This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/3cbb1b-6927-45c9-b1d4-1d7d55b22cc9/1/dGNy_s6bo5ZuFegFXAWHxQPAOas.mft File: dGNy_s6bo5ZuFegFXAWHxQPAOas.mft (raw, json) Hash identifier: zgT6QNGPnAlVblBDK/PShFjVDImJbUHBppT7VEDG/2o= Subject key identifier: C7:5D:A5:D3:5D:61:EF:FF:E5:43:C9:80:76:70:FD:F8:49:14:49:65 Authority key identifier: 74:63:72:FE:CE:9B:A3:96:6E:15:E8:05:5C:05:87:C5:03:C0:39:AB Certificate issuer: /CN=746372fece9ba3966e15e8055c0587c503c039ab Certificate serial: 019C4322258924F699CE4F947FAC0F90CAB6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNy_s6bo5ZuFegFXAWHxQPAOas.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/3cbb1b-6927-45c9-b1d4-1d7d55b22cc9/1/dGNy_s6bo5ZuFegFXAWHxQPAOas.mft Manifest number: 12B7 Signing time: Mon 09 Feb 2026 16:00:37 +0000 Manifest this update: Mon 09 Feb 2026 16:00:37 +0000 Manifest next update: Tue 10 Feb 2026 16:00:37 +0000 Files and hashes: 1: dGNy_s6bo5ZuFegFXAWHxQPAOas.crl (hash: qgDQS2Eh8YekQC9su6uJC/XfIrBcWPUO+ry48iWzeLs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/3cbb1b-6927-45c9-b1d4-1d7d55b22cc9/1/dGNy_s6bo5ZuFegFXAWHxQPAOas.crl rsync://rpki.ripe.net/repository/DEFAULT/00/3cbb1b-6927-45c9-b1d4-1d7d55b22cc9/1/dGNy_s6bo5ZuFegFXAWHxQPAOas.mft rsync://rpki.ripe.net/repository/DEFAULT/dGNy_s6bo5ZuFegFXAWHxQPAOas.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:25:89:24:f6:99:ce:4f:94:7f:ac:0f:90:ca:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=746372fece9ba3966e15e8055c0587c503c039ab Validity Not Before: Feb 9 16:00:37 2026 GMT Not After : Feb 10 16:00:37 2026 GMT Subject: CN=c75da5d35d61efffe543c9807670fdf849144965 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:09:94:58:92:bc:77:31:50:1d:96:c2:91:c5: 1c:22:79:32:a0:f2:21:65:22:d0:71:41:bd:ac:8b: 7e:c0:77:b1:02:a2:5f:55:62:07:9b:03:8a:5c:37: ee:a6:7f:a1:bc:f7:8a:59:67:b7:71:8d:95:58:8d: 71:a8:a7:9c:48:93:11:ac:3e:06:2e:2e:33:8f:47: ae:bf:96:74:da:52:a1:a6:7f:d0:fd:39:48:9b:af: 91:1c:bf:58:63:1c:48:14:90:34:f4:bd:f9:64:96: 7b:a7:4e:bb:51:1d:49:e0:2a:d0:9d:cd:95:07:c4: d4:a5:f2:6e:5e:fa:4f:5a:e3:02:e5:a6:4d:eb:48: cc:44:10:a6:9a:54:0a:a5:c0:84:b6:94:e8:eb:0a: 63:f5:6c:87:33:fc:b9:69:52:48:b7:fe:a2:83:bc: 45:a6:9f:08:fc:94:3f:2e:80:ae:f1:bb:03:29:d0: 80:d4:f1:06:30:d8:a8:bf:5d:8d:2f:4a:98:be:9b: 53:ea:d8:29:d2:43:8e:4d:ef:64:4c:31:93:d4:f7: a4:22:3a:85:c6:b3:fa:3d:9b:a6:d5:10:a8:83:ba: ca:fb:60:61:fb:aa:56:b0:44:e6:d2:86:f4:76:f2: dd:ec:b6:dd:f2:30:23:b0:c5:56:dd:d4:4b:4c:1d: 7e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:5D:A5:D3:5D:61:EF:FF:E5:43:C9:80:76:70:FD:F8:49:14:49:65 X509v3 Authority Key Identifier: keyid:74:63:72:FE:CE:9B:A3:96:6E:15:E8:05:5C:05:87:C5:03:C0:39:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNy_s6bo5ZuFegFXAWHxQPAOas.