This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft File: do0jVpP2hnxbOBPaHzb-EHvR14I.mft (raw, json) Hash identifier: wsqqI6ATYJpVChbsWmptyOrC6tscG7284d+nRKYmRAg= Subject key identifier: A5:76:09:EA:84:82:BB:D0:42:92:72:39:F1:95:90:58:95:47:B3:A7 Authority key identifier: 76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82 Certificate issuer: /CN=768d235693f6867c5b3813da1f36fe107bd1d782 Certificate serial: 019C43C756116959B1860DF8A957EA72ABE5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft Manifest number: 0EE8 Signing time: Mon 09 Feb 2026 19:01:03 +0000 Manifest this update: Mon 09 Feb 2026 19:01:03 +0000 Manifest next update: Tue 10 Feb 2026 19:01:03 +0000 Files and hashes: 1: KuefoOzdZ9vrXjVoaWqLBNOd8Fc.roa (hash: Tr2+OxM2L2vZYYtrtzp3JmsEgxHYlAlF0KBqV8P0L1o=) 2: do0jVpP2hnxbOBPaHzb-EHvR14I.crl (hash: BRdiq3NEZv+mNExtku0EjOBYAAYTaWP4qoCbsWFIawM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:56:11:69:59:b1:86:0d:f8:a9:57:ea:72:ab:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=768d235693f6867c5b3813da1f36fe107bd1d782 Validity Not Before: Feb 9 19:01:03 2026 GMT Not After : Feb 10 19:01:03 2026 GMT Subject: CN=a57609ea8482bbd042927239f19590589547b3a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:9f:1b:9c:02:7f:bd:d4:70:d5:b1:64:b2:46: 37:bd:44:25:b9:8d:95:da:54:e2:55:fc:fc:de:3e: 6d:47:bd:36:a1:61:bd:13:1c:38:5c:41:a5:4b:85: 41:4c:fe:ca:66:44:bd:d1:e5:48:f8:ec:3d:63:6d: f6:9b:f0:c8:3b:02:9e:50:9f:e0:0b:eb:04:8d:dc: 9c:81:6c:1e:b2:6a:1a:91:98:93:d5:4b:89:91:b4: 98:9a:e8:c5:ad:a2:e2:9e:ba:5c:1a:be:66:d8:96: f6:03:84:35:c4:90:36:21:28:4c:24:ea:1f:4b:92: 8d:79:91:29:7e:3c:ae:05:8f:0f:68:40:cd:db:8f: 19:22:3c:86:5f:e5:15:e5:22:bd:ce:f2:76:61:38: 8e:b5:13:8a:8a:68:33:cc:ca:97:17:6f:1a:5c:a8: cd:53:38:84:18:52:d1:64:9a:a6:d0:83:d9:92:5f: 13:65:9f:97:4d:4c:c3:0a:b4:32:1c:ab:01:32:3f: 21:31:b4:31:35:0e:0e:5a:0c:15:4e:52:b2:17:d8: d4:37:91:e7:69:78:9c:25:ef:47:a3:19:d3:bd:72: 81:ca:50:7e:b6:b2:4e:cb:e3:a8:07:08:ac:4b:e5: cb:f8:6e:51:4b:21:26:eb:6f:68:6e:d4:f1:bd:41: 62:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:76:09:EA:84:82:BB:D0:42:92:72:39:F1:95:90:58:95:47:B3:A7 X509v3 Authority Key Identifier: keyid:76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:62:d0:e1:64:ac:26:5e:3e:4b:31:cc:d6:5e:22:2f:18:d3: c9:c2:2e:4f:24:6c:60:68:91:0a:36:38:41:27:bc:0b:b3:be: 