This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft File: DAHrsNsEzE1pGCs47A30sIkiJ40.mft (raw, json) Hash identifier: e/XEcjDpDvskG027cb8/KsXZ28wVCiLnpb+8VuUPp6I= Subject key identifier: E1:B6:1F:CC:9F:79:37:B9:E5:98:93:D6:5D:D0:30:66:32:74:1B:92 Authority key identifier: 0C:01:EB:B0:DB:04:CC:4D:69:18:2B:38:EC:0D:F4:B0:89:22:27:8D Certificate issuer: /CN=0c01ebb0db04cc4d69182b38ec0df4b08922278d Certificate serial: 019C4322C0C187EAADED2794B90B6C142D28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft Manifest number: 180B Signing time: Mon 09 Feb 2026 16:01:16 +0000 Manifest this update: Mon 09 Feb 2026 16:01:16 +0000 Manifest next update: Tue 10 Feb 2026 16:01:16 +0000 Files and hashes: 1: DAHrsNsEzE1pGCs47A30sIkiJ40.crl (hash: fuiz9LemMXmwEzQU+6R8Q1mg5IF8LTvCLEOpeA7vrrs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.crl rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:c0:c1:87:ea:ad:ed:27:94:b9:0b:6c:14:2d:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0c01ebb0db04cc4d69182b38ec0df4b08922278d Validity Not Before: Feb 9 16:01:16 2026 GMT Not After : Feb 10 16:01:16 2026 GMT Subject: CN=e1b61fcc9f7937b9e59893d65dd0306632741b92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:34:4c:a9:45:91:52:e3:bb:27:da:97:49:1d: 37:9d:0e:63:f0:b1:a2:92:2b:15:93:b7:2e:2c:3d: ac:a4:61:de:3b:60:5c:91:bb:0c:6d:b3:94:9d:24: 11:bc:50:bd:5b:97:80:85:da:91:1e:96:04:d1:6e: f9:76:b6:00:c9:b7:e6:30:8b:10:0c:18:a6:f7:67: 44:50:9b:3c:93:e3:9c:35:3e:41:c4:39:bc:3b:4c: 85:d9:37:8f:c5:0b:7e:95:83:e6:46:9f:84:4b:be: 4a:d1:a2:c4:b5:58:ba:51:87:41:00:c3:40:94:aa: e2:74:d8:46:3c:d9:55:28:f8:09:05:21:e6:7f:35: b1:46:33:2a:55:a0:82:ad:43:28:47:96:37:26:3d: 51:d6:f0:c3:d2:57:6e:32:fe:92:a2:ac:b9:01:6b: f9:fb:6c:13:8c:c8:0d:4e:77:47:d8:eb:5e:50:59: d8:24:13:df:5d:47:fd:16:4b:ec:72:c0:b7:36:8d: a5:5f:c3:47:b3:61:c9:f4:b1:54:c9:00:18:f9:fa: 5e:e0:b6:e2:60:fd:f6:34:7e:38:bd:8b:3c:80:1a: 1f:7e:79:ea:96:b9:b2:55:0e:79:00:aa:22:3e:3b: c7:85:80:ee:fa:04:b0:06:ba:68:c3:1f:8e:ed:da: 40:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:B6:1F:CC:9F:79:37:B9:E5:98:93:D6:5D:D0:30:66:32:74:1B:92 X509v3 Authority Key Identifier: keyid:0C:01:EB:B0:DB:04:CC:4D:69:18:2B:38:EC:0D:F4:B0:89:22:27:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:46:58:7a:1d:d5:23:01:cd:93:58:d7:56:d4:ed:a2:d9:5f: 29:4e:03:62:c6:34:dc:9d:96:35:ed:d6:04:5e:15:7d:93:cc: 