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/3cbb1b-6927-45c9-b1d4-1d7d55b22cc9/1/dGNy_s6bo5ZuFegFXAWHxQPAOas.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/3cbb1b-6927-45c9-b1d4-1d7d55b22cc9/1/dGNy_s6bo5ZuFegFXAWHxQPAOas.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:f7:33:72:0b:da:93:ea:93:03:de:e8:66:e4:c1:0c:ba:01: 4f:de:5a:6d:fa:f0:ae:5a:7a:71:35:cd:7e:12:bf:6c:0a:ae: 22:f9:02:34:54:51:56:3f:2e:77:29:1d:2f:bf:1a:e3:fb:ff: 8c:89:30:3c:28:c2:d0:6c:b1:f5:8c:1b:5b:9d:52:e7:a2:73: a0:a8:f8:aa:66:b5:ed:61:37:b6:eb:9f:44:70:bb:bf:7b:70: b1:3f:27:7d:cb:b5:0c:51:1c:14:2d:3f:fd:e7:7f:cb:ec:8b: 6d:65:82:d8:68:ff:c1:05:8e:da:fd:fe:be:12:ec:1c:d9:22: 22:bc:f1:c8:a3:5b:65:d7:3c:5f:12:2e:c3:de:03:6b:c9:96: 6b:ed:97:a4:9f:1c:e0:d6:72:47:a2:95:ad:3a:4c:13:45:a0: 8e:aa:af:89:85:9e:f3:44:a6:5c:08:a9:a5:4b:1d:67:09:70: fd:13:21:eb:16:ec:4a:eb:28:be:ee:24:60:71:c4:f3:fe:94: 9f:1f:49:7d:df:70:10:28:f8:f5:fb:40:fb:19:75:3a:94:34: 1f:74:8e:d6:a4:5e:10:8a:9a:78:e9:3b:5b:17:aa:d4:2b:63: 72:37:84:af:3a:1e:b3:4a:25:80:66:4f:8a:18:04:81:f0:00: 2b:c6:f3:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIiWJJPaZzk+Uf6wPkMq2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0NjM3MmZlY2U5YmEzOTY2ZTE1ZTgwNTVjMDU4N2M1MDNj MDM5YWIwHhcNMjYwMjA5MTYwMDM3WhcNMjYwMjEwMTYwMDM3WjAzMTEwLwYDVQQD EyhjNzVkYTVkMzVkNjFlZmZmZTU0M2M5ODA3NjcwZmRmODQ5MTQ0OTY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmwmUWJK8dzFQHZbCkcUcInkyoPIh ZSLQcUG9rIt+wHexAqJfVWIHmwOKXDfupn+hvPeKWWe3cY2VWI1xqKecSJMRrD4G Li4zj0euv5Z02lKhpn/Q/TlIm6+RHL9YYxxIFJA09L35ZJZ7p067UR1J4CrQnc2V B8TUpfJuXvpPWuMC5aZN60jMRBCmmlQKpcCEtpTo6wpj9WyHM/y5aVJIt/6ig7xF pp8I/JQ/LoCu8bsDKdCA1PEGMNiov12NL0qYvptT6tgp0kOOTe9kTDGT1PekIjqF xrP6PZum1RCog7rK+2Bh+6pWsETm0ob0dvLd7Lbd8jAjsMVW3dRLTB1+9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMddpdNdYe//5UPJgHZw/fhJFEllMB8GA1UdIwQY MBaAFHRjcv7Om6OWbhXoBVwFh8UDwDmrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEdOeV9zNmJvNVp1RmVnRlhBV0h4UVBBT2FzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC8zY2JiMWItNjkyNy00NWM5LWIxZDQt MWQ3ZDU1YjIyY2M5LzEvZEdOeV9zNmJvNVp1RmVnRlhBV0h4UVBBT2FzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC8zY2JiMWItNjkyNy00NWM5LWIxZDQtMWQ3ZDU1YjIyY2M5 LzEvZEdOeV9zNmJvNVp1RmVnRlhBV0h4UVBBT2FzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMPczcgva k+qTA97oZuTBDLoBT95abfrwrlp6cTXNfhK/bAquIvkCNFRRVj8udykdL78a4/v/ jIkwPCjC0Gyx9YwbW51S56JzoKj4qma17WE3tuufRHC7v3twsT8nfcu1DFEcFC0/ /ed/y+yLbWWC2Gj/wQWO2v3+vhLsHNkiIrzxyKNbZdc8XxIuw94Da8mWa+2XpJ8c 4NZyR6KVrTpME0WgjqqviYWe80SmXAippUsdZwlw/RMh6xbsSusovu4kYHHE8/6U nx9Jfd9wECj49ftA+xl1OpQ0H3SO1qReEIqaeOk7Wxeq1CtjcjeErzoes0olgGZP ihgEgfAAK8bz0A== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:28 2026 by rpki-client