This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft File: 28lQCYQ2KBzuVCoedFRlUeHlUoM.mft (raw, json) Hash identifier: iK6BYY/Og+niZvy5R7Du/4z7iyZ3b8LjMQoXHG3Lojk= Subject key identifier: 72:9E:3C:AA:BD:68:EA:91:98:04:B5:CF:52:2C:D5:96:3A:68:BF:D7 Authority key identifier: DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83 Certificate issuer: /CN=dbc950098436281cee542a1e74546551e1e55283 Certificate serial: 019C42B46F28DC9ABADD50E5523E5BCAC6B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft Manifest number: 1813 Signing time: Mon 09 Feb 2026 14:00:46 +0000 Manifest this update: Mon 09 Feb 2026 14:00:46 +0000 Manifest next update: Tue 10 Feb 2026 14:00:46 +0000 Files and hashes: 1: 28lQCYQ2KBzuVCoedFRlUeHlUoM.crl (hash: VcILuCRTBxjsSqeg9V5utbQU6tT0DB/a3vsYALfkLfk=) 2: S-s-KrbF6j3sLJbs4p0tEnINwc4.roa (hash: lbsHHCPLu65Xu8v8V5wooAKg5OLW3IhHzjvdCT203Bc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:6f:28:dc:9a:ba:dd:50:e5:52:3e:5b:ca:c6:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dbc950098436281cee542a1e74546551e1e55283 Validity Not Before: Feb 9 14:00:46 2026 GMT Not After : Feb 10 14:00:46 2026 GMT Subject: CN=729e3caabd68ea919804b5cf522cd5963a68bfd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f1:ca:68:c6:f5:55:28:8c:43:d6:6f:68:ec: 70:13:b6:cc:96:e2:a6:52:3b:94:fa:24:97:74:72: 49:9a:9c:ee:70:cb:ae:6e:91:63:0d:3b:7a:79:d1: 76:59:36:52:3a:cb:61:2e:b3:ac:fa:2d:d4:d1:07: 82:98:85:70:d8:75:50:ab:e1:d3:e8:34:62:13:81: 48:07:b4:3e:fd:72:0b:59:5a:03:a0:49:56:35:8d: eb:c0:4d:1f:8d:ac:cb:20:1c:62:1c:0a:9b:94:cb: 1b:36:62:9a:4b:9b:51:9a:9e:f5:98:27:a7:ee:49: d1:86:f7:6d:68:4d:3f:7d:15:ad:7d:88:07:9b:c5: 0c:7a:7c:2d:d7:0f:bd:12:4e:d8:4f:dd:e4:e9:0e: 24:00:67:6f:e8:d1:b2:a5:11:33:30:99:65:1d:90: fb:0f:09:8d:5e:92:31:be:f3:24:f9:7b:1c:9d:cf: 38:8b:ee:54:f4:2c:3a:8c:21:b9:e5:0a:2d:2e:68: 01:aa:23:a0:b9:f7:0a:ca:d4:69:ce:7e:d0:ed:d1: 41:55:75:0e:9f:3c:98:d9:bd:6e:f3:06:8d:1c:b9: b7:22:ab:b5:f7:36:c5:08:38:db:9e:40:82:1b:dd: d8:19:89:e4:4f:9d:2c:aa:2f:39:03:54:58:ff:c5: 38:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:9E:3C:AA:BD:68:EA:91:98:04:B5:CF:52:2C:D5:96:3A:68:BF:D7 X509v3 Authority Key Identifier: keyid:DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:98:db:cd:ca:9f:8a:03:35:50:e2:ab:a0:af:a1:ee:3f:12: 38:96:1e:03:e7:ba:88:24:37:5c:3e:e5:12:8c:77:7c:b2:15: 