This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft File: DUHQpubfLhjCVnMjaNbnaCiTExA.mft (raw, json) Hash identifier: 4tfriwNTpKwUylQW0IPQWKKX0lKFNFpk9hjlHfFLXq4= Subject key identifier: 63:CE:D9:3B:2B:10:1B:5C:54:7F:77:33:75:DB:C8:57:94:21:85:91 Authority key identifier: 0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10 Certificate issuer: /CN=0d41d0a6e6df2e18c256732368d6e76828931310 Certificate serial: 019C43901B7AA013AA338B01E72ECA153102 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft Manifest number: 1158 Signing time: Mon 09 Feb 2026 18:00:43 +0000 Manifest this update: Mon 09 Feb 2026 18:00:43 +0000 Manifest next update: Tue 10 Feb 2026 18:00:43 +0000 Files and hashes: 1: DUHQpubfLhjCVnMjaNbnaCiTExA.crl (hash: c4mtfA8wJPqLK2c+tCYW6J2kdXLOkJ1DzrCWpc6ImUE=) 2: gQCK6BeO-j5lVpUt90LH641D-Do.roa (hash: IdvQ6sUh6mIJW4ddDEmtmONm3UtG6O5w53GtVLTmX/w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:1b:7a:a0:13:aa:33:8b:01:e7:2e:ca:15:31:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d41d0a6e6df2e18c256732368d6e76828931310 Validity Not Before: Feb 9 18:00:43 2026 GMT Not After : Feb 10 18:00:43 2026 GMT Subject: CN=63ced93b2b101b5c547f773375dbc85794218591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:08:77:e1:95:03:5c:18:74:41:03:d2:5f:85: 54:b5:ba:9e:bd:17:92:cf:d2:f0:b2:db:92:73:c9: ef:bd:e6:ea:17:fe:09:4e:03:b0:89:ac:92:d4:1c: aa:bb:69:bd:a7:f0:4a:a8:2d:22:9c:88:41:9e:2a: 13:67:4f:36:ff:d8:ea:34:a1:12:43:a7:f1:0c:b7: 76:12:04:78:c1:11:72:59:2f:77:b9:06:92:3c:25: b4:28:31:c2:8b:40:37:fd:d2:f8:17:53:16:23:f4: 3c:f7:b4:60:e6:6f:e3:34:af:99:39:21:a2:80:6a: 00:88:4c:49:ea:50:35:27:67:ba:a9:ce:16:ff:02: 1f:ee:fc:f6:f2:ec:45:0e:93:06:93:f1:c1:41:6c: 8e:05:e8:c4:b7:90:5a:ae:be:dd:49:10:59:5e:5a: 50:8a:36:c8:c2:b6:c9:05:f0:1b:d8:a9:3d:cf:6f: 75:5c:58:08:61:39:1a:63:58:4e:45:1d:99:14:a1: 3f:9d:ea:f9:c7:37:55:da:e0:72:86:b9:a2:70:84: 5c:47:db:1a:a7:70:e9:86:ef:a2:7c:73:6b:11:5c: c2:61:a1:5d:c0:44:7a:ac:d7:38:41:5c:6f:9c:7e: b7:9e:33:34:57:f5:83:d9:22:ea:e5:c9:8f:ca:db: e0:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:CE:D9:3B:2B:10:1B:5C:54:7F:77:33:75:DB:C8:57:94:21:85:91 X509v3 Authority Key Identifier: keyid:0D:41:D0:A6:E6:DF:2E:18:C2:56:73:23:68:D6:E7:68:28:93:13:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DUHQpubfLhjCVnMjaNbnaCiTExA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9837b2-0df0-4f5a-80db-62b640b02e2b/1/DUHQpubfLhjCVnMjaNbnaCiTExA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:e2:71:75:c3:30:36:f9:ac:c1:e3:93:9b:78:08:3d:0b:2c: