This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/c8961f-d1d7-46ac-9f8d-33ebac095077/1/rlDsNS6NuwzfbgjFfHHKoRpEUAM.mft File: rlDsNS6NuwzfbgjFfHHKoRpEUAM.mft (raw, json) Hash identifier: FyotJ5D2VE+60TdBbJyCIf4Rf00HFqHqWK8IXcRvCXc= Subject key identifier: 49:44:62:5D:3B:96:F1:C1:46:EF:47:4E:99:AA:59:3B:97:BA:21:40 Authority key identifier: AE:50:EC:35:2E:8D:BB:0C:DF:6E:08:C5:7C:71:CA:A1:1A:44:50:03 Certificate issuer: /CN=ae50ec352e8dbb0cdf6e08c57c71caa11a445003 Certificate serial: 019C4321F68B2B6879FCD86BA5067EAD0B6D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rlDsNS6NuwzfbgjFfHHKoRpEUAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/c8961f-d1d7-46ac-9f8d-33ebac095077/1/rlDsNS6NuwzfbgjFfHHKoRpEUAM.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 16:00:25 +0000 Manifest this update: Mon 09 Feb 2026 16:00:25 +0000 Manifest next update: Tue 10 Feb 2026 16:00:25 +0000 Files and hashes: 1: rlDsNS6NuwzfbgjFfHHKoRpEUAM.crl (hash: uHW8Qh8FGvPMco3+vd/YZ4ao+KfFnZPO5S/h8PsmD3w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/c8961f-d1d7-46ac-9f8d-33ebac095077/1/rlDsNS6NuwzfbgjFfHHKoRpEUAM.crl rsync://rpki.ripe.net/repository/DEFAULT/49/c8961f-d1d7-46ac-9f8d-33ebac095077/1/rlDsNS6NuwzfbgjFfHHKoRpEUAM.mft rsync://rpki.ripe.net/repository/DEFAULT/rlDsNS6NuwzfbgjFfHHKoRpEUAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:f6:8b:2b:68:79:fc:d8:6b:a5:06:7e:ad:0b:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae50ec352e8dbb0cdf6e08c57c71caa11a445003 Validity Not Before: Feb 9 16:00:25 2026 GMT Not After : Feb 10 16:00:25 2026 GMT Subject: CN=4944625d3b96f1c146ef474e99aa593b97ba2140 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:44:22:cb:e8:12:1f:87:04:7b:c3:6f:5f:9b: bf:bd:13:73:75:49:4f:74:38:12:1a:85:05:de:0a: 28:57:c8:a1:37:37:8f:4b:0b:8c:b3:d5:b2:f0:2c: 65:8f:a0:f0:dd:e5:3e:59:27:6b:2a:9d:2e:b4:e0: 97:60:9e:e8:31:1d:70:44:26:ec:52:bd:78:fb:9e: e2:68:92:2d:f1:32:45:11:29:6f:63:3c:21:62:d9: 15:75:4b:d6:1f:56:ef:1f:c5:94:9d:21:12:01:9e: ab:11:82:21:a2:8b:b0:16:3d:94:07:70:6c:7f:7c: d5:25:28:8e:cc:14:f7:55:f6:40:c2:df:93:ee:a9: 97:76:e7:62:62:05:47:7c:74:27:2a:96:4f:1b:61: b3:c6:ae:50:69:88:71:c1:7f:b6:31:aa:9e:7b:37: 61:82:20:d3:b6:97:4c:d0:13:4c:0e:08:64:fe:25: b6:76:9a:82:3d:32:99:89:44:ec:9f:49:72:7c:32: 0d:c5:e4:2a:eb:b6:ba:64:33:1e:93:07:e4:b5:b6: f0:67:18:f0:18:28:d0:b2:ff:e7:4f:6b:67:c2:83: c1:28:76:8c:0c:ea:66:63:30:06:4a:37:af:e1:c6: db:26:43:01:e5:00:c3:6f:f4:c6:68:32:f2:5a:86: 01:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:44:62:5D:3B:96:F1:C1:46:EF:47:4E:99:AA:59:3B:97:BA:21:40 X509v3 Authority Key Identifier: keyid:AE:50:EC:35:2E:8D:BB:0C:DF:6E:08:C5:7C:71:CA:A1:1A:44:50:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rlDsNS6NuwzfbgjFfHHKoRpEUAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c8961f-d1d7-46ac-9f8d-33ebac095077/1/rlDsNS6NuwzfbgjFfHHKoRpEUAM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c8961f-d1d7-46ac-9f8d-33ebac095077/1/rlDsNS6NuwzfbgjFfHHKoRpEUAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:0e:81:d6:c9:2b:35:f5:d5:ba:3c:1d:d7:7f:5f:77:dd:61: f1:ac:1e:d9:72:17:f8:3a:ca:48:a9:b6:d6:83:9a:83:ac:32: 58:37:c3:36:2b:fa:5f:a9:03:da:04:06:1d:7b:ad:9d:41:b1: 7b:4d:fd:98:13:46:e5:15:ae:d0:4c:9c:e6:83:8f:8e:bd:81: f0:95:90:44:b4:ab:63:99:35:57:8e:d2:19:79:62:77:96:73: be:e5:0b:dc:5b:5b:4a:04:25:73:f5:15:4c:ec:3b:15:dc:81: a1:c3:77:45:c1:c8:f8:8f:7c:44:51:7a:fa:64:81:b5:5c:7e: 47:4d:2d:b5:e6:e2:36:70:46:22:5b:24:98:c2:3b:27:6c:72: 35:b5:73:80:e3:ff:85:7a:bf:db:cb:ef:af:8e:ea:10:35:5e: 9b:24:6b:ab:d6:00:62:de:b6:55:6d:23:aa:49:e0:da:25:0b: 2f:f2:19:c5:73:d5:11:b3:3f:69:66:e8:c3:cf:bf:94:6a:9c: b1:51:1e:4b:e4:49:51:d6:e0:8d:7c:2b:70:15:48:32:e4:00: 5e:46:be:a6:a4:5f:7f:c6:ca:f5:71:7c:94:4f:6d:4c:21:76: 09:e4:43:0f:e5:2a:a5:3d:65:44:d4:12:05:08:5e:26:50:55: 78:27:dd:12 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIfaLK2h5/NhrpQZ+rQttMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlNTBlYzM1MmU4ZGJiMGNkZjZlMDhjNTdjNzFjYWExMWE0 NDUwMDMwHhcNMjYwMjA5MTYwMDI1WhcNMjYwMjEwMTYwMDI1WjAzMTEwLwYDVQQD Eyg0OTQ0NjI1ZDNiOTZmMWMxNDZlZjQ3NGU5OWFhNTkzYjk3YmEyMTQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm0Qiy+gSH4cEe8NvX5u/vRNzdUlP dDgSGoUF3gooV8ihNzePSwuMs9Wy8Cxlj6Dw3eU+WSdrKp0utOCXYJ7oMR1wRCbs Ur14+57iaJIt8TJFESlvYzwhYtkVdUvWH1bvH8WUnSESAZ6rEYIhoouwFj2UB3Bs f3zVJSiOzBT3VfZAwt+T7qmXdudiYgVHfHQnKpZPG2Gzxq5QaYhxwX+2Maqeezdh giDTtpdM0BNMDghk/iW2dpqCPTKZiUTsn0lyfDINxeQq67a6ZDMekwfktbbwZxjw GCjQsv/nT2tnwoPBKHaMDOpmYzAGSjev4cbbJkMB5QDDb/TGaDLyWoYB5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFElEYl07lvHBRu9HTpmqWTuXuiFAMB8GA1UdIwQY MBaAFK5Q7DUujbsM324IxXxxyqEaRFADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmxEc05TNk51d3pmYmdqRmZISEtvUnBFVUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS9jODk2MWYtZDFkNy00NmFjLTlmOGQt MzNlYmFjMDk1MDc3LzEvcmxEc05TNk51d3pmYmdqRmZISEtvUnBFVUFNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS9jODk2MWYtZDFkNy00NmFjLTlmOGQtMzNlYmFjMDk1MDc3 LzEvcmxEc05TNk51d3pmYmdqRmZISEtvUnBFVUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUQ6B1skr NfXVujwd139fd91h8awe2XIX+DrKSKm21oOag6wyWDfDNiv6X6kD2gQGHXutnUGx e039mBNG5RWu0Eyc5oOPjr2B8JWQRLSrY5k1V47SGXlid5ZzvuUL3FtbSgQlc/UV TOw7FdyBocN3RcHI+I98RFF6+mSBtVx+R00ttebiNnBGIlskmMI7J2xyNbVzgOP/ hXq/28vvr47qEDVemyRrq9YAYt62VW0jqkng2iULL/IZxXPVEbM/aWbow8+/lGqc sVEeS+RJUdbgjXwrcBVIMuQAXka+pqRff8bK9XF8lE9tTCF2CeRDD+UqpT1lRNQS BQheJlBVeCfdEg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:49 2026 by rpki-client