This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft File: hDGpmcvwQL00DSk12JlhtS8EpEU.mft (raw, json) Hash identifier: iMMXoFvF2bqGdwKJurirSta8e+5OYTHBGecWZrdILMo= Subject key identifier: D5:79:7A:FC:4A:52:E1:30:DD:63:48:A5:61:4D:8C:DA:E2:CA:EA:26 Authority key identifier: 84:31:A9:99:CB:F0:40:BD:34:0D:29:35:D8:99:61:B5:2F:04:A4:45 Certificate issuer: /CN=8431a999cbf040bd340d2935d89961b52f04a445 Certificate serial: 019C4321FDE390343FC5682F37E251024DDF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft Manifest number: 0B42 Signing time: Mon 09 Feb 2026 16:00:26 +0000 Manifest this update: Mon 09 Feb 2026 16:00:26 +0000 Manifest next update: Tue 10 Feb 2026 16:00:26 +0000 Files and hashes: 1: hDGpmcvwQL00DSk12JlhtS8EpEU.crl (hash: JF89lrHLR2C97Q8x9qDz0ZfBE7wmB+zfpibLpqJBac0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.crl rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:fd:e3:90:34:3f:c5:68:2f:37:e2:51:02:4d:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8431a999cbf040bd340d2935d89961b52f04a445 Validity Not Before: Feb 9 16:00:26 2026 GMT Not After : Feb 10 16:00:26 2026 GMT Subject: CN=d5797afc4a52e130dd6348a5614d8cdae2caea26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2a:07:4b:c3:f1:15:a1:a5:58:28:93:4a:a1: 71:1a:51:cc:4d:5f:ca:4f:bd:fb:8f:c2:e0:1d:c3: a0:df:31:fe:ae:80:b4:c9:4d:14:a3:ea:ce:10:e6: ed:69:8e:db:57:78:b4:9d:94:07:cf:d2:1c:82:07: 9f:8c:1f:83:6d:28:e6:73:92:16:45:1e:8e:25:92: f0:a5:f1:2f:d7:f0:73:2f:2f:6e:0d:9b:3e:76:78: 0d:ae:bd:a0:b7:c7:af:49:c5:78:a3:a9:aa:87:c0: 91:41:87:9d:2c:0e:64:bd:0e:6e:79:6b:a0:0d:8e: 95:56:50:b7:31:5f:90:bf:d1:98:a0:b7:3f:f4:19: ed:63:c4:de:5c:9b:86:a0:b0:1d:84:f4:39:8d:b3: 89:97:a1:8a:26:44:c2:5c:79:08:0e:34:1d:85:34: 9b:93:db:9a:55:f6:45:55:d1:f9:32:a6:59:78:61: a6:6f:a4:21:84:1f:15:55:a4:ee:a6:92:df:ae:28: 6d:57:c5:50:10:e2:fa:d0:1d:ca:5f:69:ec:f0:5f: 10:5f:cf:52:b8:66:3b:ed:9e:b7:ad:05:e1:a2:e1: fa:6d:a0:0b:d6:cf:b6:56:42:43:2e:7f:fd:e8:95: 6b:27:28:8f:e4:d6:8f:2d:49:d1:fc:bd:83:9b:30: 3d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:79:7A:FC:4A:52:E1:30:DD:63:48:A5:61:4D:8C:DA:E2:CA:EA:26 X509v3 Authority Key Identifier: keyid:84:31:A9:99:CB:F0:40:BD:34:0D:29:35:D8:99:61:B5:2F:04:A4:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:dc:45:bf:fd:4c:6b:88:b7:db:8d:d5:76:70:eb:58:bd:27: 2a:5e:6e:1f:17:54:9f:bb:c4:02:98:11:2e:dd:35:05:1b:d5: 