsM7iZ tYKcgRgdaPiesoNfqYzmPoiQAYybZl+IcstZtcL9yKNsFnUn8EIu1DKS+mBMF1mr HUmuBJKxDdPd84HQJwbg7plyP5V/1/p41bwyq4BOuSpHRb66RejP77WSRkFhZgAS aV7JVQpC/LE277Spco9tcVQQMNbI3xv2aViHtBSoUP9W9rjlg7LqhdiUx34iYcJ4 J93fDQ2EYDPcNg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:57 2026 by rpki-client