This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/968732-6d76-464d-97c4-e40a334691c9/1/d1xabqkPXz0AfBDkROO5Y7bTDMU.mft File: d1xabqkPXz0AfBDkROO5Y7bTDMU.mft (raw, json) Hash identifier: vjIUN5k+V3H4eHlxSVFmwOyFV06zd63kAnLIZ4BCo0s= Subject key identifier: D7:64:2D:EF:26:3E:66:67:9D:40:F4:98:1E:C5:12:CC:88:35:4F:EA Authority key identifier: 77:5C:5A:6E:A9:0F:5F:3D:00:7C:10:E4:44:E3:B9:63:B6:D3:0C:C5 Certificate issuer: /CN=775c5a6ea90f5f3d007c10e444e3b963b6d30cc5 Certificate serial: 019C420F9722185FC3F341FCE1CE607DB0E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d1xabqkPXz0AfBDkROO5Y7bTDMU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/968732-6d76-464d-97c4-e40a334691c9/1/d1xabqkPXz0AfBDkROO5Y7bTDMU.mft Manifest number: 05E9 Signing time: Mon 09 Feb 2026 11:00:43 +0000 Manifest this update: Mon 09 Feb 2026 11:00:43 +0000 Manifest next update: Tue 10 Feb 2026 11:00:43 +0000 Files and hashes: 1: d1xabqkPXz0AfBDkROO5Y7bTDMU.crl (hash: A0l7WBkZiY0niMTJG5fKVliTl+J+ZNMM6QjwRxVvHjk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/968732-6d76-464d-97c4-e40a334691c9/1/d1xabqkPXz0AfBDkROO5Y7bTDMU.crl rsync://rpki.ripe.net/repository/DEFAULT/43/968732-6d76-464d-97c4-e40a334691c9/1/d1xabqkPXz0AfBDkROO5Y7bTDMU.mft rsync://rpki.ripe.net/repository/DEFAULT/d1xabqkPXz0AfBDkROO5Y7bTDMU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:97:22:18:5f:c3:f3:41:fc:e1:ce:60:7d:b0:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=775c5a6ea90f5f3d007c10e444e3b963b6d30cc5 Validity Not Before: Feb 9 11:00:43 2026 GMT Not After : Feb 10 11:00:43 2026 GMT Subject: CN=d7642def263e66679d40f4981ec512cc88354fea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:6d:f6:52:d7:64:33:b1:00:0b:da:43:e4:e5: 51:30:6c:a1:26:6b:19:85:97:31:64:d7:7b:2f:f6: ba:db:b1:46:dd:1a:9b:ad:f4:8c:0c:94:16:0c:31: 3b:7e:4a:3b:b5:fb:d3:85:f7:e8:89:a6:8b:72:ed: d2:11:31:1e:7a:73:a3:87:ed:f4:bd:ad:91:ce:83: a5:57:61:13:90:ed:b4:d4:84:ba:d8:93:51:80:b0: 2c:ac:1f:cf:9f:14:c6:ce:bb:29:c9:b0:00:2b:4f: 92:25:95:87:9e:76:05:81:7e:4d:62:ee:82:14:0b: 63:fb:aa:26:0e:b1:5d:e3:4f:5d:c4:a8:f2:54:22: 60:7b:51:c7:31:2c:ef:6f:dc:b7:43:0e:48:de:53: cd:aa:9d:96:b8:e8:dd:9f:ef:7d:c1:32:9d:d5:05: ac:4a:bc:f1:a5:ac:71:15:fb:33:b0:bf:8f:9f:c2: 63:1f:98:79:c7:30:0d:55:28:e2:c9:21:5f:0a:f1: 5f:b3:25:5d:39:7a:fb:c8:56:17:06:78:f4:4c:d9: bb:a0:a6:28:5b:c9:d0:03:79:e3:d6:59:05:26:21: 36:7e:7a:86:57:fa:5c:82:35:09:b8:30:f7:7d:53: 07:29:ee:72:9f:77:34:40:a5:99:d9:99:71:87:08: a1:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:64:2D:EF:26:3E:66:67:9D:40:F4:98:1E:C5:12:CC:88:35:4F:EA X509v3 Authority Key Identifier: keyid:77:5C:5A:6E:A9:0F:5F:3D:00:7C:10:E4:44:E3:B9:63:B6:D3:0C:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1xabqkPXz0AfBDkROO5Y7bTDMU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/968732-6d76-464d-97c4-e40a334691c9/1/d1xabqkPXz0AfBDkROO5Y7bTDMU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/968732-6d76-464d-97c4-e40a334691c9/1/d1xabqkPXz0AfBDkROO5Y7bTDMU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:b8:71:ee:12:c2:b0:b0:11:74:95:bd:50:7b:6a:40:95:13: 4a:24:2b:81:37:f0:71:ee:e0:54:ca:dc:ce:fd:dc:a4:04:d8: 57:07:f1:e9:fc:2f:29:a2:cf:82:96:b6:dd:b1:1e:66:45:a0: ab:52:bd:d8:d6:6b:42:4f:94:1d:66:b4:4c:d0:d1:09:39:29: 0b:8b:2a:01:34:51:fd:79:3b:ee:ea:6d:7a:bf:fb:50:41:e8: 60:1a:f0:d4:e8:2b:a3:07:32:13:55:7c:9e:2a:d5:b1:2f:5f: 90:a7:ae:45:0a:0d:54:6b:05:1d:b9:bc:96:dc:13:44:84:7b: 9c:90:e0:58:64:d1:7a:c1:54:0f:e3:c2:c0:90:dd:df:69:a0: 71:70:23:f0:e6:60:ee:19:23:1c:39:23:2e:a7:19:11:8d:30: 1a:8a:09:ad:9e:55:49:ce:4b:5e:1a:e1:c8:f9:f4:1a:f2:62: 02:02:40:ec:47:7a:bd:f4:b0:d0:0b:4c:09:69:7f:1b:82:fa: 78:cc:64:b6:d4:f5:8d:d5:8a:e2:95:e3:43:00:4a:4c:70:29: bc:9e:42:84:26:98:be:1a:dc:11:fc:ca:f8:78:8d:10:20:47: 9d:54:3e:df:1b:69:3c:6d:dc:6e:0e:e8:76:a7:34:43:c4:29: f0:28:5d:4f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD5ciGF/D80H84c5gfbDgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3NWM1YTZlYTkwZjVmM2QwMDdjMTBlNDQ0ZTNiOTYzYjZk MzBjYzUwHhcNMjYwMjA5MTEwMDQzWhcNMjYwMjEwMTEwMDQzWjAzMTEwLwYDVQQD EyhkNzY0MmRlZjI2M2U2NjY3OWQ0MGY0OTgxZWM1MTJjYzg4MzU0ZmVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAom32UtdkM7EAC9pD5OVRMGyhJmsZ hZcxZNd7L/a627FG3RqbrfSMDJQWDDE7fko7tfvThffoiaaLcu3SETEeenOjh+30 va2RzoOlV2ETkO201IS62JNRgLAsrB/PnxTGzrspybAAK0+SJZWHnnYFgX5NYu6C FAtj+6omDrFd409dxKjyVCJge1HHMSzvb9y3Qw5I3lPNqp2WuOjdn+99wTKd1QWs SrzxpaxxFfszsL+Pn8JjH5h5xzANVSjiySFfCvFfsyVdOXr7yFYXBnj0TNm7oKYo W8nQA3nj1lkFJiE2fnqGV/pcgjUJuDD3fVMHKe5yn3c0QKWZ2ZlxhwihmwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNdkLe8mPmZnnUD0mB7FEsyINU/qMB8GA1UdIwQY MBaAFHdcWm6pD189AHwQ5ETjuWO20wzFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZDF4YWJxa1BYejBBZkJEa1JPTzVZN2JURE1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My85Njg3MzItNmQ3Ni00NjRkLTk3YzQt ZTQwYTMzNDY5MWM5LzEvZDF4YWJxa1BYejBBZkJEa1JPTzVZN2JURE1VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My85Njg3MzItNmQ3Ni00NjRkLTk3YzQtZTQwYTMzNDY5MWM5 LzEvZDF4YWJxa1BYejBBZkJEa1JPTzVZN2JURE1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASLhx7hLC sLARdJW9UHtqQJUTSiQrgTfwce7gVMrczv3cpATYVwfx6fwvKaLPgpa23bEeZkWg q1K92NZrQk+UHWa0TNDRCTkpC4sqATRR/Xk77upter/7UEHoYBrw1OgrowcyE1V8 nirVsS9fkKeuRQoNVGsFHbm8ltwTRIR7nJDgWGTResFUD+PCwJDd32mgcXAj8OZg 7hkjHDkjLqcZEY0wGooJrZ5VSc5LXhrhyPn0GvJiAgJA7Ed6vfSw0AtMCWl/G4L6 eMxkttT1jdWK4pXjQwBKTHApvJ5ChCaYvhrcEfzK+HiNECBHnVQ+3xtpPG3cbg7o dqc0Q8Qp8ChdTw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:33 2026 by rpki-client