This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft File: Dv0crRIZAnVQiePKgLptfMxLm3E.mft (raw, json) Hash identifier: 6I6TOpPIyxY/DIyJVyRA+ZqFBGoUaF07i0xTKtSMArk= Subject key identifier: BC:0D:A9:C4:F9:A2:47:5E:63:34:25:E9:61:A7:78:6A:78:FE:64:12 Authority key identifier: 0E:FD:1C:AD:12:19:02:75:50:89:E3:CA:80:BA:6D:7C:CC:4B:9B:71 Certificate issuer: /CN=0efd1cad121902755089e3ca80ba6d7ccc4b9b71 Certificate serial: 019C43592078D5E126DEABFE98ADEF2A565D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft Manifest number: 0E0C Signing time: Mon 09 Feb 2026 17:00:40 +0000 Manifest this update: Mon 09 Feb 2026 17:00:40 +0000 Manifest next update: Tue 10 Feb 2026 17:00:40 +0000 Files and hashes: 1: Dv0crRIZAnVQiePKgLptfMxLm3E.crl (hash: 8cBN4MafjD54L0V7YxzxyHBabVB3fS4UcXJj4+d8dWY=) 2: Ync302nWoIDxqRaEpHli5zPb-l0.roa (hash: CuUUdJvVMWZ1G3401/kid+n0FU2EaOY59WBjrBRwy1o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.crl rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:20:78:d5:e1:26:de:ab:fe:98:ad:ef:2a:56:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0efd1cad121902755089e3ca80ba6d7ccc4b9b71 Validity Not Before: Feb 9 17:00:40 2026 GMT Not After : Feb 10 17:00:40 2026 GMT Subject: CN=bc0da9c4f9a2475e633425e961a7786a78fe6412 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:21:69:0b:7b:37:71:fb:36:78:e9:32:f3:4e: f6:20:d4:33:78:d6:5e:9c:af:4c:bc:24:6e:41:e4: 27:15:8b:35:d7:a5:c2:31:b1:bd:72:bc:9b:10:da: 4c:95:b1:ce:a1:06:6a:83:61:0a:0a:ee:ae:28:61: 05:3b:95:3b:25:9f:d2:40:c0:c0:56:d0:26:9c:8b: e4:ca:6e:a8:70:d8:29:ee:20:4f:bf:b2:96:1b:2c: 04:2d:36:bc:2a:f9:d7:87:cf:9b:53:53:5c:41:72: c8:cc:f1:f0:4d:d8:62:fa:dc:c6:a4:17:28:c7:88: c8:b4:63:fb:01:a4:f4:a8:82:65:61:72:fe:d4:aa: ad:21:a2:47:4b:6c:02:c2:9e:1b:f1:b4:87:28:13: d8:4c:5f:f8:88:07:60:05:2a:ff:ae:26:0b:56:c7: b5:c4:e6:16:3e:67:6e:6e:9f:9b:7d:d0:c4:46:9a: ba:7d:d3:8a:a8:26:dd:4c:21:25:6e:b9:0d:81:b2: 0b:4a:b4:4b:d4:69:02:e7:97:c4:3b:3b:74:ff:a4: 0a:8e:b7:61:e5:ba:78:2f:e1:54:ce:20:88:0a:c7: 78:74:b7:3c:16:6c:57:07:34:52:d8:9a:bd:10:2d: d0:42:67:b4:2c:90:0f:6c:f5:a0:e4:f3:f4:d6:05: c7:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:0D:A9:C4:F9:A2:47:5E:63:34:25:E9:61:A7:78:6A:78:FE:64:12 X509v3 Authority Key Identifier: keyid:0E:FD:1C:AD:12:19:02:75:50:89:E3:CA:80:BA:6D:7C:CC:4B:9B:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:d0:c6:5a:8c:3e:8f:3f:01:4f:0d:7c:57:d6:bb:f0:9c:54: 