This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft File: DUlCfYpEd823aAhhqexQ3HMhaYI.mft (raw, json) Hash identifier: VkD3DCI6LqbesJfGnY/iSsSgMYNAMHITiTV+nK+SUIg= Subject key identifier: B7:3F:A5:D9:A4:53:4B:E1:12:7D:C4:61:DF:1A:1A:24:46:25:66:5B Authority key identifier: 0D:49:42:7D:8A:44:77:CD:B7:68:08:61:A9:EC:50:DC:73:21:69:82 Certificate issuer: /CN=0d49427d8a4477cdb7680861a9ec50dc73216982 Certificate serial: 019C4321FB62589C181896186387FC0AB211 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DUlCfYpEd823aAhhqexQ3HMhaYI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft Manifest number: 089C Signing time: Mon 09 Feb 2026 16:00:26 +0000 Manifest this update: Mon 09 Feb 2026 16:00:26 +0000 Manifest next update: Tue 10 Feb 2026 16:00:26 +0000 Files and hashes: 1: DUlCfYpEd823aAhhqexQ3HMhaYI.crl (hash: fUp0R84eTy3+6+dPoJEwrUfivLiCTMGB5XRpV8achHQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.crl rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft rsync://rpki.ripe.net/repository/DEFAULT/DUlCfYpEd823aAhhqexQ3HMhaYI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:fb:62:58:9c:18:18:96:18:63:87:fc:0a:b2:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d49427d8a4477cdb7680861a9ec50dc73216982 Validity Not Before: Feb 9 16:00:26 2026 GMT Not After : Feb 10 16:00:26 2026 GMT Subject: CN=b73fa5d9a4534be1127dc461df1a1a244625665b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:ab:17:39:c5:04:0e:e7:ba:e2:ac:0c:32:07: 2b:06:a3:1d:2f:8d:40:95:9e:43:c9:49:64:63:83: c7:64:93:4e:64:b9:15:9e:8c:79:ca:08:96:f9:b9: 72:59:db:91:3e:5d:a1:f7:6e:35:c2:86:30:57:21: ab:4c:ef:12:4c:3c:63:69:e4:27:f8:25:ab:5b:18: 73:36:96:8a:fb:fd:c6:22:fd:c7:82:10:9d:34:83: d2:d6:54:72:07:1c:ab:70:fc:ee:e3:48:a8:aa:7f: 38:2d:14:eb:c6:0a:06:3d:26:fe:c9:78:c2:d1:de: fe:61:23:4a:bc:c3:86:a2:d8:da:8b:c7:f5:1e:de: e1:a3:0d:b6:70:b0:4d:e2:d1:5a:ad:00:6e:e8:82: 18:70:b5:db:59:d2:b4:78:9d:00:35:ff:c4:c9:7b: f1:68:92:df:2d:05:31:fb:9a:fa:67:19:d2:02:d4: 19:58:d6:49:fe:7c:9f:0d:5f:f4:94:e1:66:0c:3e: 9f:20:13:75:2f:28:c6:1b:ec:28:76:d3:76:e6:6d: 6e:4e:d4:1f:25:63:d9:ac:d7:c7:50:d6:c1:b9:b8: c2:b3:5c:c9:85:38:73:f3:3f:ff:68:88:22:aa:42: e0:82:84:8a:40:32:95:8d:e4:1f:13:72:1d:8a:7e: 95:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:3F:A5:D9:A4:53:4B:E1:12:7D:C4:61:DF:1A:1A:24:46:25:66:5B X509v3 Authority Key Identifier: keyid:0D:49:42:7D:8A:44:77:CD:B7:68:08:61:A9:EC:50:DC:73:21:69:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DUlCfYpEd823aAhhqexQ3HMhaYI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:29:a7:27:5e:0e:3f:37:d2:c9:b2:a6:bf:f5:9e:c8:0c:23: 