This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.mft File: uPrah6dvKfguJaMXnno4zwxrAwA.mft (raw, json) Hash identifier: IDLndx7/TEICfDIG0dscoRVCS/qi5cWxS/jgON5M+YM= Subject key identifier: 79:55:59:15:98:4F:39:41:F9:CC:41:40:D4:03:7E:6C:B3:A3:B9:76 Authority key identifier: B8:FA:DA:87:A7:6F:29:F8:2E:25:A3:17:9E:7A:38:CF:0C:6B:03:00 Certificate issuer: /CN=b8fada87a76f29f82e25a3179e7a38cf0c6b0300 Certificate serial: 019C42461071DD9C5A416587BA7315206D3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uPrah6dvKfguJaMXnno4zwxrAwA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.mft Manifest number: 17DF Signing time: Mon 09 Feb 2026 12:00:13 +0000 Manifest this update: Mon 09 Feb 2026 12:00:13 +0000 Manifest next update: Tue 10 Feb 2026 12:00:13 +0000 Files and hashes: 1: sxw94R-8dpDBFwr_QuU2x8m1Z70.roa (hash: nGqPu9eVja8tiL5hL0aJIPFGTLc3iJ+u/5CYg63lyAY=) 2: uPrah6dvKfguJaMXnno4zwxrAwA.crl (hash: 70RBeiBMXzvzaOcVKMRRp8DX+qbvJtsx/KUF7v0vlDU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.mft rsync://rpki.ripe.net/repository/DEFAULT/uPrah6dvKfguJaMXnno4zwxrAwA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:10:71:dd:9c:5a:41:65:87:ba:73:15:20:6d:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b8fada87a76f29f82e25a3179e7a38cf0c6b0300 Validity Not Before: Feb 9 12:00:13 2026 GMT Not After : Feb 10 12:00:13 2026 GMT Subject: CN=79555915984f3941f9cc4140d4037e6cb3a3b976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ab:72:cb:0c:06:58:09:b2:9f:cd:d5:0b:23: 3f:72:2b:2b:11:cb:b7:7d:79:98:74:7e:bc:a4:31: cd:8a:84:81:60:e7:15:a2:e6:d4:43:45:47:fc:ce: 32:0c:60:92:d5:3f:6e:13:b9:2f:83:08:92:35:49: 47:c0:bf:ba:7f:0d:58:22:e6:0c:25:62:c1:65:82: 00:f7:b2:86:7c:24:79:18:6c:29:76:ec:cc:8d:77: 3c:d5:a0:3a:2e:de:37:40:4b:fa:89:22:bf:92:3c: 8d:57:f9:e3:9b:e4:e2:a8:19:d3:e7:8c:83:cd:c8: 03:87:45:f5:9a:92:99:e8:60:80:ad:19:42:f6:23: 6b:55:76:1c:16:99:1f:c3:ba:0e:73:19:88:0c:56: 9b:39:51:66:79:24:78:ab:6c:69:0e:72:45:d3:0d: 46:14:52:0d:7f:f3:2c:28:b0:ae:ef:90:dc:00:9e: 89:3f:15:85:a6:d4:9c:83:ee:55:ca:aa:8a:3e:3d: 96:c0:cb:8e:a4:bb:a5:b2:32:30:23:13:14:41:42: bd:13:07:9d:20:24:e6:72:1c:66:0e:6e:59:f3:53: 89:6c:f1:da:19:fb:2b:c2:0b:58:de:db:33:e8:bd: b0:01:2a:c4:59:cb:72:13:34:ba:15:6e:59:74:0c: ec:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:55:59:15:98:4F:39:41:F9:CC:41:40:D4:03:7E:6C:B3:A3:B9:76 X509v3 Authority Key Identifier: