This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.mft File: D4nIaX93ksqvWZZk6JrOZSRPiug.mft (raw, json) Hash identifier: 4MhpWAK4Omvtx0aZj9TRktsb+lto1ugpr2U63H9HPPo= Subject key identifier: 2C:E3:3C:98:A0:27:3C:43:DD:59:80:1E:87:6B:73:A2:10:2F:8D:4B Authority key identifier: 0F:89:C8:69:7F:77:92:CA:AF:59:96:64:E8:9A:CE:65:24:4F:8A:E8 Certificate issuer: /CN=0f89c8697f7792caaf599664e89ace65244f8ae8 Certificate serial: 019C42B408DAF5F5EFBCEF22C3E88E4E97ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D4nIaX93ksqvWZZk6JrOZSRPiug.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 14:00:20 +0000 Manifest this update: Mon 09 Feb 2026 14:00:20 +0000 Manifest next update: Tue 10 Feb 2026 14:00:20 +0000 Files and hashes: 1: 3gWQQGBcbMv1PcGiymFULbhDgQk.roa (hash: R5FpPwb0TIXhum/MUuquZBI0EvROR3vjJFQryTKsboI=) 2: D4nIaX93ksqvWZZk6JrOZSRPiug.crl (hash: UxMP+zsz3wX1RyJU017cIs5rjPtBW70IFmq8VN5BO4Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.mft rsync://rpki.ripe.net/repository/DEFAULT/D4nIaX93ksqvWZZk6JrOZSRPiug.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:08:da:f5:f5:ef:bc:ef:22:c3:e8:8e:4e:97:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f89c8697f7792caaf599664e89ace65244f8ae8 Validity Not Before: Feb 9 14:00:20 2026 GMT Not After : Feb 10 14:00:20 2026 GMT Subject: CN=2ce33c98a0273c43dd59801e876b73a2102f8d4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:ea:52:0c:60:61:ee:c9:f3:e2:77:04:dd:63: ac:89:67:9c:d4:3f:55:62:20:27:43:d5:8b:96:73: 0e:f6:4e:b0:ca:18:58:eb:3b:92:e5:57:94:18:64: 4f:4e:28:76:f8:1d:a6:1e:58:c3:0e:1c:1f:46:d6: bc:56:fe:e8:56:b7:d6:5c:88:de:c9:9f:15:be:46: e5:62:4f:be:16:ab:89:41:9d:e4:bd:40:9f:4c:94: c4:42:7c:81:5f:37:52:5b:a0:bd:52:16:54:ef:8b: b7:08:6f:e5:05:ae:a6:e9:90:ac:32:13:69:b7:d4: cf:ff:83:8e:10:20:77:cd:38:04:4c:66:df:56:36: 8a:9f:2e:a9:13:86:65:03:07:46:e4:56:2a:be:3d: 09:a3:5a:29:67:c1:b0:c5:b4:b6:85:45:d8:e6:2a: c2:2f:b3:15:ec:6c:26:b8:97:d7:d0:09:39:db:f7: 56:69:ef:64:41:b6:f4:bc:04:cd:87:36:08:42:ee: 37:40:fe:1b:e9:57:20:4b:16:c7:85:b5:17:87:46: bb:b1:0a:d0:e1:3b:76:50:ef:38:14:ca:82:49:70: e7:45:85:00:68:95:38:20:13:89:93:ad:0a:04:c9: c8:39:ec:07:45:9c:ee:8f:4e:39:bf:c3:26:35:2d: a2:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:E3:3C:98:A0:27:3C:43:DD:59:80:1E:87:6B:73:A2:10:2F:8D:4B X509v3 Authority Key Identifier: keyid:0F:89:C8:69:7F:77:92:CA:AF:59:96:64:E8:9A:CE:65:24:4F:8A:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D4nIaX93ksqvWZZk6JrOZSRPiug.