This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft File: DTr3NGYY2GMOAUanZREkQ-DCyP8.mft (raw, json) Hash identifier: Gi7afnIrFimV9+NYukdQewlwd/O8kzECj5V9uT2ZYnc= Subject key identifier: 77:14:17:3B:E0:8D:50:C8:E4:9E:43:96:E2:57:B9:F6:4D:99:C0:26 Authority key identifier: 0D:3A:F7:34:66:18:D8:63:0E:01:46:A7:65:11:24:43:E0:C2:C8:FF Certificate issuer: /CN=0d3af7346618d8630e0146a765112443e0c2c8ff Certificate serial: 019C4322924AC4144D290A3D1E48AAF1252C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft Manifest number: 08A3 Signing time: Mon 09 Feb 2026 16:01:04 +0000 Manifest this update: Mon 09 Feb 2026 16:01:04 +0000 Manifest next update: Tue 10 Feb 2026 16:01:04 +0000 Files and hashes: 1: DTr3NGYY2GMOAUanZREkQ-DCyP8.crl (hash: 57qQx5tFaD8TkK5uzQfGB72DeDf45KBYbdLdl0n6ez0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:92:4a:c4:14:4d:29:0a:3d:1e:48:aa:f1:25:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d3af7346618d8630e0146a765112443e0c2c8ff Validity Not Before: Feb 9 16:01:04 2026 GMT Not After : Feb 10 16:01:04 2026 GMT Subject: CN=7714173be08d50c8e49e4396e257b9f64d99c026 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:bd:24:a7:65:a1:bb:29:ce:07:82:0f:ae:99: 9b:7d:c3:25:fd:f8:b5:5a:0b:ed:a2:6b:82:70:fc: f7:26:61:cc:f3:cd:a3:e6:45:c5:76:9b:73:e2:21: cb:e0:5e:0b:66:db:10:bc:c1:69:4d:81:29:4e:02: 6b:bb:50:e8:2b:a9:9a:c5:96:4c:3d:19:b8:16:ee: ac:6a:be:ea:6d:89:75:5b:f5:4c:68:41:27:08:a3: b3:34:0a:09:10:ff:44:69:28:cc:cb:2a:77:be:7b: ac:5d:dd:d4:6d:80:36:12:c3:cb:06:e9:c0:dc:2a: d4:56:05:00:ef:51:6c:70:ca:17:47:b8:f3:18:82: a8:af:08:53:a7:01:2d:f0:57:88:4e:0b:27:75:40: 03:2f:7a:fa:9c:a8:af:db:4a:ae:34:1b:74:15:c5: dc:51:25:1f:d6:33:b5:9f:ee:93:11:92:c7:78:55: 8a:41:9c:96:ae:0c:82:42:c1:a8:93:15:21:7e:00: 9b:51:0e:fe:72:e2:5c:56:12:0e:a3:58:71:47:a0: ee:5a:80:8b:f6:0f:9d:3b:be:4c:b5:96:f2:49:0b: d9:fb:4a:66:8b:86:dc:b0:4c:3d:8d:04:58:8a:ba: 55:78:25:9a:c1:72:9e:14:64:d4:52:60:f8:aa:f0: 79:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:14:17:3B:E0:8D:50:C8:E4:9E:43:96:E2:57:B9:F6:4D:99:C0:26 X509v3 Authority Key Identifier: keyid:0D:3A:F7:34:66:18:D8:63:0E:01:46:A7:65:11:24:43:E0:C2:C8:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:1d:95:ca:90:7b:87:98:98:bf:d9:b9:1d:cd:6e:cd:1f:22: ec:50:20:8c:f0:ec:0d:3e:43:db:54:e1:e6:33:e6:02:57:ba: 