96:25:0f:03:c0:29:9e:2c:29:29:4d:a8:1f:94:3b:f7:98:8d: 45:54:11:fa:e8:28:dc:66:e9:c4:f0:3e:6f:79:0c:70:b3:ce: 66:de:64:7e:8e:2c:1d:66:8d:5f:b5:54:b4:f6:4e:77:b5:40: eb:e4:c7:d1:d4:7a:e8:b2:2f:6e:56:ca:ec:a0:7c:68:82:da: a7:63:03:35:52:fb:4b:af:77:8c:5e:72:7d:fa:d1:d1:27:68: 21:ec:ce:e5:63:7a:36:a2:9a:8b:f7:f9:9b:66:59:86:a4:49: 1a:68:ea:00:2d:41:c1:aa:6e:d9:91:de:20:7c:82:0a:3f:7e: 5e:d0:31:c5:81:59:9a:86:db:71:ae:bf:7d:8c:df:a7:53:2d: 43:46:54:a0:03:d5:06:29:4e:52:12:4b:b1:55:00:71:c0:d9: bf:9a:2e:74:e9:75:ca:ef:be:13:25:e8:49:d7:54:e8:44:0c: 9e:35:fc:52:b1:ad:7d:f6:b7:ed:94:b1:a5:d1:3f:77:00:93: 3c:0e:89:95:ec:d8:87:81:28:d0:fa:b7:2b:61:43:e7:c1:5b: a8:e7:e2:1d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDx1YRaVmxhg34qVfqcqvlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2OGQyMzU2OTNmNjg2N2M1YjM4MTNkYTFmMzZmZTEwN2Jk MWQ3ODIwHhcNMjYwMjA5MTkwMTAzWhcNMjYwMjEwMTkwMTAzWjAzMTEwLwYDVQQD EyhhNTc2MDllYTg0ODJiYmQwNDI5MjcyMzlmMTk1OTA1ODk1NDdiM2E3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAop8bnAJ/vdRw1bFkskY3vUQluY2V 2lTiVfz83j5tR702oWG9Exw4XEGlS4VBTP7KZkS90eVI+Ow9Y232m/DIOwKeUJ/g C+sEjdycgWwesmoakZiT1UuJkbSYmujFraLinrpcGr5m2Jb2A4Q1xJA2IShMJOof S5KNeZEpfjyuBY8PaEDN248ZIjyGX+UV5SK9zvJ2YTiOtROKimgzzMqXF28aXKjN UziEGFLRZJqm0IPZkl8TZZ+XTUzDCrQyHKsBMj8hMbQxNQ4OWgwVTlKyF9jUN5Hn aXicJe9HoxnTvXKBylB+trJOy+OoBwisS+XL+G5RSyEm629obtTxvUFiLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKV2CeqEgrvQQpJyOfGVkFiVR7OnMB8GA1UdIwQY MBaAFHaNI1aT9oZ8WzgT2h82/hB70deCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZG8walZwUDJobnhiT0JQYUh6Yi1FSHZSMTRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS9lMTIwZWYtMTQzMC00NWVhLWI3N2Yt ZTM3NmI5MjQyZWE3LzEvZG8walZwUDJobnhiT0JQYUh6Yi1FSHZSMTRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS9lMTIwZWYtMTQzMC00NWVhLWI3N2YtZTM3NmI5MjQyZWE3 LzEvZG8walZwUDJobnhiT0JQYUh6Yi1FSHZSMTRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbWLQ4WSs Jl4+SzHM1l4iLxjTycIuTyRsYGiRCjY4QSe8C7O+liUPA8ApniwpKU2oH5Q795iN RVQR+ugo3GbpxPA+b3kMcLPOZt5kfo4sHWaNX7VUtPZOd7VA6+TH0dR66LIvblbK 7KB8aILap2MDNVL7S693jF5yffrR0SdoIezO5WN6NqKai/f5m2ZZhqRJGmjqAC1B wapu2ZHeIHyCCj9+XtAxxYFZmobbca6/fYzfp1MtQ0ZUoAPVBilOUhJLsVUAccDZ v5oudOl1yu++EyXoSddU6EQMnjX8UrGtffa37ZSxpdE/dwCTPA6JlezYh4Eo0Pq3 K2FD58FbqOfiHQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:42:31 2026 by rpki-client