This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.


Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
File:                     DA96BN1ySaXRS33gVCpBlzgABsw.mft (raw, json)
Hash identifier:          xXGA74barlMgZhO0HUW29JKMDbG0zXlrYzy38GDAhHY=
Subject key identifier:   82:73:58:61:C8:C9:C7:F5:A4:A5:56:C3:76:AF:F0:6C:FA:12:2F:D1
Authority key identifier: 0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
Certificate issuer:       /CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Certificate serial:       019C42467F4B68F0171E8FB8A4DFD1F5023F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
Manifest number:          13B3
Signing time:             Mon 09 Feb 2026 12:00:42 +0000
Manifest this update:     Mon 09 Feb 2026 12:00:42 +0000
Manifest next update:     Tue 10 Feb 2026 12:00:42 +0000
Files and hashes:         1: DA96BN1ySaXRS33gVCpBlzgABsw.crl (hash: f3SElPR19eEpq2qMhdvOQ2wd5fGEnNNQnIMQaQIqXHo=)
                          2: MGxIjp6odA89mKCCoAoK4gOBECQ.roa (hash: WV1c3KgNpfTE3JHTiidL4UKk6xN2JAg5ninbZPlQg+Q=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Feb 2026 12:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:42:46:7f:4b:68:f0:17:1e:8f:b8:a4:df:d1:f5:02:3f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
        Validity
            Not Before: Feb  9 12:00:42 2026 GMT
            Not After : Feb 10 12:00:42 2026 GMT
        Subject: CN=82735861c8c9c7f5a4a556c376aff06cfa122fd1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:30:ad:c0:aa:ab:80:ca:db:33:b0:59:07:f8:
                    7a:52:1c:18:4b:a0:36:0e:a3:4d:81:85:88:ed:d5:
                    61:15:53:15:34:23:42:d0:ac:f3:ef:8c:a4:a0:7f:
                    6c:7c:5c:43:52:60:7f:8c:a3:3c:a5:b7:ae:98:09:
                    26:74:e6:fd:37:fb:28:f4:ab:f9:0f:02:81:62:91:
                    13:70:8a:2c:1e:70:3a:85:e8:09:98:31:b6:44:37:
                    14:01:3f:9d:23:04:7c:79:ab:6a:29:25:bf:be:eb:
                    c8:81:87:ce:1b:62:e8:d3:5d:e7:91:91:1a:6b:ca:
                    7c:5e:08:0c:1a:58:c2:fa:97:b3:cf:ba:37:8b:1a:
                    8c:b2:c0:b1:9f:71:27:71:44:c4:6e:eb:31:8e:ba:
                    af:59:1c:2c:9c:b0:0c:30:6e:c6:e3:42:3f:15:a6:
                    52:18:f1:25:7e:41:9a:22:f1:01:f2:33:c1:d2:f7:
                    27:c0:f6:52:3a:41:3d:ec:9f:cd:e6:f9:08:cc:74:
                    12:6a:8e:52:c8:38:fb:6a:93:f0:3c:5c:5f:40:ec:
                    8e:bf:47:da:2d:b1:c8:d6:9b:83:eb:2d:2d:5a:de:
                    39:04:b5:01:33:bc:91:b7:14:79:93:1e:ff:52:bc:
                    95:e7:55:7d:cf:a9:a6:46:62:19:c2:67:29:ba:e6:
                    9c:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                82:73:58:61:C8:C9:C7:F5:A4:A5:56:C3:76:AF:F0:6C:FA:12:2F:D1
            X509v3 Authority Key Identifier:
                keyid:0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         80:e8:a4:d8:8b:cc:5c:4c:3d:55:60:9a:e6:5d:b4:fc:e6:4f:
         98:ae:b9:2d:1b:1e:ea:a5:8d:df:3e:14:ed:5f:2d:be:12:7e:
         70:fc:60:46:2d:51:d0:2b:69:dd:e3:8c:eb:59:7f:0d:2a:5e:
         7e:00:f1:9f:2b:04:61:a6:7f:25:c7:8e:24:58:88:95:5f:33:
         22:b9:71:00:be:13:e8:66:8b:5f:9b:17:80:d0:6c:12:45:9a:
         8e:35:71:0d:b3:43:c6:68:97:47:76:c3:0d:c5:5f:10:94:5e:
         b4:51:05:e7:40:ac:40:b0:75:f1:90:3f:8f:2d:46:30:a2:47:
         a9:4a:28:ce:4f:de:57:bd:d6:6c:3c:f9:7b:53:3c:5e:3f:a1:
         8a:d3:d3:1e:a8:3f:2a:f4:e8:cf:21:de:89:9d:d6:25:0a:9c:
         d0:46:ec:04:6f:70:c0:aa:a7:12:70:e6:bb:a7:51:4e:73:06:
         3e:7d:d9:33:16:20:bb:f7:b9:ec:5c:be:43:73:20:15:0e:54:
         40:71:60:1e:92:f6:13:1d:90:8e:f7:4f:c0:17:0d:82:56:cb:
         84:e2:6a:8f:11:6f:67:d6:57:1e:88:d5:41:ee:45:fc:61:c8:
         0f:a4:d1:63:e0:15:41:d4:f1:6b:d7:4f:4c:e7:f9:bf:39:29:
         4b:98:90:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 9 22:40:20 2026 by rpki-client