This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/6fd7e5-c2c9-490b-95e9-5faec5abaf1b/1/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.mft File: dXLJoQjOPeUtFuIR6AyV5cW1TIQ.mft (raw, json) Hash identifier: MmZyY8F71OTqGKG5vSp/rAQvHXOs2ISJhGAKwJhk/xc= Subject key identifier: 28:13:65:15:D9:E3:E7:1C:0B:16:17:09:0F:2D:87:7A:45:F6:B1:DD Authority key identifier: 75:72:C9:A1:08:CE:3D:E5:2D:16:E2:11:E8:0C:95:E5:C5:B5:4C:84 Certificate issuer: /CN=7572c9a108ce3de52d16e211e80c95e5c5b54c84 Certificate serial: 019C432211970B19D2E6F3C32CFBC063B65C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/6fd7e5-c2c9-490b-95e9-5faec5abaf1b/1/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.mft Manifest number: 12C5 Signing time: Mon 09 Feb 2026 16:00:32 +0000 Manifest this update: Mon 09 Feb 2026 16:00:32 +0000 Manifest next update: Tue 10 Feb 2026 16:00:32 +0000 Files and hashes: 1: dXLJoQjOPeUtFuIR6AyV5cW1TIQ.crl (hash: uirXPegmzUPvjpKvYv0Sj+2uE21vdGgmGL+SlDnPCD4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/6fd7e5-c2c9-490b-95e9-5faec5abaf1b/1/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.crl rsync://rpki.ripe.net/repository/DEFAULT/45/6fd7e5-c2c9-490b-95e9-5faec5abaf1b/1/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.mft rsync://rpki.ripe.net/repository/DEFAULT/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:11:97:0b:19:d2:e6:f3:c3:2c:fb:c0:63:b6:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7572c9a108ce3de52d16e211e80c95e5c5b54c84 Validity Not Before: Feb 9 16:00:32 2026 GMT Not After : Feb 10 16:00:32 2026 GMT Subject: CN=28136515d9e3e71c0b1617090f2d877a45f6b1dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:39:fc:ef:bb:e0:da:bf:2e:42:1a:33:09:4f: e7:ae:8b:96:0e:b9:8e:75:e5:83:de:e2:55:c1:79: 76:a6:aa:61:46:93:ca:59:78:af:97:59:e1:15:1e: 8c:a3:5a:a0:23:c5:51:d0:ed:e7:9e:c5:58:d5:7d: 9c:2a:49:7c:14:61:67:86:84:1d:db:0d:3b:f8:99: 90:08:8c:ac:69:5e:7e:f1:ea:f6:ce:cf:dc:23:e7: ab:71:bb:51:18:24:49:02:a7:95:2c:bd:c2:09:96: 05:44:26:dd:04:57:2f:00:51:8e:ad:d3:19:88:3a: a8:d8:79:5f:69:c8:09:29:1b:f1:89:7e:6d:df:9e: 25:b8:37:14:cd:94:be:93:51:ca:bf:a4:97:99:af: 5e:2b:db:26:84:81:f2:b3:83:bf:64:ec:41:86:53: 33:56:94:c8:58:9c:60:93:94:c1:fa:3c:b7:18:c8: 41:92:51:41:57:89:f3:1d:ab:7e:8c:c8:93:99:d3: 2c:56:44:9d:c1:30:29:67:ee:ab:e1:25:51:89:cc: bd:39:39:dd:26:59:aa:4f:b4:ae:ea:f5:a0:fb:f3: 50:37:16:d5:16:15:a3:b8:58:42:29:de:5c:a1:d7: e1:af:60:1f:42:7e:e2:3f:bc:9b:bf:69:55:76:09: 95:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:13:65:15:D9:E3:E7:1C:0B:16:17:09:0F:2D:87:7A:45:F6:B1:DD X509v3 Authority Key Identifier: keyid:75:72:C9:A1:08:CE:3D:E5:2D:16:E2:11:E8:0C:95:E5:C5:B5:4C:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6fd7e5-c2c9-490b-95e9-5faec5abaf1b/1/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6fd7e5-c2c9-490b-95e9-5faec5abaf1b/1/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:50:6c:c0:a1:4c:a5:18:6c:29:98:51:f6:a2:49:5b:04:ef: 44:87:fd:b1:49:ef:b9:5d:96:82:6d:08:7c:56:8e:52:c5:61: cd:c0:fa:15:a9:db:f8:aa:14:9f:c4:8d:44:fb:2b:4a:5a:9b: f7:ec:ee:28:56:db:8c:e6:74:65:89:99:d4:23:c9:8f:e9:c5: 5e:36:1b:3e:ed:2f:7b:86:c6:a2:a6:f0:bb:94:97:ad:0f:d0: bf:c8:d9:ec:9e:69:31:19:e5:cf:ba:ed:7e:90:9a:cd:cd:8e: ec:54:ea:bc:bb:e6:5b:84:6c:01:10:83:20:a9:67:9a:45:6c: b0:63:a2:b6:72:fa:07:aa:62:33:25:2b:c3:d4:8c:1b:66:99: 5a:1a:73:49:dc:9f:7f:b4:13:c4:60:f0:92:8a:9e:d9:82:70: 79:64:76:5d:47:fc:1a:b8:7b:39:2b:63:43:07:ec:47:5b:e8: ab:31:68:55:62:14:b6:d7:de:8f:fa:e8:23:bb:52:52:f5:e7: 14:b9:ec:8c:7b:65:06:7b:7e:f6:48:6d:46:d9:0c:6f:f0:a5: 47:b0:02:38:4f:1d:75:47:9b:0f:b2:22:0d:d7:27:ec:c8:96: b7:ab:be:4c:ed:4d:86:23:b0:3f:ba:c9:3b:3c:38:00:41:28: db:03:70:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIhGXCxnS5vPDLPvAY7ZcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1NzJjOWExMDhjZTNkZTUyZDE2ZTIxMWU4MGM5NWU1YzVi NTRjODQwHhcNMjYwMjA5MTYwMDMyWhcNMjYwMjEwMTYwMDMyWjAzMTEwLwYDVQQD EygyODEzNjUxNWQ5ZTNlNzFjMGIxNjE3MDkwZjJkODc3YTQ1ZjZiMWRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApzn877vg2r8uQhozCU/nrouWDrmO deWD3uJVwXl2pqphRpPKWXivl1nhFR6Mo1qgI8VR0O3nnsVY1X2cKkl8FGFnhoQd 2w07+JmQCIysaV5+8er2zs/cI+ercbtRGCRJAqeVLL3CCZYFRCbdBFcvAFGOrdMZ iDqo2HlfacgJKRvxiX5t354luDcUzZS+k1HKv6SXma9eK9smhIHys4O/ZOxBhlMz VpTIWJxgk5TB+jy3GMhBklFBV4nzHat+jMiTmdMsVkSdwTApZ+6r4SVRicy9OTnd JlmqT7Su6vWg+/NQNxbVFhWjuFhCKd5codfhr2AfQn7iP7ybv2lVdgmVhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCgTZRXZ4+ccCxYXCQ8th3pF9rHdMB8GA1UdIwQY MBaAFHVyyaEIzj3lLRbiEegMleXFtUyEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFhMSm9Rak9QZVV0RnVJUjZBeVY1Y1cxVElRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS82ZmQ3ZTUtYzJjOS00OTBiLTk1ZTkt NWZhZWM1YWJhZjFiLzEvZFhMSm9Rak9QZVV0RnVJUjZBeVY1Y1cxVElRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS82ZmQ3ZTUtYzJjOS00OTBiLTk1ZTktNWZhZWM1YWJhZjFi LzEvZFhMSm9Rak9QZVV0RnVJUjZBeVY1Y1cxVElRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALlBswKFM pRhsKZhR9qJJWwTvRIf9sUnvuV2Wgm0IfFaOUsVhzcD6Fanb+KoUn8SNRPsrSlqb 9+zuKFbbjOZ0ZYmZ1CPJj+nFXjYbPu0ve4bGoqbwu5SXrQ/Qv8jZ7J5pMRnlz7rt fpCazc2O7FTqvLvmW4RsARCDIKlnmkVssGOitnL6B6piMyUrw9SMG2aZWhpzSdyf f7QTxGDwkoqe2YJweWR2XUf8Grh7OStjQwfsR1voqzFoVWIUttfej/roI7tSUvXn FLnsjHtlBnt+9khtRtkMb/ClR7ACOE8ddUebD7IiDdcn7MiWt6u+TO1NhiOwP7rJ Ozw4AEEo2wNw4w== -----END CERTIFICATE-----Generated at Tue Feb 10 01:41:45 2026 by rpki-client