This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft File: dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft (raw, json) Hash identifier: K5ZZ4jR5/C1Q2A9kQg5a5Nj0stJYZKFN2yWkmJlLZz8= Subject key identifier: BD:FD:12:82:9E:09:04:1E:67:14:6B:AC:C5:EB:A0:F7:56:71:BA:73 Authority key identifier: 76:7B:C0:2A:58:59:62:3F:56:3E:A8:4A:6B:B0:A2:92:0D:5B:3E:91 Certificate issuer: /CN=767bc02a5859623f563ea84a6bb0a2920d5b3e91 Certificate serial: 019C427DA82C12056183ADD5916ABD9703A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft Manifest number: 155B Signing time: Mon 09 Feb 2026 13:00:57 +0000 Manifest this update: Mon 09 Feb 2026 13:00:57 +0000 Manifest next update: Tue 10 Feb 2026 13:00:57 +0000 Files and hashes: 1: KTiF2AJ-jYhH5MwBEq6DBqpHZIU.roa (hash: QZiMXdBbvocZooloHKXavt9Kr4OE8mOVpmaFum5U1Uk=) 2: dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl (hash: CUy0Azh8QcDAdvWlpcsI3Y7m1Hh45y8aqil9xf2nLn8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:a8:2c:12:05:61:83:ad:d5:91:6a:bd:97:03:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=767bc02a5859623f563ea84a6bb0a2920d5b3e91 Validity Not Before: Feb 9 13:00:57 2026 GMT Not After : Feb 10 13:00:57 2026 GMT Subject: CN=bdfd12829e09041e67146bacc5eba0f75671ba73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:f7:93:19:af:0d:9a:7b:44:c2:a7:2f:d7:90: 22:68:0c:3b:48:cb:17:8c:ce:4e:4e:45:e8:ec:00: 94:61:7b:08:a3:86:a9:5e:fd:02:05:ed:a1:ec:26: 9d:40:ef:4f:3b:e2:51:94:08:2e:da:f2:91:8e:9f: 38:d8:40:4a:d5:af:1e:bc:95:2a:16:3d:61:b8:cd: f8:a0:8f:eb:da:0a:7e:60:c7:26:21:3b:20:24:ff: 2f:a8:29:ae:de:07:52:1b:28:2d:6f:7f:fa:bf:37: 01:4f:70:25:be:85:e5:a2:26:b6:62:e0:74:62:5a: e4:c5:4d:12:08:d0:ed:8d:d4:69:61:84:e6:e3:57: 66:0e:c6:57:f5:24:30:1e:e6:7a:3c:3c:1d:f3:be: a7:e0:d1:f5:c3:78:35:0d:e2:9e:ae:75:81:c7:ad: 7a:36:c5:bb:6a:3c:8c:ad:97:b8:f4:87:0d:9a:57: 18:7e:ea:9a:82:13:bc:8e:f6:eb:4d:c7:c5:4a:b3: 08:f4:d2:96:f3:64:26:19:9d:02:93:67:c5:e1:1e: 75:97:11:99:59:ec:06:a0:ab:44:4b:80:7c:85:75: 2f:6b:83:ef:f2:3d:8c:c1:88:f3:92:31:dd:0e:88: 94:17:8d:a5:a6:73:e5:06:f1:f5:b4:b5:e3:31:26: e0:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:FD:12:82:9E:09:04:1E:67:14:6B:AC:C5:EB:A0:F7:56:71:BA:73 X509v3 Authority Key Identifier: keyid:76:7B:C0:2A:58:59:62:3F:56:3E:A8:4A:6B:B0:A2:92:0D:5B:3E:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:8f:8e:65:22:ee:36:86:a8:bc:b5:fe:44:ea:86:a7:19:03: 