d5:ae:a4:d8:64:6f:c8:8d:f7:7c:f5:50:f6:43:ea:51:46:54: 24:f6:45:18:3d:e8:19:a0:ff:b4:bf:2b:24:2c:37:e1:65:70: f4:af:3b:8c:f8:c8:ad:a8:4d:04:15:87:65:be:07:c3:1c:85: 2c:e9:4e:18:39:4e:74:22:1e:23:46:e6:92:c1:c2:70:b2:e3: 82:a0:e4:4c:a4:fa:ac:1a:a2:a7:f0:f6:fd:f7:8a:e4:eb:d1: 28:49:2b:88:9f:67:48:f6:bd:d9:10:bb:30:7a:8a:c0:df:61: 98:94:88:75:e4:c4:1e:5c:85:22:4e:b5:8f:e1:c8:b0:3a:06: ce:ac:2d:75:09:32:9f:05:8b:de:9a:d6:09:1c:be:66:2c:56: dd:a9:0a:39:95:a3:48:34:24:c7:60:8c:4e:71:41:2b:35:86: dc:54:dd:b0:52:e2:4c:72:bb:71:40:48:24:28:1f:66:a0:81: ca:0b:e0:7f:f3:58:9f:7e:25:74:52:2d:ba:79:a9:a5:7c:6b: ec:6b:24:21:31:4a:63:cd:45:86:6e:7d:cb:e0:8b:65:55:60: de:96:5f:3d:3b:76:0b:ea:eb:fa:27:c7:6d:b4:98:d2:aa:63: c6:19:a7:11 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkBt6oBOqM4sB5y7KFTECMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkNDFkMGE2ZTZkZjJlMThjMjU2NzMyMzY4ZDZlNzY4Mjg5 MzEzMTAwHhcNMjYwMjA5MTgwMDQzWhcNMjYwMjEwMTgwMDQzWjAzMTEwLwYDVQQD Eyg2M2NlZDkzYjJiMTAxYjVjNTQ3Zjc3MzM3NWRiYzg1Nzk0MjE4NTkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwgh34ZUDXBh0QQPSX4VUtbqevReS z9LwstuSc8nvvebqF/4JTgOwiayS1Byqu2m9p/BKqC0inIhBnioTZ082/9jqNKES Q6fxDLd2EgR4wRFyWS93uQaSPCW0KDHCi0A3/dL4F1MWI/Q897Rg5m/jNK+ZOSGi gGoAiExJ6lA1J2e6qc4W/wIf7vz28uxFDpMGk/HBQWyOBejEt5Barr7dSRBZXlpQ ijbIwrbJBfAb2Kk9z291XFgIYTkaY1hORR2ZFKE/ner5xzdV2uByhrmicIRcR9sa p3Dphu+ifHNrEVzCYaFdwER6rNc4QVxvnH63njM0V/WD2SLq5cmPytvg/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGPO2TsrEBtcVH93M3XbyFeUIYWRMB8GA1UdIwQY MBaAFA1B0Kbm3y4YwlZzI2jW52gokxMQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFVIUXB1YmZMaGpDVm5NamFOYm5hQ2lURXhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC85ODM3YjItMGRmMC00ZjVhLTgwZGIt NjJiNjQwYjAyZTJiLzEvRFVIUXB1YmZMaGpDVm5NamFOYm5hQ2lURXhBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC85ODM3YjItMGRmMC00ZjVhLTgwZGItNjJiNjQwYjAyZTJi LzEvRFVIUXB1YmZMaGpDVm5NamFOYm5hQ2lURXhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD+JxdcMw NvmsweOTm3gIPQss1a6k2GRvyI33fPVQ9kPqUUZUJPZFGD3oGaD/tL8rJCw34WVw 9K87jPjIrahNBBWHZb4HwxyFLOlOGDlOdCIeI0bmksHCcLLjgqDkTKT6rBqip/D2 /feK5OvRKEkriJ9nSPa92RC7MHqKwN9hmJSIdeTEHlyFIk61j+HIsDoGzqwtdQky nwWL3prWCRy+ZixW3akKOZWjSDQkx2CMTnFBKzWG3FTdsFLiTHK7cUBIJCgfZqCB ygvgf/NYn34ldFItunmppXxr7GskITFKY81Fhm59y+CLZVVg3pZfPTt2C+rr+ifH bbSY0qpjxhmnEQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:10 2026 by rpki-client