This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft File: D5XJyafxmprXF-TapTDIXPmauXU.mft (raw, json) Hash identifier: 1OMrMIMom/JgX+fQ0Pb/3pVxs7dGHxQdvpxRTAKCDDo= Subject key identifier: D2:75:11:AA:47:2B:2C:14:A5:BA:01:51:62:AF:BC:FE:48:E2:D4:1B Authority key identifier: 0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75 Certificate issuer: /CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975 Certificate serial: 019C427D6E143D422574B86C1C9327B5B870 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft Manifest number: 0840 Signing time: Mon 09 Feb 2026 13:00:42 +0000 Manifest this update: Mon 09 Feb 2026 13:00:42 +0000 Manifest next update: Tue 10 Feb 2026 13:00:42 +0000 Files and hashes: 1: D5XJyafxmprXF-TapTDIXPmauXU.crl (hash: v2XBcWhOwWvZn6IPgISEiTekfNeg0fCdDbbvYzm/nX0=) 2: IDbRzIjz9FoGej8HJqlL664b-8I.roa (hash: VRTrlkouQDtL6ZUrJRyEpfphRS5vZrTw/RpqnAvn+iU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:6e:14:3d:42:25:74:b8:6c:1c:93:27:b5:b8:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975 Validity Not Before: Feb 9 13:00:42 2026 GMT Not After : Feb 10 13:00:42 2026 GMT Subject: CN=d27511aa472b2c14a5ba015162afbcfe48e2d41b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:96:dd:58:81:53:f9:ff:db:5f:19:85:14:d4: 17:c1:42:c6:4e:a8:ee:e7:93:50:50:27:4c:ee:28: 49:61:7b:f8:f7:70:64:3d:9c:d3:b4:65:1d:d7:48: 53:cc:4f:72:f9:79:4d:6d:2c:df:d2:e1:20:3b:c1: 97:db:5e:3b:83:a8:95:17:49:44:64:38:40:b8:13: 90:ec:d4:28:da:61:ba:35:4d:d6:a0:2f:d2:3b:31: 47:f4:15:67:49:b3:91:7f:54:18:3a:d1:00:36:6a: 46:c0:11:c3:ee:f3:ef:99:b9:ac:c0:d1:94:3e:ab: 1c:e0:31:97:49:f2:56:38:a8:3b:3a:eb:3a:0b:10: 57:97:69:e0:96:d5:0d:07:a1:cf:66:7e:ee:cc:7d: 2a:21:49:31:0a:c6:e4:88:88:1f:3e:a6:4b:72:fe: 23:bd:bc:a1:65:08:93:e3:e7:49:36:e5:a7:b3:2d: 61:54:b6:c8:59:68:c7:0b:91:70:e8:e4:70:f0:fe: 23:2a:2a:a4:be:79:1e:b0:31:83:6e:8a:78:72:39: 1a:5a:56:fd:79:24:69:52:da:36:5d:4b:2a:00:6c: 2e:77:0b:2b:ab:00:bb:9a:b0:d1:a8:5e:b9:07:aa: af:09:d1:a3:0c:e3:1f:d8:a0:f4:ce:e1:65:79:8c: cd:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:75:11:AA:47:2B:2C:14:A5:BA:01:51:62:AF:BC:FE:48:E2:D4:1B X509v3 Authority Key Identifier: keyid:0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:f6:18:f9:cc:32:03:e8:d9:05:37:2b:a3:18:82:68:fa:0a: 9a:52:74:f9:b6:e2:a4:84:8a:04:43:84:5f:b9:d6:00:3b:57: 