This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft File: dt0D59chnX68HyMPcGMtyRNvNBM.mft (raw, json) Hash identifier: ULpHLd2fNIOMhO7FNWbjMizC+WxeyrVsQio6WUp6GR8= Subject key identifier: CC:24:1F:B9:5C:1D:A9:A7:E3:9A:0E:D3:29:E6:AF:DE:95:30:96:A8 Authority key identifier: 76:DD:03:E7:D7:21:9D:7E:BC:1F:23:0F:70:63:2D:C9:13:6F:34:13 Certificate issuer: /CN=76dd03e7d7219d7ebc1f230f70632dc9136f3413 Certificate serial: 019C41D86F89F5DFEE5226FC8DC41B8B8952 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dt0D59chnX68HyMPcGMtyRNvNBM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft Manifest number: 071B Signing time: Mon 09 Feb 2026 10:00:29 +0000 Manifest this update: Mon 09 Feb 2026 10:00:29 +0000 Manifest next update: Tue 10 Feb 2026 10:00:29 +0000 Files and hashes: 1: dt0D59chnX68HyMPcGMtyRNvNBM.crl (hash: hPs10aSjcoaFXl6xi/wOFgNWyNAn5y9obzRK4+N/iV4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft rsync://rpki.ripe.net/repository/DEFAULT/dt0D59chnX68HyMPcGMtyRNvNBM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:6f:89:f5:df:ee:52:26:fc:8d:c4:1b:8b:89:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76dd03e7d7219d7ebc1f230f70632dc9136f3413 Validity Not Before: Feb 9 10:00:29 2026 GMT Not After : Feb 10 10:00:29 2026 GMT Subject: CN=cc241fb95c1da9a7e39a0ed329e6afde953096a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:94:81:3c:14:46:e2:ce:da:2d:29:bb:03:42: 43:92:a8:6e:37:b0:69:67:fb:10:98:9e:c3:94:16: 1a:50:da:6c:c9:88:b9:4f:5e:de:0a:c1:a9:df:f3: cf:f7:bb:68:9b:f7:64:c4:df:ec:28:c8:f2:42:bf: 6d:6b:1e:66:f1:46:d8:5b:33:1e:d0:5f:c2:86:de: f4:e1:89:94:a7:66:2d:42:ab:be:9f:48:78:72:16: 2c:c1:cd:2d:83:a8:ce:23:4c:b9:6e:d0:fc:a6:55: a6:a3:70:26:73:34:76:84:94:ca:bd:c7:cc:42:b6: 71:bc:a3:8e:d6:da:ee:ec:3e:fc:ff:31:05:4b:c4: 6f:87:98:ca:2c:3b:53:51:53:dd:75:77:d1:9c:24: 84:88:95:f5:8e:f7:fa:f3:4b:b1:b0:75:3c:9f:32: cc:0a:ff:6f:9e:67:a6:c5:3c:61:98:f8:f2:9e:bd: c7:83:a9:ee:c7:12:92:14:87:1f:cd:17:e4:ef:59: 63:9c:a4:64:05:ac:38:f4:da:54:4e:7a:90:3c:95: 75:3b:5f:80:b0:59:09:0d:e8:92:21:65:30:bc:2b: 6b:04:4b:38:ed:b8:65:70:14:72:57:33:02:95:1b: 7e:9a:5e:4d:a9:f3:1c:ff:96:61:93:ce:e4:6b:f5: 74:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:24:1F:B9:5C:1D:A9:A7:E3:9A:0E:D3:29:E6:AF:DE:95:30:96:A8 X509v3 Authority Key Identifier: keyid:76:DD:03:E7:D7:21:9D:7E:BC:1F:23:0F:70:63:2D:C9:13:6F:34:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dt0D59chnX68HyMPcGMtyRNvNBM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:3d:6f:80:9d:e9:3b:e0:97:6f:1f:a7:f6:a5:ca:85:0e:dc: 