This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.mft File: dCMNFC7sf2qZsNtAlvk6BCBIP-Y.mft (raw, json) Hash identifier: XV0jadqZVSwpSif4PMH7fwea/y1LMu2U9zElExmC6Xg= Subject key identifier: 38:EE:89:35:CF:53:F3:99:E0:6D:A2:9D:CD:72:F5:2E:05:E3:67:D6 Authority key identifier: 74:23:0D:14:2E:EC:7F:6A:99:B0:DB:40:96:F9:3A:04:20:48:3F:E6 Certificate issuer: /CN=74230d142eec7f6a99b0db4096f93a0420483fe6 Certificate serial: 019C43224F262042168F08E392008FE40D16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.mft Manifest number: 0A05 Signing time: Mon 09 Feb 2026 16:00:47 +0000 Manifest this update: Mon 09 Feb 2026 16:00:47 +0000 Manifest next update: Tue 10 Feb 2026 16:00:47 +0000 Files and hashes: 1: dCMNFC7sf2qZsNtAlvk6BCBIP-Y.crl (hash: uid+bHcJNnIXOF1hL855WhH9d9NcqYNmNJlmafXpGuk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.crl rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.mft rsync://rpki.ripe.net/repository/DEFAULT/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:4f:26:20:42:16:8f:08:e3:92:00:8f:e4:0d:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74230d142eec7f6a99b0db4096f93a0420483fe6 Validity Not Before: Feb 9 16:00:47 2026 GMT Not After : Feb 10 16:00:47 2026 GMT Subject: CN=38ee8935cf53f399e06da29dcd72f52e05e367d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ba:b3:ca:02:a0:2b:d4:e7:12:5e:96:06:dd: f6:c9:b9:a2:f9:36:1e:be:eb:a4:92:cc:b7:09:f3: ee:9b:5d:6d:26:ce:2f:f2:8c:7e:d0:e7:1a:0a:15: 0b:46:27:2e:1c:01:59:3e:c2:b6:7b:98:5d:09:6f: 18:e3:c1:5e:74:45:bc:fb:35:b6:c4:1e:8e:e2:cd: ad:8f:d7:5d:cc:0b:1c:ce:e5:fd:0b:14:57:6a:7b: c3:a2:bc:62:47:2f:23:65:ad:11:29:17:0a:8e:35: 29:f9:bd:93:ed:f7:57:57:d4:46:83:23:60:38:d9: e9:17:54:5c:a0:e8:fc:3e:f0:10:3a:5d:99:dc:7d: 62:2d:de:6d:11:ee:59:9d:b9:3a:86:39:7c:50:27: ad:dd:04:b9:dc:ad:0f:8f:25:2d:6f:43:9c:97:94: 53:ba:c6:10:88:c3:dd:5d:e2:7d:c0:f4:05:55:61: 5f:19:e8:20:d7:e7:e4:ec:5b:01:11:e7:51:89:04: 90:f5:dc:44:f5:fa:e2:3a:40:df:5f:18:36:11:89: 4a:53:94:6e:78:2e:73:e8:1d:fe:b7:2d:99:e0:2c: c6:e3:22:e5:3a:e3:ad:f2:49:3a:92:c1:71:17:84: 90:41:af:e4:ab:5f:1c:56:99:c5:15:ea:e6:d2:5e: 43:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:EE:89:35:CF:53:F3:99:E0:6D:A2:9D:CD:72:F5:2E:05:E3:67:D6 X509v3 Authority Key Identifier: keyid:74:23:0D:14:2E:EC:7F:6A:99:B0:DB:40:96:F9:3A:04:20:48:3F:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:a8:4f:72:60:9c:d1:16:fd:a7:e0:68:b6:e1:b3:00:27:60: 