This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/cd33f9-4f04-4983-a43a-3a8231edb46c/1/DSC_pCDAzV9fGNuOe9o1X-joW30.mft File: DSC_pCDAzV9fGNuOe9o1X-joW30.mft (raw, json) Hash identifier: 5cY5GTSY1vrI7kzxohwiZtVoLtrP3RfhRLuWUMcvbq0= Subject key identifier: 9D:9D:C9:8F:51:4A:B9:7A:C7:99:09:FF:AE:1E:28:8D:85:64:90:0E Authority key identifier: 0D:20:BF:A4:20:C0:CD:5F:5F:18:DB:8E:7B:DA:35:5F:E8:E8:5B:7D Certificate issuer: /CN=0d20bfa420c0cd5f5f18db8e7bda355fe8e85b7d Certificate serial: 019C427DB6DDFC54AEE1FF5196409F971B0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSC_pCDAzV9fGNuOe9o1X-joW30.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/cd33f9-4f04-4983-a43a-3a8231edb46c/1/DSC_pCDAzV9fGNuOe9o1X-joW30.mft Manifest number: 0309 Signing time: Mon 09 Feb 2026 13:01:00 +0000 Manifest this update: Mon 09 Feb 2026 13:01:00 +0000 Manifest next update: Tue 10 Feb 2026 13:01:00 +0000 Files and hashes: 1: DSC_pCDAzV9fGNuOe9o1X-joW30.crl (hash: STME2S3YoECijBmeEzCJQGsuLeml8pRkdrO1eJVryMY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/cd33f9-4f04-4983-a43a-3a8231edb46c/1/DSC_pCDAzV9fGNuOe9o1X-joW30.crl rsync://rpki.ripe.net/repository/DEFAULT/47/cd33f9-4f04-4983-a43a-3a8231edb46c/1/DSC_pCDAzV9fGNuOe9o1X-joW30.mft rsync://rpki.ripe.net/repository/DEFAULT/DSC_pCDAzV9fGNuOe9o1X-joW30.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:b6:dd:fc:54:ae:e1:ff:51:96:40:9f:97:1b:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d20bfa420c0cd5f5f18db8e7bda355fe8e85b7d Validity Not Before: Feb 9 13:01:00 2026 GMT Not After : Feb 10 13:01:00 2026 GMT Subject: CN=9d9dc98f514ab97ac79909ffae1e288d8564900e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0a:73:1c:9a:d0:79:00:f4:fc:99:40:80:9f: eb:87:a8:0e:54:51:3e:c0:ca:b8:a4:ed:7d:45:84: 6f:33:06:fc:db:fb:16:3b:f9:0c:0d:27:08:6c:dc: a3:4d:31:e7:be:74:03:ef:2f:d4:dd:97:f2:c7:55: 37:bc:97:dc:e4:14:c0:0e:42:09:32:06:b9:d4:77: ae:63:6a:15:fc:45:54:90:03:1c:ff:26:98:23:c3: 72:a2:48:87:8c:b6:a4:88:bc:c1:85:86:5a:2d:e1: 22:e7:6d:30:77:98:67:6c:b6:35:e0:0d:bd:54:b7: 94:27:22:0c:6b:3d:8a:cb:71:ec:fd:a4:dc:68:3f: 63:a1:72:7a:83:dc:a5:a2:39:58:7e:39:9f:b9:16: 86:af:72:00:92:f4:04:96:8a:0b:96:e6:3f:9d:26: f6:5e:04:f1:62:f7:34:fe:fd:84:03:10:6b:3c:5b: a9:b9:0d:77:e9:3c:e4:f5:bf:ac:3f:ee:77:43:f1: b6:9f:31:ae:8b:82:74:0d:40:6f:63:86:0e:81:51: 23:12:b8:54:84:0f:67:ec:e4:b2:84:82:b9:96:5f: 81:99:54:90:ef:ab:43:72:d0:ca:f8:32:3b:6f:0d: 4d:a3:ba:b8:92:a1:0c:f9:5d:9a:10:a6:83:78:a2: 56:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:9D:C9:8F:51:4A:B9:7A:C7:99:09:FF:AE:1E:28:8D:85:64:90:0E X509v3 Authority Key Identifier: keyid:0D:20:BF:A4:20:C0:CD:5F:5F:18:DB:8E:7B:DA:35:5F:E8:E8:5B:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSC_pCDAzV9fGNuOe9o1X-joW30.