This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft File: duK6XMFQs1PL00ufBF6gUJdAhE0.mft (raw, json) Hash identifier: D70Vcod596ZzN8SdRDKBRsWlfpMIGuktkKNIHrAamGU= Subject key identifier: DA:5B:1C:A0:AE:68:A2:92:23:DE:A8:13:51:8B:88:87:C7:A0:55:52 Authority key identifier: 76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D Certificate issuer: /CN=76e2ba5cc150b353cbd34b9f045ea0509740844d Certificate serial: 019C427D21DE62E31CB2F8958E6892A4E2D6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 13:00:22 +0000 Manifest this update: Mon 09 Feb 2026 13:00:22 +0000 Manifest next update: Tue 10 Feb 2026 13:00:22 +0000 Files and hashes: 1: 9pt3MDCay7srVLLtOW6VihLRgqg.roa (hash: t8waBrYlHxhkv2G7wxFbB2b8tWVcdcespy2BiSBs4U8=) 2: duK6XMFQs1PL00ufBF6gUJdAhE0.crl (hash: zNGAzYMtdL1UULE3MIbYxaKqBBl22YQRU3nxdZG8++4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:21:de:62:e3:1c:b2:f8:95:8e:68:92:a4:e2:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76e2ba5cc150b353cbd34b9f045ea0509740844d Validity Not Before: Feb 9 13:00:22 2026 GMT Not After : Feb 10 13:00:22 2026 GMT Subject: CN=da5b1ca0ae68a29223dea813518b8887c7a05552 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:5a:74:6b:05:5a:68:36:8f:f7:1a:c7:dc:51: ca:bc:1d:5f:dd:6d:ca:5d:e0:78:97:73:23:54:f8: c2:0b:96:5b:0a:4e:98:8b:49:f7:cd:55:0d:c5:26: 04:0d:0a:e5:d0:b2:64:65:5a:86:83:5b:11:c0:8d: 02:b2:94:60:65:0a:11:fe:fe:ec:53:c8:e6:81:cb: f6:13:f3:a2:2a:7d:f2:9e:da:73:f2:41:9d:de:90: 8b:b2:e4:2b:cd:60:34:e5:aa:80:b4:54:f4:27:de: c2:03:f1:d6:26:e7:b0:04:09:f2:8d:b0:34:87:4c: e2:52:e6:b8:5f:9e:c4:b0:6d:17:b1:27:d6:34:c6: 17:d1:32:ce:18:d4:93:94:2b:66:a8:b2:96:20:a3: e3:7b:81:be:54:4d:14:ba:3d:b8:85:c6:e7:ab:c5: c6:a5:b8:e8:12:45:4a:53:2e:2f:c7:e4:ed:d5:9e: c9:32:f2:1b:d5:16:e7:10:1d:49:31:c6:05:d3:51: b3:e9:19:f3:f1:b4:27:1c:47:fb:68:63:6f:40:a9: b4:11:01:26:ff:95:32:5e:6f:b2:86:31:2c:0f:2a: d5:41:e2:82:e9:35:e6:31:c5:57:88:3d:75:c3:d1: 62:d5:46:19:fa:7a:0b:f1:94:48:3a:df:9a:48:c2: 1e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:5B:1C:A0:AE:68:A2:92:23:DE:A8:13:51:8B:88:87:C7:A0:55:52 X509v3 Authority Key Identifier: keyid:76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:1c:f2:a2:03:8a:6a:54:ff:9a:9c:56:65:da:df:4e:e3:df: 7f:cd:f4:13:fc:3b:22:92:05:66:37:bf:6e:46:0f:1d:35:71: c6:35:20:20:20:87:6c:78:15:a4:b1:9f:b8:fc:04:8a:f6:0c: 37:d9:e2:d7:59:47:6e:5e:80:28:ac:05:dd:e4:49:e1:7a:2c: d8:56:4a:92:13:7d:e9:fc:cf:b3:73:81:63:0d:b0:60:b7:bb: d3:cc:3b:41:ac:7a:4a:69:46:f4:93:ba:ac:ff:a2:c9:cf:04: d8:a1:54:c0:1f:28:6f:a4:dc:f4:eb:bb:37:af:14:9c:ab:f0: 30:6c:ef:49:f1:e2:0d:5d:32:7e:4f:e0:cd:bf:1a:a0:b6:70: 18:55:62:cc:f9:76:06:12:87:87:29:ae:3f:51:f4:69:c3:00: 4a:11:b7:5b:a7:8b:bb:78:d1:07:7d:51:b8:35:ab:13:27:80: 3f:b2:bf:e4:ba:c6:02:79:45:aa:ff:55:a6:21:99:06:e7:75: 8c:f0:7a:ab:ca:24:c8:f2:a5:bb:91:fd:4b:e6:db:55:52:93: 2f:1d:c5:c7:e8:4c:bd:e8:7f:ba:44:0d:09:1a:73:84:ec:92: 4e:88:ec:09:c4:2a:3e:09:71:af:9d:98:b6:64:a9:b5:e0:23: 75:e8:73:16 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfSHeYuMcsviVjmiSpOLWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2ZTJiYTVjYzE1MGIzNTNjYmQzNGI5ZjA0NWVhMDUwOTc0 MDg0NGQwHhcNMjYwMjA5MTMwMDIyWhcNMjYwMjEwMTMwMDIyWjAzMTEwLwYDVQQD EyhkYTViMWNhMGFlNjhhMjkyMjNkZWE4MTM1MThiODg4N2M3YTA1NTUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Vp0awVaaDaP9xrH3FHKvB1f3W3K XeB4l3MjVPjCC5ZbCk6Yi0n3zVUNxSYEDQrl0LJkZVqGg1sRwI0CspRgZQoR/v7s U8jmgcv2E/OiKn3yntpz8kGd3pCLsuQrzWA05aqAtFT0J97CA/HWJuewBAnyjbA0 h0ziUua4X57EsG0XsSfWNMYX0TLOGNSTlCtmqLKWIKPje4G+VE0Uuj24hcbnq8XG pbjoEkVKUy4vx+Tt1Z7JMvIb1RbnEB1JMcYF01Gz6Rnz8bQnHEf7aGNvQKm0EQEm /5UyXm+yhjEsDyrVQeKC6TXmMcVXiD11w9Fi1UYZ+noL8ZRIOt+aSMIe1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNpbHKCuaKKSI96oE1GLiIfHoFVSMB8GA1UdIwQY MBaAFHbiulzBULNTy9NLnwReoFCXQIRNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHVLNlhNRlFzMVBMMDB1ZkJGNmdVSmRBaEUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8zMWQyZWQtOGUyZi00ZmE5LTgzY2Et NzA0MDVlMzUyOGFmLzEvZHVLNlhNRlFzMVBMMDB1ZkJGNmdVSmRBaEUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS8zMWQyZWQtOGUyZi00ZmE5LTgzY2EtNzA0MDVlMzUyOGFm LzEvZHVLNlhNRlFzMVBMMDB1ZkJGNmdVSmRBaEUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALBzyogOK alT/mpxWZdrfTuPff830E/w7IpIFZje/bkYPHTVxxjUgICCHbHgVpLGfuPwEivYM N9ni11lHbl6AKKwF3eRJ4Xos2FZKkhN96fzPs3OBYw2wYLe708w7Qax6SmlG9JO6 rP+iyc8E2KFUwB8ob6Tc9Ou7N68UnKvwMGzvSfHiDV0yfk/gzb8aoLZwGFVizPl2 BhKHhymuP1H0acMAShG3W6eLu3jRB31RuDWrEyeAP7K/5LrGAnlFqv9VpiGZBud1 jPB6q8okyPKlu5H9S+bbVVKTLx3Fx+hMveh/ukQNCRpzhOySTojsCcQqPglxr52Y tmSpteAjdehzFg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:04:35 2026 by rpki-client