This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/b3d3d9-7928-458d-836e-3303afe5c89b/1/DoX9PJ-VWLIYAi_0CfxVT67nkJA.mft File: DoX9PJ-VWLIYAi_0CfxVT67nkJA.mft (raw, json) Hash identifier: nUDoVYXZRXBe/HGSL1OBJwQkV1zCBIXH9BfwJ4pP4MQ= Subject key identifier: 45:FF:8E:7F:DC:D1:13:17:11:25:CF:26:A7:6B:BE:76:B9:BC:B5:03 Authority key identifier: 0E:85:FD:3C:9F:95:58:B2:18:02:2F:F4:09:FC:55:4F:AE:E7:90:90 Certificate issuer: /CN=0e85fd3c9f9558b218022ff409fc554faee79090 Certificate serial: 019C43C69BAA1E38410184835E75552BAC05 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DoX9PJ-VWLIYAi_0CfxVT67nkJA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/b3d3d9-7928-458d-836e-3303afe5c89b/1/DoX9PJ-VWLIYAi_0CfxVT67nkJA.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 19:00:15 +0000 Manifest this update: Mon 09 Feb 2026 19:00:15 +0000 Manifest next update: Tue 10 Feb 2026 19:00:15 +0000 Files and hashes: 1: DoX9PJ-VWLIYAi_0CfxVT67nkJA.crl (hash: bV1s5QqF0cygs9PxURX9uSSU02rrusLQnrsreY2uLK8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/b3d3d9-7928-458d-836e-3303afe5c89b/1/DoX9PJ-VWLIYAi_0CfxVT67nkJA.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/b3d3d9-7928-458d-836e-3303afe5c89b/1/DoX9PJ-VWLIYAi_0CfxVT67nkJA.mft rsync://rpki.ripe.net/repository/DEFAULT/DoX9PJ-VWLIYAi_0CfxVT67nkJA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:9b:aa:1e:38:41:01:84:83:5e:75:55:2b:ac:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e85fd3c9f9558b218022ff409fc554faee79090 Validity Not Before: Feb 9 19:00:15 2026 GMT Not After : Feb 10 19:00:15 2026 GMT Subject: CN=45ff8e7fdcd113171125cf26a76bbe76b9bcb503 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7f:0f:c4:a4:01:5a:fd:ca:b6:2c:ce:a8:7b: 12:e1:f1:04:57:e4:cb:dc:58:0a:64:4b:99:48:e1: 46:43:9b:92:e2:85:2f:5e:7b:8e:fe:fc:9b:f2:0d: 03:19:05:0a:26:46:12:69:c5:b5:27:9f:fc:dd:b5: dc:78:ed:ca:99:21:e4:55:af:f6:80:08:85:96:42: c8:36:e0:5b:3c:3c:13:da:57:0c:7e:8d:4b:18:80: 33:c2:bc:54:ab:b6:fc:13:b2:c2:78:3b:e3:c4:5e: ee:dc:dd:b3:b3:4b:c6:f3:34:56:9c:95:81:a6:eb: f4:b4:1e:2d:09:7e:ae:71:aa:8c:f1:2a:30:24:c0: 38:5c:30:5c:8b:3b:c0:4a:28:9a:2d:c5:bc:7c:dc: 16:2b:c1:a1:b9:9c:bb:ea:67:1b:14:85:12:f1:25: c5:1b:d2:d3:6f:3e:45:b1:a9:27:ff:8e:90:f5:4c: ab:37:bf:27:52:b3:36:e2:38:22:03:24:80:b1:e8: 46:d3:5a:ad:67:ad:20:4f:eb:5d:85:56:d2:aa:df: ef:2a:d8:fd:5a:3b:63:ff:e2:31:a4:d3:3c:3a:c3: 7f:96:80:36:84:74:22:a4:34:37:0a:fc:a4:23:91: 38:36:68:f0:20:67:58:97:59:39:df:c4:22:96:ce: b2:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:FF:8E:7F:DC:D1:13:17:11:25:CF:26:A7:6B:BE:76:B9:BC:B5:03 X509v3 Authority Key Identifier: