This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.mft File: 98_k1DTTh2RAV9JB6sb2nT7oHBI.mft (raw, json) Hash identifier: FGr35LEXiNjCZRqCyYG1J8vVNGQdvDbglgEwZebZjMI= Subject key identifier: B3:2E:7C:45:39:89:A2:6F:C8:C8:50:B6:3B:EA:B6:EF:85:30:A3:C3 Authority key identifier: F7:CF:E4:D4:34:D3:87:64:40:57:D2:41:EA:C6:F6:9D:3E:E8:1C:12 Certificate issuer: /CN=f7cfe4d434d387644057d241eac6f69d3ee81c12 Certificate serial: 019C420F3DE5F81114B9213CE4B5389EFFF2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/98_k1DTTh2RAV9JB6sb2nT7oHBI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.mft Manifest number: 0A35 Signing time: Mon 09 Feb 2026 11:00:20 +0000 Manifest this update: Mon 09 Feb 2026 11:00:20 +0000 Manifest next update: Tue 10 Feb 2026 11:00:20 +0000 Files and hashes: 1: 98_k1DTTh2RAV9JB6sb2nT7oHBI.crl (hash: +1ipDaAVjENx/BJEAc6B4x5IPVuaGvy9T1y/ydLiulc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.crl rsync://rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.mft rsync://rpki.ripe.net/repository/DEFAULT/98_k1DTTh2RAV9JB6sb2nT7oHBI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:3d:e5:f8:11:14:b9:21:3c:e4:b5:38:9e:ff:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f7cfe4d434d387644057d241eac6f69d3ee81c12 Validity Not Before: Feb 9 11:00:20 2026 GMT Not After : Feb 10 11:00:20 2026 GMT Subject: CN=b32e7c453989a26fc8c850b63beab6ef8530a3c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:13:e0:69:9e:59:e2:71:59:c2:d0:7a:15:5c: 23:75:e4:d1:83:23:23:66:d4:a1:66:0b:3b:22:9c: e6:c6:71:38:a0:ee:ce:e0:f9:96:c9:27:b3:d5:5a: 38:ff:7a:3d:ba:ff:2a:9f:b8:c1:61:7e:43:9c:b3: 4c:09:dc:e6:47:fe:d0:46:1a:24:6f:35:bf:ab:47: d4:3b:ba:4c:f8:85:07:04:b0:5a:50:48:fd:38:82: 2d:88:f1:10:5c:b0:79:f5:c6:50:fb:77:92:9c:18: ef:27:4a:79:73:9a:79:8d:86:8a:d1:85:58:8e:9b: ef:6f:cb:0c:35:df:4f:3b:d5:0d:d9:aa:50:1a:b2: 03:86:71:06:3d:0c:ee:30:90:c3:f5:16:9a:70:2e: 34:6d:1b:9d:e3:ce:8d:d6:49:1a:91:17:ed:85:24: 82:10:5b:d2:f3:6b:63:49:a6:47:df:76:05:f4:93: 97:68:60:ab:8f:85:b4:2e:9c:3e:1f:87:03:58:13: 22:de:04:3f:ba:bc:29:90:f4:04:61:1d:43:ac:9c: 39:82:6c:b1:01:9f:88:7b:48:f8:78:70:36:5d:9f: dc:29:39:7d:e3:ab:88:5a:69:99:b2:d9:41:7a:a4: 27:97:53:43:3d:8b:aa:5c:97:90:bd:d0:7d:db:f9: 91:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:2E:7C:45:39:89:A2:6F:C8:C8:50:B6:3B:EA:B6:EF:85:30:A3:C3 X509v3 Authority Key Identifier: keyid:F7:CF:E4:D4:34:D3:87:64:40:57:D2:41:EA:C6:F6:9D:3E:E8:1C:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/98_k1DTTh2RAV9JB6sb2nT7oHBI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:38:78:18:9d:42:c2:e3:91:6b:bb:0a:2c:e5:cb:fe:ab:7c: