This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft File: D9zw7HuvNJ6JLVERXCLA29Q1C44.mft (raw, json) Hash identifier: S+iDjfLpbifKk8JSGy6ZjoJOMxs7BrtAc5tuZVgBnK4= Subject key identifier: 5C:E1:FC:63:65:A6:4F:F2:86:7F:37:59:FD:A1:04:4B:32:62:A8:17 Authority key identifier: 0F:DC:F0:EC:7B:AF:34:9E:89:2D:51:11:5C:22:C0:DB:D4:35:0B:8E Certificate issuer: /CN=0fdcf0ec7baf349e892d51115c22c0dbd4350b8e Certificate serial: 019C42EB6E85DF8B9458FDA70C55A19BFB45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D9zw7HuvNJ6JLVERXCLA29Q1C44.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft Manifest number: 04C8 Signing time: Mon 09 Feb 2026 15:00:51 +0000 Manifest this update: Mon 09 Feb 2026 15:00:51 +0000 Manifest next update: Tue 10 Feb 2026 15:00:51 +0000 Files and hashes: 1: D9zw7HuvNJ6JLVERXCLA29Q1C44.crl (hash: vj5KNW2wksPHTCIyh7kxZNBQKIAVahzZhcqnDPyskyg=) 2: Jv3FrbaSeXZke2UP27JZQguG_qc.roa (hash: dePpEEDTqP/enapSxKmHvz68yt/UQtEn5OCz1CdZVCI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.crl rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft rsync://rpki.ripe.net/repository/DEFAULT/D9zw7HuvNJ6JLVERXCLA29Q1C44.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:6e:85:df:8b:94:58:fd:a7:0c:55:a1:9b:fb:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0fdcf0ec7baf349e892d51115c22c0dbd4350b8e Validity Not Before: Feb 9 15:00:51 2026 GMT Not After : Feb 10 15:00:51 2026 GMT Subject: CN=5ce1fc6365a64ff2867f3759fda1044b3262a817 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6c:8c:0b:c0:5f:f5:4d:71:7b:53:df:f7:c1: cb:50:29:67:41:ca:72:d0:16:ba:2f:2d:3a:ea:67: d0:5c:39:60:4b:28:b7:e2:b9:a9:ef:c3:da:77:31: 3b:01:65:93:6e:2e:31:16:84:b8:95:4a:3e:71:fc: 4c:97:04:fe:d0:a1:4d:d4:1c:57:38:3d:a9:9f:74: 27:39:b6:bb:48:22:db:ef:33:13:f4:65:2f:ce:6e: c7:20:cc:94:0e:dc:43:c3:4b:88:16:17:04:cd:82: ba:14:eb:2e:5a:a6:eb:55:20:66:38:b4:ae:d7:40: 06:57:92:4d:8b:b8:cc:6e:55:7d:76:77:bb:07:5d: 1f:91:bf:4e:e7:76:ab:49:2f:2f:51:47:43:64:61: a0:02:81:45:ab:bf:4b:9b:40:94:b3:b5:42:e7:3a: 48:dd:00:4e:71:cf:35:e2:60:03:40:9e:6f:3e:d4: 2c:1e:b4:fe:81:81:53:6d:be:4a:42:b2:1a:75:8e: 5d:ab:2f:77:d8:13:68:73:3d:55:d4:18:67:fd:7b: 6c:2c:93:02:e7:2a:2b:e7:6a:91:05:29:38:a0:37: 44:32:c4:e8:3a:15:83:0a:80:18:d3:6b:00:be:20: d8:ce:9d:44:14:35:3d:20:18:e1:fd:70:ef:53:8c: 27:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:E1:FC:63:65:A6:4F:F2:86:7F:37:59:FD:A1:04:4B:32:62:A8:17 X509v3 Authority Key Identifier: keyid:0F:DC:F0:EC:7B:AF:34:9E:89:2D:51:11:5C:22:C0:DB:D4:35:0B:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D9zw7HuvNJ6JLVERXCLA29Q1C44.