19:21:e9:e5:cb:39:80:05:3e:88:95:08:a9:86:44:3c:60:04: 9e:29:4d:dc:ce:03:4d:43:62:91:1b:1a:36:22:3c:ba:48:4b: 8d:c4:36:1d:45:41:92:fe:35:4b:69:0b:27:c3:61:8a:06:fb: bc:16:a5:78:20:dd:68:5f:da:02:87:92:ac:62:e1:5c:d2:b7: e9:c9:ef:68:ce:de:84:0b:96:37:48:67:0b:ee:09:9e:85:1b: 53:bc:9e:e6:37:52:25:e7:82:1e:17:d3:f0:1a:20:61:d2:ae: 8e:9f:2b:9a:45:e0:01:23:6d:f1:95:37:d1:37:ca:33:2d:76: 6a:17:46:4c:db:b9:04:7b:9e:94:6b:cc:f1:75:f3:41:c6:59: 96:de:26:33:bf:8d:bc:ca:34:3f:29:5d:ff:d1:2c:cc:31:94: 44:39:0f:5e:18:cf:db:7b:c3:94:36:82:d6:c6:d2:b7:07:e1: c4:57:25:15:29:77:a2:bd:a2:f8:9d:e6:4b:cc:a8:fa:b9:f7: 6b:ed:8d:de:b2:e1:3e:58:f5:f8:9d:ee:de:2e:5a:a7:c4:f4: 69:61:b0:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIf3jkDQ/xWgvN+JRAk3fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0MzFhOTk5Y2JmMDQwYmQzNDBkMjkzNWQ4OTk2MWI1MmYw NGE0NDUwHhcNMjYwMjA5MTYwMDI2WhcNMjYwMjEwMTYwMDI2WjAzMTEwLwYDVQQD EyhkNTc5N2FmYzRhNTJlMTMwZGQ2MzQ4YTU2MTRkOGNkYWUyY2FlYTI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0SoHS8PxFaGlWCiTSqFxGlHMTV/K T737j8LgHcOg3zH+roC0yU0Uo+rOEObtaY7bV3i0nZQHz9IcggefjB+DbSjmc5IW RR6OJZLwpfEv1/BzLy9uDZs+dngNrr2gt8evScV4o6mqh8CRQYedLA5kvQ5ueWug DY6VVlC3MV+Qv9GYoLc/9BntY8TeXJuGoLAdhPQ5jbOJl6GKJkTCXHkIDjQdhTSb k9uaVfZFVdH5MqZZeGGmb6QhhB8VVaTuppLfrihtV8VQEOL60B3KX2ns8F8QX89S uGY77Z63rQXhouH6baAL1s+2VkJDLn/96JVrJyiP5NaPLUnR/L2DmzA91wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNV5evxKUuEw3WNIpWFNjNriyuomMB8GA1UdIwQY MBaAFIQxqZnL8EC9NA0pNdiZYbUvBKRFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaERHcG1jdndRTDAwRFNrMTJKbGh0UzhFcEVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS82YzJjN2EtZmMxNi00OTExLTgzZmYt MTNkOWJhMjdlNTFmLzEvaERHcG1jdndRTDAwRFNrMTJKbGh0UzhFcEVVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS82YzJjN2EtZmMxNi00OTExLTgzZmYtMTNkOWJhMjdlNTFm LzEvaERHcG1jdndRTDAwRFNrMTJKbGh0UzhFcEVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAntxFv/1M a4i3243VdnDrWL0nKl5uHxdUn7vEApgRLt01BRvVGSHp5cs5gAU+iJUIqYZEPGAE nilN3M4DTUNikRsaNiI8ukhLjcQ2HUVBkv41S2kLJ8Nhigb7vBaleCDdaF/aAoeS rGLhXNK36cnvaM7ehAuWN0hnC+4JnoUbU7ye5jdSJeeCHhfT8BogYdKujp8rmkXg ASNt8ZU30TfKMy12ahdGTNu5BHuelGvM8XXzQcZZlt4mM7+NvMo0Pyld/9EszDGU RDkPXhjP23vDlDaC1sbStwfhxFclFSl3or2i+J3mS8yo+rn3a+2N3rLhPlj1+J3u 3i5ap8T0aWGwpg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:25 2026 by rpki-client