This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft File: UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft (raw, json) Hash identifier: o9a1J9MrbhWI+KJ5HhC748h1TQ94vJbeIZmkm0agbxI= Subject key identifier: 8D:F3:D1:C2:11:3A:C7:16:EE:32:D0:4F:93:F6:F0:83:F5:04:11:F0 Authority key identifier: 50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77 Certificate issuer: /CN=5053c7da9c8fffea5ced97a7990200d4beee4177 Certificate serial: 019BF53EB40CC435156BA4B0B7B50D73ED74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft Manifest number: 0734 Signing time: Sun 25 Jan 2026 13:01:25 +0000 Manifest this update: Sun 25 Jan 2026 13:01:25 +0000 Manifest next update: Mon 26 Jan 2026 13:01:25 +0000 Files and hashes: 1: NRjE2ub-qyO1bTuX03Zvfc6I9B4.roa (hash: T1iZTA7aq3lUr9C6VWAbrTX5NRDe5+H29lpTIjZMGkc=) 2: UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl (hash: b/DJ/bisMqXr/U/OtIWuC7XsDTHK60MeIJnNX7MhUTg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:3e:b4:0c:c4:35:15:6b:a4:b0:b7:b5:0d:73:ed:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5053c7da9c8fffea5ced97a7990200d4beee4177 Validity Not Before: Jan 25 13:01:25 2026 GMT Not After : Jan 26 13:01:25 2026 GMT Subject: CN=8df3d1c2113ac716ee32d04f93f6f083f50411f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cc:95:cf:5b:02:da:fa:33:54:35:46:39:92: 78:46:76:38:d3:32:4b:f6:49:72:1f:b2:05:62:e0: 6d:0c:c0:36:a8:45:76:89:32:e4:b2:a1:be:b7:58: 96:77:a9:6f:1a:91:13:15:96:b1:3b:88:86:86:bf: 2a:4e:0f:50:b0:fa:f1:2d:34:25:24:81:33:d2:5b: 26:eb:22:eb:86:b1:83:de:cb:6f:d1:3c:42:a7:7f: 38:6f:fc:a9:51:59:4e:71:47:09:96:84:15:46:35: fc:6d:63:53:77:7a:b8:42:18:98:1e:20:f0:16:26: 5d:59:2a:fb:dd:e7:b1:48:62:b7:4f:9f:47:3a:00: 4a:1e:6c:fd:05:8e:89:b6:fe:f1:45:2a:db:da:c9: a9:fa:85:e3:fe:23:aa:7c:a5:ad:7f:d9:70:4a:26: 10:2d:6c:8a:37:f8:d0:43:2c:ad:98:ce:51:9f:6e: 1c:a2:df:ef:4d:51:ca:2c:31:fe:02:c7:43:01:41: 17:39:71:ce:33:2b:ec:b9:a7:c2:3b:59:85:53:02: 35:e7:72:5b:4a:32:16:84:74:09:7c:ec:02:b5:40: 5a:56:89:e2:83:a9:35:3e:73:06:71:b8:ef:22:53: 21:f2:3c:af:d0:45:a2:2d:2a:10:9c:65:68:29:9a: 24:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:F3:D1:C2:11:3A:C7:16:EE:32:D0:4F:93:F6:F0:83:F5:04:11:F0 X509v3 Authority Key Identifier: keyid:50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:1d:3f:6f:23:07:c5:d1:a4:75:6d:42:52:8d:28:5d:c2:c8: 