This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.mft File: 2-DL9NZpKl5OHgHSsRL-pru_90w.mft (raw, json) Hash identifier: l9gKF71gmNr4cSe9JOL7Vpyu7mE1/SsJD3SC2eK0LNw= Subject key identifier: 9B:37:C1:6D:15:95:5C:CC:10:E6:7F:49:54:D5:0E:40:92:E2:57:E8 Authority key identifier: DB:E0:CB:F4:D6:69:2A:5E:4E:1E:01:D2:B1:12:FE:A6:BB:BF:F7:4C Certificate issuer: /CN=dbe0cbf4d6692a5e4e1e01d2b112fea6bbbff74c Certificate serial: 019C42B40D3F8FEEA1018985297C51ABAC8E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-DL9NZpKl5OHgHSsRL-pru_90w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.mft Manifest number: 0496 Signing time: Mon 09 Feb 2026 14:00:21 +0000 Manifest this update: Mon 09 Feb 2026 14:00:21 +0000 Manifest next update: Tue 10 Feb 2026 14:00:21 +0000 Files and hashes: 1: 2-DL9NZpKl5OHgHSsRL-pru_90w.crl (hash: 99j22JB5G7dLVrUjUGD7oyTp8aE8GyHQih/yh6PFXu4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.crl rsync://rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.mft rsync://rpki.ripe.net/repository/DEFAULT/2-DL9NZpKl5OHgHSsRL-pru_90w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:0d:3f:8f:ee:a1:01:89:85:29:7c:51:ab:ac:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dbe0cbf4d6692a5e4e1e01d2b112fea6bbbff74c Validity Not Before: Feb 9 14:00:21 2026 GMT Not After : Feb 10 14:00:21 2026 GMT Subject: CN=9b37c16d15955ccc10e67f4954d50e4092e257e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:94:28:b9:c4:0c:54:e7:c3:ed:46:c2:8f:f3: 43:ed:db:b4:18:a6:55:c6:34:c3:5e:e6:a4:e4:1d: 95:d3:2b:5c:f9:ca:7e:79:e1:1e:f8:ba:bc:a3:8f: 21:f2:da:1b:7d:7b:37:74:d5:44:35:de:4d:2c:b7: 70:2d:04:5b:53:21:5d:7e:63:d8:b0:2f:e2:31:ef: ef:cc:36:59:ab:4f:bb:4d:b2:52:28:8b:48:d2:42: 62:86:32:28:1c:86:a7:3a:84:f8:89:7a:41:ed:ed: 92:ab:68:42:14:ef:22:ab:bd:b8:5a:84:cd:a1:62: 46:67:3e:48:e7:d2:bf:db:6b:1d:f0:49:39:75:5a: d0:b9:f6:24:3d:3f:cd:1b:4c:b0:88:c9:bb:ca:f4: 74:4c:4b:a1:68:b8:95:45:08:04:b3:2d:03:78:a5: ba:d2:86:57:90:13:6c:0f:dc:19:72:f0:9d:71:a8: fd:65:6c:37:4a:89:a3:e3:39:3c:ee:4f:ae:87:8a: 79:33:6c:7d:e7:59:a1:c0:8b:b8:1f:26:c5:98:98: 0c:ec:e4:f3:30:2c:17:1b:35:e5:fd:08:64:c6:40: 8d:fa:6a:30:a6:59:ec:e5:6a:4e:21:e8:19:eb:24: c5:c6:98:4f:b2:f4:13:3a:ef:51:d2:db:b5:f3:3a: 7f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:37:C1:6D:15:95:5C:CC:10:E6:7F:49:54:D5:0E:40:92:E2:57:E8 X509v3 Authority Key Identifier: keyid:DB:E0:CB:F4:D6:69:2A:5E:4E:1E:01:D2:B1:12:FE:A6:BB:BF:F7:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-DL9NZpKl5OHgHSsRL-pru_90w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:91:76:cb:df:01:12:03:32:84:bf:bb:70:f4:22:30:72:c5: 