This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft File: DXtk3YGIxSbrXrReqB6mqK-cWek.mft (raw, json) Hash identifier: QFFqSYQlcuyCgnHhGR5w1Ho/ZqdscdlmyHG4uM4MVTA= Subject key identifier: C9:63:60:A2:F3:35:F7:65:36:38:E5:90:9E:80:1D:ED:85:A5:5A:2D Authority key identifier: 0D:7B:64:DD:81:88:C5:26:EB:5E:B4:5E:A8:1E:A6:A8:AF:9C:59:E9 Certificate issuer: /CN=0d7b64dd8188c526eb5eb45ea81ea6a8af9c59e9 Certificate serial: 019C438FB661086BD66E0EAD9814759EFF67 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft Manifest number: 0496 Signing time: Mon 09 Feb 2026 18:00:17 +0000 Manifest this update: Mon 09 Feb 2026 18:00:17 +0000 Manifest next update: Tue 10 Feb 2026 18:00:17 +0000 Files and hashes: 1: DXtk3YGIxSbrXrReqB6mqK-cWek.crl (hash: uw6YSWrzhAo24YGiR3IMm0TpOTRFIok0nHTwy16n74A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:b6:61:08:6b:d6:6e:0e:ad:98:14:75:9e:ff:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d7b64dd8188c526eb5eb45ea81ea6a8af9c59e9 Validity Not Before: Feb 9 18:00:17 2026 GMT Not After : Feb 10 18:00:17 2026 GMT Subject: CN=c96360a2f335f7653638e5909e801ded85a55a2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2e:47:26:ca:1b:4d:e6:10:55:86:be:7b:6c: 09:f7:3f:c8:24:af:bd:b2:13:00:19:08:0a:d4:00: 1d:17:ac:51:a3:74:b9:75:bb:93:88:7c:59:df:18: d6:aa:05:c9:8a:59:fe:b0:ec:6f:f1:02:37:52:c1: ac:b0:56:e9:2b:32:f4:bd:ed:57:d5:6e:03:0c:d8: 18:93:a3:ab:32:b6:27:08:34:96:e0:7a:c2:14:94: 37:08:86:36:f0:34:90:44:51:37:fa:04:af:ce:22: 03:92:45:48:22:f9:ed:3e:29:f1:85:65:f2:0f:50: 44:c2:5c:ed:f6:b2:cb:ce:32:e6:5b:b6:2e:e7:9a: 38:de:4d:97:1d:26:28:44:86:b9:c4:6d:5a:b8:1c: 40:55:2a:38:9e:fc:bd:11:74:5d:a1:b7:7c:f8:4c: 4a:62:61:42:fe:31:08:0b:b5:41:99:a7:f9:8f:53: 29:f6:aa:2e:e8:ff:c2:de:74:da:d1:c8:25:ba:5e: 92:9f:41:12:5f:45:0a:44:e3:a2:76:e2:c3:b1:e2: fe:3f:ad:ef:0f:dd:c4:3b:e3:ce:6e:5e:c7:11:bf: 87:a0:89:67:36:de:20:f1:bf:bb:2c:79:14:0d:63: 9a:7a:ff:99:92:b7:e0:3b:f8:38:b5:cd:68:6a:00: 13:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:63:60:A2:F3:35:F7:65:36:38:E5:90:9E:80:1D:ED:85:A5:5A:2D X509v3 Authority Key Identifier: keyid:0D:7B:64:DD:81:88:C5:26:EB:5E:B4:5E:A8:1E:A6:A8:AF:9C:59:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:21:0a:7d:61:2c:3c:45:21:2a:f8:05:a6:33:fa:b3:ef:3b: 65:63:6d:da:ef:cd:6d:2b:8c:2d:b5:2b:55:90:37:e9:99:4a: 