79:c0:f2:94:22:5b:6c:d6:ba:f8:de:1d:5f:15:15:29:8a:ee: 0b:92:b2:58:5e:a1:98:a0:52:c1:c1:b4:24:84:36:87:00:8e: 5b:b5:f0:39:f5:6f:df:72:8e:2b:b6:ad:30:95:b0:90:77:27: 9f:74:1a:eb:df:f9:0e:f1:59:f7:dd:e5:4f:03:92:2e:92:51: 4d:7f:5b:76:45:2d:b2:14:23:1e:8e:e7:a0:61:bb:c0:2e:06: 4e:d2:30:3f:d5:5f:7f:43:ab:7f:19:17:d5:23:ba:b5:6f:30: 82:5e:34:2f:eb:b8:39:84:e9:7e:2c:79:e4:0b:92:36:f5:d1: 5d:01:e1:51:d7:74:0e:ed:e4:03:9b:64:cb:f5:42:35:99:e9: af:bd:98:ce:04:fe:66:22:74:c1:77:6e:c9:3d:b7:fa:4d:7d: 41:50:40:27:b0:b5:b3:cd:7c:87:67:3e:60:46:a2:74:69:2a: fd:7c:91:05:e4:70:08:6e:2b:d1:d8:4b:aa:8a:48:a4:4d:09: a7:bb:ef:4a:a6:10:be:5c:9c:5d:b1:b3:54:5c:a0:43:0c:17: 0d:9e:e9:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIsDBh+qt7SeUuQtsFC0oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjMDFlYmIwZGIwNGNjNGQ2OTE4MmIzOGVjMGRmNGIwODky MjI3OGQwHhcNMjYwMjA5MTYwMTE2WhcNMjYwMjEwMTYwMTE2WjAzMTEwLwYDVQQD EyhlMWI2MWZjYzlmNzkzN2I5ZTU5ODkzZDY1ZGQwMzA2NjMyNzQxYjkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1DRMqUWRUuO7J9qXSR03nQ5j8LGi kisVk7cuLD2spGHeO2BckbsMbbOUnSQRvFC9W5eAhdqRHpYE0W75drYAybfmMIsQ DBim92dEUJs8k+OcNT5BxDm8O0yF2TePxQt+lYPmRp+ES75K0aLEtVi6UYdBAMNA lKridNhGPNlVKPgJBSHmfzWxRjMqVaCCrUMoR5Y3Jj1R1vDD0lduMv6Soqy5AWv5 +2wTjMgNTndH2OteUFnYJBPfXUf9FkvscsC3No2lX8NHs2HJ9LFUyQAY+fpe4Lbi YP32NH44vYs8gBoffnnqlrmyVQ55AKoiPjvHhYDu+gSwBrpowx+O7dpAOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOG2H8yfeTe55ZiT1l3QMGYydBuSMB8GA1UdIwQY MBaAFAwB67DbBMxNaRgrOOwN9LCJIieNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvREFIcnNOc0V6RTFwR0NzNDdBMzBzSWtpSjQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9lOTg2ODQtMzAyYy00YmE4LWFiN2Yt YTEwMzg3NGU3YzRmLzEvREFIcnNOc0V6RTFwR0NzNDdBMzBzSWtpSjQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9lOTg2ODQtMzAyYy00YmE4LWFiN2YtYTEwMzg3NGU3YzRm LzEvREFIcnNOc0V6RTFwR0NzNDdBMzBzSWtpSjQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEEZYeh3V IwHNk1jXVtTtotlfKU4DYsY03J2WNe3WBF4VfZPMecDylCJbbNa6+N4dXxUVKYru C5KyWF6hmKBSwcG0JIQ2hwCOW7XwOfVv33KOK7atMJWwkHcnn3Qa69/5DvFZ993l TwOSLpJRTX9bdkUtshQjHo7noGG7wC4GTtIwP9Vff0OrfxkX1SO6tW8wgl40L+u4 OYTpfix55AuSNvXRXQHhUdd0Du3kA5tky/VCNZnpr72YzgT+ZiJ0wXduyT23+k19 QVBAJ7C1s818h2c+YEaidGkq/XyRBeRwCG4r0dhLqopIpE0Jp7vvSqYQvlycXbGz VFygQwwXDZ7p1g== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:33 2026 by rpki-client