This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/1adb3b-0597-40f4-95f1-08a6680ac842/1/DU7kd6rb1vbH8sonqPohowxrNXw.mft File: DU7kd6rb1vbH8sonqPohowxrNXw.mft (raw, json) Hash identifier: V7sLxGsHo0sTK2g95WZ+VFKeaQ+VTbVduP/Ptlqxn4U= Subject key identifier: E3:E7:E5:ED:89:2D:D1:BB:42:8E:41:0F:F6:DA:BC:5A:DB:45:75:44 Authority key identifier: 0D:4E:E4:77:AA:DB:D6:F6:C7:F2:CA:27:A8:FA:21:A3:0C:6B:35:7C Certificate issuer: /CN=0d4ee477aadbd6f6c7f2ca27a8fa21a30c6b357c Certificate serial: 019C42EAEA74088AB751A7D3E4A6E0FA1A4F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DU7kd6rb1vbH8sonqPohowxrNXw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/1adb3b-0597-40f4-95f1-08a6680ac842/1/DU7kd6rb1vbH8sonqPohowxrNXw.mft Manifest number: 139F Signing time: Mon 09 Feb 2026 15:00:17 +0000 Manifest this update: Mon 09 Feb 2026 15:00:17 +0000 Manifest next update: Tue 10 Feb 2026 15:00:17 +0000 Files and hashes: 1: DU7kd6rb1vbH8sonqPohowxrNXw.crl (hash: AKRAglqHXoHy2nyqPN+g++GseeF+hRqhm/5ds5TEwoI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/1adb3b-0597-40f4-95f1-08a6680ac842/1/DU7kd6rb1vbH8sonqPohowxrNXw.crl rsync://rpki.ripe.net/repository/DEFAULT/64/1adb3b-0597-40f4-95f1-08a6680ac842/1/DU7kd6rb1vbH8sonqPohowxrNXw.mft rsync://rpki.ripe.net/repository/DEFAULT/DU7kd6rb1vbH8sonqPohowxrNXw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:ea:ea:74:08:8a:b7:51:a7:d3:e4:a6:e0:fa:1a:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d4ee477aadbd6f6c7f2ca27a8fa21a30c6b357c Validity Not Before: Feb 9 15:00:17 2026 GMT Not After : Feb 10 15:00:17 2026 GMT Subject: CN=e3e7e5ed892dd1bb428e410ff6dabc5adb457544 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1d:2e:de:d2:35:48:08:c2:e5:16:43:52:54: 2d:3c:ac:1c:ca:c5:31:28:03:d7:1b:0e:ad:d5:8c: 94:e5:44:9b:9a:00:ee:0c:57:bc:c6:c8:fe:88:f2: ca:00:cd:41:22:fc:e0:59:ac:3e:bf:0a:ee:dc:48: f5:d2:36:e9:36:7b:3d:1e:f8:60:bc:b7:fe:0d:3d: 07:ee:58:4f:44:94:a0:70:99:ed:59:b1:9e:a1:b4: bd:5a:90:c6:c8:a2:a1:f5:86:f0:1f:65:dc:02:60: 1a:12:f8:6e:dd:15:a1:d7:44:b7:28:79:9c:12:f4: 29:65:f7:18:60:e7:f0:ee:b8:26:0b:cf:e3:c4:3a: 17:6d:c3:f9:4a:62:26:63:b1:c4:0b:42:64:1d:4d: 35:3c:c3:c8:23:2a:9a:fb:9d:91:79:98:8c:fc:b0: d9:a6:04:d4:df:d1:a0:58:dd:66:a4:92:8b:a1:89: f4:2d:2b:f6:03:09:3d:41:44:e3:a7:00:e8:c1:e7: df:da:c0:62:c4:37:a6:d0:e6:1e:5b:5c:e8:80:c9: 2f:94:2f:06:ea:dc:84:5a:24:cf:66:fd:97:06:29: 40:f7:7e:97:98:e7:11:9b:4b:7a:2c:2f:29:b2:37: 21:bd:87:d6:9a:0c:95:b1:68:83:6f:ee:0c:0f:c3: 0c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:E7:E5:ED:89:2D:D1:BB:42:8E:41:0F:F6:DA:BC:5A:DB:45:75:44 X509v3 Authority Key Identifier: keyid:0D:4E:E4:77:AA:DB:D6:F6:C7:F2:CA:27:A8:FA:21:A3:0C:6B:35:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DU7kd6rb1vbH8sonqPohowxrNXw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/1adb3b-0597-40f4-95f1-08a6680ac842/1/DU7kd6rb1vbH8sonqPohowxrNXw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/1adb3b-0597-40f4-95f1-08a6680ac842/1/DU7kd6rb1vbH8sonqPohowxrNXw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:33:cc:77:ff:7e:90:71:33:0f:89:ac:f3:61:f0:8b:7a:16: f4:50:ca:fa:8f:ea:fa:9f:e8:ed:1c:46:64:05:8f:e2:e1:34: 2f:8c:42:4e:48:54:2f:99:40:4e:21:22:c2:d3:cc:4b:62:fc: 23:5b:3b:91:ae:b1:23:01:f1:88:f6:33:3f:d9:01:e4:24:37: a1:53:db:80:b3:37:a1:d7:be:05:93:02:91:d6:80:cf:d9:58: 14:c4:81:77:c6:0a:2f:b1:5a:b7:6f:cf:b8:fb:b5:8f:1f:38: 7d:71:16:c1:63:aa:f0:26:42:2c:0c:15:a7:12:56:fa:67:d5: 75:fa:33:2e:12:a0:dd:32:5c:77:66:26:23:55:6e:43:49:af: ab:43:89:20:63:ab:55:4f:4f:41:4b:f4:63:7b:29:be:81:c3: f3:68:b5:71:58:6a:21:6e:7e:7d:c2:6d:85:3e:63:db:71:0d: d4:aa:a4:72:09:2c:cc:02:02:6a:e5:c7:3e:9e:37:1a:5f:48: 94:d8:27:93:e4:f3:e9:ef:45:61:fb:2a:0a:cc:0a:51:5d:5e: ca:6d:ce:0c:36:ce:ac:c0:b8:7d:a4:2c:33:69:3f:fc:e7:3e: 30:f4:04:7b:d3:50:a9:6a:de:c7:67:1e:1f:da:1e:69:e1:5b: 14:df:fe:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6up0CIq3UafT5Kbg+hpPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkNGVlNDc3YWFkYmQ2ZjZjN2YyY2EyN2E4ZmEyMWEzMGM2 YjM1N2MwHhcNMjYwMjA5MTUwMDE3WhcNMjYwMjEwMTUwMDE3WjAzMTEwLwYDVQQD EyhlM2U3ZTVlZDg5MmRkMWJiNDI4ZTQxMGZmNmRhYmM1YWRiNDU3NTQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwh0u3tI1SAjC5RZDUlQtPKwcysUx KAPXGw6t1YyU5USbmgDuDFe8xsj+iPLKAM1BIvzgWaw+vwru3Ej10jbpNns9Hvhg vLf+DT0H7lhPRJSgcJntWbGeobS9WpDGyKKh9YbwH2XcAmAaEvhu3RWh10S3KHmc EvQpZfcYYOfw7rgmC8/jxDoXbcP5SmImY7HEC0JkHU01PMPIIyqa+52ReZiM/LDZ pgTU39GgWN1mpJKLoYn0LSv2Awk9QUTjpwDoweff2sBixDem0OYeW1zogMkvlC8G 6tyEWiTPZv2XBilA936XmOcRm0t6LC8psjchvYfWmgyVsWiDb+4MD8MMqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOPn5e2JLdG7Qo5BD/bavFrbRXVEMB8GA1UdIwQY MBaAFA1O5Heq29b2x/LKJ6j6IaMMazV8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFU3a2Q2cmIxdmJIOHNvbnFQb2hvd3hyTlh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8xYWRiM2ItMDU5Ny00MGY0LTk1ZjEt MDhhNjY4MGFjODQyLzEvRFU3a2Q2cmIxdmJIOHNvbnFQb2hvd3hyTlh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC8xYWRiM2ItMDU5Ny00MGY0LTk1ZjEtMDhhNjY4MGFjODQy LzEvRFU3a2Q2cmIxdmJIOHNvbnFQb2hvd3hyTlh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATzPMd/9+ kHEzD4ms82Hwi3oW9FDK+o/q+p/o7RxGZAWP4uE0L4xCTkhUL5lATiEiwtPMS2L8 I1s7ka6xIwHxiPYzP9kB5CQ3oVPbgLM3ode+BZMCkdaAz9lYFMSBd8YKL7Fat2/P uPu1jx84fXEWwWOq8CZCLAwVpxJW+mfVdfozLhKg3TJcd2YmI1VuQ0mvq0OJIGOr VU9PQUv0Y3spvoHD82i1cVhqIW5+fcJthT5j23EN1KqkcgkszAICauXHPp43Gl9I lNgnk+Tz6e9FYfsqCswKUV1eym3ODDbOrMC4faQsM2k//Oc+MPQEe9NQqWrex2ce H9oeaeFbFN/+/Q== -----END CERTIFICATE-----Generated at Mon Feb 9 22:18:58 2026 by rpki-client