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:d4:c8:96:1d:22:8d:89:7f:b4:24:69:b4:c6:f3:6f:41:23: e5:06:60:2e:96:63:22:84:08:84:9b:6a:de:91:d5:52:52:84: e1:55:69:1d:dc:03:8b:39:43:78:cf:7d:a6:7d:29:19:e7:2b: 26:92:c7:f6:43:92:12:8f:24:12:ac:3f:32:79:26:80:fc:d6: 39:f7:05:0d:09:06:1d:7e:a4:cf:95:59:78:18:e9:d5:d5:f3: 7f:11:cb:33:38:39:52:ee:b7:11:2e:f4:b7:63:81:86:ce:c3: db:6c:94:4a:96:eb:fb:b0:99:56:69:8a:6b:a9:d6:86:10:a2: 36:6f:6d:c4:31:7c:14:86:ac:5c:b3:ff:a9:f0:2d:f5:5a:98: 80:79:59:3f:16:04:19:02:d5:d3:99:97:a5:0f:24:04:ee:48: b2:c6:56:9d:57:93:a9:8a:14:f8:81:6d:0c:17:bd:b3:1f:6d: e2:c4:02:92:ab:36:88:b8:7b:5c:ee:d2:1b:bf:5d:53:fd:50: 9b:f0:4f:23:07:f4:c9:5f:dc:19:46:94:5c:4e:f7:79:03:e7: b2:80:88:b0:20:1e:39:0b:29:28:c8:9d:6e:b9:81:bb:e4:a5: 35:bf:58:cb:8d:f4:f1:53:67:cf:64:00:d8:42:c2:59:d1:34: e2:9b:72:38 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC626F34uUWP2nDFWhm/tFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmZGNmMGVjN2JhZjM0OWU4OTJkNTExMTVjMjJjMGRiZDQz NTBiOGUwHhcNMjYwMjA5MTUwMDUxWhcNMjYwMjEwMTUwMDUxWjAzMTEwLwYDVQQD Eyg1Y2UxZmM2MzY1YTY0ZmYyODY3ZjM3NTlmZGExMDQ0YjMyNjJhODE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxWyMC8Bf9U1xe1Pf98HLUClnQcpy 0Ba6Ly066mfQXDlgSyi34rmp78PadzE7AWWTbi4xFoS4lUo+cfxMlwT+0KFN1BxX OD2pn3QnOba7SCLb7zMT9GUvzm7HIMyUDtxDw0uIFhcEzYK6FOsuWqbrVSBmOLSu 10AGV5JNi7jMblV9dne7B10fkb9O53arSS8vUUdDZGGgAoFFq79Lm0CUs7VC5zpI 3QBOcc814mADQJ5vPtQsHrT+gYFTbb5KQrIadY5dqy932BNocz1V1Bhn/XtsLJMC 5yor52qRBSk4oDdEMsToOhWDCoAY02sAviDYzp1EFDU9IBjh/XDvU4wnkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFzh/GNlpk/yhn83Wf2hBEsyYqgXMB8GA1UdIwQY MBaAFA/c8Ox7rzSeiS1REVwiwNvUNQuOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDl6dzdIdXZOSjZKTFZFUlhDTEEyOVExQzQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8yNDgyYmEtNDFjZS00MDlhLThlN2Ut YjI5NTgzOGFiYmQ5LzEvRDl6dzdIdXZOSjZKTFZFUlhDTEEyOVExQzQ0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC8yNDgyYmEtNDFjZS00MDlhLThlN2UtYjI5NTgzOGFiYmQ5 LzEvRDl6dzdIdXZOSjZKTFZFUlhDTEEyOVExQzQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApNTIlh0i jYl/tCRptMbzb0Ej5QZgLpZjIoQIhJtq3pHVUlKE4VVpHdwDizlDeM99pn0pGecr JpLH9kOSEo8kEqw/MnkmgPzWOfcFDQkGHX6kz5VZeBjp1dXzfxHLMzg5Uu63ES70 t2OBhs7D22yUSpbr+7CZVmmKa6nWhhCiNm9txDF8FIasXLP/qfAt9VqYgHlZPxYE GQLV05mXpQ8kBO5IssZWnVeTqYoU+IFtDBe9sx9t4sQCkqs2iLh7XO7SG79dU/1Q m/BPIwf0yV/cGUaUXE73eQPnsoCIsCAeOQspKMidbrmBu+SlNb9Yy4308VNnz2QA 2ELCWdE04ptyOA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:36 2026 by rpki-client