This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft File: 0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft (raw, json) Hash identifier: E0+UzDLLs+ai5xBfSV6TkmptKoZYNIylgUZQURs/n58= Subject key identifier: 06:3A:13:5F:B3:A6:98:CB:19:CB:37:6C:30:F3:8C:1B:0B:45:79:EA Authority key identifier: D1:B0:E8:68:6F:7D:AB:1F:64:C8:0D:43:82:C3:C5:94:9F:F1:1D:BF Certificate issuer: /CN=d1b0e8686f7dab1f64c80d4382c3c5949ff11dbf Certificate serial: 019C439086C108FBF598DFF161BAF214F189 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft Manifest number: 0666 Signing time: Mon 09 Feb 2026 18:01:10 +0000 Manifest this update: Mon 09 Feb 2026 18:01:10 +0000 Manifest next update: Tue 10 Feb 2026 18:01:10 +0000 Files and hashes: 1: 0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl (hash: NicZJUhnls5OpBGTBsXQBgY1a2rCP3AU6sCcP9yo0qg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:86:c1:08:fb:f5:98:df:f1:61:ba:f2:14:f1:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1b0e8686f7dab1f64c80d4382c3c5949ff11dbf Validity Not Before: Feb 9 18:01:10 2026 GMT Not After : Feb 10 18:01:10 2026 GMT Subject: CN=063a135fb3a698cb19cb376c30f38c1b0b4579ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e9:37:d5:9f:0b:d3:ef:6f:58:44:79:ed:58: 74:ed:03:9c:cb:35:69:13:eb:f8:27:d4:25:35:37: 2c:9f:3d:d4:55:0b:86:89:4d:1f:6b:85:45:d5:d5: ec:30:a6:a5:5c:67:17:74:bf:80:3a:0e:6c:ac:f4: cd:95:70:ef:37:43:4e:e3:9d:90:c0:60:b3:bc:5d: c5:59:34:8b:39:e0:cb:6c:f1:76:04:1c:ca:3b:8a: db:d5:50:44:50:24:08:fc:ab:77:75:c7:44:40:72: 39:f2:e4:80:6c:5c:1c:84:e5:aa:98:3c:22:b2:b4: 22:01:1a:69:18:12:91:35:38:0d:a6:ff:74:cb:ae: 93:7d:08:76:ca:cb:28:ef:f1:4a:ad:a4:1a:2a:9a: 5e:f5:20:15:2b:49:4f:46:46:ca:5b:97:08:40:2e: ff:57:a5:2b:c6:7e:b1:78:8f:f0:af:7f:04:44:3d: c1:b5:7a:d4:53:7f:ab:fb:e7:5b:b2:15:39:a0:dd: cf:2e:aa:fc:57:4d:d5:2a:cf:78:5f:f9:97:c8:e0: ab:d0:43:32:60:da:d5:f7:b3:7a:ae:50:ba:8b:04: cd:99:72:33:b9:d9:ce:50:c6:de:99:05:cc:95:9a: 7c:ad:18:fc:a1:b3:fe:6e:76:4a:21:0f:da:d4:ed: 61:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:3A:13:5F:B3:A6:98:CB:19:CB:37:6C:30:F3:8C:1B:0B:45:79:EA X509v3 Authority Key Identifier: keyid:D1:B0:E8:68:6F:7D:AB:1F:64:C8:0D:43:82:C3:C5:94:9F:F1:1D:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:fd:2e:4f:42:8a:cf:c3:dd:38:6a:22:bb:7b:fe:f9:f1:da: 4f:05:1c:ed:9e:a2:8e:2c:f7:d1:9a:ac:04:67:87:01:e5:80: 