0b:77:01:00:da:c7:6b:7d:60:0b:f1:f4:e4:9a:06:2a:65:bc: fe:ef:ff:a2:e1:fd:46:60:97:99:a6:f8:df:e9:75:1a:92:9c: f0:57:ab:65:ee:b6:58:bb:7f:bc:be:2b:52:f8:66:ec:12:d7: 0c:f4:ae:dd:0f:aa:ee:f0:c6:f6:d8:f8:44:10:25:ca:bf:df: a0:58:e3:80:02:e7:4c:26:f1:7d:28:a2:0c:00:a4:28:dc:7d: 8b:39:4c:96:d6:28:d0:a2:c8:58:89:c1:95:c2:04:74:0c:1d: 12:8d:cd:45:2c:58:53:4a:b9:f2:a7:de:df:65:f5:1b:c4:fc: 87:8a:4f:26:ec:43:11:14:cd:e7:66:65:42:4a:71:e5:01:4e: c6:03:87:f2:a6:36:e7:ca:91:6f:a7:69:ef:e5:78:db:58:ed: 54:87:12:98:09:c6:18:12:13:ad:03:d9:35:02:7a:e0:21:96: 1a:57:c2:bd:f4:7b:35:e1:89:ef:56:7e:da:b3:4d:44:98:da: 7b:5c:56:0b:99:2f:c2:52:8b:0d:57:56:72:d3:c3:5d:13:02: 44:ad:10:61:51:22:0f:12:1d:8f:14:ef:75:e8:b1:c9:c6:4a: b1:0d:83:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIk8mIEIWjwjjkgCP5A0WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0MjMwZDE0MmVlYzdmNmE5OWIwZGI0MDk2ZjkzYTA0MjA0 ODNmZTYwHhcNMjYwMjA5MTYwMDQ3WhcNMjYwMjEwMTYwMDQ3WjAzMTEwLwYDVQQD EygzOGVlODkzNWNmNTNmMzk5ZTA2ZGEyOWRjZDcyZjUyZTA1ZTM2N2Q2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA07qzygKgK9TnEl6WBt32ybmi+TYe vuukksy3CfPum11tJs4v8ox+0OcaChULRicuHAFZPsK2e5hdCW8Y48FedEW8+zW2 xB6O4s2tj9ddzAsczuX9CxRXanvDorxiRy8jZa0RKRcKjjUp+b2T7fdXV9RGgyNg ONnpF1RcoOj8PvAQOl2Z3H1iLd5tEe5Znbk6hjl8UCet3QS53K0PjyUtb0Ocl5RT usYQiMPdXeJ9wPQFVWFfGegg1+fk7FsBEedRiQSQ9dxE9friOkDfXxg2EYlKU5Ru eC5z6B3+ty2Z4CzG4yLlOuOt8kk6ksFxF4SQQa/kq18cVpnFFerm0l5DJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDjuiTXPU/OZ4G2inc1y9S4F42fWMB8GA1UdIwQY MBaAFHQjDRQu7H9qmbDbQJb5OgQgSD/mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZENNTkZDN3NmMnFac050QWx2azZCQ0JJUC1ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC82OTc1NjQtMDAyNS00ZjkyLThkZmQt Y2UxYzAzNDAwZDRkLzEvZENNTkZDN3NmMnFac050QWx2azZCQ0JJUC1ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC82OTc1NjQtMDAyNS00ZjkyLThkZmQtY2UxYzAzNDAwZDRk LzEvZENNTkZDN3NmMnFac050QWx2azZCQ0JJUC1ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATKhPcmCc 0Rb9p+BotuGzACdgC3cBANrHa31gC/H05JoGKmW8/u//ouH9RmCXmab43+l1GpKc 8FerZe62WLt/vL4rUvhm7BLXDPSu3Q+q7vDG9tj4RBAlyr/foFjjgALnTCbxfSii DACkKNx9izlMltYo0KLIWInBlcIEdAwdEo3NRSxYU0q58qfe32X1G8T8h4pPJuxD ERTN52ZlQkpx5QFOxgOH8qY258qRb6dp7+V421jtVIcSmAnGGBITrQPZNQJ64CGW GlfCvfR7NeGJ71Z+2rNNRJjae1xWC5kvwlKLDVdWctPDXRMCRK0QYVEiDxIdjxTv deixycZKsQ2DwA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:46 2026 by rpki-client