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd33f9-4f04-4983-a43a-3a8231edb46c/1/DSC_pCDAzV9fGNuOe9o1X-joW30.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd33f9-4f04-4983-a43a-3a8231edb46c/1/DSC_pCDAzV9fGNuOe9o1X-joW30.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:85:b2:9c:ab:07:97:ab:07:72:23:46:19:e1:f2:3d:87:03: 39:bd:77:88:49:b8:18:39:32:b6:9e:47:58:99:e9:f5:47:c8: 8f:8e:33:77:cf:47:e0:6c:30:65:46:1f:4b:5c:7e:b6:40:b5: 26:08:d8:02:f2:1f:e6:b6:76:ff:3e:9e:de:42:75:7d:43:57: c7:17:54:ca:89:2b:8c:b8:06:f0:c6:4e:6a:97:64:37:7a:1e: 94:c2:ae:2c:7b:66:f4:27:7e:d5:d0:a6:82:79:02:7d:ca:9a: 3a:ec:b6:bf:d3:04:68:ea:00:13:a6:21:99:4d:5d:31:54:b5: cc:91:54:37:84:28:80:e7:71:3f:1a:dc:75:d2:8d:d7:69:04: ec:57:44:8b:58:e7:05:55:98:34:6a:03:f0:65:61:0e:60:d5: 65:94:35:d6:ad:cb:46:e4:06:2a:9f:35:17:0d:3c:df:95:b8: d3:d5:9d:5e:b2:a7:93:a4:1f:b8:c2:c1:b9:9a:e6:e5:0d:11: fe:84:65:76:55:40:d5:a9:b6:5a:4e:d4:23:0c:6f:1a:9d:fd: 9c:c6:9c:c3:79:8a:ab:57:bb:8b:55:a8:a6:53:ba:39:12:cf: d6:07:0b:3f:ec:42:08:f0:ad:32:84:3e:c8:ba:c9:c9:29:84: b5:2b:2c:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfbbd/FSu4f9RlkCflxsLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkMjBiZmE0MjBjMGNkNWY1ZjE4ZGI4ZTdiZGEzNTVmZThl ODViN2QwHhcNMjYwMjA5MTMwMTAwWhcNMjYwMjEwMTMwMTAwWjAzMTEwLwYDVQQD Eyg5ZDlkYzk4ZjUxNGFiOTdhYzc5OTA5ZmZhZTFlMjg4ZDg1NjQ5MDBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvwpzHJrQeQD0/JlAgJ/rh6gOVFE+ wMq4pO19RYRvMwb82/sWO/kMDScIbNyjTTHnvnQD7y/U3Zfyx1U3vJfc5BTADkIJ Mga51HeuY2oV/EVUkAMc/yaYI8NyokiHjLakiLzBhYZaLeEi520wd5hnbLY14A29 VLeUJyIMaz2Ky3Hs/aTcaD9joXJ6g9ylojlYfjmfuRaGr3IAkvQElooLluY/nSb2 XgTxYvc0/v2EAxBrPFupuQ136Tzk9b+sP+53Q/G2nzGui4J0DUBvY4YOgVEjErhU hA9n7OSyhIK5ll+BmVSQ76tDctDK+DI7bw1No7q4kqEM+V2aEKaDeKJWpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ2dyY9RSrl6x5kJ/64eKI2FZJAOMB8GA1UdIwQY MBaAFA0gv6QgwM1fXxjbjnvaNV/o6Ft9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFNDX3BDREF6VjlmR051T2U5bzFYLWpvVzMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9jZDMzZjktNGYwNC00OTgzLWE0M2Et M2E4MjMxZWRiNDZjLzEvRFNDX3BDREF6VjlmR051T2U5bzFYLWpvVzMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny9jZDMzZjktNGYwNC00OTgzLWE0M2EtM2E4MjMxZWRiNDZj LzEvRFNDX3BDREF6VjlmR051T2U5bzFYLWpvVzMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV4WynKsH l6sHciNGGeHyPYcDOb13iEm4GDkytp5HWJnp9UfIj44zd89H4GwwZUYfS1x+tkC1 JgjYAvIf5rZ2/z6e3kJ1fUNXxxdUyokrjLgG8MZOapdkN3oelMKuLHtm9Cd+1dCm gnkCfcqaOuy2v9MEaOoAE6YhmU1dMVS1zJFUN4QogOdxPxrcddKN12kE7FdEi1jn BVWYNGoD8GVhDmDVZZQ11q3LRuQGKp81Fw0835W409WdXrKnk6QfuMLBuZrm5Q0R /oRldlVA1am2Wk7UIwxvGp39nMacw3mKq1e7i1WoplO6ORLP1gcLP+xCCPCtMoQ+ yLrJySmEtSssYQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:16 2026 by rpki-client