17:ee:b1:56:fa:2b:d6:44:e1:93:29:1e:4b:4e:13:ee:42:cc: 12:76:8d:04:65:85:e6:5d:28:f3:1d:48:2b:32:20:12:9e:e3: d1:92:98:18:f9:5f:08:f9:ed:e4:3d:cf:10:18:36:26:b1:f7: 2b:70:4e:05:01:37:8d:a0:6f:7e:8e:e5:65:48:80:76:8d:8f: e7:cf:10:3c:a7:19:b0:90:70:8d:88:0a:2d:8b:1f:ae:fa:93: 70:29:70:8c:13:55:3f:02:31:a5:a5:fb:11:03:0a:d7:a2:01: 93:71:d6:0e:7c:f3:38:78:15:4d:57:cc:98:94:59:c6:b7:65: 3e:95:1b:3a:92:0f:fc:46:53:45:ed:85:c6:98:38:85:a9:a2: 23:57:76:76:e8:87:5d:48:75:6e:11:eb:b7:41:71:48:14:7d: e9:0e:3d:32:98:a7:be:1f:1e:e2:85:38:ea:81:c5:fc:a9:60: 0c:4d:09:cd:55:92:84:ec:9d:3e:88:30:c8:3b:65:46:f4:91: 02:17:a6:1f:c1:32:8d:f9:1f:a4:68:bc:9c:c6:fc:97:2f:91: b0:17:62:a0:d5:dd:ce:2c:17:36:4a:0e:9d:89:a9:9b:2b:89: b8:5b:10:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtA0/j+6hAYmFKXxRq6yOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiZTBjYmY0ZDY2OTJhNWU0ZTFlMDFkMmIxMTJmZWE2YmJi ZmY3NGMwHhcNMjYwMjA5MTQwMDIxWhcNMjYwMjEwMTQwMDIxWjAzMTEwLwYDVQQD Eyg5YjM3YzE2ZDE1OTU1Y2NjMTBlNjdmNDk1NGQ1MGU0MDkyZTI1N2U4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtZQoucQMVOfD7UbCj/ND7du0GKZV xjTDXuak5B2V0ytc+cp+eeEe+Lq8o48h8tobfXs3dNVENd5NLLdwLQRbUyFdfmPY sC/iMe/vzDZZq0+7TbJSKItI0kJihjIoHIanOoT4iXpB7e2Sq2hCFO8iq724WoTN oWJGZz5I59K/22sd8Ek5dVrQufYkPT/NG0ywiMm7yvR0TEuhaLiVRQgEsy0DeKW6 0oZXkBNsD9wZcvCdcaj9ZWw3Somj4zk87k+uh4p5M2x951mhwIu4HybFmJgM7OTz MCwXGzXl/QhkxkCN+mowplns5WpOIegZ6yTFxphPsvQTOu9R0tu18zp/KwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJs3wW0VlVzMEOZ/SVTVDkCS4lfoMB8GA1UdIwQY MBaAFNvgy/TWaSpeTh4B0rES/qa7v/dMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMi1ETDlOWnBLbDVPSGdIU3NSTC1wcnVfOTB3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9hZTUxOWMtMTY5MC00MGJjLWI2NzEt OTI3ZTljZjdiMDI1LzEvMi1ETDlOWnBLbDVPSGdIU3NSTC1wcnVfOTB3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy9hZTUxOWMtMTY5MC00MGJjLWI2NzEtOTI3ZTljZjdiMDI1 LzEvMi1ETDlOWnBLbDVPSGdIU3NSTC1wcnVfOTB3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM5F2y98B EgMyhL+7cPQiMHLFF+6xVvor1kThkykeS04T7kLMEnaNBGWF5l0o8x1IKzIgEp7j 0ZKYGPlfCPnt5D3PEBg2JrH3K3BOBQE3jaBvfo7lZUiAdo2P588QPKcZsJBwjYgK LYsfrvqTcClwjBNVPwIxpaX7EQMK16IBk3HWDnzzOHgVTVfMmJRZxrdlPpUbOpIP /EZTRe2Fxpg4hamiI1d2duiHXUh1bhHrt0FxSBR96Q49Mpinvh8e4oU46oHF/Klg DE0JzVWShOydPogwyDtlRvSRAhemH8EyjfkfpGi8nMb8ly+RsBdioNXdziwXNkoO nYmpmyuJuFsQGA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:45:03 2026 by rpki-client