This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/610872-b5b5-442f-b630-e5d1af59dea6/1/dEMndQQU00na3gIjNJfPR2Vc0-Q.mft File: dEMndQQU00na3gIjNJfPR2Vc0-Q.mft (raw, json) Hash identifier: holnDL8gwwqbr7XgSNZGHEyw8OFGU6nDrYzT4iyQf84= Subject key identifier: D5:A3:D2:AB:D9:51:30:62:DE:DE:12:4E:C0:8A:64:A7:1E:25:5D:DB Authority key identifier: 74:43:27:75:04:14:D3:49:DA:DE:02:23:34:97:CF:47:65:5C:D3:E4 Certificate issuer: /CN=744327750414d349dade02233497cf47655cd3e4 Certificate serial: 019C427D7A0FF013A4D292E2F7B428C826DF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dEMndQQU00na3gIjNJfPR2Vc0-Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/610872-b5b5-442f-b630-e5d1af59dea6/1/dEMndQQU00na3gIjNJfPR2Vc0-Q.mft Manifest number: 11E2 Signing time: Mon 09 Feb 2026 13:00:45 +0000 Manifest this update: Mon 09 Feb 2026 13:00:45 +0000 Manifest next update: Tue 10 Feb 2026 13:00:45 +0000 Files and hashes: 1: dEMndQQU00na3gIjNJfPR2Vc0-Q.crl (hash: Xfmp5DWD9LDlzD9FtJGBhSka55+Qx4PTbY0S67bimAI=) 2: qgoIbqs7ffhe71hmB-z1aOesfwY.roa (hash: unpX7d9a/7Ql3d6uX8FBvvq+RxiOD+GU1AIVMyoQ+QU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/610872-b5b5-442f-b630-e5d1af59dea6/1/dEMndQQU00na3gIjNJfPR2Vc0-Q.crl rsync://rpki.ripe.net/repository/DEFAULT/af/610872-b5b5-442f-b630-e5d1af59dea6/1/dEMndQQU00na3gIjNJfPR2Vc0-Q.mft rsync://rpki.ripe.net/repository/DEFAULT/dEMndQQU00na3gIjNJfPR2Vc0-Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:7a:0f:f0:13:a4:d2:92:e2:f7:b4:28:c8:26:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=744327750414d349dade02233497cf47655cd3e4 Validity Not Before: Feb 9 13:00:45 2026 GMT Not After : Feb 10 13:00:45 2026 GMT Subject: CN=d5a3d2abd9513062dede124ec08a64a71e255ddb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:56:5c:47:b9:f5:c9:9e:51:b9:17:ad:1e:c2: 19:4d:8e:c3:a2:5b:c8:15:86:43:b1:31:a9:9c:fc: 5c:bb:cb:47:14:8c:80:c2:68:a4:8b:6d:4f:e9:82: a1:b7:00:4d:3f:6f:2d:15:70:f2:2f:d8:e3:28:db: ad:bf:3b:4c:e8:e7:97:36:9c:30:85:ae:4c:9f:04: bb:12:f4:2e:a3:64:39:24:36:cb:58:81:75:eb:9f: 76:d9:24:b9:80:dc:d6:32:a0:af:8b:e5:0c:a9:51: 9e:59:dd:a4:35:67:e6:b7:ce:a2:91:da:3e:db:81: dc:12:59:33:55:af:6d:26:f4:90:f6:90:34:1b:c2: 7f:04:d4:36:d0:c7:3b:4e:b9:e2:4c:8e:95:0f:fd: cc:ae:6a:df:e7:3c:73:99:f1:87:62:67:63:f1:ff: 9e:b4:66:14:0c:2b:19:04:d5:38:4c:a0:b5:ae:70: 21:77:9c:5d:ea:69:2a:9f:d5:2e:c7:94:66:a3:e6: 42:66:f7:85:8f:1b:ce:73:84:9c:00:e0:f4:8e:93: 3d:a9:0b:90:1f:be:46:e5:95:9b:25:93:69:cb:e3: a0:22:62:77:6f:73:73:90:df:07:c8:16:8e:c8:33: f5:3c:3c:15:0f:f4:c0:d0:33:88:85:03:d0:bb:cc: 1f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:A3:D2:AB:D9:51:30:62:DE:DE:12:4E:C0:8A:64:A7:1E:25:5D:DB X509v3 Authority Key Identifier: keyid:74:43:27:75:04:14:D3:49:DA:DE:02:23:34:97:CF:47:65:5C:D3:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dEMndQQU00na3gIjNJfPR2Vc0-Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/610872-b5b5-442f-b630-e5d1af59dea6/1/dEMndQQU00na3gIjNJfPR2Vc0-Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/610872-b5b5-442f-b630-e5d1af59dea6/1/dEMndQQU00na3gIjNJfPR2Vc0-Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:8c:ce:cd:a3:d3:45:57:d3:05:b8:6a:f8:b8:14:01:ab:60: 21:9f:8d:0f:88:6f:5a:06:ca:66:60:23:bb:fa:01:a6:e1:6b: 77:b6:55:b6:13:e6:53:c1:20:3f:3d:c1:14:d4:e8:cc:96:9b: 76:57:9b:5f:95:89:30:27:15:63:8f:88:f2:ec:da:9b:ae:c7: 08:b9:2b:c0:9f:f2:4d:f1:e6:b7:c6:85:58:ff:27:9a:c0:a2: 11:3d:83:7a:16:81:af:90:92:89:90:7b:13:a7:06:4b:5d:88: 06:59:65:65:43:9a:b4:fe:85:05:b8:56:41:cf:f4:16:f6:a1: 25:2e:1f:c0:b3:3c:49:f1:9c:33:24:b7:a3:c3:d6:c6:53:7b: 14:0a:99:a1:e8:9b:41:6a:38:2d:4e:ba:b7:96:f0:62:ad:22: f4:2a:e3:43:20:57:d7:35:cb:ab:5b:5c:2a:fd:c2:58:70:50: 9b:ed:16:54:98:a5:89:95:65:09:c9:af:5a:49:5d:8c:cd:b2: 03:02:c9:8e:bd:77:ff:58:6b:58:d9:cd:f1:11:41:f3:c3:95: 40:08:06:d3:9b:83:f4:b7:c2:b6:69:15:56:f9:82:57:16:ee: 6d:06:9b:b6:1f:d6:fe:a5:bc:57:b7:01:d0:7d:b1:70:18:0e: ea:63:ee:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfXoP8BOk0pLi97QoyCbfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0NDMyNzc1MDQxNGQzNDlkYWRlMDIyMzM0OTdjZjQ3NjU1 Y2QzZTQwHhcNMjYwMjA5MTMwMDQ1WhcNMjYwMjEwMTMwMDQ1WjAzMTEwLwYDVQQD EyhkNWEzZDJhYmQ5NTEzMDYyZGVkZTEyNGVjMDhhNjRhNzFlMjU1ZGRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9FZcR7n1yZ5RuRetHsIZTY7DolvI FYZDsTGpnPxcu8tHFIyAwmiki21P6YKhtwBNP28tFXDyL9jjKNutvztM6OeXNpww ha5MnwS7EvQuo2Q5JDbLWIF165922SS5gNzWMqCvi+UMqVGeWd2kNWfmt86ikdo+ 24HcElkzVa9tJvSQ9pA0G8J/BNQ20Mc7TrniTI6VD/3Mrmrf5zxzmfGHYmdj8f+e tGYUDCsZBNU4TKC1rnAhd5xd6mkqn9Uux5Rmo+ZCZveFjxvOc4ScAOD0jpM9qQuQ H75G5ZWbJZNpy+OgImJ3b3NzkN8HyBaOyDP1PDwVD/TA0DOIhQPQu8wfOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNWj0qvZUTBi3t4STsCKZKceJV3bMB8GA1UdIwQY MBaAFHRDJ3UEFNNJ2t4CIzSXz0dlXNPkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEVNbmRRUVUwMG5hM2dJak5KZlBSMlZjMC1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi82MTA4NzItYjViNS00NDJmLWI2MzAt ZTVkMWFmNTlkZWE2LzEvZEVNbmRRUVUwMG5hM2dJak5KZlBSMlZjMC1RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi82MTA4NzItYjViNS00NDJmLWI2MzAtZTVkMWFmNTlkZWE2 LzEvZEVNbmRRUVUwMG5hM2dJak5KZlBSMlZjMC1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl4zOzaPT RVfTBbhq+LgUAatgIZ+ND4hvWgbKZmAju/oBpuFrd7ZVthPmU8EgPz3BFNTozJab dlebX5WJMCcVY4+I8uzam67HCLkrwJ/yTfHmt8aFWP8nmsCiET2DehaBr5CSiZB7 E6cGS12IBlllZUOatP6FBbhWQc/0FvahJS4fwLM8SfGcMyS3o8PWxlN7FAqZoeib QWo4LU66t5bwYq0i9CrjQyBX1zXLq1tcKv3CWHBQm+0WVJiliZVlCcmvWkldjM2y AwLJjr13/1hrWNnN8RFB88OVQAgG05uD9LfCtmkVVvmCVxbubQabth/W/qW8V7cB 0H2xcBgO6mPuSQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:18 2026 by rpki-client