62:bf:60:a2:85:0a:10:9c:3e:33:87:c7:b7:e7:53:9c:54:84: 58:6c:57:46:0b:d3:55:a0:6f:a1:34:3a:36:c1:99:bf:19:27: a0:24:21:f1:20:ca:43:3a:d0:0f:20:a6:4d:de:6f:2a:b5:11: 8c:dc:95:13:6e:c2:b1:e4:fe:ea:6b:8c:27:b8:02:90:a9:61: 8c:90:83:8c:38:4e:e8:2d:cc:31:80:ec:dd:76:aa:12:4d:65: e4:ed:9b:93:6c:6d:db:54:82:f8:c9:9e:62:56:61:0f:a6:8d: bd:b2:b3:77:1b:aa:07:27:ab:b7:4c:a7:40:49:08:0f:32:ff: 12:7c:e3:52:0b:a2:e5:04:24:ad:3c:af:3e:97:fd:61:a8:33: ec:00:93:fa:16:84:66:73:46:87:a3:df:38:52:13:b1:8e:77: 7c:18:b3:e7:fe:a0:60:03:9a:ad:bc:14:7b:25:46:95:6a:fb: 26:91:a7:68:89:23:8f:e3:82:eb:b9:7b:d7:f6:d3:0b:47:e0: d3:06:2b:ca:54:2c:26:84:2c:a3:d0:b8:e0:e9:0e:8d:ff:9b: e7:a4:ac:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtG8o3Jq63VDlUj5bysa5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiYzk1MDA5ODQzNjI4MWNlZTU0MmExZTc0NTQ2NTUxZTFl NTUyODMwHhcNMjYwMjA5MTQwMDQ2WhcNMjYwMjEwMTQwMDQ2WjAzMTEwLwYDVQQD Eyg3MjllM2NhYWJkNjhlYTkxOTgwNGI1Y2Y1MjJjZDU5NjNhNjhiZmQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsvHKaMb1VSiMQ9ZvaOxwE7bMluKm UjuU+iSXdHJJmpzucMuubpFjDTt6edF2WTZSOsthLrOs+i3U0QeCmIVw2HVQq+HT 6DRiE4FIB7Q+/XILWVoDoElWNY3rwE0fjazLIBxiHAqblMsbNmKaS5tRmp71mCen 7knRhvdtaE0/fRWtfYgHm8UMenwt1w+9Ek7YT93k6Q4kAGdv6NGypREzMJllHZD7 DwmNXpIxvvMk+Xscnc84i+5U9Cw6jCG55QotLmgBqiOgufcKytRpzn7Q7dFBVXUO nzyY2b1u8waNHLm3Iqu19zbFCDjbnkCCG93YGYnkT50sqi85A1RY/8U4BQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHKePKq9aOqRmAS1z1Is1ZY6aL/XMB8GA1UdIwQY MBaAFNvJUAmENigc7lQqHnRUZVHh5VKDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjhsUUNZUTJLQnp1VkNvZWRGUmxVZUhsVW9NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi81YWE0NDgtNjQzZi00YWVlLTkwZDkt ZjQ3ZTE2OTI2NmMyLzEvMjhsUUNZUTJLQnp1VkNvZWRGUmxVZUhsVW9NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi81YWE0NDgtNjQzZi00YWVlLTkwZDktZjQ3ZTE2OTI2NmMy LzEvMjhsUUNZUTJLQnp1VkNvZWRGUmxVZUhsVW9NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADZjbzcqf igM1UOKroK+h7j8SOJYeA+e6iCQ3XD7lEox3fLIVYr9gooUKEJw+M4fHt+dTnFSE WGxXRgvTVaBvoTQ6NsGZvxknoCQh8SDKQzrQDyCmTd5vKrURjNyVE27CseT+6muM J7gCkKlhjJCDjDhO6C3MMYDs3XaqEk1l5O2bk2xt21SC+MmeYlZhD6aNvbKzdxuq Byert0ynQEkIDzL/EnzjUgui5QQkrTyvPpf9Yagz7ACT+haEZnNGh6PfOFITsY53 fBiz5/6gYAOarbwUeyVGlWr7JpGnaIkjj+OC67l71/bTC0fg0wYrylQsJoQso9C4 4OkOjf+b56Ssqg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:45:10 2026 by rpki-client