4e:ea:72:b1:fc:31:a8:c6:df:4b:67:ad:de:9e:03:de:43:dd: 46:f1:a8:22:98:8e:3a:98:c0:da:c6:7e:08:5b:fb:f4:7e:c6: 8f:2b:7c:9b:c2:75:f9:9b:fb:30:30:e4:6d:da:92:82:dc:f0: d2:d7:3a:2e:98:fd:32:bd:46:87:b7:35:53:61:ff:c7:98:99: 81:76:81:cd:06:c8:9c:15:79:db:11:46:e1:bb:62:a4:6a:e7: b9:28:18:1f:ec:2b:15:3d:6d:98:fc:3e:02:20:ee:31:9d:79: 55:a9:97:b3:b2:5a:29:a4:16:93:03:51:be:38:76:d1:a4:2f: 8c:02:d1:07:8e:41:53:29:21:0d:de:2e:c9:7c:e9:ee:6a:e9: 5d:97:04:65:3c:7a:01:ad:82:b1:47:1e:b1:ac:f6:eb:26:d7: 80:a5:3d:5a:58:78:4e:7d:9e:57:83:8a:92:19:57:67:51:11: b1:c1:59:c6:e9:d3:a5:63:ca:79:28:47:20:c2:ed:3b:a6:3c: f8:f0:21:b4:8a:a2:10:42:c3:3b:83:83:87:68:8b:89:c0:73: 4b:eb:c0:8f:ff:a4:17:36:80:a7:a0:d3:10:9b:87:41:d9:47: 44:e5:83:b1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWSB41eEm3qv+mK3vKlZdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlZmQxY2FkMTIxOTAyNzU1MDg5ZTNjYTgwYmE2ZDdjY2M0 YjliNzEwHhcNMjYwMjA5MTcwMDQwWhcNMjYwMjEwMTcwMDQwWjAzMTEwLwYDVQQD EyhiYzBkYTljNGY5YTI0NzVlNjMzNDI1ZTk2MWE3Nzg2YTc4ZmU2NDEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlCFpC3s3cfs2eOky8072INQzeNZe nK9MvCRuQeQnFYs116XCMbG9crybENpMlbHOoQZqg2EKCu6uKGEFO5U7JZ/SQMDA VtAmnIvkym6ocNgp7iBPv7KWGywELTa8KvnXh8+bU1NcQXLIzPHwTdhi+tzGpBco x4jItGP7AaT0qIJlYXL+1KqtIaJHS2wCwp4b8bSHKBPYTF/4iAdgBSr/riYLVse1 xOYWPmdubp+bfdDERpq6fdOKqCbdTCElbrkNgbILSrRL1GkC55fEOzt0/6QKjrdh 5bp4L+FUziCICsd4dLc8FmxXBzRS2Jq9EC3QQme0LJAPbPWg5PP01gXHnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLwNqcT5okdeYzQl6WGneGp4/mQSMB8GA1UdIwQY MBaAFA79HK0SGQJ1UInjyoC6bXzMS5txMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRHYwY3JSSVpBblZRaWVQS2dMcHRmTXhMbTNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy9kZjk5ZDMtNTAyOC00MzYxLWI3OTUt M2FmNGE5NDYzYjc3LzEvRHYwY3JSSVpBblZRaWVQS2dMcHRmTXhMbTNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy9kZjk5ZDMtNTAyOC00MzYxLWI3OTUtM2FmNGE5NDYzYjc3 LzEvRHYwY3JSSVpBblZRaWVQS2dMcHRmTXhMbTNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASdDGWow+ jz8BTw18V9a78JxUTupysfwxqMbfS2et3p4D3kPdRvGoIpiOOpjA2sZ+CFv79H7G jyt8m8J1+Zv7MDDkbdqSgtzw0tc6Lpj9Mr1Gh7c1U2H/x5iZgXaBzQbInBV52xFG 4btipGrnuSgYH+wrFT1tmPw+AiDuMZ15VamXs7JaKaQWkwNRvjh20aQvjALRB45B UykhDd4uyXzp7mrpXZcEZTx6Aa2CsUcesaz26ybXgKU9Wlh4Tn2eV4OKkhlXZ1ER scFZxunTpWPKeShHIMLtO6Y8+PAhtIqiEELDO4ODh2iLicBzS+vAj/+kFzaAp6DT EJuHQdlHROWDsQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:27 2026 by rpki-client