This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/aabb5f-72f2-4928-92a9-2ff9d42ee213/1/d2Pkf8hQrMj_2gbj2iOkpETC1vw.mft File: d2Pkf8hQrMj_2gbj2iOkpETC1vw.mft (raw, json) Hash identifier: BGKSd5b8sB5GtBUTDFN36wHUiH2KEgQD6TLHt2EfRQU= Subject key identifier: 08:72:21:73:B7:45:2B:6A:B6:97:F0:7F:C1:18:71:5B:E3:A3:1F:77 Authority key identifier: 77:63:E4:7F:C8:50:AC:C8:FF:DA:06:E3:DA:23:A4:A4:44:C2:D6:FC Certificate issuer: /CN=7763e47fc850acc8ffda06e3da23a4a444c2d6fc Certificate serial: 019C4321DC2F05F648F99E36DCC29D555B0D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d2Pkf8hQrMj_2gbj2iOkpETC1vw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/aabb5f-72f2-4928-92a9-2ff9d42ee213/1/d2Pkf8hQrMj_2gbj2iOkpETC1vw.mft Manifest number: 0A39 Signing time: Mon 09 Feb 2026 16:00:18 +0000 Manifest this update: Mon 09 Feb 2026 16:00:18 +0000 Manifest next update: Tue 10 Feb 2026 16:00:18 +0000 Files and hashes: 1: d2Pkf8hQrMj_2gbj2iOkpETC1vw.crl (hash: 0OqYq9/xZErtSkMgN7irn5vxByD40Cbyg73cKhO6amE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/aabb5f-72f2-4928-92a9-2ff9d42ee213/1/d2Pkf8hQrMj_2gbj2iOkpETC1vw.crl rsync://rpki.ripe.net/repository/DEFAULT/30/aabb5f-72f2-4928-92a9-2ff9d42ee213/1/d2Pkf8hQrMj_2gbj2iOkpETC1vw.mft rsync://rpki.ripe.net/repository/DEFAULT/d2Pkf8hQrMj_2gbj2iOkpETC1vw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:dc:2f:05:f6:48:f9:9e:36:dc:c2:9d:55:5b:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7763e47fc850acc8ffda06e3da23a4a444c2d6fc Validity Not Before: Feb 9 16:00:18 2026 GMT Not After : Feb 10 16:00:18 2026 GMT Subject: CN=08722173b7452b6ab697f07fc118715be3a31f77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7c:db:31:3f:c0:f4:2c:70:2c:cc:4a:30:7e: 71:49:27:1d:17:63:96:c8:3f:8a:8d:16:9a:96:e8: 31:4c:ba:1e:96:c5:d1:9b:fe:52:e0:f1:94:da:2c: c5:04:02:dd:9a:6b:04:7c:a8:b4:97:2e:c5:ad:76: 5e:a0:c9:d0:67:df:db:47:75:81:a4:eb:01:09:85: da:53:88:83:14:c6:1e:af:f9:25:88:a5:56:c7:46: 8c:74:dd:50:00:07:d4:e7:24:21:1f:1d:7b:07:0b: d0:be:a4:e4:f9:f6:7d:d0:d9:d0:5b:35:36:3a:a5: bb:1b:aa:2c:98:54:cc:5b:39:43:e9:37:d5:76:d3: 4d:90:ea:71:47:9f:c9:cc:ee:cf:f8:d9:12:b7:ce: 95:6a:e6:f0:58:d3:76:98:1a:78:85:80:e7:ff:d2: d3:05:cd:9c:a7:f7:26:13:27:40:e6:e0:1b:12:ca: 93:8d:2e:d0:0f:92:21:79:48:0d:78:28:00:b6:cb: c2:18:8c:a1:2c:60:f9:46:02:ab:c4:5d:d2:9c:d1: 1c:81:c7:07:c5:78:5e:a1:66:be:bd:72:78:d4:23: a7:ae:3d:82:ae:9d:ef:c4:ab:d2:6e:4c:2b:25:ce: 3b:a1:12:95:23:42:35:01:70:a1:53:37:7b:27:10: aa:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:72:21:73:B7:45:2B:6A:B6:97:F0:7F:C1:18:71:5B:E3:A3:1F:77 X509v3 Authority Key Identifier: