This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft File: cdiwl1czMSbftYNIDqji09NGwI0.mft (raw, json) Hash identifier: H+iWWwEbLtQRXz4MOAAbzUzVGFuu3kzlinAlGGsZKEk= Subject key identifier: B4:72:C3:7B:A5:62:1B:CB:47:C6:74:DA:02:F1:C1:E1:C9:BF:51:0F Authority key identifier: 71:D8:B0:97:57:33:31:26:DF:B5:83:48:0E:A8:E2:D3:D3:46:C0:8D Certificate issuer: /CN=71d8b09757333126dfb583480ea8e2d3d346c08d Certificate serial: 019C42EB918C3F38C5E5C4D832C85771759C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdiwl1czMSbftYNIDqji09NGwI0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft Manifest number: 0128 Signing time: Mon 09 Feb 2026 15:01:00 +0000 Manifest this update: Mon 09 Feb 2026 15:01:00 +0000 Manifest next update: Tue 10 Feb 2026 15:01:00 +0000 Files and hashes: 1: cdiwl1czMSbftYNIDqji09NGwI0.crl (hash: ItZnXf+bLG79solHkcWx8MG/1HcUr69iaUNkDUWAC7Q=) 2: d7QLV60EzdcK6Z9SHb-OI9Vui7M.roa (hash: rchiT/bvXuEanUa+M3WmCKgTEc1BUzo1gca2cFJPRLs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.crl rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft rsync://rpki.ripe.net/repository/DEFAULT/cdiwl1czMSbftYNIDqji09NGwI0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:91:8c:3f:38:c5:e5:c4:d8:32:c8:57:71:75:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71d8b09757333126dfb583480ea8e2d3d346c08d Validity Not Before: Feb 9 15:01:00 2026 GMT Not After : Feb 10 15:01:00 2026 GMT Subject: CN=b472c37ba5621bcb47c674da02f1c1e1c9bf510f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:07:49:56:6b:7d:05:32:e2:1e:15:a7:f8:a2: 1a:a7:e5:71:02:75:c2:17:de:53:ae:33:fb:74:4c: 35:b2:53:bb:03:7d:59:ea:35:70:eb:8d:5a:08:aa: ac:7f:85:fa:9b:75:96:6d:0a:7b:ab:8c:f5:12:45: ab:a6:0f:e2:16:0d:4e:fb:8c:8d:b2:88:e7:79:ad: 03:7c:47:f2:4f:c4:a3:66:02:0c:b8:c7:4b:f5:a3: 50:b3:78:78:d6:b2:6c:8a:1a:39:a1:5e:2e:72:8d: 69:5b:6e:4f:2c:5c:e3:70:a7:2b:f3:b2:32:52:ee: d4:01:e2:c9:8a:0b:2c:d8:ff:24:65:b9:f3:2e:32: 34:65:4b:8f:77:fb:13:fa:7e:52:40:0b:b6:bc:a3: 95:f6:b5:3a:5e:6b:b4:5d:ae:4e:da:bb:9a:c3:c2: 99:b9:b9:45:e0:0a:ab:0c:ef:bc:0f:ec:62:49:92: 5e:5b:07:87:d0:b0:ea:36:ae:92:42:b8:59:66:9b: fb:d7:c6:42:be:10:6d:47:c7:9a:44:09:d0:a9:33: d1:01:ba:a4:f4:7b:18:1f:5d:82:2b:4e:97:e2:1d: 34:87:78:af:27:73:5c:8e:36:b5:c0:b2:9a:dd:1e: 23:c7:ec:30:cb:58:d3:7b:1f:9e:b6:4a:92:e5:24: 08:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:72:C3:7B:A5:62:1B:CB:47:C6:74:DA:02:F1:C1:E1:C9:BF:51:0F X509v3 Authority Key Identifier: keyid:71:D8:B0:97:57:33:31:26:DF:B5:83:48:0E:A8:E2:D3:D3:46:C0:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdiwl1czMSbftYNIDqji09NGwI0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:d1:e8:c0:63:43:52:3a:fa:5f:96:21:9a:b7:92:f4:c4:4b: 98:e4:8e:94:63:5d:4c:1f:a6:57:e3:55:3c:17:f3:0e:22:35: 0f:56:6a:12:18:c7:7d:6f:27:0b:9e:3f:4c:45:da:8d:12:43: 72:ff:56:b4:9e:a8:fb:de:ab:78:aa:37:c0:2a:78:20:00:cf: a8:7f:80:24:04:65:d2:76:21:f9:45:56:c9:fd:33:da:77:5d: 52:ef:4a:42:6c:c0:8c:13:f9:4a:f3:0b:12:84:a6:59:0e:e6: c0:31:7d:30:69:7f:a7:0f:c3:9e:a7:62:92:2b:09:50:28:38: 1f:cf:f6:47:0f:a6:01:5a:2a:26:82:83:86:6a:d3:b1:9b:ba: b3:a2:1f:69:a3:02:d0:c5:52:9b:a1:87:69:42:52:02:1b:98: 8c:84:42:4d:00:1b:43:88:74:fd:57:cf:46:0c:82:b5:9d:43: ad:25:aa:52:2d:28:e8:ee:2e:43:ae:ee:f6:d4:fe:f1:9b:75: 97:a3:66:7d:98:3e:9e:73:db:7c:b2:9f:80:0b:6d:b1:9d:82: 0e:79:8a:f6:77:06:7f:8c:be:fe:19:a0:17:d3:33:ec:32:ba: aa:40:e3:a1:fa:9e:e4:72:b0:00:62:5c:54:78:77:bc:40:82: 74:a5:9b:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC65GMPzjF5cTYMshXcXWcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxZDhiMDk3NTczMzMxMjZkZmI1ODM0ODBlYThlMmQzZDM0 NmMwOGQwHhcNMjYwMjA5MTUwMTAwWhcNMjYwMjEwMTUwMTAwWjAzMTEwLwYDVQQD EyhiNDcyYzM3YmE1NjIxYmNiNDdjNjc0ZGEwMmYxYzFlMWM5YmY1MTBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApQdJVmt9BTLiHhWn+KIap+VxAnXC F95TrjP7dEw1slO7A31Z6jVw641aCKqsf4X6m3WWbQp7q4z1EkWrpg/iFg1O+4yN sojnea0DfEfyT8SjZgIMuMdL9aNQs3h41rJsiho5oV4uco1pW25PLFzjcKcr87Iy Uu7UAeLJigss2P8kZbnzLjI0ZUuPd/sT+n5SQAu2vKOV9rU6Xmu0Xa5O2ruaw8KZ ublF4AqrDO+8D+xiSZJeWweH0LDqNq6SQrhZZpv718ZCvhBtR8eaRAnQqTPRAbqk 9HsYH12CK06X4h00h3ivJ3Ncjja1wLKa3R4jx+wwy1jTex+etkqS5SQI1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLRyw3ulYhvLR8Z02gLxweHJv1EPMB8GA1UdIwQY MBaAFHHYsJdXMzEm37WDSA6o4tPTRsCNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2Rpd2wxY3pNU2JmdFlOSURxamkwOU5Hd0kwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy82Yjk2MjYtZmIxYS00NDVlLWI5NWEt YjAwMmYzNWJlNzM5LzEvY2Rpd2wxY3pNU2JmdFlOSURxamkwOU5Hd0kwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy82Yjk2MjYtZmIxYS00NDVlLWI5NWEtYjAwMmYzNWJlNzM5 LzEvY2Rpd2wxY3pNU2JmdFlOSURxamkwOU5Hd0kwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAItHowGND Ujr6X5YhmreS9MRLmOSOlGNdTB+mV+NVPBfzDiI1D1ZqEhjHfW8nC54/TEXajRJD cv9WtJ6o+96reKo3wCp4IADPqH+AJARl0nYh+UVWyf0z2nddUu9KQmzAjBP5SvML EoSmWQ7mwDF9MGl/pw/DnqdikisJUCg4H8/2Rw+mAVoqJoKDhmrTsZu6s6IfaaMC 0MVSm6GHaUJSAhuYjIRCTQAbQ4h0/VfPRgyCtZ1DrSWqUi0o6O4uQ67u9tT+8Zt1 l6NmfZg+nnPbfLKfgAttsZ2CDnmK9ncGf4y+/hmgF9Mz7DK6qkDjofqe5HKwAGJc VHh3vECCdKWbIw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:13 2026 by rpki-client