This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft File: d11030Q8uAUXzkFQ3OImYpQPHXw.mft (raw, json) Hash identifier: cTXHzgXTgftld8sBhdX4Lttd6JfqwAugpi6+dicfLws= Subject key identifier: 39:92:0D:48:36:07:95:EF:E3:FC:BD:8C:E1:08:B3:86:B7:83:F4:40 Authority key identifier: 77:5D:74:DF:44:3C:B8:05:17:CE:41:50:DC:E2:26:62:94:0F:1D:7C Certificate issuer: /CN=775d74df443cb80517ce4150dce22662940f1d7c Certificate serial: 019C43902FB59ABF0AD9891C8E3D553B326B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d11030Q8uAUXzkFQ3OImYpQPHXw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft Manifest number: 0C4B Signing time: Mon 09 Feb 2026 18:00:48 +0000 Manifest this update: Mon 09 Feb 2026 18:00:48 +0000 Manifest next update: Tue 10 Feb 2026 18:00:48 +0000 Files and hashes: 1: d11030Q8uAUXzkFQ3OImYpQPHXw.crl (hash: ur0ELJpa6Syjr3Bgsll9FmK19Pxnwx3jpQfpvD9pQ6Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.crl rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft rsync://rpki.ripe.net/repository/DEFAULT/d11030Q8uAUXzkFQ3OImYpQPHXw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:2f:b5:9a:bf:0a:d9:89:1c:8e:3d:55:3b:32:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=775d74df443cb80517ce4150dce22662940f1d7c Validity Not Before: Feb 9 18:00:48 2026 GMT Not After : Feb 10 18:00:48 2026 GMT Subject: CN=39920d48360795efe3fcbd8ce108b386b783f440 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:e6:fd:b5:f7:4a:de:39:7c:c7:bc:df:2d:42: a7:56:63:8c:39:ee:13:d2:82:7d:00:2d:a0:81:dd: 95:2e:0d:31:e3:6e:77:ff:a7:c5:e8:3b:47:f0:78: d6:21:83:22:7f:a4:5a:b0:8a:fe:d1:e0:18:89:ed: a9:4c:c0:50:c6:a9:de:d2:87:5a:f1:5c:4e:7a:4c: 55:5d:b9:93:8f:99:17:57:ab:76:27:90:62:1e:49: 31:f7:43:e8:e8:07:58:86:05:c9:c5:e6:0d:3d:b1: 03:d0:7d:5f:92:8d:93:8f:b7:91:4b:fa:e4:96:dc: 08:a9:37:9a:02:e5:2e:81:c0:12:59:53:c9:8a:67: 6b:24:0a:66:56:b7:50:5f:33:a1:fc:9f:a3:46:f6: 97:b6:bf:dd:f9:26:56:b7:df:53:15:77:7b:50:3b: 23:d8:2b:6f:ac:ea:10:e9:7d:0c:31:3a:8e:94:65: 7e:6d:8f:bd:a6:bc:a7:88:7c:8a:2e:34:88:a6:19: 58:35:f1:8c:ce:eb:80:a5:07:cc:05:bc:be:b0:3b: 69:e5:5b:ad:b2:ab:86:2c:02:92:3a:2b:28:d4:c3: fa:a1:02:99:4c:ab:90:cc:7b:09:a5:48:86:d8:fe: 91:76:f9:ae:73:d7:3c:c1:1e:b7:00:00:0f:89:8c: 44:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:92:0D:48:36:07:95:EF:E3:FC:BD:8C:E1:08:B3:86:B7:83:F4:40 X509v3 Authority Key Identifier: keyid:77:5D:74:DF:44:3C:B8:05:17:CE:41:50:DC:E2:26:62:94:0F:1D:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d11030Q8uAUXzkFQ3OImYpQPHXw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:ac:ad:50:bb:f1:68:34:20:67:3e:fb:72:70:6b:7c:9a:e9: 