f5:21:7e:16:07:bb:fe:a6:b4:81:4f:c5:58:ca:9d:fb:16:10: c1:12:7d:3e:b3:df:d8:97:81:b0:4c:8f:ad:c9:fa:77:df:a9: 39:37:5c:2b:41:18:b3:5c:80:2c:46:40:4d:49:97:db:ca:a5: 90:ca:e4:01:8e:9e:58:8e:1b:dd:2e:e4:e8:54:5d:7e:8d:ff: 27:dd:05:ab:c2:8a:01:8e:59:21:ce:1b:df:d4:d7:db:05:1c: 80:00:16:b6:24:a0:09:cf:70:6b:8e:67:b3:f0:ad:70:ee:c9: 9c:7f:91:95:1f:c4:c5:b7:8f:e5:ea:31:7f:85:ae:ff:f4:3e: d6:13:39:71:a5:53:49:16:b2:65:ef:f2:0a:02:93:9e:93:a8: bd:c2:51:d0:9c:16:60:11:f7:65:fa:8d:f2:75:b7:73:29:df: 7b:26:1f:5b:47:72:a0:e5:ed:e8:0c:bc:3c:4b:8a:9f:df:98: 0e:66:ba:92:f1:70:6b:f4:27:42:e6:c3:08:e0:58:de:8d:5f: be:0c:35:27:f7:2a:ee:e7:e4:20:86:46:9e:1b:27:b5:bd:9d: ee:60:4f:f9:b0:c3:4e:47:0e:2d:b6:2b:7a:5c:0d:a1:75:57: 60:6e:33:75 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCDz3l+BEUuSE85LU4nv/yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3Y2ZlNGQ0MzRkMzg3NjQ0MDU3ZDI0MWVhYzZmNjlkM2Vl ODFjMTIwHhcNMjYwMjA5MTEwMDIwWhcNMjYwMjEwMTEwMDIwWjAzMTEwLwYDVQQD EyhiMzJlN2M0NTM5ODlhMjZmYzhjODUwYjYzYmVhYjZlZjg1MzBhM2MzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAthPgaZ5Z4nFZwtB6FVwjdeTRgyMj ZtShZgs7IpzmxnE4oO7O4PmWySez1Vo4/3o9uv8qn7jBYX5DnLNMCdzmR/7QRhok bzW/q0fUO7pM+IUHBLBaUEj9OIItiPEQXLB59cZQ+3eSnBjvJ0p5c5p5jYaK0YVY jpvvb8sMNd9PO9UN2apQGrIDhnEGPQzuMJDD9RaacC40bRud486N1kkakRfthSSC EFvS82tjSaZH33YF9JOXaGCrj4W0Lpw+H4cDWBMi3gQ/urwpkPQEYR1DrJw5gmyx AZ+Ie0j4eHA2XZ/cKTl946uIWmmZstlBeqQnl1NDPYuqXJeQvdB92/mRowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLMufEU5iaJvyMhQtjvqtu+FMKPDMB8GA1UdIwQY MBaAFPfP5NQ004dkQFfSQerG9p0+6BwSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOThfazFEVFRoMlJBVjlKQjZzYjJuVDdvSEJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8wYzgwMDgtOGE1Mi00MTc2LWI2OTMt YzQwNTQ0MjgxZWIwLzEvOThfazFEVFRoMlJBVjlKQjZzYjJuVDdvSEJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi8wYzgwMDgtOGE1Mi00MTc2LWI2OTMtYzQwNTQ0MjgxZWIw LzEvOThfazFEVFRoMlJBVjlKQjZzYjJuVDdvSEJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbjh4GJ1C wuORa7sKLOXL/qt89SF+Fge7/qa0gU/FWMqd+xYQwRJ9PrPf2JeBsEyPrcn6d9+p OTdcK0EYs1yALEZATUmX28qlkMrkAY6eWI4b3S7k6FRdfo3/J90Fq8KKAY5ZIc4b 39TX2wUcgAAWtiSgCc9wa45ns/CtcO7JnH+RlR/ExbeP5eoxf4Wu//Q+1hM5caVT SRayZe/yCgKTnpOovcJR0JwWYBH3ZfqN8nW3cynfeyYfW0dyoOXt6Ay8PEuKn9+Y Dma6kvFwa/QnQubDCOBY3o1fvgw1J/cq7ufkIIZGnhsntb2d7mBP+bDDTkcOLbYr elwNoXVXYG4zdQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:10 2026 by rpki-client