This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/2891f6-7861-4037-8008-52cf0195838b/1/dBkW6TW7TmhYsdIjYVrONp7SaB4.mft File: dBkW6TW7TmhYsdIjYVrONp7SaB4.mft (raw, json) Hash identifier: 5EvqZ9ZrYLgApIEaZl3mcFJAH6fstcgEiEvFegxICX0= Subject key identifier: D8:BB:90:1E:EB:4B:AC:3F:60:77:3B:93:4B:78:E9:D7:BF:15:1E:80 Authority key identifier: 74:19:16:E9:35:BB:4E:68:58:B1:D2:23:61:5A:CE:36:9E:D2:68:1E Certificate issuer: /CN=741916e935bb4e6858b1d223615ace369ed2681e Certificate serial: 019C420F404C73ED6BFEC1EC8EEA9A72DFB8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dBkW6TW7TmhYsdIjYVrONp7SaB4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/2891f6-7861-4037-8008-52cf0195838b/1/dBkW6TW7TmhYsdIjYVrONp7SaB4.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 11:00:21 +0000 Manifest this update: Mon 09 Feb 2026 11:00:21 +0000 Manifest next update: Tue 10 Feb 2026 11:00:21 +0000 Files and hashes: 1: dBkW6TW7TmhYsdIjYVrONp7SaB4.crl (hash: VA3p9JpdfmOoJai9TvCo2U7yS8r4Fr5egttwSeE4GyA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/2891f6-7861-4037-8008-52cf0195838b/1/dBkW6TW7TmhYsdIjYVrONp7SaB4.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/2891f6-7861-4037-8008-52cf0195838b/1/dBkW6TW7TmhYsdIjYVrONp7SaB4.mft rsync://rpki.ripe.net/repository/DEFAULT/dBkW6TW7TmhYsdIjYVrONp7SaB4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:40:4c:73:ed:6b:fe:c1:ec:8e:ea:9a:72:df:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=741916e935bb4e6858b1d223615ace369ed2681e Validity Not Before: Feb 9 11:00:21 2026 GMT Not After : Feb 10 11:00:21 2026 GMT Subject: CN=d8bb901eeb4bac3f60773b934b78e9d7bf151e80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:f8:37:b1:3c:08:c4:e9:78:fa:12:7b:3f:f5: 9f:06:17:a3:79:90:4f:8f:cf:17:6c:3b:e3:9e:2a: 22:d7:3d:c9:28:7c:54:ac:79:a8:6c:cb:12:d5:64: eb:53:cf:fb:88:64:b4:1d:be:3a:86:8c:2f:02:b1: ee:ce:ef:dc:3c:d0:1f:11:a3:5c:a7:7b:64:1a:e5: 19:88:e7:63:8f:e0:ea:1e:ea:00:bb:01:95:d9:69: e9:f0:7e:8a:c5:1b:ba:37:a4:e2:b9:b0:05:88:cd: 7a:67:5f:0b:31:a2:76:3c:af:a0:ae:f6:73:48:d2: 60:dd:17:f4:c1:93:d0:e3:5c:34:d6:1d:8f:e8:1e: 09:c5:9c:6b:fa:4e:b5:23:f9:5c:b0:8c:f9:02:b8: 83:e2:33:d0:72:68:bf:75:83:36:f7:ee:2b:f3:84: 1d:49:8a:31:d8:39:d5:1a:16:8e:7f:25:fb:97:58: 8f:ac:e2:bd:78:d3:d2:6c:ae:5b:b7:9b:53:fb:91: 39:d4:75:0a:84:5f:ac:61:c9:be:ed:6c:72:04:ae: b0:57:f1:e3:52:99:76:03:fa:6a:15:2b:20:40:5b: f5:b0:2f:ce:2c:cc:c4:fe:b9:7a:a6:20:fa:73:84: cb:24:a0:4c:4c:99:2c:1f:28:84:1f:50:9f:1f:ae: 25:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:BB:90:1E:EB:4B:AC:3F:60:77:3B:93:4B:78:E9:D7:BF:15:1E:80 X509v3 Authority Key Identifier: keyid:74:19:16:E9:35:BB:4E:68:58:B1:D2:23:61:5A:CE:36:9E:D2:68:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dBkW6TW7TmhYsdIjYVrONp7SaB4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2891f6-7861-4037-8008-52cf0195838b/1/dBkW6TW7TmhYsdIjYVrONp7SaB4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2891f6-7861-4037-8008-52cf0195838b/1/dBkW6TW7TmhYsdIjYVrONp7SaB4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:25:ae:c6:b6:3a:7a:81:b1:9d:6e:93:1a:6e:ea:65:71:c6: f5:01:58:a0:6c:ec:1d:57:aa:34:b7:5a:4e:d8:78:e6:2a:bc: 6c:52:4c:4d:75:95:5d:bb:b9:75:b1:b7:ff:85:44:cb:b5:f0: 6c:1b:f4:0d:cc:75:93:43:fc:cc:a5:fb:83:c6:a1:77:2d:18: 2a:8f:b5:f3:0b:f4:38:2e:3e:37:ac:4b:f3:a0:9f:05:b0:1f: a5:19:3e:3f:98:c9:e7:ae:23:56:87:9e:c6:37:be:20:80:cf: 8b:93:59:cd:cd:23:e8:40:81:57:16:e3:7b:90:19:2a:2b:ff: 4e:6d:73:fb:2c:fa:ea:29:55:92:14:cb:3e:28:0f:97:9c:68: 2c:97:be:86:d2:3d:9e:ea:f5:53:77:3e:a7:e3:b1:58:26:41: de:48:6e:56:6b:12:6f:d1:4e:26:94:db:5d:12:bb:c5:84:3b: a4:2f:f4:a7:0a:38:ab:4e:d0:fb:14:6d:a1:41:de:34:35:b4: 36:87:e6:12:d9:0d:e3:70:7e:27:35:55:5f:fa:12:0a:fb:44: 14:9d:76:80:aa:2d:ab:2c:47:f7:18:61:bc:9a:0b:d0:1f:a5: c6:b7:1c:22:54:ee:30:0b:60:19:f0:27:20:58:cf:5e:90:34: 40:50:86:b3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD0BMc+1r/sHsjuqact+4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0MTkxNmU5MzViYjRlNjg1OGIxZDIyMzYxNWFjZTM2OWVk MjY4MWUwHhcNMjYwMjA5MTEwMDIxWhcNMjYwMjEwMTEwMDIxWjAzMTEwLwYDVQQD EyhkOGJiOTAxZWViNGJhYzNmNjA3NzNiOTM0Yjc4ZTlkN2JmMTUxZTgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnPg3sTwIxOl4+hJ7P/WfBhejeZBP j88XbDvjnioi1z3JKHxUrHmobMsS1WTrU8/7iGS0Hb46howvArHuzu/cPNAfEaNc p3tkGuUZiOdjj+DqHuoAuwGV2Wnp8H6KxRu6N6TiubAFiM16Z18LMaJ2PK+grvZz SNJg3Rf0wZPQ41w01h2P6B4JxZxr+k61I/lcsIz5AriD4jPQcmi/dYM29+4r84Qd SYox2DnVGhaOfyX7l1iPrOK9eNPSbK5bt5tT+5E51HUKhF+sYcm+7WxyBK6wV/Hj Upl2A/pqFSsgQFv1sC/OLMzE/rl6piD6c4TLJKBMTJksHyiEH1CfH64lLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNi7kB7rS6w/YHc7k0t46de/FR6AMB8GA1UdIwQY MBaAFHQZFuk1u05oWLHSI2Fazjae0mgeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEJrVzZUVzdUbWhZc2RJallWck9OcDdTYUI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi8yODkxZjYtNzg2MS00MDM3LTgwMDgt NTJjZjAxOTU4MzhiLzEvZEJrVzZUVzdUbWhZc2RJallWck9OcDdTYUI0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi8yODkxZjYtNzg2MS00MDM3LTgwMDgtNTJjZjAxOTU4Mzhi LzEvZEJrVzZUVzdUbWhZc2RJallWck9OcDdTYUI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaCWuxrY6 eoGxnW6TGm7qZXHG9QFYoGzsHVeqNLdaTth45iq8bFJMTXWVXbu5dbG3/4VEy7Xw bBv0Dcx1k0P8zKX7g8ahdy0YKo+18wv0OC4+N6xL86CfBbAfpRk+P5jJ564jVoee xje+IIDPi5NZzc0j6ECBVxbje5AZKiv/Tm1z+yz66ilVkhTLPigPl5xoLJe+htI9 nur1U3c+p+OxWCZB3khuVmsSb9FOJpTbXRK7xYQ7pC/0pwo4q07Q+xRtoUHeNDW0 NofmEtkN43B+JzVVX/oSCvtEFJ12gKotqyxH9xhhvJoL0B+lxrccIlTuMAtgGfAn IFjPXpA0QFCGsw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:21 2026 by rpki-client