11:a4:1b:14:e5:ad:5e:24:bf:52:55:bb:f3:8f:61:0a:84:17: 07:50:fa:b2:6c:c5:04:28:4f:3d:29:6b:e2:39:2c:58:a8:6a: 9a:a3:2c:7c:7c:4c:9f:9b:4c:dd:3a:1e:9b:0c:83:9d:35:d7: b4:ac:7c:1b:51:16:a7:63:d6:fd:29:b8:b5:e3:1d:26:fa:0d: b8:a6:23:f1:76:2c:d1:cf:33:bf:2d:fd:54:cd:ed:10:63:f0: 24:3a:2f:fa:c9:27:5a:e5:11:bb:7f:12:5f:32:53:e3:3d:cd: d7:96:6c:5a:4b:be:0b:33:ef:12:f3:ec:d4:41:99:85:32:9a: 65:38:35:14:20:5c:72:32:2a:bd:d1:b3:e5:4a:cb:54:36:dd: 14:d6:7e:f2:fe:e4:1d:0a:81:3a:14:f0:03:c7:aa:60:de:8d: 72:e4:af:24:b4:b3:21:88:42:42:0b:0d:9c:4f:0b:65:00:a2: 1f:97:1d:8e:64:e1:e2:bf:e2:5f:08:bc:29:69:3c:1c:04:01: ce:20:8c:c2:50:8d:0f:c9:fd:d7:53:7e:d2:8c:2c:1e:b9:7e: b1:2c:0f:18:7d:1c:bf:19:7d:75:de:c6:e1:f7:a1:24:00:dd: 9e:2e:bc:0a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkC+1mr8K2Ykcjj1VOzJrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3NWQ3NGRmNDQzY2I4MDUxN2NlNDE1MGRjZTIyNjYyOTQw ZjFkN2MwHhcNMjYwMjA5MTgwMDQ4WhcNMjYwMjEwMTgwMDQ4WjAzMTEwLwYDVQQD EygzOTkyMGQ0ODM2MDc5NWVmZTNmY2JkOGNlMTA4YjM4NmI3ODNmNDQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlOb9tfdK3jl8x7zfLUKnVmOMOe4T 0oJ9AC2ggd2VLg0x4253/6fF6DtH8HjWIYMif6RasIr+0eAYie2pTMBQxqne0oda 8VxOekxVXbmTj5kXV6t2J5BiHkkx90Po6AdYhgXJxeYNPbED0H1fko2Tj7eRS/rk ltwIqTeaAuUugcASWVPJimdrJApmVrdQXzOh/J+jRvaXtr/d+SZWt99TFXd7UDsj 2CtvrOoQ6X0MMTqOlGV+bY+9pryniHyKLjSIphlYNfGMzuuApQfMBby+sDtp5Vut squGLAKSOiso1MP6oQKZTKuQzHsJpUiG2P6Rdvmuc9c8wR63AAAPiYxEZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDmSDUg2B5Xv4/y9jOEIs4a3g/RAMB8GA1UdIwQY MBaAFHdddN9EPLgFF85BUNziJmKUDx18MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZDExMDMwUTh1QVVYemtGUTNPSW1ZcFFQSFh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC8xYzc3YjctYjgyYS00ZGZkLWI2YjUt NmY3NTg2MTk4MzdmLzEvZDExMDMwUTh1QVVYemtGUTNPSW1ZcFFQSFh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC8xYzc3YjctYjgyYS00ZGZkLWI2YjUtNmY3NTg2MTk4Mzdm LzEvZDExMDMwUTh1QVVYemtGUTNPSW1ZcFFQSFh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKaytULvx aDQgZz77cnBrfJrpEaQbFOWtXiS/UlW7849hCoQXB1D6smzFBChPPSlr4jksWKhq mqMsfHxMn5tM3ToemwyDnTXXtKx8G1EWp2PW/Sm4teMdJvoNuKYj8XYs0c8zvy39 VM3tEGPwJDov+sknWuURu38SXzJT4z3N15ZsWku+CzPvEvPs1EGZhTKaZTg1FCBc cjIqvdGz5UrLVDbdFNZ+8v7kHQqBOhTwA8eqYN6NcuSvJLSzIYhCQgsNnE8LZQCi H5cdjmTh4r/iXwi8KWk8HAQBziCMwlCND8n911N+0owsHrl+sSwPGH0cvxl9dd7G 4fehJADdni68Cg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:46:58 2026 by rpki-client