5a:2a:a7:2a:fd:1a:0e:1e:c9:af:5c:83:63:83:4d:04:25:f1: d8:6f:b2:04:65:0b:11:06:f4:b8:ae:3c:34:81:57:0f:7b:d8: f0:3e:f3:a6:55:5a:12:da:a5:88:0e:3e:91:4b:7a:e4:fa:de: 46:ba:7e:96:e3:42:fa:d7:f8:66:18:fa:16:60:1d:08:c7:9b: 04:a8:1c:97:95:75:13:43:73:9d:dd:ff:a9:6b:f8:3e:20:b7: cb:b4:35:8d:66:2d:cb:3c:bc:59:02:67:c2:c9:1d:36:43:2b: cc:71:ca:76:b1:22:1b:b1:30:02:70:db:f7:8f:84:5c:1b:f8: dc:df:22:37:5d:53:3a:8f:c1:64:e3:03:7c:64:21:3d:c8:e5: 8e:bd:49:4a:b6:0e:bf:7f:9b:75:9b:ef:22:03:08:4b:5f:a3: d0:de:b9:81:da:a6:24:21:24:01:dd:ec:d4:a9:1e:36:4e:b8: a0:fc:ae:f6:a8:dd:dc:14:0b:9f:25:dc:30:42:ef:e7:d7:a9: 57:d7:c1:b8:5d:34:fe:d2:24:6b:15:4d:11:cd:87:ac:10:86: 15:cf:c6:77:9f:38:70:ff:0c:9b:95:06:a4:ca:f7:de:ff:38: 33:ac:ec:81 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfagsEgVhg63VkWq9lwOlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2N2JjMDJhNTg1OTYyM2Y1NjNlYTg0YTZiYjBhMjkyMGQ1 YjNlOTEwHhcNMjYwMjA5MTMwMDU3WhcNMjYwMjEwMTMwMDU3WjAzMTEwLwYDVQQD EyhiZGZkMTI4MjllMDkwNDFlNjcxNDZiYWNjNWViYTBmNzU2NzFiYTczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAifeTGa8NmntEwqcv15AiaAw7SMsX jM5OTkXo7ACUYXsIo4apXv0CBe2h7CadQO9PO+JRlAgu2vKRjp842EBK1a8evJUq Fj1huM34oI/r2gp+YMcmITsgJP8vqCmu3gdSGygtb3/6vzcBT3AlvoXloia2YuB0 YlrkxU0SCNDtjdRpYYTm41dmDsZX9SQwHuZ6PDwd876n4NH1w3g1DeKernWBx616 NsW7ajyMrZe49IcNmlcYfuqaghO8jvbrTcfFSrMI9NKW82QmGZ0Ck2fF4R51lxGZ WewGoKtES4B8hXUva4Pv8j2MwYjzkjHdDoiUF42lpnPlBvH1tLXjMSbgoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL39EoKeCQQeZxRrrMXroPdWcbpzMB8GA1UdIwQY MBaAFHZ7wCpYWWI/Vj6oSmuwopINWz6RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZG52QUtsaFpZajlXUHFoS2E3Q2lrZzFiUHBFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9jZGFiYzQtYmFlNS00ZDk5LTllMTct NjgxNTU0OGJmMzNmLzEvZG52QUtsaFpZajlXUHFoS2E3Q2lrZzFiUHBFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS9jZGFiYzQtYmFlNS00ZDk5LTllMTctNjgxNTU0OGJmMzNm LzEvZG52QUtsaFpZajlXUHFoS2E3Q2lrZzFiUHBFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAho+OZSLu NoaovLX+ROqGpxkDWiqnKv0aDh7Jr1yDY4NNBCXx2G+yBGULEQb0uK48NIFXD3vY 8D7zplVaEtqliA4+kUt65PreRrp+luNC+tf4Zhj6FmAdCMebBKgcl5V1E0Nznd3/ qWv4PiC3y7Q1jWYtyzy8WQJnwskdNkMrzHHKdrEiG7EwAnDb94+EXBv43N8iN11T Oo/BZOMDfGQhPcjljr1JSrYOv3+bdZvvIgMIS1+j0N65gdqmJCEkAd3s1KkeNk64 oPyu9qjd3BQLnyXcMELv59epV9fBuF00/tIkaxVNEc2HrBCGFc/Gd584cP8Mm5UG pMr33v84M6zsgQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:52 2026 by rpki-client