7d:39:a8:50:8a:a9:b4:5a:a5:ac:37:cd:16:f8:b7:32:47:6e: 62:69:50:46:2c:f1:87:ad:bf:76:d7:31:c0:3f:b9:7d:f4:2f: c2:9a:2f:9e:84:29:b9:7e:f9:60:73:1c:32:73:21:9b:e8:d7: 74:5a:fe:02:5b:7d:ef:0a:5b:55:88:ee:d4:3b:19:c6:fd:a3: 1f:41:95:5b:45:7e:c5:fb:6f:37:bc:9f:97:76:64:c7:ab:8a: 3f:58:a5:da:4d:af:9c:d5:18:74:85:84:7c:dc:4c:53:27:43: 5e:f0:83:0c:12:8a:aa:43:ed:39:1c:a2:9b:f2:df:d2:7a:85: e4:e7:c0:2c:bf:2b:ab:da:e8:15:81:28:fc:60:05:85:66:cb: 04:b1:57:d5:b4:d1:e9:55:1b:1f:24:f6:f6:aa:ff:71:30:84: 5b:37:28:04:51:30:22:e9:65:89:98:4c:45:69:fa:88:db:63: 0a:35:c5:0a:46:67:61:db:d6:5d:78:f7:88:40:7c:f9:21:6c: 0a:fe:4f:fd:99:de:40:d9:db:c2:09:70:48:3e:44:07:30:b9: c5:54:32:fc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIpJKxBRNKQo9Hkiq8SUsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkM2FmNzM0NjYxOGQ4NjMwZTAxNDZhNzY1MTEyNDQzZTBj MmM4ZmYwHhcNMjYwMjA5MTYwMTA0WhcNMjYwMjEwMTYwMTA0WjAzMTEwLwYDVQQD Eyg3NzE0MTczYmUwOGQ1MGM4ZTQ5ZTQzOTZlMjU3YjlmNjRkOTljMDI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArr0kp2WhuynOB4IPrpmbfcMl/fi1 WgvtomuCcPz3JmHM882j5kXFdptz4iHL4F4LZtsQvMFpTYEpTgJru1DoK6maxZZM PRm4Fu6sar7qbYl1W/VMaEEnCKOzNAoJEP9EaSjMyyp3vnusXd3UbYA2EsPLBunA 3CrUVgUA71FscMoXR7jzGIKorwhTpwEt8FeITgsndUADL3r6nKiv20quNBt0FcXc USUf1jO1n+6TEZLHeFWKQZyWrgyCQsGokxUhfgCbUQ7+cuJcVhIOo1hxR6DuWoCL 9g+dO75MtZbySQvZ+0pmi4bcsEw9jQRYirpVeCWawXKeFGTUUmD4qvB5eQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHcUFzvgjVDI5J5DluJXufZNmcAmMB8GA1UdIwQY MBaAFA069zRmGNhjDgFGp2URJEPgwsj/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFRyM05HWVkyR01PQVVhblpSRWtRLURDeVA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi80NTU3MDItNWQ1ZC00NjZiLWIxM2Et ZjNiOWIwYjhkZDcwLzEvRFRyM05HWVkyR01PQVVhblpSRWtRLURDeVA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi80NTU3MDItNWQ1ZC00NjZiLWIxM2EtZjNiOWIwYjhkZDcw LzEvRFRyM05HWVkyR01PQVVhblpSRWtRLURDeVA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABB2VypB7 h5iYv9m5Hc1uzR8i7FAgjPDsDT5D21Th5jPmAle6fTmoUIqptFqlrDfNFvi3Mkdu YmlQRizxh62/dtcxwD+5ffQvwpovnoQpuX75YHMcMnMhm+jXdFr+Alt97wpbVYju 1DsZxv2jH0GVW0V+xftvN7yfl3Zkx6uKP1il2k2vnNUYdIWEfNxMUydDXvCDDBKK qkPtORyim/Lf0nqF5OfALL8rq9roFYEo/GAFhWbLBLFX1bTR6VUbHyT29qr/cTCE WzcoBFEwIulliZhMRWn6iNtjCjXFCkZnYdvWXXj3iEB8+SFsCv5P/ZneQNnbwglw SD5EBzC5xVQy/A== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:41 2026 by rpki-client