This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c2719d-8d77-4686-a2fb-7b4f09785f79/1/dnECLoKiznV3Drwajw1F9E8scxY.mft File: dnECLoKiznV3Drwajw1F9E8scxY.mft (raw, json) Hash identifier: KVHAHdYOOYqEP7cIdlvUYdM/Nm4Z4jk7SxLi5hrWV+U= Subject key identifier: A9:41:6F:DA:10:76:0B:E5:C1:A8:16:0F:D0:7C:F1:D8:4C:DB:DE:91 Authority key identifier: 76:71:02:2E:82:A2:CE:75:77:0E:BC:1A:8F:0D:45:F4:4F:2C:73:16 Certificate issuer: /CN=7671022e82a2ce75770ebc1a8f0d45f44f2c7316 Certificate serial: 019C45115498E3F69800962C3B90D1A2FFAB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dnECLoKiznV3Drwajw1F9E8scxY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c2719d-8d77-4686-a2fb-7b4f09785f79/1/dnECLoKiznV3Drwajw1F9E8scxY.mft Manifest number: 180E Signing time: Tue 10 Feb 2026 01:01:29 +0000 Manifest this update: Tue 10 Feb 2026 01:01:29 +0000 Manifest next update: Wed 11 Feb 2026 01:01:29 +0000 Files and hashes: 1: dnECLoKiznV3Drwajw1F9E8scxY.crl (hash: XdjiAUC7+dAmjaI3ZDQ+/ht5uh1NfgJHSOMmisq+gHA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c2719d-8d77-4686-a2fb-7b4f09785f79/1/dnECLoKiznV3Drwajw1F9E8scxY.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/c2719d-8d77-4686-a2fb-7b4f09785f79/1/dnECLoKiznV3Drwajw1F9E8scxY.mft rsync://rpki.ripe.net/repository/DEFAULT/dnECLoKiznV3Drwajw1F9E8scxY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:11:54:98:e3:f6:98:00:96:2c:3b:90:d1:a2:ff:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7671022e82a2ce75770ebc1a8f0d45f44f2c7316 Validity Not Before: Feb 10 01:01:29 2026 GMT Not After : Feb 11 01:01:29 2026 GMT Subject: CN=a9416fda10760be5c1a8160fd07cf1d84cdbde91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:52:16:ea:49:7a:e6:c6:f4:10:54:ec:c9:bb: 2f:ef:82:43:dd:9c:20:e2:ae:cf:58:19:1f:50:92: 42:87:bf:c8:7e:b3:93:8c:59:81:ac:49:82:bf:ae: af:74:42:a2:af:ea:cb:44:3a:ad:23:35:e2:54:4e: 36:10:51:20:68:bc:63:05:21:2e:f5:e5:16:a3:c6: dd:14:2a:5f:34:fe:b3:f4:49:fd:21:80:10:cd:7f: ae:ef:97:a7:c1:23:77:21:d7:c7:ee:a6:18:fb:ec: e7:70:22:4c:fa:ad:9d:5b:cb:a3:a6:00:c9:fd:bd: ff:28:e0:35:86:cd:10:98:e2:2e:f8:b7:c7:cf:aa: 2b:7f:eb:bb:23:e8:6a:f9:71:bc:d1:c7:64:53:ff: ef:47:91:4a:3b:be:2b:86:58:cd:97:86:e0:a7:54: c5:0c:bb:8f:d3:62:ef:0a:e9:34:98:a8:c5:53:83: f3:97:56:6c:b3:d6:0d:1d:91:10:95:c3:d8:63:f2: 15:28:e4:66:3a:16:fa:61:27:2b:7b:a9:81:99:4f: 5f:b7:ed:77:d9:0b:13:9d:22:5a:76:49:0c:13:b1: 8a:b3:d4:3e:8b:fc:3c:c9:df:79:e7:27:a3:ba:fe: 00:31:b9:78:04:20:96:ea:93:f9:9d:6d:27:0e:40: a9:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:41:6F:DA:10:76:0B:E5:C1:A8:16:0F:D0:7C:F1:D8:4C:DB:DE:91 X509v3 Authority Key Identifier: keyid:76:71:02:2E:82:A2:CE:75:77:0E:BC:1A:8F:0D:45:F4:4F:2C:73:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dnECLoKiznV3Drwajw1F9E8scxY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c2719d-8d77-4686-a2fb-7b4f09785f79/1/dnECLoKiznV3Drwajw1F9E8scxY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c2719d-8d77-4686-a2fb-7b4f09785f79/1/dnECLoKiznV3Drwajw1F9E8scxY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:8d:bd:5d:13:83:8b:db:3d:e6:bb:a1:7c:a2:7e:f2:2e:c3: 01:15:c3:9b:91:52:99:8a:9d:8c:32:58:34:4d:e1:49:82:62: de:58:09:e1:b8:72:bf:a6:15:af:91:3c:12:1d:49:23:e4:cc: 3a:fc:7b:f3:ec:f2:d2:16:55:b0:66:68:e7:63:25:16:be:14: ba:2e:67:41:43:6d:f7:b0:5a:6e:ff:1f:e2:80:da:63:71:1a: cc:f1:e7:ba:2a:4d:30:30:72:13:04:e4:30:80:a6:d2:67:d5: b2:d9:36:e7:d4:da:df:78:96:af:0a:b0:fe:93:76:f4:2b:dd: 96:ef:f8:b6:4f:cd:9f:43:0e:06:bc:ea:49:62:3c:87:bb:2d: 68:40:34:62:cb:69:6a:b4:45:b1:f0:d5:67:91:3b:df:6a:db: 0e:24:bf:52:b6:75:0a:e1:6b:57:66:ff:1e:18:f3:99:16:f2: f2:03:b5:ae:73:7c:5f:3d:70:42:f3:45:04:85:74:b5:c3:b0: b7:f6:23:9b:d3:bf:b9:5e:98:42:24:f2:2a:f5:1c:b4:fa:d8: 09:33:f6:61:a3:30:0e:61:d3:ec:bf:64:60:2e:0b:45:45:62: 38:95:ef:3a:7d:5e:46:10:14:f4:a0:3d:5f:a7:3a:f1:61:86: 52:8e:87:03 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFEVSY4/aYAJYsO5DRov+rMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2NzEwMjJlODJhMmNlNzU3NzBlYmMxYThmMGQ0NWY0NGYy YzczMTYwHhcNMjYwMjEwMDEwMTI5WhcNMjYwMjExMDEwMTI5WjAzMTEwLwYDVQQD EyhhOTQxNmZkYTEwNzYwYmU1YzFhODE2MGZkMDdjZjFkODRjZGJkZTkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnlIW6kl65sb0EFTsybsv74JD3Zwg 4q7PWBkfUJJCh7/IfrOTjFmBrEmCv66vdEKir+rLRDqtIzXiVE42EFEgaLxjBSEu 9eUWo8bdFCpfNP6z9En9IYAQzX+u75enwSN3IdfH7qYY++zncCJM+q2dW8ujpgDJ /b3/KOA1hs0QmOIu+LfHz6orf+u7I+hq+XG80cdkU//vR5FKO74rhljNl4bgp1TF DLuP02LvCuk0mKjFU4Pzl1Zss9YNHZEQlcPYY/IVKORmOhb6YScre6mBmU9ft+13 2QsTnSJadkkME7GKs9Q+i/w8yd955yejuv4AMbl4BCCW6pP5nW0nDkCp8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKlBb9oQdgvlwagWD9B88dhM296RMB8GA1UdIwQY MBaAFHZxAi6Cos51dw68Go8NRfRPLHMWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZG5FQ0xvS2l6blYzRHJ3YWp3MUY5RThzY3hZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9jMjcxOWQtOGQ3Ny00Njg2LWEyZmIt N2I0ZjA5Nzg1Zjc5LzEvZG5FQ0xvS2l6blYzRHJ3YWp3MUY5RThzY3hZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS9jMjcxOWQtOGQ3Ny00Njg2LWEyZmItN2I0ZjA5Nzg1Zjc5 LzEvZG5FQ0xvS2l6blYzRHJ3YWp3MUY5RThzY3hZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASY29XROD i9s95ruhfKJ+8i7DARXDm5FSmYqdjDJYNE3hSYJi3lgJ4bhyv6YVr5E8Eh1JI+TM Ovx78+zy0hZVsGZo52MlFr4Uui5nQUNt97Babv8f4oDaY3EazPHnuipNMDByEwTk MICm0mfVstk259Ta33iWrwqw/pN29Cvdlu/4tk/Nn0MOBrzqSWI8h7staEA0Ystp arRFsfDVZ5E732rbDiS/UrZ1CuFrV2b/HhjzmRby8gO1rnN8Xz1wQvNFBIV0tcOw t/Yjm9O/uV6YQiTyKvUctPrYCTP2YaMwDmHT7L9kYC4LRUViOJXvOn1eRhAU9KA9 X6c68WGGUo6HAw== -----END CERTIFICATE-----Generated at Tue Feb 10 02:54:53 2026 by rpki-client