keyid:0E:85:FD:3C:9F:95:58:B2:18:02:2F:F4:09:FC:55:4F:AE:E7:90:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DoX9PJ-VWLIYAi_0CfxVT67nkJA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/b3d3d9-7928-458d-836e-3303afe5c89b/1/DoX9PJ-VWLIYAi_0CfxVT67nkJA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/b3d3d9-7928-458d-836e-3303afe5c89b/1/DoX9PJ-VWLIYAi_0CfxVT67nkJA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:d4:c2:e6:e0:4a:33:5a:d7:30:ef:1a:42:d5:96:4b:17:99: e9:41:43:10:ce:96:b1:6e:24:c5:db:ae:dd:1b:ba:a2:95:0e: 95:8b:c8:da:4d:20:d4:15:e4:b5:f3:e9:de:06:84:d0:4c:ec: 88:e7:b9:c1:48:6a:9c:d4:b6:c5:54:a5:cc:57:49:33:3c:d9: d6:70:5e:2c:84:63:5b:8c:99:a0:2e:cb:b3:c3:17:83:ed:ca: 88:56:1e:4e:48:af:16:1e:b6:26:15:3e:69:16:6b:00:31:19: ce:6d:a0:c8:d5:40:5a:1c:a0:55:7d:bd:58:5c:f9:cc:25:b7: de:c8:2e:2e:aa:c8:22:c2:6f:29:83:c6:4e:1a:9b:88:78:e3: a2:e8:d1:45:3d:86:17:05:65:df:da:ca:7f:a6:6f:ba:98:76: e8:d2:cb:d2:50:56:3c:60:f6:55:50:ee:96:15:57:c3:c1:02: b5:74:8c:4b:3d:c1:c4:dd:bf:7d:1d:bb:ab:53:41:2f:20:0e: 92:1a:22:d3:46:1d:d7:f9:5b:bd:2f:d3:f9:be:2f:00:5d:79: d5:c6:e0:ba:7a:8c:e4:26:a2:ea:c6:e5:22:14:c5:de:99:c9: 4c:38:10:9a:6a:cd:6d:87:ff:48:79:6f:29:c8:93:78:a6:0f: c4:09:dd:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxpuqHjhBAYSDXnVVK6wFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlODVmZDNjOWY5NTU4YjIxODAyMmZmNDA5ZmM1NTRmYWVl NzkwOTAwHhcNMjYwMjA5MTkwMDE1WhcNMjYwMjEwMTkwMDE1WjAzMTEwLwYDVQQD Eyg0NWZmOGU3ZmRjZDExMzE3MTEyNWNmMjZhNzZiYmU3NmI5YmNiNTAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyn8PxKQBWv3KtizOqHsS4fEEV+TL 3FgKZEuZSOFGQ5uS4oUvXnuO/vyb8g0DGQUKJkYSacW1J5/83bXceO3KmSHkVa/2 gAiFlkLINuBbPDwT2lcMfo1LGIAzwrxUq7b8E7LCeDvjxF7u3N2zs0vG8zRWnJWB puv0tB4tCX6ucaqM8SowJMA4XDBcizvASiiaLcW8fNwWK8GhuZy76mcbFIUS8SXF G9LTbz5Fsakn/46Q9UyrN78nUrM24jgiAySAsehG01qtZ60gT+tdhVbSqt/vKtj9 Wjtj/+IxpNM8OsN/loA2hHQipDQ3CvykI5E4NmjwIGdYl1k538Qils6yqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEX/jn/c0RMXESXPJqdrvna5vLUDMB8GA1UdIwQY MBaAFA6F/TyflViyGAIv9An8VU+u55CQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRG9YOVBKLVZXTElZQWlfMENmeFZUNjdua0pBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9iM2QzZDktNzkyOC00NThkLTgzNmUt MzMwM2FmZTVjODliLzEvRG9YOVBKLVZXTElZQWlfMENmeFZUNjdua0pBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS9iM2QzZDktNzkyOC00NThkLTgzNmUtMzMwM2FmZTVjODli LzEvRG9YOVBKLVZXTElZQWlfMENmeFZUNjdua0pBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA9TC5uBK M1rXMO8aQtWWSxeZ6UFDEM6WsW4kxduu3Ru6opUOlYvI2k0g1BXktfPp3gaE0Ezs iOe5wUhqnNS2xVSlzFdJMzzZ1nBeLIRjW4yZoC7Ls8MXg+3KiFYeTkivFh62JhU+ aRZrADEZzm2gyNVAWhygVX29WFz5zCW33sguLqrIIsJvKYPGThqbiHjjoujRRT2G FwVl39rKf6Zvuph26NLL0lBWPGD2VVDulhVXw8ECtXSMSz3BxN2/fR27q1NBLyAO khoi00Yd1/lbvS/T+b4vAF151cbgunqM5Cai6sblIhTF3pnJTDgQmmrNbYf/SHlv KciTeKYPxAndng== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:11 2026 by rpki-client