This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/655e28-3391-40a7-88ca-1bffda382ebe/1/dHLrj4AV6xvCnqMWL4PmrO27Qn4.mft File: dHLrj4AV6xvCnqMWL4PmrO27Qn4.mft (raw, json) Hash identifier: 7IrT+yc3pY4AbK1zjLmk0IGdSfSaDtXqAvExn1ehPLE= Subject key identifier: 98:39:D8:59:24:68:0B:F2:47:12:02:F7:B5:95:07:32:CB:F5:C9:84 Authority key identifier: 74:72:EB:8F:80:15:EB:1B:C2:9E:A3:16:2F:83:E6:AC:ED:BB:42:7E Certificate issuer: /CN=7472eb8f8015eb1bc29ea3162f83e6acedbb427e Certificate serial: 019C4359661A5B86E3BF91109917F226E0B6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHLrj4AV6xvCnqMWL4PmrO27Qn4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/655e28-3391-40a7-88ca-1bffda382ebe/1/dHLrj4AV6xvCnqMWL4PmrO27Qn4.mft Manifest number: 1104 Signing time: Mon 09 Feb 2026 17:00:58 +0000 Manifest this update: Mon 09 Feb 2026 17:00:58 +0000 Manifest next update: Tue 10 Feb 2026 17:00:58 +0000 Files and hashes: 1: dHLrj4AV6xvCnqMWL4PmrO27Qn4.crl (hash: ILmQwyN1JG1Xo2sSBcBiaPseafLi3IPgbjQe21EKroc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/655e28-3391-40a7-88ca-1bffda382ebe/1/dHLrj4AV6xvCnqMWL4PmrO27Qn4.crl rsync://rpki.ripe.net/repository/DEFAULT/68/655e28-3391-40a7-88ca-1bffda382ebe/1/dHLrj4AV6xvCnqMWL4PmrO27Qn4.mft rsync://rpki.ripe.net/repository/DEFAULT/dHLrj4AV6xvCnqMWL4PmrO27Qn4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:66:1a:5b:86:e3:bf:91:10:99:17:f2:26:e0:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7472eb8f8015eb1bc29ea3162f83e6acedbb427e Validity Not Before: Feb 9 17:00:58 2026 GMT Not After : Feb 10 17:00:58 2026 GMT Subject: CN=9839d85924680bf2471202f7b5950732cbf5c984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f3:35:f2:d2:1d:95:07:81:7a:b9:68:e4:fa: a8:be:15:7c:66:8f:f7:0c:a2:f0:01:fb:32:ea:67: 7a:f0:bb:06:5c:ea:d2:5d:4a:d5:d0:9b:b3:1b:03: cd:94:b4:b4:d8:39:12:23:fe:0e:65:49:63:0b:71: b8:6f:f8:6b:43:c1:85:c8:ec:83:c1:cc:35:45:18: 42:a8:b6:23:9b:4c:f6:2c:15:cd:7d:dd:84:39:4f: 5d:5b:e8:6b:c3:77:67:c7:f6:95:69:26:ea:89:f1: 68:cd:1b:07:4e:d8:f8:b5:59:a4:3b:63:13:ac:b7: 94:6a:25:80:a4:25:79:c5:82:0c:09:8d:c4:ce:be: 43:bf:97:4a:ee:d8:d9:77:f1:d2:bc:ed:f4:3d:d4: 36:5e:e3:c1:cb:15:e4:4d:61:fd:6b:4e:c8:d1:ca: 9f:66:d3:61:1b:c1:99:b7:82:d3:77:c2:52:d5:56: 47:74:55:28:25:9f:7e:55:33:ed:9c:3b:23:5c:ea: b6:34:a2:be:4a:d3:d8:06:42:ee:02:5e:e4:4e:70: 7a:f0:10:ab:64:80:9f:bf:13:8d:95:77:ae:3d:0d: 44:24:05:26:55:8e:d9:47:a5:8c:88:a1:2e:62:98: 5b:28:19:67:0a:18:47:d4:05:08:7b:dd:ae:28:27: ff:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:39:D8:59:24:68:0B:F2:47:12:02:F7:B5:95:07:32:CB:F5:C9:84 X509v3 Authority Key Identifier: keyid:74:72:EB:8F:80:15:EB:1B:C2:9E:A3:16:2F:83:E6:AC:ED:BB:42:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHLrj4AV6xvCnqMWL4PmrO27Qn4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/655e28-3391-40a7-88ca-1bffda382ebe/1/dHLrj4AV6xvCnqMWL4PmrO27Qn4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/655e28-3391-40a7-88ca-1bffda382ebe/1/dHLrj4AV6xvCnqMWL4PmrO27Qn4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:54:94:00:cd:f2:1d:ba:4c:7e:47:45:cc:ae:39:ae:30:30: 3a:fb:60:31:75:ba:81:af:53:e0:22:42:4c:d3:50:be:0e:51: 73:02:8f:7d:c8:e1:46:32:65:ef:ae:90:55:12:45:c9:2a:3c: 8b:dd:d8:4a:44:92:df:e8:27:13:e8:58:32:dc:37:2f:c0:a9: 0f:4d:c7:ca:32:e8:78:43:66:40:36:0b:7b:42:f8:e5:b2:cf: 06:66:db:4a:c5:32:18:0e:38:70:92:da:36:f5:27:bb:0e:df: a1:ea:80:74:a7:e7:4a:d6:e4:f6:a4:1c:63:ba:72:f9:87:85: 09:57:b3:92:75:26:f6:5f:98:0c:bc:76:e0:bd:ef:a3:2c:84: d6:31:63:f6:a0:c2:bb:a3:26:c0:29:29:fd:f8:8f:a3:8d:f8: 0a:2a:26:7a:f5:24:ab:3a:28:3d:8c:78:5a:50:fc:1d:96:e3: a1:05:11:55:f4:f1:50:36:a9:04:45:c9:f4:c6:08:44:44:24: ed:fa:6c:9a:a0:9e:23:4e:1e:2d:20:fc:b2:98:97:31:0d:af: d6:b8:78:3d:f9:91:9f:65:d6:bb:08:4a:1a:95:20:90:1b:7c: 97:d8:ff:00:66:3b:33:0a:04:d6:41:12:87:ae:52:36:7b:1c: 53:cc:2e:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWWYaW4bjv5EQmRfyJuC2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0NzJlYjhmODAxNWViMWJjMjllYTMxNjJmODNlNmFjZWRi YjQyN2UwHhcNMjYwMjA5MTcwMDU4WhcNMjYwMjEwMTcwMDU4WjAzMTEwLwYDVQQD Eyg5ODM5ZDg1OTI0NjgwYmYyNDcxMjAyZjdiNTk1MDczMmNiZjVjOTg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwvM18tIdlQeBerlo5PqovhV8Zo/3 DKLwAfsy6md68LsGXOrSXUrV0JuzGwPNlLS02DkSI/4OZUljC3G4b/hrQ8GFyOyD wcw1RRhCqLYjm0z2LBXNfd2EOU9dW+hrw3dnx/aVaSbqifFozRsHTtj4tVmkO2MT rLeUaiWApCV5xYIMCY3Ezr5Dv5dK7tjZd/HSvO30PdQ2XuPByxXkTWH9a07I0cqf ZtNhG8GZt4LTd8JS1VZHdFUoJZ9+VTPtnDsjXOq2NKK+StPYBkLuAl7kTnB68BCr ZICfvxONlXeuPQ1EJAUmVY7ZR6WMiKEuYphbKBlnChhH1AUIe92uKCf/jwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJg52FkkaAvyRxIC97WVBzLL9cmEMB8GA1UdIwQY MBaAFHRy64+AFesbwp6jFi+D5qztu0J+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEhMcmo0QVY2eHZDbnFNV0w0UG1yTzI3UW40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC82NTVlMjgtMzM5MS00MGE3LTg4Y2Et MWJmZmRhMzgyZWJlLzEvZEhMcmo0QVY2eHZDbnFNV0w0UG1yTzI3UW40Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC82NTVlMjgtMzM5MS00MGE3LTg4Y2EtMWJmZmRhMzgyZWJl LzEvZEhMcmo0QVY2eHZDbnFNV0w0UG1yTzI3UW40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg1SUAM3y HbpMfkdFzK45rjAwOvtgMXW6ga9T4CJCTNNQvg5RcwKPfcjhRjJl766QVRJFySo8 i93YSkSS3+gnE+hYMtw3L8CpD03HyjLoeENmQDYLe0L45bLPBmbbSsUyGA44cJLa NvUnuw7foeqAdKfnStbk9qQcY7py+YeFCVezknUm9l+YDLx24L3voyyE1jFj9qDC u6MmwCkp/fiPo434CiomevUkqzooPYx4WlD8HZbjoQURVfTxUDapBEXJ9MYIREQk 7fpsmqCeI04eLSD8spiXMQ2v1rh4PfmRn2XWuwhKGpUgkBt8l9j/AGY7MwoE1kES h65SNnscU8wubg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:02 2026 by rpki-client