9b:2b:91:3b:c3:7b:50:d2:98:27:4f:ff:17:2d:b9:db:ff:2c: 07:81:65:06:2e:05:c7:7a:cb:06:fc:4a:ca:f9:a5:ea:6c:a5: 6b:38:46:41:74:fe:7f:ec:63:41:e8:72:94:eb:b4:81:72:06: f2:51:33:0d:ae:e7:65:c2:21:e8:f3:5a:b3:3c:9e:b4:ec:fd: 12:67:cb:bf:e0:4d:3a:97:ae:97:21:c7:17:13:e2:ce:ae:43: da:f9:49:bf:ed:17:48:7a:62:2d:9d:9e:09:1b:dc:95:6a:30: ed:28:f2:e0:a4:2c:f3:12:14:5c:c9:e6:61:74:d6:fc:4f:87: ea:77:d1:18:05:d5:26:70:b8:eb:8b:e2:07:03:37:c3:4d:4e: bf:ad:ca:63:9c:ea:32:81:24:16:be:1f:0a:b1:82:99:fe:3b: 7f:08:cb:78:e8:d5:2f:01:bf:d1:b8:f5:e5:b7:90:c5:5f:3c: 8f:c4:d5:e5:2e:05:2b:96:27:df:47:7b:de:a0:10:a8:5f:06: f5:cc:93:13:32:7d:5e:d5:13:f8:b6:9f:34:2c:29:9b:8e:02: 5d:21:28:e2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfW4UPUIldLhsHJMntbhwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmOTVjOWM5YTdmMTlhOWFkNzE3ZTRkYWE1MzBjODVjZjk5 YWI5NzUwHhcNMjYwMjA5MTMwMDQyWhcNMjYwMjEwMTMwMDQyWjAzMTEwLwYDVQQD EyhkMjc1MTFhYTQ3MmIyYzE0YTViYTAxNTE2MmFmYmNmZTQ4ZTJkNDFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6pbdWIFT+f/bXxmFFNQXwULGTqju 55NQUCdM7ihJYXv493BkPZzTtGUd10hTzE9y+XlNbSzf0uEgO8GX2147g6iVF0lE ZDhAuBOQ7NQo2mG6NU3WoC/SOzFH9BVnSbORf1QYOtEANmpGwBHD7vPvmbmswNGU Pqsc4DGXSfJWOKg7Ous6CxBXl2ngltUNB6HPZn7uzH0qIUkxCsbkiIgfPqZLcv4j vbyhZQiT4+dJNuWnsy1hVLbIWWjHC5Fw6ORw8P4jKiqkvnkesDGDbop4cjkaWlb9 eSRpUto2XUsqAGwudwsrqwC7mrDRqF65B6qvCdGjDOMf2KD0zuFleYzN+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNJ1EapHKywUpboBUWKvvP5I4tQbMB8GA1UdIwQY MBaAFA+Vycmn8Zqa1xfk2qUwyFz5mrl1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDVYSnlhZnhtcHJYRi1UYXBURElYUG1hdVhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My8wOGY1Y2QtOGVlYy00ZDU1LTg4MTIt YzkzNjU5Zjc2NzM3LzEvRDVYSnlhZnhtcHJYRi1UYXBURElYUG1hdVhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My8wOGY1Y2QtOGVlYy00ZDU1LTg4MTItYzkzNjU5Zjc2NzM3 LzEvRDVYSnlhZnhtcHJYRi1UYXBURElYUG1hdVhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb/YY+cwy A+jZBTcroxiCaPoKmlJ0+bbipISKBEOEX7nWADtXmyuRO8N7UNKYJ0//Fy252/8s B4FlBi4Fx3rLBvxKyvml6mylazhGQXT+f+xjQehylOu0gXIG8lEzDa7nZcIh6PNa szyetOz9EmfLv+BNOpeulyHHFxPizq5D2vlJv+0XSHpiLZ2eCRvclWow7Sjy4KQs 8xIUXMnmYXTW/E+H6nfRGAXVJnC464viBwM3w01Ov63KY5zqMoEkFr4fCrGCmf47 fwjLeOjVLwG/0bj15beQxV88j8TV5S4FK5Yn30d73qAQqF8G9cyTEzJ9XtUT+Laf NCwpm44CXSEo4g== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:25 2026 by rpki-client