8f:b5:d5:3e:ef:66:8a:57:df:22:55:f0:a8:82:47:5c:22:c1: fd:ed:31:d5:e8:95:a7:18:9d:29:f6:c9:cf:e7:03:a0:f5:88: e6:d5:80:ee:cd:fb:33:e4:4e:3c:5c:ae:88:93:64:95:80:75: d8:d5:98:f0:13:39:46:d3:f6:16:a7:89:44:f2:39:5d:43:7f: 03:74:d4:03:cb:3f:62:63:62:ae:6e:f1:86:a8:ee:16:a8:e7: 63:0e:c9:45:84:0f:3e:d9:bc:37:b8:32:35:64:1c:09:83:02: 54:71:a9:2b:2d:c8:df:0c:7d:14:e0:71:b3:ed:0f:7b:48:a8: a2:27:3f:d4:41:f1:08:84:5b:c7:a4:0a:19:55:d2:2a:fc:54: a3:2c:10:c4:47:f1:d8:0e:b6:d3:04:ae:8d:99:04:f7:0a:3e: c8:82:1a:47:03:81:c9:3d:2a:cd:d4:c5:40:c7:77:09:64:73: 15:54:4f:64:04:1d:83:c2:1d:f9:69:a0:7c:25:33:29:59:10: 54:ff:e5:1c:04:59:b8:ea:bf:dc:0b:cf:05:d2:67:9e:5a:66: 19:20:3a:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj7ZhCGvWbg6tmBR1nv9nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkN2I2NGRkODE4OGM1MjZlYjVlYjQ1ZWE4MWVhNmE4YWY5 YzU5ZTkwHhcNMjYwMjA5MTgwMDE3WhcNMjYwMjEwMTgwMDE3WjAzMTEwLwYDVQQD EyhjOTYzNjBhMmYzMzVmNzY1MzYzOGU1OTA5ZTgwMWRlZDg1YTU1YTJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvC5HJsobTeYQVYa+e2wJ9z/IJK+9 shMAGQgK1AAdF6xRo3S5dbuTiHxZ3xjWqgXJiln+sOxv8QI3UsGssFbpKzL0ve1X 1W4DDNgYk6OrMrYnCDSW4HrCFJQ3CIY28DSQRFE3+gSvziIDkkVIIvntPinxhWXy D1BEwlzt9rLLzjLmW7Yu55o43k2XHSYoRIa5xG1auBxAVSo4nvy9EXRdobd8+ExK YmFC/jEIC7VBmaf5j1Mp9qou6P/C3nTa0cglul6Sn0ESX0UKROOiduLDseL+P63v D93EO+PObl7HEb+HoIlnNt4g8b+7LHkUDWOaev+ZkrfgO/g4tc1oagATRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMljYKLzNfdlNjjlkJ6AHe2FpVotMB8GA1UdIwQY MBaAFA17ZN2BiMUm6160XqgepqivnFnpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFh0azNZR0l4U2JyWHJSZXFCNm1xSy1jV2VrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9iYzkxZDItZTIwOS00YTFkLTlmNzgt MzNkMzEyOTNmMGUxLzEvRFh0azNZR0l4U2JyWHJSZXFCNm1xSy1jV2VrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy9iYzkxZDItZTIwOS00YTFkLTlmNzgtMzNkMzEyOTNmMGUx LzEvRFh0azNZR0l4U2JyWHJSZXFCNm1xSy1jV2VrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOSEKfWEs PEUhKvgFpjP6s+87ZWNt2u/NbSuMLbUrVZA36ZlKj7XVPu9milffIlXwqIJHXCLB /e0x1eiVpxidKfbJz+cDoPWI5tWA7s37M+ROPFyuiJNklYB12NWY8BM5RtP2FqeJ RPI5XUN/A3TUA8s/YmNirm7xhqjuFqjnYw7JRYQPPtm8N7gyNWQcCYMCVHGpKy3I 3wx9FOBxs+0Pe0iooic/1EHxCIRbx6QKGVXSKvxUoywQxEfx2A620wSujZkE9wo+ yIIaRwOByT0qzdTFQMd3CWRzFVRPZAQdg8Id+WmgfCUzKVkQVP/lHARZuOq/3AvP BdJnnlpmGSA6WA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:04:12 2026 by rpki-client