This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft File: DoMf1wxr03oqddeg6sAxyS2o4YU.mft (raw, json) Hash identifier: M+fBWfE3NQJXgN/wQvG7RptuKanVCaEDN0J3p8hazSw= Subject key identifier: 6D:1E:3D:EF:C4:A3:4C:28:43:07:0E:98:39:53:64:76:9E:70:6C:B9 Authority key identifier: 0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85 Certificate issuer: /CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185 Certificate serial: 019C4390A3AA4C2C0436E71BD2039901AFE0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft Manifest number: 1493 Signing time: Mon 09 Feb 2026 18:01:18 +0000 Manifest this update: Mon 09 Feb 2026 18:01:18 +0000 Manifest next update: Tue 10 Feb 2026 18:01:18 +0000 Files and hashes: 1: DoMf1wxr03oqddeg6sAxyS2o4YU.crl (hash: vdnvqAvEPHSOUeqDfcTITz7de/6jFV+4nlLrQUBcQ6M=) 2: E0z3igtUq_zoGuy11MZm46qUA0k.roa (hash: zMUnBno+JucV/paZ21Lh4Pgqfjfx+DUy9tc50u1XZBc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.crl rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:a3:aa:4c:2c:04:36:e7:1b:d2:03:99:01:af:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185 Validity Not Before: Feb 9 18:01:18 2026 GMT Not After : Feb 10 18:01:18 2026 GMT Subject: CN=6d1e3defc4a34c2843070e98395364769e706cb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:24:61:2b:80:71:36:7e:61:fe:06:e5:1a:f2: 44:b6:01:42:24:5f:75:b8:74:1d:0d:04:5e:7a:89: 9d:61:a5:89:e9:97:98:c0:ca:cf:16:14:d8:2e:8b: 0e:24:53:fa:bd:55:29:79:26:5d:09:12:40:08:cf: e0:78:1c:44:9e:79:18:1e:a4:07:c1:9a:68:5b:38: 93:11:67:3a:41:39:aa:9f:3a:cb:cd:a4:f9:28:a9: b5:06:fc:fd:46:79:4f:6b:1b:46:bf:0d:35:f3:1d: 3f:6f:a3:a4:9f:c8:76:60:55:d4:77:0c:9d:3f:17: 08:6f:1c:fe:d9:5a:64:62:b3:16:c4:ca:da:2e:b3: 94:96:90:28:42:b2:82:58:d1:3e:48:d5:c3:8e:53: 13:8e:60:ea:36:2e:ba:fa:4e:b2:ce:c1:99:45:78: ea:f5:6e:61:d3:1b:fc:7f:b5:47:49:f9:a4:51:cf: 69:b8:ba:a5:23:db:6a:d0:fe:81:e6:04:f9:03:16: d1:57:ce:f2:8c:94:71:ce:24:8f:a7:4f:7a:95:73: de:38:04:24:55:8f:9f:3e:9d:57:ef:3a:fa:6c:f9: 42:12:e1:de:fe:a8:90:64:50:13:b4:1e:3b:a7:d5: 99:58:8a:00:97:e3:81:07:0f:a9:e0:57:96:62:89: 39:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:1E:3D:EF:C4:A3:4C:28:43:07:0E:98:39:53:64:76:9E:70:6C:B9 X509v3 Authority Key Identifier: keyid:0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:bf:8a:1f:09:5d:6c:43:59:7b:da:64:f0:86:39:99:72:12: 9a:ac:a8:d9:7f:4f:06:56:42:a8:c4:2e:73:50:fc:8f:06:1a: 