This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft File: dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft (raw, json) Hash identifier: GTElbH2iVlwRlDiiU0xC9LISNjme+4Pdac5/0e4iv8U= Subject key identifier: 16:E1:28:FC:9B:08:F8:29:90:93:58:DB:2B:69:18:6A:B1:7C:D6:4C Authority key identifier: 74:9D:8A:43:28:93:0B:93:8F:A8:60:18:B1:E4:47:EE:4D:8D:A8:F9 Certificate issuer: /CN=749d8a4328930b938fa86018b1e447ee4d8da8f9 Certificate serial: 019C446C488BAD76BDBD3096D0B34DA45C99 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJ2KQyiTC5OPqGAYseRH7k2NqPk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft Manifest number: 0189 Signing time: Mon 09 Feb 2026 22:01:13 +0000 Manifest this update: Mon 09 Feb 2026 22:01:13 +0000 Manifest next update: Tue 10 Feb 2026 22:01:13 +0000 Files and hashes: 1: dJ2KQyiTC5OPqGAYseRH7k2NqPk.crl (hash: Ovw7Ospmhp7INNanUlAfV5SEQuQiFphRUXmIgvY7ZiY=) 2: i5v8Z7TLwK1d1522dak6QJo-ZdI.roa (hash: dORF0I0Mm7ul7rA3/PIS0cDu8jhdXdBq0BX2+YuQ/kM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.crl rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft rsync://rpki.ripe.net/repository/DEFAULT/dJ2KQyiTC5OPqGAYseRH7k2NqPk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6c:48:8b:ad:76:bd:bd:30:96:d0:b3:4d:a4:5c:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749d8a4328930b938fa86018b1e447ee4d8da8f9 Validity Not Before: Feb 9 22:01:13 2026 GMT Not After : Feb 10 22:01:13 2026 GMT Subject: CN=16e128fc9b08f829909358db2b69186ab17cd64c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:77:5a:1a:20:d7:0d:03:d1:2d:01:ec:d7:23: 1b:d5:b8:0d:10:80:b8:18:65:7b:17:65:73:ff:b3: 16:21:3a:d6:ef:46:c5:ee:73:02:cf:d0:ad:e1:b9: 9c:db:fb:cb:29:a6:3b:90:62:7c:5f:fe:5d:4b:73: 88:a7:ff:c3:10:e3:68:9f:21:dd:e2:46:2c:fc:bd: 03:17:d1:c0:67:f9:1f:7b:a9:ea:7d:a5:5c:72:4d: 55:8e:83:ac:1c:b8:73:76:b3:d7:f0:98:a9:ef:e3: 6a:e9:6b:82:71:71:eb:64:52:2d:9b:7c:92:74:5a: d2:24:02:04:07:f7:d6:be:5d:35:07:96:6d:47:96: a5:96:b3:4a:01:66:54:59:2d:a9:83:31:40:06:b7: 22:0e:e7:22:22:f5:1b:7f:b4:88:43:aa:8a:b1:ba: be:fb:67:8d:61:da:d3:15:a3:9e:78:89:74:c6:b0: 6c:a9:66:d2:da:cf:9c:ea:65:8f:2e:a8:cb:20:d7: ec:f9:ef:04:c7:f1:d9:43:8c:42:4b:4a:88:9c:58: b1:d0:82:f5:f1:62:a1:f3:26:5e:d3:b6:4e:d7:ef: 7b:7b:83:c9:fe:b1:36:8b:97:6a:61:10:3d:4b:33: fb:0a:ba:5e:1a:e9:b8:d4:bc:8b:13:58:1f:ec:dc: fe:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:E1:28:FC:9B:08:F8:29:90:93:58:DB:2B:69:18:6A:B1:7C:D6:4C X509v3 Authority Key Identifier: keyid:74:9D:8A:43:28:93:0B:93:8F:A8:60:18:B1:E4:47:EE:4D:8D:A8:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJ2KQyiTC5OPqGAYseRH7k2NqPk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/3fa217-85f5-4f19-b91e-0889e3ecd1f6/1/dJ2KQyiTC5OPqGAYseRH7k2NqPk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:c6:af:3e:e2:69:af:88:b8:9d:67:af:09:b3:16:75:3f:dc: 1a:f6:3a:53:f0:f1:08:76:6a:b0:00:dd:c5:48:ef:3f:fd:41: 54:f0:83:68:bd:52:74:9e:f6:30:ce:4f:bd:36:43:77:8c:83: 00:26:20:3d:a6:5f:fb:07:a3:66:1b:37:8e:f1:24:81:4c:ae: 73:5b:2c:66:cf:22:6f:63:8b:31:72:ba:da:be:df:0f:ae:7b: bc:38:8e:31:7b:7f:0b:40:d4:98:16:f9:a0:79:d3:bf:7c:21: c9:cf:25:91:c5:b8:b1:07:d6:25:fe:e0:69:8d:28:fe:37:63: 0e:d3:2e:56:a2:af:73:24:db:29:85:f9:3b:7f:0c:54:96:7e: cc:1c:94:a6:23:3a:5d:30:65:34:c4:64:c9:ac:8e:51:81:a8: 69:b4:0d:1c:66:82:72:ce:58:a2:ae:ec:8d:43:76:80:0e:4b: 9b:29:aa:25:9d:40:47:22:b8:c2:ef:84:74:f4:fa:60:a2:93: ce:85:d0:e8:34:36:04:e9:12:59:98:0f:eb:d9:4d:52:27:25: fc:f1:1b:81:2d:b8:37:cb:c0:c9:d7:47:98:e8:cc:31:0b:53: 28:bf:23:dc:73:84:90:9e:d5:1f:00:ad:9b:34:14:a4:bf:ce: 7a:82:07:cd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEbEiLrXa9vTCW0LNNpFyZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OWQ4YTQzMjg5MzBiOTM4ZmE4NjAxOGIxZTQ0N2VlNGQ4 ZGE4ZjkwHhcNMjYwMjA5MjIwMTEzWhcNMjYwMjEwMjIwMTEzWjAzMTEwLwYDVQQD EygxNmUxMjhmYzliMDhmODI5OTA5MzU4ZGIyYjY5MTg2YWIxN2NkNjRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA43daGiDXDQPRLQHs1yMb1bgNEIC4 GGV7F2Vz/7MWITrW70bF7nMCz9Ct4bmc2/vLKaY7kGJ8X/5dS3OIp//DEONonyHd 4kYs/L0DF9HAZ/kfe6nqfaVcck1VjoOsHLhzdrPX8Jip7+Nq6WuCcXHrZFItm3yS dFrSJAIEB/fWvl01B5ZtR5allrNKAWZUWS2pgzFABrciDuciIvUbf7SIQ6qKsbq+ +2eNYdrTFaOeeIl0xrBsqWbS2s+c6mWPLqjLINfs+e8Ex/HZQ4xCS0qInFix0IL1 8WKh8yZe07ZO1+97e4PJ/rE2i5dqYRA9SzP7CrpeGum41LyLE1gf7Nz+SQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBbhKPybCPgpkJNY2ytpGGqxfNZMMB8GA1UdIwQY MBaAFHSdikMokwuTj6hgGLHkR+5Njaj5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEoyS1F5aVRDNU9QcUdBWXNlUkg3azJOcVBrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8zZmEyMTctODVmNS00ZjE5LWI5MWUt MDg4OWUzZWNkMWY2LzEvZEoyS1F5aVRDNU9QcUdBWXNlUkg3azJOcVBrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny8zZmEyMTctODVmNS00ZjE5LWI5MWUtMDg4OWUzZWNkMWY2 LzEvZEoyS1F5aVRDNU9QcUdBWXNlUkg3azJOcVBrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH8avPuJp r4i4nWevCbMWdT/cGvY6U/DxCHZqsADdxUjvP/1BVPCDaL1SdJ72MM5PvTZDd4yD ACYgPaZf+wejZhs3jvEkgUyuc1ssZs8ib2OLMXK62r7fD657vDiOMXt/C0DUmBb5 oHnTv3whyc8lkcW4sQfWJf7gaY0o/jdjDtMuVqKvcyTbKYX5O38MVJZ+zByUpiM6 XTBlNMRkyayOUYGoabQNHGaCcs5Yoq7sjUN2gA5LmymqJZ1ARyK4wu+EdPT6YKKT zoXQ6DQ2BOkSWZgP69lNUicl/PEbgS24N8vAyddHmOjMMQtTKL8j3HOEkJ7VHwCt mzQUpL/OeoIHzQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:45:24 2026 by rpki-client