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:bf:82:a9:74:49:df:88:fa:4e:95:8c:b3:5d:3f:97:a5:cf: 96:60:de:94:eb:5e:d7:32:4a:20:9a:c1:89:87:54:a7:f0:e5: 6f:18:ab:79:17:7e:af:03:b2:f6:b4:a6:d1:73:3f:f5:ae:cf: 6b:97:4a:fd:8c:1b:aa:ee:53:8c:37:a7:75:11:bf:01:b3:95: 8c:3d:01:e4:d4:05:c9:71:f7:7c:57:d5:52:d6:be:53:6a:22: 66:59:b7:d1:9b:fd:2b:63:ff:04:39:5b:78:2c:7b:12:36:8e: ed:ab:b8:73:56:83:86:42:35:13:99:90:90:44:67:02:76:b8: 74:3d:29:39:a6:4a:fb:b3:dd:9f:3f:85:c9:a9:16:5d:27:43: db:4e:30:0f:7d:3b:88:01:a2:b7:db:b9:8a:26:89:90:0b:42: 40:82:d1:1f:ff:66:7f:52:c4:b9:44:42:d1:6b:03:d7:6d:8e: 6c:9e:b2:12:8d:01:7f:61:51:ec:d8:30:cb:75:06:4c:3c:3f: 87:90:51:85:62:e5:bb:9a:e6:e9:dc:7d:f1:de:9d:c2:12:55: 0d:7b:42:e8:c3:5c:31:ce:7f:bc:20:67:70:ef:ee:31:43:91: b5:b0:43:a2:ff:01:7d:8e:fa:37:75:18:d8:08:e7:da:a3:e3: 9d:d7:fd:4e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtAja9fXvvO8iw+iOTpftMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmODljODY5N2Y3NzkyY2FhZjU5OTY2NGU4OWFjZTY1MjQ0 ZjhhZTgwHhcNMjYwMjA5MTQwMDIwWhcNMjYwMjEwMTQwMDIwWjAzMTEwLwYDVQQD EygyY2UzM2M5OGEwMjczYzQzZGQ1OTgwMWU4NzZiNzNhMjEwMmY4ZDRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh+pSDGBh7snz4ncE3WOsiWec1D9V YiAnQ9WLlnMO9k6wyhhY6zuS5VeUGGRPTih2+B2mHljDDhwfRta8Vv7oVrfWXIje yZ8VvkblYk++FquJQZ3kvUCfTJTEQnyBXzdSW6C9UhZU74u3CG/lBa6m6ZCsMhNp t9TP/4OOECB3zTgETGbfVjaKny6pE4ZlAwdG5FYqvj0Jo1opZ8GwxbS2hUXY5irC L7MV7GwmuJfX0Ak52/dWae9kQbb0vATNhzYIQu43QP4b6VcgSxbHhbUXh0a7sQrQ 4Tt2UO84FMqCSXDnRYUAaJU4IBOJk60KBMnIOewHRZzuj045v8MmNS2iPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCzjPJigJzxD3VmAHodrc6IQL41LMB8GA1UdIwQY MBaAFA+JyGl/d5LKr1mWZOiazmUkT4roMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDRuSWFYOTNrc3F2V1paazZKck9aU1JQaXVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi81ZjMxODctM2JlYi00YzRiLTlhNDQt ZDZiZDU1YTllMzZkLzEvRDRuSWFYOTNrc3F2V1paazZKck9aU1JQaXVnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi81ZjMxODctM2JlYi00YzRiLTlhNDQtZDZiZDU1YTllMzZk LzEvRDRuSWFYOTNrc3F2V1paazZKck9aU1JQaXVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVb+CqXRJ 34j6TpWMs10/l6XPlmDelOte1zJKIJrBiYdUp/DlbxireRd+rwOy9rSm0XM/9a7P a5dK/Ywbqu5TjDendRG/AbOVjD0B5NQFyXH3fFfVUta+U2oiZlm30Zv9K2P/BDlb eCx7EjaO7au4c1aDhkI1E5mQkERnAna4dD0pOaZK+7Pdnz+FyakWXSdD204wD307 iAGit9u5iiaJkAtCQILRH/9mf1LEuURC0WsD122ObJ6yEo0Bf2FR7Ngwy3UGTDw/ h5BRhWLlu5rm6dx98d6dwhJVDXtC6MNcMc5/vCBncO/uMUORtbBDov8BfY76N3UY 2Ajn2qPjndf9Tg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:53:43 2026 by rpki-client