This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.mft File: DlNS2UQbZcIBbtjrfi8jWVRDT10.mft (raw, json) Hash identifier: kBh/ff26SWNIDuxvZFNzWH2ZV/g7/3cHDG9DFsXqXU8= Subject key identifier: A2:BC:D2:A8:E7:C7:C1:0D:77:C7:C2:DC:C7:AE:7C:D9:E3:67:F1:21 Authority key identifier: 0E:53:52:D9:44:1B:65:C2:01:6E:D8:EB:7E:2F:23:59:54:43:4F:5D Certificate issuer: /CN=0e5352d9441b65c2016ed8eb7e2f235954434f5d Certificate serial: 019C41A1F6D6E03C4DE60F1788D81A8FE648 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DlNS2UQbZcIBbtjrfi8jWVRDT10.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.mft Manifest number: 03B6 Signing time: Mon 09 Feb 2026 09:00:59 +0000 Manifest this update: Mon 09 Feb 2026 09:00:59 +0000 Manifest next update: Tue 10 Feb 2026 09:00:59 +0000 Files and hashes: 1: DlNS2UQbZcIBbtjrfi8jWVRDT10.crl (hash: W7bs+cuYzfJajn10wXGUG3CPCl/HQwDOPjWjfp41OJU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.crl rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.mft rsync://rpki.ripe.net/repository/DEFAULT/DlNS2UQbZcIBbtjrfi8jWVRDT10.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:f6:d6:e0:3c:4d:e6:0f:17:88:d8:1a:8f:e6:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e5352d9441b65c2016ed8eb7e2f235954434f5d Validity Not Before: Feb 9 09:00:59 2026 GMT Not After : Feb 10 09:00:59 2026 GMT Subject: CN=a2bcd2a8e7c7c10d77c7c2dcc7ae7cd9e367f121 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e8:c6:b6:d3:a7:81:42:38:8c:13:03:a9:6a: c9:2f:3c:72:a1:bb:7a:8b:64:26:6e:7f:8e:04:73: 2d:cc:35:3d:0c:5a:33:7b:d6:fb:cc:8a:08:ea:b0: c3:be:19:74:14:a6:8e:22:58:74:43:89:2b:77:b0: 5d:46:aa:9a:f5:40:db:69:ce:ee:86:60:83:ea:10: 54:6f:47:66:d2:54:0b:c2:d5:ce:d8:f2:f2:6e:d7: d1:09:23:46:5a:69:b0:5c:0c:ab:e0:ab:be:e5:b3: b6:54:3c:c3:be:a8:d5:57:58:fb:f9:e7:bd:63:9d: d5:19:0e:f6:03:72:c7:bb:d7:35:b8:35:6c:45:53: c5:24:99:cf:b1:07:2f:0b:89:40:c5:8d:d3:2b:d1: 36:a0:d7:6c:e8:30:ae:18:4e:1a:2d:bb:08:97:45: 9a:67:08:c0:63:64:57:44:7a:a6:82:32:f6:7a:05: c8:1b:d2:24:27:0d:c8:8a:84:a8:a4:37:fa:7f:a0: db:a7:6e:e5:20:06:d9:b6:8b:aa:09:b8:87:f7:72: 6a:34:81:9d:c5:1d:fd:71:e9:b5:0d:71:4b:22:9e: 2a:63:f4:4a:da:47:f7:5b:e0:e3:8a:7d:75:a9:4f: 2f:db:3b:88:0c:7b:75:f3:c1:ec:a4:e3:60:6d:5e: 1e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:BC:D2:A8:E7:C7:C1:0D:77:C7:C2:DC:C7:AE:7C:D9:E3:67:F1:21 X509v3 Authority Key Identifier: keyid:0E:53:52:D9:44:1B:65:C2:01:6E:D8:EB:7E:2F:23:59:54:43:4F:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DlNS2UQbZcIBbtjrfi8jWVRDT10.