This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/fcd855-fc2c-460e-bcea-8d7c8ac0621a/1/dzDRbvGVhk8NvoqGca-2N2g7djs.mft File: dzDRbvGVhk8NvoqGca-2N2g7djs.mft (raw, json) Hash identifier: LI1w7vcBu8UHj25BjOk5Z13pznQcvBOxzHf/Y2lOpJo= Subject key identifier: 69:69:3C:36:7C:04:6A:E6:88:D0:A3:2B:19:F2:1E:60:0A:95:3C:25 Authority key identifier: 77:30:D1:6E:F1:95:86:4F:0D:BE:8A:86:71:AF:B6:37:68:3B:76:3B Certificate issuer: /CN=7730d16ef195864f0dbe8a8671afb637683b763b Certificate serial: 019C40FCEAD69FD433C5969A3D98366567AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzDRbvGVhk8NvoqGca-2N2g7djs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/fcd855-fc2c-460e-bcea-8d7c8ac0621a/1/dzDRbvGVhk8NvoqGca-2N2g7djs.mft Manifest number: 012D Signing time: Mon 09 Feb 2026 06:00:42 +0000 Manifest this update: Mon 09 Feb 2026 06:00:42 +0000 Manifest next update: Tue 10 Feb 2026 06:00:42 +0000 Files and hashes: 1: dzDRbvGVhk8NvoqGca-2N2g7djs.crl (hash: 1BVf+tA0nGbW7mRv4wLUlImJIfuZ61f/r69IK5Lfc5I=) 2: o2VO5oX-mcICPglQ6TuJXF-puG0.roa (hash: QGvRH3mpnPRRYbJ9WRorNDsxj8CF3Y8SPJsGxZhiJ6E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/fcd855-fc2c-460e-bcea-8d7c8ac0621a/1/dzDRbvGVhk8NvoqGca-2N2g7djs.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/fcd855-fc2c-460e-bcea-8d7c8ac0621a/1/dzDRbvGVhk8NvoqGca-2N2g7djs.mft rsync://rpki.ripe.net/repository/DEFAULT/dzDRbvGVhk8NvoqGca-2N2g7djs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fc:ea:d6:9f:d4:33:c5:96:9a:3d:98:36:65:67:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7730d16ef195864f0dbe8a8671afb637683b763b Validity Not Before: Feb 9 06:00:42 2026 GMT Not After : Feb 10 06:00:42 2026 GMT Subject: CN=69693c367c046ae688d0a32b19f21e600a953c25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c9:a5:07:43:18:8c:a3:e5:79:a0:76:a6:2f: 9c:2e:61:28:ce:a2:5c:12:eb:22:d6:65:77:8c:b2: 8c:db:72:10:8e:4c:9f:8c:2c:a7:f9:3b:1b:67:1c: 93:09:f0:e3:27:1c:e4:dd:a7:3e:d4:a4:e2:0b:29: 39:a7:f8:b8:fe:28:44:14:33:66:7a:71:73:04:1d: bc:c0:49:ab:51:ee:2b:1a:39:a4:56:56:80:b7:0b: 0d:eb:b5:6d:df:ed:17:5e:db:3e:49:2a:64:8d:14: 83:c8:b5:4b:81:d9:df:d2:d1:89:1a:f6:03:c9:11: e1:52:17:56:6f:94:3c:ba:2b:ed:5a:41:16:30:9e: fd:24:1f:3d:b8:d1:c6:8f:85:73:84:00:25:66:d9: 30:c7:7e:df:e4:61:86:c4:d0:72:30:0a:80:9d:f5: df:b2:37:92:c5:12:bf:7e:46:2a:74:bb:d1:83:c7: b6:86:01:29:9a:eb:a4:7f:54:cc:79:1a:72:13:41: ca:56:fb:96:4a:27:99:85:0d:ba:4a:b4:4d:1e:0d: e8:36:ff:72:1d:42:45:4e:1c:ad:63:8c:95:ee:15: c5:aa:e2:02:de:a2:59:a8:35:01:5d:e5:2d:11:6f: 51:dd:96:75:01:96:ff:37:95:04:f5:82:b3:9e:19: 82:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:69:3C:36:7C:04:6A:E6:88:D0:A3:2B:19:F2:1E:60:0A:95:3C:25 X509v3 Authority Key Identifier: keyid:77:30:D1:6E:F1:95:86:4F:0D:BE:8A:86:71:AF:B6:37:68:3B:76:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzDRbvGVhk8NvoqGca-2N2g7djs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/fcd855-fc2c-460e-bcea-8d7c8ac0621a/1/dzDRbvGVhk8NvoqGca-2N2g7djs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/fcd855-fc2c-460e-bcea-8d7c8ac0621a/1/dzDRbvGVhk8NvoqGca-2N2g7djs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:f2:34:52:fd:b6:b1:c8:d1:fd:14:a6:5a:9b:9f:4e:4f:c9: 5a:c5:70:a6:2b:51:85:49:c7:f7:1e:a2:33:f8:11:58:99:2b: 6b:c3:61:39:f7:33:62:b0:d8:c4:52:c8:81:f2:ec:67:a5:9a: 73:d6:b1:39:31:02:8a:ad:a1:08:1f:b9:36:b7:ad:a3:64:8c: bd:cf:29:9e:e4:dd:bd:f4:5b:d4:eb:39:01:c8:8b:3d:3e:e8: cc:28:16:f4:77:d2:b9:73:51:16:35:37:f9:e4:96:86:85:fb: e3:f1:d1:57:e0:30:ad:cc:f5:f7:9a:79:1a:7f:cc:c1:ac:e4: d0:c2:4b:f9:cc:6b:d4:46:3d:df:2e:cc:80:32:0c:2e:65:6a: 0e:e9:c8:49:57:69:a3:3c:ce:d2:f2:6b:66:24:a8:a0:50:f5: 51:90:7f:54:88:52:18:70:90:07:c5:2a:77:08:e5:d9:a1:d1: 0d:66:58:a8:72:a4:f3:cf:f3:08:ba:a3:35:2b:c1:cb:54:4b: 4b:7a:b8:a3:e1:35:6d:51:bc:7e:3d:45:c6:4b:47:2e:27:f0: 42:a1:a1:3b:40:e1:8d:4e:76:52:bf:62:e6:9f:13:f7:7c:61: a0:11:64:9b:0f:98:19:69:df:75:f6:1a:d4:0a:a6:b8:82:a0: c3:4d:e1:78 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/OrWn9QzxZaaPZg2ZWeqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3MzBkMTZlZjE5NTg2NGYwZGJlOGE4NjcxYWZiNjM3Njgz Yjc2M2IwHhcNMjYwMjA5MDYwMDQyWhcNMjYwMjEwMDYwMDQyWjAzMTEwLwYDVQQD Eyg2OTY5M2MzNjdjMDQ2YWU2ODhkMGEzMmIxOWYyMWU2MDBhOTUzYzI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAssmlB0MYjKPleaB2pi+cLmEozqJc Eusi1mV3jLKM23IQjkyfjCyn+TsbZxyTCfDjJxzk3ac+1KTiCyk5p/i4/ihEFDNm enFzBB28wEmrUe4rGjmkVlaAtwsN67Vt3+0XXts+SSpkjRSDyLVLgdnf0tGJGvYD yRHhUhdWb5Q8uivtWkEWMJ79JB89uNHGj4VzhAAlZtkwx37f5GGGxNByMAqAnfXf sjeSxRK/fkYqdLvRg8e2hgEpmuukf1TMeRpyE0HKVvuWSieZhQ26SrRNHg3oNv9y HUJFThytY4yV7hXFquIC3qJZqDUBXeUtEW9R3ZZ1AZb/N5UE9YKznhmCXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGlpPDZ8BGrmiNCjKxnyHmAKlTwlMB8GA1UdIwQY MBaAFHcw0W7xlYZPDb6KhnGvtjdoO3Y7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHpEUmJ2R1ZoazhOdm9xR2NhLTJOMmc3ZGpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9mY2Q4NTUtZmMyYy00NjBlLWJjZWEt OGQ3YzhhYzA2MjFhLzEvZHpEUmJ2R1ZoazhOdm9xR2NhLTJOMmc3ZGpzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy9mY2Q4NTUtZmMyYy00NjBlLWJjZWEtOGQ3YzhhYzA2MjFh LzEvZHpEUmJ2R1ZoazhOdm9xR2NhLTJOMmc3ZGpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF/I0Uv22 scjR/RSmWpufTk/JWsVwpitRhUnH9x6iM/gRWJkra8NhOfczYrDYxFLIgfLsZ6Wa c9axOTECiq2hCB+5Nreto2SMvc8pnuTdvfRb1Os5AciLPT7ozCgW9HfSuXNRFjU3 +eSWhoX74/HRV+Awrcz195p5Gn/Mwazk0MJL+cxr1EY93y7MgDIMLmVqDunISVdp ozzO0vJrZiSooFD1UZB/VIhSGHCQB8Uqdwjl2aHRDWZYqHKk88/zCLqjNSvBy1RL S3q4o+E1bVG8fj1FxktHLifwQqGhO0DhjU52Ur9i5p8T93xhoBFkmw+YGWnfdfYa 1AqmuIKgw03heA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:43 2026 by rpki-client