This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft File: DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft (raw, json) Hash identifier: HuYZ8sxkovjD0H10i+umu7s1pvWIdy+XbGPJWktOnZk= Subject key identifier: 83:9E:B4:69:25:EA:A3:93:3B:27:4F:4D:AB:B6:C2:0C:20:4E:A1:EC Authority key identifier: 0D:33:3F:72:D9:E2:94:54:38:25:BE:63:72:9F:80:34:A4:51:70:90 Certificate issuer: /CN=0d333f72d9e294543825be63729f8034a4517090 Certificate serial: 019C424674B10159EF466123B27182FF4BE0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft Manifest number: 0C06 Signing time: Mon 09 Feb 2026 12:00:39 +0000 Manifest this update: Mon 09 Feb 2026 12:00:39 +0000 Manifest next update: Tue 10 Feb 2026 12:00:39 +0000 Files and hashes: 1: DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl (hash: f8i3dZfEgVm3/zj+FSIS9DOJbzWmSrnFc4hJxNxQ/XE=) 2: EPJNcfb9BYVxiCOl5XxrpQOfiyc.roa (hash: 3iBYjsoElN4nFr95B9VrvRH80hKHxRpzggq/IbclLdo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:74:b1:01:59:ef:46:61:23:b2:71:82:ff:4b:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d333f72d9e294543825be63729f8034a4517090 Validity Not Before: Feb 9 12:00:39 2026 GMT Not After : Feb 10 12:00:39 2026 GMT Subject: CN=839eb46925eaa3933b274f4dabb6c20c204ea1ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5c:cb:0e:54:b9:6b:a9:f3:e1:c0:0d:3a:b9: fc:0d:af:e0:bd:b4:27:16:37:aa:ba:c8:93:0d:ac: 4f:fc:2d:3f:3d:9d:09:49:2c:12:00:77:12:67:03: 71:85:e6:df:4f:c5:45:f9:29:ab:57:61:1d:51:00: f4:e0:59:1e:34:0c:b9:38:9c:bc:9d:e4:e0:aa:4f: 8a:c3:22:70:d8:2d:2a:aa:4e:48:ce:1d:b4:e6:34: fc:86:ac:3f:06:7b:69:c5:ec:19:cf:5f:92:0a:d2: fa:b8:46:73:51:24:cd:5b:3a:13:70:8b:63:41:88: ee:a1:79:c9:4c:6d:f8:0b:6e:47:00:3c:82:a0:f7: 26:8c:e4:2e:78:66:fc:8b:41:4c:c6:f0:f0:db:97: 5f:17:b7:e3:7d:97:87:b2:a3:8c:32:69:27:49:e9: fd:a5:63:a0:c4:06:f7:53:76:73:a7:2b:87:3f:da: 33:0b:30:8e:ed:44:b9:6e:c5:88:6e:91:40:85:b7: 18:d9:a8:52:18:f7:2b:c2:59:9b:76:67:88:71:43: 9d:47:bc:e5:6a:74:f8:5a:6b:9c:f3:17:d3:2e:bc: de:9d:87:2a:7b:00:9a:8b:42:4c:07:02:b6:5f:69: 93:49:55:cf:12:0c:5f:34:b1:ba:e5:ee:e2:71:f0: 95:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:9E:B4:69:25:EA:A3:93:3B:27:4F:4D:AB:B6:C2:0C:20:4E:A1:EC X509v3 Authority Key Identifier: keyid:0D:33:3F:72:D9:E2:94:54:38:25:BE:63:72:9F:80:34:A4:51:70:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:22:df:6c:16:3e:9f:db:e9:e3:d1:67:d9:74:6e:a6:6a:3a: 