keyid:77:63:E4:7F:C8:50:AC:C8:FF:DA:06:E3:DA:23:A4:A4:44:C2:D6:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2Pkf8hQrMj_2gbj2iOkpETC1vw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/aabb5f-72f2-4928-92a9-2ff9d42ee213/1/d2Pkf8hQrMj_2gbj2iOkpETC1vw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/aabb5f-72f2-4928-92a9-2ff9d42ee213/1/d2Pkf8hQrMj_2gbj2iOkpETC1vw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:f9:3f:b3:23:11:97:52:66:dd:79:c6:aa:e3:cb:3c:cb:49: 43:8f:0b:d7:ec:78:ac:17:9a:07:4b:f1:97:f0:aa:21:36:46: 54:a8:8f:fc:d7:f7:f4:25:9f:aa:89:f3:7b:df:23:d1:2d:0f: 0c:cc:32:8a:4a:9d:69:28:f6:44:f9:f7:03:22:0a:14:e7:53: 07:92:7e:98:ed:28:38:fd:48:57:b6:e8:38:bf:84:07:da:f5: a8:64:20:d9:17:82:d6:b2:c4:c2:f7:5a:05:9b:ea:ec:f5:7f: 01:55:66:c7:3b:57:9f:53:3a:5c:04:82:40:01:d5:ef:bb:38: 2d:05:dc:78:e8:8d:d0:24:11:e7:11:b9:d7:0e:45:dc:b5:22: f2:c2:f5:bd:6d:09:11:29:da:5f:fd:99:28:34:38:db:d0:75: 2c:dc:c4:bc:b0:31:87:11:03:0d:df:12:a1:93:0e:ad:de:a7: e8:05:0e:2b:36:bf:d9:31:a9:fb:e6:d2:47:9a:cb:94:9f:1c: 22:18:a3:15:95:0c:be:06:b1:7a:1f:46:82:64:e5:0b:4b:4d: f9:c3:83:0d:74:06:55:06:93:dc:0e:38:25:75:7a:29:55:5e: 97:b7:c6:57:ee:c5:69:1d:57:af:de:1e:2d:59:eb:c2:db:e8: 2b:3d:cf:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIdwvBfZI+Z423MKdVVsNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3NjNlNDdmYzg1MGFjYzhmZmRhMDZlM2RhMjNhNGE0NDRj MmQ2ZmMwHhcNMjYwMjA5MTYwMDE4WhcNMjYwMjEwMTYwMDE4WjAzMTEwLwYDVQQD EygwODcyMjE3M2I3NDUyYjZhYjY5N2YwN2ZjMTE4NzE1YmUzYTMxZjc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvXzbMT/A9CxwLMxKMH5xSScdF2OW yD+KjRaalugxTLoelsXRm/5S4PGU2izFBALdmmsEfKi0ly7FrXZeoMnQZ9/bR3WB pOsBCYXaU4iDFMYer/kliKVWx0aMdN1QAAfU5yQhHx17BwvQvqTk+fZ90NnQWzU2 OqW7G6osmFTMWzlD6TfVdtNNkOpxR5/JzO7P+NkSt86VaubwWNN2mBp4hYDn/9LT Bc2cp/cmEydA5uAbEsqTjS7QD5IheUgNeCgAtsvCGIyhLGD5RgKrxF3SnNEcgccH xXheoWa+vXJ41COnrj2Crp3vxKvSbkwrJc47oRKVI0I1AXChUzd7JxCq5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAhyIXO3RStqtpfwf8EYcVvjox93MB8GA1UdIwQY MBaAFHdj5H/IUKzI/9oG49ojpKREwtb8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZDJQa2Y4aFFyTWpfMmdiajJpT2twRVRDMXZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9hYWJiNWYtNzJmMi00OTI4LTkyYTkt MmZmOWQ0MmVlMjEzLzEvZDJQa2Y4aFFyTWpfMmdiajJpT2twRVRDMXZ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC9hYWJiNWYtNzJmMi00OTI4LTkyYTktMmZmOWQ0MmVlMjEz LzEvZDJQa2Y4aFFyTWpfMmdiajJpT2twRVRDMXZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhvk/syMR l1Jm3XnGquPLPMtJQ48L1+x4rBeaB0vxl/CqITZGVKiP/Nf39CWfqonze98j0S0P DMwyikqdaSj2RPn3AyIKFOdTB5J+mO0oOP1IV7boOL+EB9r1qGQg2ReC1rLEwvda BZvq7PV/AVVmxztXn1M6XASCQAHV77s4LQXceOiN0CQR5xG51w5F3LUi8sL1vW0J ESnaX/2ZKDQ429B1LNzEvLAxhxEDDd8SoZMOrd6n6AUOKza/2TGp++bSR5rLlJ8c IhijFZUMvgaxeh9GgmTlC0tN+cODDXQGVQaT3A44JXV6KVVel7fGV+7FaR1Xr94e LVnrwtvoKz3PNg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:42 2026 by rpki-client