This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/3859e6-43ac-4c74-b4fa-9dd52313ae7c/1/DW3GbMOENrasMel-cS0hlAfIPPQ.mft File: DW3GbMOENrasMel-cS0hlAfIPPQ.mft (raw, json) Hash identifier: Sel4clvN9ZaQNkM+DmDJ2tVvVKMptNP9xrh6ybh+dFE= Subject key identifier: 40:05:74:02:2F:6F:E1:23:7C:C5:62:90:A1:22:C5:D5:02:AF:1C:FE Authority key identifier: 0D:6D:C6:6C:C3:84:36:B6:AC:31:E9:7E:71:2D:21:94:07:C8:3C:F4 Certificate issuer: /CN=0d6dc66cc38436b6ac31e97e712d219407c83cf4 Certificate serial: 019C427E13C3A80A606EFECB0A5FC522B345 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DW3GbMOENrasMel-cS0hlAfIPPQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/3859e6-43ac-4c74-b4fa-9dd52313ae7c/1/DW3GbMOENrasMel-cS0hlAfIPPQ.mft Manifest number: 0693 Signing time: Mon 09 Feb 2026 13:01:24 +0000 Manifest this update: Mon 09 Feb 2026 13:01:24 +0000 Manifest next update: Tue 10 Feb 2026 13:01:24 +0000 Files and hashes: 1: DW3GbMOENrasMel-cS0hlAfIPPQ.crl (hash: l4dyHIu0Etj5qFJ3OW6qJ1ZlImC2TerQGQ8HqNFas8I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/3859e6-43ac-4c74-b4fa-9dd52313ae7c/1/DW3GbMOENrasMel-cS0hlAfIPPQ.crl rsync://rpki.ripe.net/repository/DEFAULT/69/3859e6-43ac-4c74-b4fa-9dd52313ae7c/1/DW3GbMOENrasMel-cS0hlAfIPPQ.mft rsync://rpki.ripe.net/repository/DEFAULT/DW3GbMOENrasMel-cS0hlAfIPPQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7e:13:c3:a8:0a:60:6e:fe:cb:0a:5f:c5:22:b3:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d6dc66cc38436b6ac31e97e712d219407c83cf4 Validity Not Before: Feb 9 13:01:24 2026 GMT Not After : Feb 10 13:01:24 2026 GMT Subject: CN=400574022f6fe1237cc56290a122c5d502af1cfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:f7:07:8f:72:e5:48:20:4e:7d:c8:3c:b9:05: 62:43:bf:d6:b5:38:67:b9:45:bc:aa:b4:70:42:0b: d6:99:ef:9c:e0:89:a2:ac:35:0a:6c:c2:94:97:9a: 09:db:39:20:08:8e:62:59:0b:63:db:7d:87:c0:c8: a3:b1:0e:e4:c4:fa:bc:ef:cd:99:91:aa:f9:2c:42: 3b:61:db:76:95:e1:38:6b:e7:7b:ab:03:e1:75:c6: a5:3f:6b:3a:c1:bf:aa:65:d6:a0:1e:d8:61:b1:4a: 34:9d:dd:8c:a9:41:33:6d:12:0f:2a:98:bd:ce:78: b5:4b:62:44:1f:8d:6b:96:e4:4f:f9:1c:39:10:3b: e4:33:bd:ee:b6:4f:47:09:58:23:1f:97:5b:4c:1a: a4:cd:8f:dd:b1:29:f5:f4:e4:e1:6c:ce:5f:39:06: 53:3b:2f:ea:8c:27:ce:93:ec:ee:8c:98:d1:21:df: c2:7c:f5:4c:94:09:c7:2a:15:1c:95:0b:67:1b:b7: 6b:c7:5a:2d:a7:65:b0:28:61:0c:a7:6b:cb:f7:04: 82:a0:02:1c:ba:c8:a5:18:0e:90:f1:ce:74:28:b7: bd:42:7f:40:2a:34:ee:5c:73:c5:e1:80:07:e5:5d: e7:6f:6c:da:3c:c3:b3:37:f6:36:c8:a5:f1:78:54: e8:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:05:74:02:2F:6F:E1:23:7C:C5:62:90:A1:22:C5:D5:02:AF:1C:FE X509v3 Authority Key Identifier: keyid:0D:6D:C6:6C:C3:84:36:B6:AC:31:E9:7E:71:2D:21:94:07:C8:3C:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DW3GbMOENrasMel-cS0hlAfIPPQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3859e6-43ac-4c74-b4fa-9dd52313ae7c/1/DW3GbMOENrasMel-cS0hlAfIPPQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3859e6-43ac-4c74-b4fa-9dd52313ae7c/1/DW3GbMOENrasMel-cS0hlAfIPPQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:28:d7:16:52:96:ab:47:ec:50:8f:ce:69:51:4d:cb:89:db: a4:87:93:2e:f6:17:92:59:7d:43:6a:9e:58:d1:94:2b:d0:b0: ce:be:36:04:c7:c8:39:5c:82:5b:d9:54:04:e5:0a:90:d7:df: 68:c8:8e:8b:14:2d:24:bf:08:92:02:ae:53:ff:1d:1f:71:27: 59:13:3a:d7:06:47:e2:9e:65:9a:b4:bd:14:4c:97:41:a4:82: 79:a2:b7:3a:dc:fe:21:c2:9b:3d:ad:47:3a:5c:93:48:6c:95: 3c:24:4f:d2:8a:60:71:40:d1:bb:52:be:e8:c4:3e:64:28:a7: 74:9a:b3:3c:ef:e2:d5:47:d6:70:fd:b0:d9:cb:74:fa:02:59: 22:a3:a5:e0:6d:a5:49:ca:6e:95:8f:b5:9b:9b:9b:ff:fc:68: 1a:07:19:a5:e4:a0:81:78:0d:a2:63:d9:b3:bb:1c:eb:c3:d5: fa:d7:e4:ab:4b:64:d6:99:70:04:59:cb:89:51:7f:57:ce:71: a7:39:bc:6b:fe:90:e1:9c:85:be:99:15:b4:e6:99:b3:1d:ee: 35:dd:17:2a:f2:53:54:c2:3b:7b:9a:2f:7e:98:19:82:e0:7c: 99:ff:c8:20:7d:ed:ea:a1:d3:08:1d:1b:9d:eb:27:cf:62:7a: 92:3b:f6:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfhPDqApgbv7LCl/FIrNFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkNmRjNjZjYzM4NDM2YjZhYzMxZTk3ZTcxMmQyMTk0MDdj ODNjZjQwHhcNMjYwMjA5MTMwMTI0WhcNMjYwMjEwMTMwMTI0WjAzMTEwLwYDVQQD Eyg0MDA1NzQwMjJmNmZlMTIzN2NjNTYyOTBhMTIyYzVkNTAyYWYxY2ZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi/cHj3LlSCBOfcg8uQViQ7/WtThn uUW8qrRwQgvWme+c4ImirDUKbMKUl5oJ2zkgCI5iWQtj232HwMijsQ7kxPq8782Z kar5LEI7Ydt2leE4a+d7qwPhdcalP2s6wb+qZdagHthhsUo0nd2MqUEzbRIPKpi9 zni1S2JEH41rluRP+Rw5EDvkM73utk9HCVgjH5dbTBqkzY/dsSn19OThbM5fOQZT Oy/qjCfOk+zujJjRId/CfPVMlAnHKhUclQtnG7drx1otp2WwKGEMp2vL9wSCoAIc usilGA6Q8c50KLe9Qn9AKjTuXHPF4YAH5V3nb2zaPMOzN/Y2yKXxeFToYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEAFdAIvb+EjfMVikKEixdUCrxz+MB8GA1UdIwQY MBaAFA1txmzDhDa2rDHpfnEtIZQHyDz0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFczR2JNT0VOcmFzTWVsLWNTMGhsQWZJUFBRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS8zODU5ZTYtNDNhYy00Yzc0LWI0ZmEt OWRkNTIzMTNhZTdjLzEvRFczR2JNT0VOcmFzTWVsLWNTMGhsQWZJUFBRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS8zODU5ZTYtNDNhYy00Yzc0LWI0ZmEtOWRkNTIzMTNhZTdj LzEvRFczR2JNT0VOcmFzTWVsLWNTMGhsQWZJUFBRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMCjXFlKW q0fsUI/OaVFNy4nbpIeTLvYXkll9Q2qeWNGUK9Cwzr42BMfIOVyCW9lUBOUKkNff aMiOixQtJL8IkgKuU/8dH3EnWRM61wZH4p5lmrS9FEyXQaSCeaK3Otz+IcKbPa1H OlyTSGyVPCRP0opgcUDRu1K+6MQ+ZCindJqzPO/i1UfWcP2w2ct0+gJZIqOl4G2l ScpulY+1m5ub//xoGgcZpeSggXgNomPZs7sc68PV+tfkq0tk1plwBFnLiVF/V85x pzm8a/6Q4ZyFvpkVtOaZsx3uNd0XKvJTVMI7e5ovfpgZguB8mf/IIH3t6qHTCB0b nesnz2J6kjv2DQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:48 2026 by rpki-client