99:82:94:37:20:49:3b:4b:00:39:14:a9:c7:ff:1a:ca:23:27: ef:97:38:45:e1:0b:e2:b4:e5:f5:3b:05:eb:30:07:56:fa:4f: 66:7e:0b:bc:1f:b8:86:23:5e:8d:1c:e1:c8:4b:2b:97:7c:82: 50:88:b4:9a:57:60:3e:b5:5d:bd:fa:cf:7a:1e:49:70:28:19: b9:64:d9:cc:ed:c4:eb:0b:15:36:50:29:35:dd:a6:93:62:ce: 25:d5:33:a9:0f:1b:4c:b5:ad:00:e7:2b:66:1a:91:6b:03:d3: 51:93:82:bf:66:ee:3b:a9:99:d8:b9:45:a7:be:75:f5:4d:87: 2d:2c:32:40:1b:8b:20:a0:0b:f2:ab:cc:bf:3c:71:0a:f7:b9: a9:81:d0:67:f3:ea:a7:5a:75:65:95:89:56:fc:3b:48:96:68: 2c:3e:ab:e2:10:84:eb:7f:dc:a1:29:16:84:f8:84:0e:06:1c: 27:f7:f1:12:ef:02:ab:0d:df:e3:72:15:8c:0d:84:c3:af:fb: 74:79:54:64:ed:d8:66:4c:c4:05:96:56:47:c9:4d:e2:1b:9f: 05:80:04:e4:c7:52:68:b3:3b:6a:10:fb:09:be:30:a3:92:54: cd:21:67:2e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRnSxAVnvRmEjsnGC/0vgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkMzMzZjcyZDllMjk0NTQzODI1YmU2MzcyOWY4MDM0YTQ1 MTcwOTAwHhcNMjYwMjA5MTIwMDM5WhcNMjYwMjEwMTIwMDM5WjAzMTEwLwYDVQQD Eyg4MzllYjQ2OTI1ZWFhMzkzM2IyNzRmNGRhYmI2YzIwYzIwNGVhMWVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvVzLDlS5a6nz4cANOrn8Da/gvbQn FjequsiTDaxP/C0/PZ0JSSwSAHcSZwNxhebfT8VF+SmrV2EdUQD04FkeNAy5OJy8 neTgqk+KwyJw2C0qqk5Izh205jT8hqw/BntpxewZz1+SCtL6uEZzUSTNWzoTcItj QYjuoXnJTG34C25HADyCoPcmjOQueGb8i0FMxvDw25dfF7fjfZeHsqOMMmknSen9 pWOgxAb3U3ZzpyuHP9ozCzCO7US5bsWIbpFAhbcY2ahSGPcrwlmbdmeIcUOdR7zl anT4Wmuc8xfTLrzenYcqewCai0JMBwK2X2mTSVXPEgxfNLG65e7icfCVpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIOetGkl6qOTOydPTau2wgwgTqHsMB8GA1UdIwQY MBaAFA0zP3LZ4pRUOCW+Y3KfgDSkUXCQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFRNX2N0bmlsRlE0SmI1amNwLUFOS1JSY0pBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC82NWZlYTItYTNkOS00OTJmLThlNDQt ODk0ZGZhNWRmMDE3LzEvRFRNX2N0bmlsRlE0SmI1amNwLUFOS1JSY0pBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC82NWZlYTItYTNkOS00OTJmLThlNDQtODk0ZGZhNWRmMDE3 LzEvRFRNX2N0bmlsRlE0SmI1amNwLUFOS1JSY0pBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAICLfbBY+ n9vp49Fn2XRupmo6mYKUNyBJO0sAORSpx/8ayiMn75c4ReEL4rTl9TsF6zAHVvpP Zn4LvB+4hiNejRzhyEsrl3yCUIi0mldgPrVdvfrPeh5JcCgZuWTZzO3E6wsVNlAp Nd2mk2LOJdUzqQ8bTLWtAOcrZhqRawPTUZOCv2buO6mZ2LlFp7519U2HLSwyQBuL IKAL8qvMvzxxCve5qYHQZ/Pqp1p1ZZWJVvw7SJZoLD6r4hCE63/coSkWhPiEDgYc J/fxEu8Cqw3f43IVjA2Ew6/7dHlUZO3YZkzEBZZWR8lN4hufBYAE5MdSaLM7ahD7 Cb4wo5JUzSFnLg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:53:45 2026 by rpki-client