This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.mft File: DT66aHPFtQdbPEOff-61SvHxDak.mft (raw, json) Hash identifier: w7PD+hLl0Kn+a7pOGhsT5TB4Vh7ogN/YkCi0fn579yQ= Subject key identifier: AB:71:E8:1E:74:8A:BA:2F:F2:E3:8C:76:8A:BD:BE:64:36:4F:59:FE Authority key identifier: 0D:3E:BA:68:73:C5:B5:07:5B:3C:43:9F:7F:EE:B5:4A:F1:F1:0D:A9 Certificate issuer: /CN=0d3eba6873c5b5075b3c439f7feeb54af1f10da9 Certificate serial: 019C41D87D46B14405DC2F009D94C0A40E36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DT66aHPFtQdbPEOff-61SvHxDak.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.mft Manifest number: 1817 Signing time: Mon 09 Feb 2026 10:00:32 +0000 Manifest this update: Mon 09 Feb 2026 10:00:32 +0000 Manifest next update: Tue 10 Feb 2026 10:00:32 +0000 Files and hashes: 1: DT66aHPFtQdbPEOff-61SvHxDak.crl (hash: VWzfC+yloGZkRZ+hovsDW4VO0YhNPutnRCtAF7MblrM=) 2: UHX8LoJItxLXbSSkLElmcrzzhts.roa (hash: j+K6pcnA4SNCVnoj07hqtnhu76mvNIjpIA6tG3zdI5o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.crl rsync://rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.mft rsync://rpki.ripe.net/repository/DEFAULT/DT66aHPFtQdbPEOff-61SvHxDak.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:7d:46:b1:44:05:dc:2f:00:9d:94:c0:a4:0e:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d3eba6873c5b5075b3c439f7feeb54af1f10da9 Validity Not Before: Feb 9 10:00:32 2026 GMT Not After : Feb 10 10:00:32 2026 GMT Subject: CN=ab71e81e748aba2ff2e38c768abdbe64364f59fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a1:54:53:39:18:11:71:18:cb:f9:60:e7:05: b3:93:68:78:13:fb:5b:91:75:de:0d:66:8a:f2:0a: 33:68:4d:f2:f0:f3:41:3a:a1:4d:73:49:cc:95:f4: 09:c2:77:97:1a:e6:42:1a:ce:1e:ba:a8:92:ca:ba: 76:2b:dc:e6:8a:c0:43:6b:f6:41:cd:c4:c4:b4:6b: f4:b4:6b:da:50:ac:48:23:9a:d0:15:d1:1a:66:20: e5:61:a4:8b:16:db:7c:22:85:29:c7:4c:5b:75:c1: 48:64:3e:66:13:66:2d:05:3d:31:bd:99:bc:f3:25: e5:28:66:f6:79:bf:04:49:c7:0e:0a:97:49:c4:c5: 2b:20:49:16:f7:8e:13:13:64:a9:4c:a7:2f:4c:d9: 56:e7:b7:7d:26:c3:af:91:95:62:6f:e6:5d:38:d4: 2e:d9:2e:3c:fe:dc:d5:0a:eb:2a:54:c4:a5:a9:5b: ab:8e:49:3d:fc:82:c9:8f:43:a8:cb:a6:5d:bf:bd: d6:32:25:79:ba:6e:f7:40:65:f3:91:7a:fe:d3:54: d0:ef:09:ee:b8:ab:ca:bc:ff:4e:52:e7:c3:17:4c: 3e:f2:0b:4e:c4:44:9e:fe:1d:e3:ec:9e:7f:ef:bc: 4a:da:6c:3d:bd:27:b7:1d:c6:26:88:05:64:ab:e6: 83:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:71:E8:1E:74:8A:BA:2F:F2:E3:8C:76:8A:BD:BE:64:36:4F:59:FE X509v3 Authority Key Identifier: keyid:0D:3E:BA:68:73:C5:B5:07:5B:3C:43:9F:7F:EE:B5:4A:F1:F1:0D:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DT66aHPFtQdbPEOff-61SvHxDak.