0a:43:26:c6:d6:de:a1:d9:79:42:38:45:81:e8:00:d8:53:96: 85:e3:f5:d8:75:bc:26:d5:de:b4:11:5b:53:f3:a0:2c:07:f3: 59:93:1e:a6:42:c3:27:8d:b1:6c:84:3b:96:78:20:98:c3:68: 35:9e:a3:83:6b:90:ce:9e:d8:f9:7b:a5:f7:56:7e:af:4a:0d: b6:51:e7:4f:e4:95:e1:9e:e6:d6:14:b9:bd:e3:6d:b9:2e:ce: b0:c8:29:0b:66:17:38:fd:32:91:f6:5d:39:c7:f9:6a:21:1b: 42:d1:82:59:29:15:f2:4e:e2:33:1f:7d:1a:6c:bb:d0:5a:14: c6:5f:d1:41:26:98:aa:c9:54:40:0b:49:70:e5:57:26:eb:eb: 07:56:15:71:b0:fe:e2:25:b8:e8:90:ac:59:a8:1e:65:d4:43: 45:89:29:01:69:4b:21:84:b3:65:ee:02:42:b2:01:2c:73:a5: 88:e9:21:4a:50:da:03:78:58:ea:14:73:cb:ac:fc:fe:ca:12: 99:6e:31:aa:7d:2f:b5:5d:ed:e1:1f:34:ba:f5:4c:63:3e:1d: c8:c7:66:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkIbBCPv1mN/xYbryFPGJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxYjBlODY4NmY3ZGFiMWY2NGM4MGQ0MzgyYzNjNTk0OWZm MTFkYmYwHhcNMjYwMjA5MTgwMTEwWhcNMjYwMjEwMTgwMTEwWjAzMTEwLwYDVQQD EygwNjNhMTM1ZmIzYTY5OGNiMTljYjM3NmMzMGYzOGMxYjBiNDU3OWVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtOk31Z8L0+9vWER57Vh07QOcyzVp E+v4J9QlNTcsnz3UVQuGiU0fa4VF1dXsMKalXGcXdL+AOg5srPTNlXDvN0NO452Q wGCzvF3FWTSLOeDLbPF2BBzKO4rb1VBEUCQI/Kt3dcdEQHI58uSAbFwchOWqmDwi srQiARppGBKRNTgNpv90y66TfQh2ysso7/FKraQaKppe9SAVK0lPRkbKW5cIQC7/ V6Urxn6xeI/wr38ERD3BtXrUU3+r++dbshU5oN3PLqr8V03VKs94X/mXyOCr0EMy YNrV97N6rlC6iwTNmXIzudnOUMbemQXMlZp8rRj8obP+bnZKIQ/a1O1h/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAY6E1+zppjLGcs3bDDzjBsLRXnqMB8GA1UdIwQY MBaAFNGw6GhvfasfZMgNQ4LDxZSf8R2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGJEb2FHOTlxeDlreUExRGdzUEZsSl94SGI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy80NTZhMmItODc1NS00YmZjLThiNmMt ZGJiYzI1NGQxYzZjLzEvMGJEb2FHOTlxeDlreUExRGdzUEZsSl94SGI4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy80NTZhMmItODc1NS00YmZjLThiNmMtZGJiYzI1NGQxYzZj LzEvMGJEb2FHOTlxeDlreUExRGdzUEZsSl94SGI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACv0uT0KK z8PdOGoiu3v++fHaTwUc7Z6ijiz30ZqsBGeHAeWACkMmxtbeodl5QjhFgegA2FOW heP12HW8JtXetBFbU/OgLAfzWZMepkLDJ42xbIQ7lnggmMNoNZ6jg2uQzp7Y+Xul 91Z+r0oNtlHnT+SV4Z7m1hS5veNtuS7OsMgpC2YXOP0ykfZdOcf5aiEbQtGCWSkV 8k7iMx99Gmy70FoUxl/RQSaYqslUQAtJcOVXJuvrB1YVcbD+4iW46JCsWageZdRD RYkpAWlLIYSzZe4CQrIBLHOliOkhSlDaA3hY6hRzy6z8/soSmW4xqn0vtV3t4R80 uvVMYz4dyMdmtA== -----END CERTIFICATE-----Generated at Mon Feb 9 23:52:11 2026 by rpki-client