22:d4:97:96:0d:0e:b1:23:4d:f8:75:6d:28:34:18:25:ae:ce: 46:ac:68:90:96:ba:10:0b:f8:af:be:6b:fd:5c:5f:1a:28:6a: 1d:3c:ee:76:e9:6d:78:af:86:5e:f0:0f:8b:8a:dc:7e:72:ef: ea:f1:5b:28:e6:9e:4f:be:93:0e:6a:6a:60:8b:49:83:21:35: 54:15:ba:52:09:3b:1c:a0:d5:b1:10:71:7e:b4:18:cb:b9:4f: 53:f6:cc:42:b7:44:2f:99:4b:c3:dd:06:49:9d:7f:a4:b4:74: 3b:48:b6:10:0f:a1:9d:b7:70:8e:2a:52:19:53:1e:08:ae:70: 32:d9:18:f7:f1:ce:f0:b7:a9:2a:b6:62:2b:1d:ce:b7:94:71: c0:e3:7c:3e:21:34:63:d9:4f:a3:0f:6b:ef:14:68:3a:6d:83: 6e:8e:85:98:a8:c7:45:65:aa:75:80:4e:6b:bf:44:9e:4e:30: ea:36:53:81:5d:26:03:b8:56:6e:25:1a:8f:02:4b:68:01:fa: 9f:fc:99:37:a0:15:3a:54:f1:f0:91:51:74:f0:83:3e:27:56: b2:c3:17:0c:4b:9e:46:a5:0f:fe:02:21:d0:9d:00:39:7d:11: bf:52:e3:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1PrQMxDUVa6Swt7UNc+10MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwNTNjN2RhOWM4ZmZmZWE1Y2VkOTdhNzk5MDIwMGQ0YmVl ZTQxNzcwHhcNMjYwMTI1MTMwMTI1WhcNMjYwMTI2MTMwMTI1WjAzMTEwLwYDVQQD Eyg4ZGYzZDFjMjExM2FjNzE2ZWUzMmQwNGY5M2Y2ZjA4M2Y1MDQxMWYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcyVz1sC2vozVDVGOZJ4RnY40zJL 9klyH7IFYuBtDMA2qEV2iTLksqG+t1iWd6lvGpETFZaxO4iGhr8qTg9QsPrxLTQl JIEz0lsm6yLrhrGD3stv0TxCp384b/ypUVlOcUcJloQVRjX8bWNTd3q4QhiYHiDw FiZdWSr73eexSGK3T59HOgBKHmz9BY6Jtv7xRSrb2smp+oXj/iOqfKWtf9lwSiYQ LWyKN/jQQyytmM5Rn24cot/vTVHKLDH+AsdDAUEXOXHOMyvsuafCO1mFUwI153Jb SjIWhHQJfOwCtUBaVonig6k1PnMGcbjvIlMh8jyv0EWiLSoQnGVoKZokzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI3z0cIROscW7jLQT5P28IP1BBHwMB8GA1UdIwQY MBaAFFBTx9qcj//qXO2Xp5kCANS+7kF3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUZQSDJweVBfLXBjN1plbm1RSUExTDd1UVhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy8wZjhjZTctY2E5Ni00MzViLTg1NzQt YWM2MjBkYTJmODdlLzEvVUZQSDJweVBfLXBjN1plbm1RSUExTDd1UVhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy8wZjhjZTctY2E5Ni00MzViLTg1NzQtYWM2MjBkYTJmODdl LzEvVUZQSDJweVBfLXBjN1plbm1RSUExTDd1UVhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlB0/byMH xdGkdW1CUo0oXcLIItSXlg0OsSNN+HVtKDQYJa7ORqxokJa6EAv4r75r/VxfGihq HTzudulteK+GXvAPi4rcfnLv6vFbKOaeT76TDmpqYItJgyE1VBW6Ugk7HKDVsRBx frQYy7lPU/bMQrdEL5lLw90GSZ1/pLR0O0i2EA+hnbdwjipSGVMeCK5wMtkY9/HO 8LepKrZiKx3Ot5RxwON8PiE0Y9lPow9r7xRoOm2Dbo6FmKjHRWWqdYBOa79Enk4w 6jZTgV0mA7hWbiUajwJLaAH6n/yZN6AVOlTx8JFRdPCDPidWssMXDEueRqUP/gIh 0J0AOX0Rv1Ljow== -----END CERTIFICATE-----Generated at Sun Jan 25 22:52:52 2026 by rpki-client