6a:bb:41:99:3b:55:0f:c3:ab:61:85:9d:a5:f1:9a:05:96:90: fa:16:57:df:23:c8:11:6f:aa:2c:91:c9:9e:94:02:c7:3b:c3: 08:08:27:66:fd:3a:76:18:cf:e5:85:ec:21:1b:60:66:2b:d5: 00:b4:41:1d:1a:4e:df:ee:4a:9e:db:fd:ee:df:37:6e:02:79: f2:98:f8:2f:a4:b1:1f:07:98:79:7b:6a:61:00:3b:d4:4f:97: 71:b5:ef:02:fc:a5:a9:98:34:32:41:75:dd:12:00:a5:dd:80: e0:98:6c:54:38:22:aa:ed:85:14:64:f3:e9:59:9b:46:4d:51: 8d:b1:a9:ad:18:75:84:a3:5c:5e:d9:3e:b8:bf:4e:5c:39:68: ba:7e:43:57:c0:c9:6e:e5:f9:a0:54:3a:0a:68:dd:b9:68:35: 8f:69:55:1b:fa:2b:11:52:9e:9e:27:6b:2c:2c:28:bc:2b:1e: e8:21:ac:03:05:6f:de:80:c9:a1:28:e3:62:5b:6b:9c:da:9f: 8c:dd:72:14:b3:f4:a4:92:6f:ed:6d:2e:9e:87:6f:4e:a7:d7: 3e:9e:c1:21:7d:94:d6:6b:59:36:98:28:5e:75:6d:b7:86:36: 7b:2b:f3:06 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2G+J9d/uUib8jcQbi4lSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2ZGQwM2U3ZDcyMTlkN2ViYzFmMjMwZjcwNjMyZGM5MTM2 ZjM0MTMwHhcNMjYwMjA5MTAwMDI5WhcNMjYwMjEwMTAwMDI5WjAzMTEwLwYDVQQD EyhjYzI0MWZiOTVjMWRhOWE3ZTM5YTBlZDMyOWU2YWZkZTk1MzA5NmE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt5SBPBRG4s7aLSm7A0JDkqhuN7Bp Z/sQmJ7DlBYaUNpsyYi5T17eCsGp3/PP97tom/dkxN/sKMjyQr9tax5m8UbYWzMe 0F/Cht704YmUp2YtQqu+n0h4chYswc0tg6jOI0y5btD8plWmo3AmczR2hJTKvcfM QrZxvKOO1tru7D78/zEFS8Rvh5jKLDtTUVPddXfRnCSEiJX1jvf680uxsHU8nzLM Cv9vnmemxTxhmPjynr3Hg6nuxxKSFIcfzRfk71ljnKRkBaw49NpUTnqQPJV1O1+A sFkJDeiSIWUwvCtrBEs47bhlcBRyVzMClRt+ml5NqfMc/5Zhk87ka/V0GQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMwkH7lcHamn45oO0ynmr96VMJaoMB8GA1UdIwQY MBaAFHbdA+fXIZ1+vB8jD3BjLckTbzQTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHQwRDU5Y2huWDY4SHlNUGNHTXR5Uk52TkJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC8xNDI2YTEtYjU1My00ZGE1LWE2ZDkt YWMwMTAyNzkzYzVhLzEvZHQwRDU5Y2huWDY4SHlNUGNHTXR5Uk52TkJNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZC8xNDI2YTEtYjU1My00ZGE1LWE2ZDktYWMwMTAyNzkzYzVh LzEvZHQwRDU5Y2huWDY4SHlNUGNHTXR5Uk52TkJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcT1vgJ3p O+CXbx+n9qXKhQ7cartBmTtVD8OrYYWdpfGaBZaQ+hZX3yPIEW+qLJHJnpQCxzvD CAgnZv06dhjP5YXsIRtgZivVALRBHRpO3+5Kntv97t83bgJ58pj4L6SxHweYeXtq YQA71E+XcbXvAvylqZg0MkF13RIApd2A4JhsVDgiqu2FFGTz6VmbRk1RjbGprRh1 hKNcXtk+uL9OXDloun5DV8DJbuX5oFQ6CmjduWg1j2lVG/orEVKenidrLCwovCse 6CGsAwVv3oDJoSjjYltrnNqfjN1yFLP0pJJv7W0unodvTqfXPp7BIX2U1mtZNpgo XnVtt4Y2eyvzBg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:41 2026 by rpki-client