keyid:B8:FA:DA:87:A7:6F:29:F8:2E:25:A3:17:9E:7A:38:CF:0C:6B:03:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uPrah6dvKfguJaMXnno4zwxrAwA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:f7:43:fe:9a:e8:e6:a5:23:36:00:fa:8a:8f:61:1c:d9:11: 04:ed:8f:d1:ce:95:cd:03:b7:b9:9d:72:c4:f1:3c:d5:dc:1d: 3a:6a:61:05:c0:dc:14:5f:16:9c:14:58:2f:7d:5c:65:29:7d: 19:b0:6e:20:c0:78:b7:8e:a8:da:ab:50:c4:71:7c:33:ef:18: 0e:95:9f:b5:59:e1:73:b1:65:6d:bc:c3:a3:c3:f3:c3:54:54: fe:36:27:f1:76:d1:e9:b8:0f:a4:91:bb:a8:0c:e2:d3:e5:4b: 9d:1e:4b:19:8d:53:40:5b:16:8e:3f:f9:7a:95:15:83:7d:a0: 68:01:ca:70:6f:2f:f6:3a:ac:d6:46:c9:0f:a7:88:03:37:64: 27:72:fc:59:c9:98:bc:ad:0d:ae:6d:07:9c:73:18:c6:5f:14: aa:74:e6:1a:8c:cb:2a:3e:1c:b4:b1:06:47:42:a2:a6:a8:eb: c3:86:e6:f7:a1:41:07:c6:da:d0:75:1f:42:63:f4:ab:79:c1: 7e:0f:96:82:f4:50:66:06:6a:b5:97:63:c8:00:26:72:5d:a3: a0:90:51:5c:de:23:e3:ee:34:3d:49:e5:d2:d0:56:b3:3d:c2: 15:ed:9c:b3:90:38:71:e3:fc:1e:01:6c:b2:c4:1d:79:c4:88: f3:ba:06:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRhBx3ZxaQWWHunMVIG06MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4ZmFkYTg3YTc2ZjI5ZjgyZTI1YTMxNzllN2EzOGNmMGM2 YjAzMDAwHhcNMjYwMjA5MTIwMDEzWhcNMjYwMjEwMTIwMDEzWjAzMTEwLwYDVQQD Eyg3OTU1NTkxNTk4NGYzOTQxZjljYzQxNDBkNDAzN2U2Y2IzYTNiOTc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1KtyywwGWAmyn83VCyM/cisrEcu3 fXmYdH68pDHNioSBYOcVoubUQ0VH/M4yDGCS1T9uE7kvgwiSNUlHwL+6fw1YIuYM JWLBZYIA97KGfCR5GGwpduzMjXc81aA6Lt43QEv6iSK/kjyNV/njm+TiqBnT54yD zcgDh0X1mpKZ6GCArRlC9iNrVXYcFpkfw7oOcxmIDFabOVFmeSR4q2xpDnJF0w1G FFINf/MsKLCu75DcAJ6JPxWFptScg+5VyqqKPj2WwMuOpLulsjIwIxMUQUK9Ewed ICTmchxmDm5Z81OJbPHaGfsrwgtY3tsz6L2wASrEWctyEzS6FW5ZdAzsRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHlVWRWYTzlB+cxBQNQDfmyzo7l2MB8GA1UdIwQY MBaAFLj62oenbyn4LiWjF556OM8MawMAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdVByYWg2ZHZLZmd1SmFNWG5ubzR6d3hyQXdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9hNTZiMmQtZjc5NS00OTVkLTljNDgt NmY2N2I2NDc3MjJkLzEvdVByYWg2ZHZLZmd1SmFNWG5ubzR6d3hyQXdBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy9hNTZiMmQtZjc5NS00OTVkLTljNDgtNmY2N2I2NDc3MjJk LzEvdVByYWg2ZHZLZmd1SmFNWG5ubzR6d3hyQXdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO/dD/pro 5qUjNgD6io9hHNkRBO2P0c6VzQO3uZ1yxPE81dwdOmphBcDcFF8WnBRYL31cZSl9 GbBuIMB4t46o2qtQxHF8M+8YDpWftVnhc7FlbbzDo8Pzw1RU/jYn8XbR6bgPpJG7 qAzi0+VLnR5LGY1TQFsWjj/5epUVg32gaAHKcG8v9jqs1kbJD6eIAzdkJ3L8WcmY vK0Nrm0HnHMYxl8UqnTmGozLKj4ctLEGR0Kipqjrw4bm96FBB8ba0HUfQmP0q3nB fg+WgvRQZgZqtZdjyAAmcl2joJBRXN4j4+40PUnl0tBWsz3CFe2cs5A4ceP8HgFs ssQdecSI87oGWA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:08:21 2026 by rpki-client