21:e9:5a:09:46:8f:5d:50:29:3b:65:b8:1e:a0:03:ad:95:7b: 79:51:30:b1:2b:15:17:10:8d:fa:62:80:37:0e:91:31:ac:22: 9a:98:4a:5a:a0:a0:d5:87:e6:27:04:9d:42:d3:19:21:47:4e: b6:54:9d:2f:84:76:92:26:c4:2e:b2:5e:76:fa:61:cb:75:0d: a7:b7:0f:e9:55:0a:73:5b:97:75:9e:37:95:c4:88:d9:f5:80: 80:13:ad:75:35:5d:db:70:42:63:51:9a:32:37:60:89:f8:cc: dc:22:f8:e7:04:75:37:f9:29:db:48:ef:cf:3d:57:99:6b:3f: 4b:0f:a9:bb:32:72:bf:a3:f9:61:b4:43:15:7e:59:1f:80:fc: 7d:95:de:41:7d:2e:83:cb:8d:a2:f0:2a:c1:cd:9d:e3:da:f6: f0:33:8d:ac:a3:19:fa:45:58:a0:44:90:a5:e6:1b:83:49:a2: 02:14:b9:3e:9f:42:99:91:10:1f:05:b3:d1:67:68:1a:7b:fb: da:c2:79:29:82:98:6f:5a:ff:13:fa:c4:17:c8:be:b4:ae:0a: dd:4c:d6:31:71:38:3f:93:ed:a3:3b:11:8e:f1:06:e7:44:37: cf:c3:8c:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIftiWJwYGJYYY4f8CrIRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkNDk0MjdkOGE0NDc3Y2RiNzY4MDg2MWE5ZWM1MGRjNzMy MTY5ODIwHhcNMjYwMjA5MTYwMDI2WhcNMjYwMjEwMTYwMDI2WjAzMTEwLwYDVQQD EyhiNzNmYTVkOWE0NTM0YmUxMTI3ZGM0NjFkZjFhMWEyNDQ2MjU2NjViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk6sXOcUEDue64qwMMgcrBqMdL41A lZ5DyUlkY4PHZJNOZLkVnox5ygiW+blyWduRPl2h9241woYwVyGrTO8STDxjaeQn +CWrWxhzNpaK+/3GIv3HghCdNIPS1lRyBxyrcPzu40ioqn84LRTrxgoGPSb+yXjC 0d7+YSNKvMOGotjai8f1Ht7how22cLBN4tFarQBu6IIYcLXbWdK0eJ0ANf/EyXvx aJLfLQUx+5r6ZxnSAtQZWNZJ/nyfDV/0lOFmDD6fIBN1LyjGG+wodtN25m1uTtQf JWPZrNfHUNbBubjCs1zJhThz8z//aIgiqkLggoSKQDKVjeQfE3Idin6VMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLc/pdmkU0vhEn3EYd8aGiRGJWZbMB8GA1UdIwQY MBaAFA1JQn2KRHfNt2gIYansUNxzIWmCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFVsQ2ZZcEVkODIzYUFoaHFleFEzSE1oYVlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS84OWRkMjUtNTQ2Yy00ZjE4LWFjYzQt N2E0MDU3MzE0MTY3LzEvRFVsQ2ZZcEVkODIzYUFoaHFleFEzSE1oYVlJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS84OWRkMjUtNTQ2Yy00ZjE4LWFjYzQtN2E0MDU3MzE0MTY3 LzEvRFVsQ2ZZcEVkODIzYUFoaHFleFEzSE1oYVlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFymnJ14O PzfSybKmv/WeyAwjIelaCUaPXVApO2W4HqADrZV7eVEwsSsVFxCN+mKANw6RMawi mphKWqCg1YfmJwSdQtMZIUdOtlSdL4R2kibELrJedvphy3UNp7cP6VUKc1uXdZ43 lcSI2fWAgBOtdTVd23BCY1GaMjdgifjM3CL45wR1N/kp20jvzz1XmWs/Sw+puzJy v6P5YbRDFX5ZH4D8fZXeQX0ug8uNovAqwc2d49r28DONrKMZ+kVYoESQpeYbg0mi AhS5Pp9CmZEQHwWz0WdoGnv72sJ5KYKYb1r/E/rEF8i+tK4K3UzWMXE4P5PtozsR jvEG50Q3z8OMnQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:36 2026 by rpki-client