This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/82d65e-e0d9-4fcd-b3ae-4d3a5c042e61/1/drtZ2KtKtSd87uX_CYIIQzBiex8.mft File: drtZ2KtKtSd87uX_CYIIQzBiex8.mft (raw, json) Hash identifier: R3QKKJIA0EeeNUHm8hHGfbg7rGWsPfrwaS49hpZo36E= Subject key identifier: DD:43:54:29:6D:04:B0:C6:DA:E5:AD:00:76:7D:7E:36:16:1E:F2:C0 Authority key identifier: 76:BB:59:D8:AB:4A:B5:27:7C:EE:E5:FF:09:82:08:43:30:62:7B:1F Certificate issuer: /CN=76bb59d8ab4ab5277ceee5ff0982084330627b1f Certificate serial: 019C420F1EC1A612C52C740716426D2AB86E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/drtZ2KtKtSd87uX_CYIIQzBiex8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/82d65e-e0d9-4fcd-b3ae-4d3a5c042e61/1/drtZ2KtKtSd87uX_CYIIQzBiex8.mft Manifest number: 02C4 Signing time: Mon 09 Feb 2026 11:00:12 +0000 Manifest this update: Mon 09 Feb 2026 11:00:12 +0000 Manifest next update: Tue 10 Feb 2026 11:00:12 +0000 Files and hashes: 1: drtZ2KtKtSd87uX_CYIIQzBiex8.crl (hash: m3dqu/dZ85IBhWhtCaWWam03TrdYkC32lPGgVuDNRpM=) 2: lYVVRT8ck9hIF_wE0rPLM9h8sl4.roa (hash: nOQ76WC5KxHith3R9t77yLyg4sKQCt1T2XSdiC50P2s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/82d65e-e0d9-4fcd-b3ae-4d3a5c042e61/1/drtZ2KtKtSd87uX_CYIIQzBiex8.crl rsync://rpki.ripe.net/repository/DEFAULT/75/82d65e-e0d9-4fcd-b3ae-4d3a5c042e61/1/drtZ2KtKtSd87uX_CYIIQzBiex8.mft rsync://rpki.ripe.net/repository/DEFAULT/drtZ2KtKtSd87uX_CYIIQzBiex8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:1e:c1:a6:12:c5:2c:74:07:16:42:6d:2a:b8:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76bb59d8ab4ab5277ceee5ff0982084330627b1f Validity Not Before: Feb 9 11:00:12 2026 GMT Not After : Feb 10 11:00:12 2026 GMT Subject: CN=dd4354296d04b0c6dae5ad00767d7e36161ef2c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:0a:21:ba:aa:83:ed:d1:58:01:5b:23:70:09: 68:55:c2:cf:49:0c:fa:da:79:c0:3b:c4:b6:f8:72: c2:2c:d0:3c:4c:4f:10:f7:d1:56:f4:d8:ad:72:50: b2:4b:ef:f0:b1:2a:06:11:61:f1:1e:81:88:58:df: 4b:ed:07:91:b8:e3:e5:64:96:58:c5:78:bb:13:20: bc:9c:6d:81:22:57:73:cf:a7:d8:96:db:30:ae:a5: 9e:12:38:05:67:0a:9f:b3:2a:ed:c8:70:f3:9c:50: 80:26:f0:2c:fd:ae:db:b5:45:a0:9c:8b:f8:d7:92: 22:fe:66:49:20:69:cb:f7:3d:63:a7:94:1d:36:26: fe:67:3e:69:04:fb:33:02:57:7c:b8:68:1c:15:e5: 2d:9a:9b:7a:d3:b0:20:df:b7:f6:fc:bc:3f:93:66: 50:7c:60:ac:04:54:bb:8d:1c:0c:31:6e:90:14:ad: c9:31:b0:76:6d:2c:e5:41:f1:11:d2:98:df:86:82: 79:66:e2:5e:5e:ca:3d:d4:5c:cc:50:36:d7:25:d1: 31:5c:3e:ec:7e:20:5d:3f:2b:53:56:b6:14:b7:0b: 6b:7a:84:18:1c:a3:cc:5c:0f:af:dc:2e:e9:d7:9b: 6d:f2:21:d0:7d:1b:c1:0c:1f:5e:9f:a2:60:82:55: 6d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:43:54:29:6D:04:B0:C6:DA:E5:AD:00:76:7D:7E:36:16:1E:F2:C0 X509v3 Authority Key Identifier: keyid:76:BB:59:D8:AB:4A:B5:27:7C:EE:E5:FF:09:82:08:43:30:62:7B:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/drtZ2KtKtSd87uX_CYIIQzBiex8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/82d65e-e0d9-4fcd-b3ae-4d3a5c042e61/1/drtZ2KtKtSd87uX_CYIIQzBiex8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/82d65e-e0d9-4fcd-b3ae-4d3a5c042e61/1/drtZ2KtKtSd87uX_CYIIQzBiex8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:87:e7:ca:dc:e5:8f:d6:5a:8f:b6:33:04:bc:b6:c1:f4:0e: 81:ab:87:b4:45:4a:b8:ea:bc:42:01:a7:76:69:4b:a7:47:ce: 12:e4:03:ca:b5:38:ac:9a:fe:6f:81:79:d0:7e:79:1e:5a:ac: 63:05:dc:8d:7b:00:07:74:b3:e4:a0:e9:c4:ec:1a:c2:14:0c: 4f:8f:7e:27:9d:aa:b5:50:bb:21:3c:8b:ad:82:9d:5c:e6:57: cc:75:11:53:5c:da:fc:25:78:72:d7:45:db:fd:b5:fb:f4:c9: f3:6c:ac:08:4a:e0:3a:ca:79:e7:df:81:42:0b:ad:f2:cd:f2: ae:21:1c:c5:68:cd:1d:c6:39:fa:21:bb:5e:39:1a:2a:42:cc: 37:cf:5c:ba:0a:4a:8c:31:b6:b4:61:ce:dc:48:2c:f3:bb:2e: b3:b6:1d:1c:64:13:93:a4:87:f9:57:e2:86:a8:bd:0a:c3:cf: cf:cc:38:f5:73:f0:0b:db:e1:4a:5e:6f:c4:63:60:6e:85:0b: a4:2b:7c:2d:ff:f2:ad:6d:23:94:24:7b:a2:32:40:bc:f8:d8: e5:05:0b:20:db:09:e7:c1:97:58:29:87:75:a1:01:f3:3e:46: 40:c6:c1:dc:41:7c:c1:be:b0:72:10:b7:f9:7c:27:d8:b7:27: 97:a5:06:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCDx7BphLFLHQHFkJtKrhuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2YmI1OWQ4YWI0YWI1Mjc3Y2VlZTVmZjA5ODIwODQzMzA2 MjdiMWYwHhcNMjYwMjA5MTEwMDEyWhcNMjYwMjEwMTEwMDEyWjAzMTEwLwYDVQQD EyhkZDQzNTQyOTZkMDRiMGM2ZGFlNWFkMDA3NjdkN2UzNjE2MWVmMmMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnQohuqqD7dFYAVsjcAloVcLPSQz6 2nnAO8S2+HLCLNA8TE8Q99FW9NitclCyS+/wsSoGEWHxHoGIWN9L7QeRuOPlZJZY xXi7EyC8nG2BIldzz6fYltswrqWeEjgFZwqfsyrtyHDznFCAJvAs/a7btUWgnIv4 15Ii/mZJIGnL9z1jp5QdNib+Zz5pBPszAld8uGgcFeUtmpt607Ag37f2/Lw/k2ZQ fGCsBFS7jRwMMW6QFK3JMbB2bSzlQfER0pjfhoJ5ZuJeXso91FzMUDbXJdExXD7s fiBdPytTVrYUtwtreoQYHKPMXA+v3C7p15tt8iHQfRvBDB9en6JgglVtjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN1DVCltBLDG2uWtAHZ9fjYWHvLAMB8GA1UdIwQY MBaAFHa7WdirSrUnfO7l/wmCCEMwYnsfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHJ0WjJLdEt0U2Q4N3VYX0NZSUlRekJpZXg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS84MmQ2NWUtZTBkOS00ZmNkLWIzYWUt NGQzYTVjMDQyZTYxLzEvZHJ0WjJLdEt0U2Q4N3VYX0NZSUlRekJpZXg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS84MmQ2NWUtZTBkOS00ZmNkLWIzYWUtNGQzYTVjMDQyZTYx LzEvZHJ0WjJLdEt0U2Q4N3VYX0NZSUlRekJpZXg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPIfnytzl j9Zaj7YzBLy2wfQOgauHtEVKuOq8QgGndmlLp0fOEuQDyrU4rJr+b4F50H55Hlqs YwXcjXsAB3Sz5KDpxOwawhQMT49+J52qtVC7ITyLrYKdXOZXzHURU1za/CV4ctdF 2/21+/TJ82ysCErgOsp559+BQgut8s3yriEcxWjNHcY5+iG7XjkaKkLMN89cugpK jDG2tGHO3Egs87sus7YdHGQTk6SH+Vfihqi9CsPPz8w49XPwC9vhSl5vxGNgboUL pCt8Lf/yrW0jlCR7ojJAvPjY5QULINsJ58GXWCmHdaEB8z5GQMbB3EF8wb6wchC3 +Xwn2Lcnl6UGJA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:59:44 2026 by rpki-client