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/3383f1-0428-464b-bd1e-27998bf17465/1/DT66aHPFtQdbPEOff-61SvHxDak.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:a0:00:ea:2d:13:5a:9b:42:9b:35:9a:97:19:96:f3:75:f2: 73:95:2e:4b:f4:09:a9:54:62:02:67:36:b8:34:9d:64:d3:dc: d5:6d:ec:25:62:b1:35:51:f7:a0:78:df:6e:cd:b3:43:90:12: 9a:64:5c:86:79:04:bc:96:7b:ff:46:87:5f:e2:17:00:b3:72: 4a:24:89:46:07:ff:d1:7d:ca:0c:36:bc:29:a6:2b:c6:b4:a0: 4d:c8:15:1c:7b:cb:57:a8:6c:c6:9b:8f:da:82:a0:bc:3a:82: 4c:a6:e7:ac:81:8e:40:e3:f9:bd:fc:ed:ff:81:d0:d4:ab:a7: 82:8d:c1:88:1a:e1:14:a0:00:91:3a:ab:88:9e:0a:a5:67:cc: 2f:b0:69:79:1a:8b:1d:9f:62:2f:45:51:c8:eb:74:38:5e:74: b6:32:aa:ed:af:e7:56:96:7a:ff:c1:4f:5a:d7:b7:93:93:b6: 06:12:d5:c7:85:ae:6f:0c:af:7a:6a:fd:8b:65:37:4c:10:92: 43:e2:b1:06:b1:75:6c:e7:15:39:d7:9f:87:da:ac:54:af:ed: e5:08:51:1c:b6:39:ae:6d:2f:1a:1e:ae:d6:a6:94:a7:99:bf: 45:4f:1f:ed:be:3c:73:f9:ac:24:5b:67:ab:e0:09:f6:5b:b5: 35:f3:57:ae -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2H1GsUQF3C8AnZTApA42MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkM2ViYTY4NzNjNWI1MDc1YjNjNDM5ZjdmZWViNTRhZjFm MTBkYTkwHhcNMjYwMjA5MTAwMDMyWhcNMjYwMjEwMTAwMDMyWjAzMTEwLwYDVQQD EyhhYjcxZTgxZTc0OGFiYTJmZjJlMzhjNzY4YWJkYmU2NDM2NGY1OWZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA26FUUzkYEXEYy/lg5wWzk2h4E/tb kXXeDWaK8gozaE3y8PNBOqFNc0nMlfQJwneXGuZCGs4euqiSyrp2K9zmisBDa/ZB zcTEtGv0tGvaUKxII5rQFdEaZiDlYaSLFtt8IoUpx0xbdcFIZD5mE2YtBT0xvZm8 8yXlKGb2eb8ESccOCpdJxMUrIEkW944TE2SpTKcvTNlW57d9JsOvkZVib+ZdONQu 2S48/tzVCusqVMSlqVurjkk9/ILJj0Ooy6Zdv73WMiV5um73QGXzkXr+01TQ7wnu uKvKvP9OUufDF0w+8gtOxESe/h3j7J5/77xK2mw9vSe3HcYmiAVkq+aDqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKtx6B50irov8uOMdoq9vmQ2T1n+MB8GA1UdIwQY MBaAFA0+umhzxbUHWzxDn3/utUrx8Q2pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFQ2NmFIUEZ0UWRiUEVPZmYtNjFTdkh4RGFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8zMzgzZjEtMDQyOC00NjRiLWJkMWUt Mjc5OThiZjE3NDY1LzEvRFQ2NmFIUEZ0UWRiUEVPZmYtNjFTdkh4RGFrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS8zMzgzZjEtMDQyOC00NjRiLWJkMWUtMjc5OThiZjE3NDY1 LzEvRFQ2NmFIUEZ0UWRiUEVPZmYtNjFTdkh4RGFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMKAA6i0T WptCmzWalxmW83Xyc5UuS/QJqVRiAmc2uDSdZNPc1W3sJWKxNVH3oHjfbs2zQ5AS mmRchnkEvJZ7/0aHX+IXALNySiSJRgf/0X3KDDa8KaYrxrSgTcgVHHvLV6hsxpuP 2oKgvDqCTKbnrIGOQOP5vfzt/4HQ1Kungo3BiBrhFKAAkTqriJ4KpWfML7BpeRqL HZ9iL0VRyOt0OF50tjKq7a/nVpZ6/8FPWte3k5O2BhLVx4Wubwyvemr9i2U3TBCS Q+KxBrF1bOcVOdefh9qsVK/t5QhRHLY5rm0vGh6u1qaUp5m/RU8f7b48c/msJFtn q+AJ9lu1NfNXrg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:01 2026 by rpki-client