5f:af:87:3c:53:19:14:d7:1e:b1:13:f2:a8:2e:8f:57:3b:ff: 05:33:3e:bb:2c:0e:d8:d6:ce:35:89:27:72:56:b9:d1:be:c1: 03:b9:fa:29:bd:28:aa:bd:d9:5c:87:02:3c:6d:d8:d4:c6:8b: 43:eb:07:9b:55:f6:19:88:dc:62:b2:15:99:46:bc:01:c0:b8: 38:a1:25:25:36:9e:e9:b9:03:c8:64:71:23:78:8d:12:4e:e2: b6:41:b6:ee:e7:eb:33:9b:2b:8f:9e:1c:20:fb:1a:35:9a:59: 95:98:0e:ce:19:4b:65:10:b9:2f:d0:c8:21:f4:21:59:e5:3d: b9:06:00:0b:b0:c1:1d:de:58:91:cd:23:35:ec:59:d4:7f:a1: e1:08:ea:af:a5:cc:91:e3:1e:18:34:03:3a:54:21:d3:94:84: 01:9a:c3:63:ba:db:e2:93:b9:8d:6e:9e:33:e5:5a:9c:70:e5: b7:22:96:c1:e5:79:83:da:0c:0b:e9:41:84:35:66:64:d4:ad: a1:ef:e9:4f:bb:c7:9b:c7:eb:40:0b:6e:f4:04:cc:05:55:46: d7:79:de:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkKOqTCwENucb0gOZAa/gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlODMxZmQ3MGM2YmQzN2EyYTc1ZDdhMGVhYzAzMWM5MmRh OGUxODUwHhcNMjYwMjA5MTgwMTE4WhcNMjYwMjEwMTgwMTE4WjAzMTEwLwYDVQQD Eyg2ZDFlM2RlZmM0YTM0YzI4NDMwNzBlOTgzOTUzNjQ3NjllNzA2Y2I5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAySRhK4BxNn5h/gblGvJEtgFCJF91 uHQdDQReeomdYaWJ6ZeYwMrPFhTYLosOJFP6vVUpeSZdCRJACM/geBxEnnkYHqQH wZpoWziTEWc6QTmqnzrLzaT5KKm1Bvz9RnlPaxtGvw018x0/b6Okn8h2YFXUdwyd PxcIbxz+2VpkYrMWxMraLrOUlpAoQrKCWNE+SNXDjlMTjmDqNi66+k6yzsGZRXjq 9W5h0xv8f7VHSfmkUc9puLqlI9tq0P6B5gT5AxbRV87yjJRxziSPp096lXPeOAQk VY+fPp1X7zr6bPlCEuHe/qiQZFATtB47p9WZWIoAl+OBBw+p4FeWYok5NQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG0ePe/Eo0woQwcOmDlTZHaecGy5MB8GA1UdIwQY MBaAFA6DH9cMa9N6KnXXoOrAMcktqOGFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRG9NZjF3eHIwM29xZGRlZzZzQXh5UzJvNFlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS85OGE2NjEtNDRmNS00YTA1LWFjYWEt ZTY3NTgyZjIzMDk3LzEvRG9NZjF3eHIwM29xZGRlZzZzQXh5UzJvNFlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS85OGE2NjEtNDRmNS00YTA1LWFjYWEtZTY3NTgyZjIzMDk3 LzEvRG9NZjF3eHIwM29xZGRlZzZzQXh5UzJvNFlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARr+KHwld bENZe9pk8IY5mXISmqyo2X9PBlZCqMQuc1D8jwYaX6+HPFMZFNcesRPyqC6PVzv/ BTM+uywO2NbONYkncla50b7BA7n6Kb0oqr3ZXIcCPG3Y1MaLQ+sHm1X2GYjcYrIV mUa8AcC4OKElJTae6bkDyGRxI3iNEk7itkG27ufrM5srj54cIPsaNZpZlZgOzhlL ZRC5L9DIIfQhWeU9uQYAC7DBHd5Ykc0jNexZ1H+h4Qjqr6XMkeMeGDQDOlQh05SE AZrDY7rb4pO5jW6eM+VanHDltyKWweV5g9oMC+lBhDVmZNStoe/pT7vHm8frQAtu 9ATMBVVG13neOg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:07:21 2026 by rpki-client