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:96:8b:bc:e3:ff:89:b5:bc:3b:10:41:eb:0a:95:93:8a:e8: 1b:10:07:06:51:ea:43:8e:c1:4b:4c:fa:8e:b6:ee:ac:b3:06: 8a:68:2d:8c:f0:63:ff:fc:3b:f5:a7:4b:24:1b:d7:8c:c0:28: 11:30:89:a1:78:2a:83:04:a4:6e:4c:c0:13:a0:17:38:cd:01: 5f:6f:8b:5f:c4:a8:bf:79:87:0f:5e:8b:ba:22:be:9b:74:07: 2a:2f:2a:c3:60:41:a9:57:e5:6d:99:10:d6:bc:40:82:d3:ad: a5:88:6c:ec:cc:18:63:a9:03:37:d9:f1:31:4f:b8:3c:98:50: 0c:f5:f3:82:f6:93:01:47:22:ea:9b:bb:65:36:26:09:c7:3b: ec:e0:17:42:a7:a0:cc:7c:94:c3:11:02:c2:96:24:7e:46:26: 0e:20:94:31:13:1e:6f:6a:4e:12:96:ef:ec:85:59:3f:eb:f0: e3:bd:bb:0d:95:39:8c:ed:e0:b5:de:23:dc:36:d5:70:3b:ff: b0:df:10:7c:8a:bf:0d:de:59:b8:31:46:7f:10:79:5f:0d:07: cb:e3:6d:3b:bf:ce:1c:12:33:ee:49:d0:53:5b:ed:f3:55:61: 20:59:fa:8e:af:e1:73:c1:75:a8:ca:2a:7a:c8:5a:14:7e:16: c0:02:1a:c9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBofbW4DxN5g8XiNgaj+ZIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlNTM1MmQ5NDQxYjY1YzIwMTZlZDhlYjdlMmYyMzU5NTQ0 MzRmNWQwHhcNMjYwMjA5MDkwMDU5WhcNMjYwMjEwMDkwMDU5WjAzMTEwLwYDVQQD EyhhMmJjZDJhOGU3YzdjMTBkNzdjN2MyZGNjN2FlN2NkOWUzNjdmMTIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqOjGttOngUI4jBMDqWrJLzxyobt6 i2Qmbn+OBHMtzDU9DFoze9b7zIoI6rDDvhl0FKaOIlh0Q4krd7BdRqqa9UDbac7u hmCD6hBUb0dm0lQLwtXO2PLybtfRCSNGWmmwXAyr4Ku+5bO2VDzDvqjVV1j7+ee9 Y53VGQ72A3LHu9c1uDVsRVPFJJnPsQcvC4lAxY3TK9E2oNds6DCuGE4aLbsIl0Wa ZwjAY2RXRHqmgjL2egXIG9IkJw3IioSopDf6f6Dbp27lIAbZtouqCbiH93JqNIGd xR39cem1DXFLIp4qY/RK2kf3W+Djin11qU8v2zuIDHt188HspONgbV4e3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKK80qjnx8ENd8fC3MeufNnjZ/EhMB8GA1UdIwQY MBaAFA5TUtlEG2XCAW7Y634vI1lUQ09dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGxOUzJVUWJaY0lCYnRqcmZpOGpXVlJEVDEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS8xZjU2ODEtYjEwNS00ZmYxLTliZjQt YWRjNTZkNDNlMGM0LzEvRGxOUzJVUWJaY0lCYnRqcmZpOGpXVlJEVDEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZS8xZjU2ODEtYjEwNS00ZmYxLTliZjQtYWRjNTZkNDNlMGM0 LzEvRGxOUzJVUWJaY0lCYnRqcmZpOGpXVlJEVDEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADJaLvOP/ ibW8OxBB6wqVk4roGxAHBlHqQ47BS0z6jrburLMGimgtjPBj//w79adLJBvXjMAo ETCJoXgqgwSkbkzAE6AXOM0BX2+LX8Sov3mHD16LuiK+m3QHKi8qw2BBqVflbZkQ 1rxAgtOtpYhs7MwYY6kDN9nxMU+4PJhQDPXzgvaTAUci6pu7ZTYmCcc77OAXQqeg zHyUwxECwpYkfkYmDiCUMRMeb2pOEpbv7IVZP+vw4727DZU5jO3gtd4j3DbVcDv/ sN8QfIq/Dd5ZuDFGfxB5Xw0Hy+NtO7/OHBIz7knQU1vt81VhIFn6jq/hc8F1qMoq eshaFH4WwAIayQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:48 2026 by rpki-client