This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft File: D3jqRswh1F7WEmjUqfVnMsheIVA.mft (raw, json) Hash identifier: WML6R0wAJ69A/7Ga5GCGLYW5hCyOX6sgtsDDHQmKqiU= Subject key identifier: AF:8C:A8:6F:45:7E:FF:05:AB:14:50:4F:EE:C3:61:36:1A:4F:25:39 Authority key identifier: 0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50 Certificate issuer: /CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150 Certificate serial: 019C427D31A3A8B34876CAA00C68DACE776B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft Manifest number: 180F Signing time: Mon 09 Feb 2026 13:00:26 +0000 Manifest this update: Mon 09 Feb 2026 13:00:26 +0000 Manifest next update: Tue 10 Feb 2026 13:00:26 +0000 Files and hashes: 1: D3jqRswh1F7WEmjUqfVnMsheIVA.crl (hash: 2GSKEo2InT+8dKcgZVqy3Z6MH2FWKmHulNPv7i6C7Yg=) 2: hFTnWGImSrItjvTZMgv5Y6qcHWI.roa (hash: pZbkXKYC4cfW4J3LrFAYotHKXZiiOIa/hV0bOys/6DA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:31:a3:a8:b3:48:76:ca:a0:0c:68:da:ce:77:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150 Validity Not Before: Feb 9 13:00:26 2026 GMT Not After : Feb 10 13:00:26 2026 GMT Subject: CN=af8ca86f457eff05ab14504feec361361a4f2539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c5:ba:cc:7a:89:b2:70:dc:ea:19:12:a9:3d: 5c:af:06:52:29:dd:17:c3:bc:58:26:e3:7f:d3:b2: 78:bc:9a:e9:9c:b5:e8:9b:34:59:ad:b1:3e:e8:8e: 52:73:8c:6e:22:28:2f:68:ab:d6:84:9a:19:d2:d3: 9b:d4:28:91:86:fa:86:13:78:57:26:8f:53:29:93: cf:78:3f:09:82:94:d1:02:34:1b:0b:20:0b:9f:94: d9:ba:28:1a:1d:21:a8:f5:3c:cd:82:28:39:51:4e: 61:f5:ca:cd:71:82:fc:83:8e:0d:13:17:7f:19:6e: 32:ec:91:dd:29:02:39:e0:20:53:e6:36:87:eb:e9: 63:56:10:e0:d0:5e:52:26:7d:09:c4:b0:a1:6f:43: 9c:53:93:00:61:43:49:2b:f1:25:a1:30:62:f7:17: f3:e5:7b:ae:5a:45:d4:27:94:e8:af:8f:2d:a4:6a: e7:2c:8e:f9:21:df:60:28:f4:e5:d6:bf:24:81:74: 09:fb:1e:cb:95:2f:ee:f0:25:50:62:09:25:17:48: e5:b9:ba:a8:39:95:0a:5e:58:16:63:22:45:70:f8: 5d:5a:15:ef:74:1f:0a:c9:45:cd:ab:93:f1:08:11: 06:90:41:b3:f8:01:08:3a:18:53:79:9d:fa:f6:d6: a3:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:8C:A8:6F:45:7E:FF:05:AB:14:50:4F:EE:C3:61:36:1A:4F:25:39 X509v3 Authority Key Identifier: keyid:0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:d0:f6:4b:10:d2:89:cb:4f:07:ec:55:aa:20:50:e3:43:77: 05:53:11:52:6e:49:39:38:e4:07:c6:c7:8d:07:08:0a:aa:8f: 19:c7:d9:1a:ac:1c:30:49:99:bb:93:12:34:47:79:40:7b:66: 42:83:25:ba:bb:fc:d8:f6:1c:f7:b7:60:bf:d1:b9:7f:36:45: 37:0e:18:3c:c1:eb:10:d0:2e:d0:9b:1e:49:1a:90:1c:03:b9: 4a:cc:a8:71:99:79:0d:fb:cb:bf:e4:e6:6f:33:16:d6:1f:54: 23:9d:91:69:09:4d:f3:be:f2:e8:40:b3:1e:29:a6:8a:bd:34: ac:84:23:54:95:4a:f6:96:a1:0e:21:df:ea:80:05:88:13:27: 56:18:cd:88:30:d6:de:ae:81:a9:de:84:9a:0e:0d:d3:40:26: cf:99:7f:c3:bd:9a:e7:51:eb:7c:fe:84:f6:f6:37:dc:46:ae: fb:da:ba:db:e1:b7:8a:e7:80:62:1e:6b:02:df:56:83:34:6d: b1:68:89:9e:f1:20:be:5c:db:cf:a7:e0:0c:0d:67:89:08:d6: e0:7d:5f:98:78:09:7a:94:f2:4a:f6:e9:b8:6c:bb:46:fd:b2: 9f:6b:66:7e:2f:fd:3f:4c:c2:2e:a9:4e:bc:e3:4b:6f:29:0c: 7a:78:c5:6c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfTGjqLNIdsqgDGjazndrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmNzhlYTQ2Y2MyMWQ0NWVkNjEyNjhkNGE5ZjU2NzMyYzg1 ZTIxNTAwHhcNMjYwMjA5MTMwMDI2WhcNMjYwMjEwMTMwMDI2WjAzMTEwLwYDVQQD EyhhZjhjYTg2ZjQ1N2VmZjA1YWIxNDUwNGZlZWMzNjEzNjFhNGYyNTM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3sW6zHqJsnDc6hkSqT1crwZSKd0X w7xYJuN/07J4vJrpnLXomzRZrbE+6I5Sc4xuIigvaKvWhJoZ0tOb1CiRhvqGE3hX Jo9TKZPPeD8JgpTRAjQbCyALn5TZuigaHSGo9TzNgig5UU5h9crNcYL8g44NExd/ GW4y7JHdKQI54CBT5jaH6+ljVhDg0F5SJn0JxLChb0OcU5MAYUNJK/EloTBi9xfz 5XuuWkXUJ5Tor48tpGrnLI75Id9gKPTl1r8kgXQJ+x7LlS/u8CVQYgklF0jlubqo OZUKXlgWYyJFcPhdWhXvdB8KyUXNq5PxCBEGkEGz+AEIOhhTeZ369taj6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK+MqG9Ffv8FqxRQT+7DYTYaTyU5MB8GA1UdIwQY MBaAFA946kbMIdRe1hJo1Kn1ZzLIXiFQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDNqcVJzd2gxRjdXRW1qVXFmVm5Nc2hlSVZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8wMjE5YzEtYTU1MS00YjkxLTljYTMt MDMyYjNiNjE0ZGQ4LzEvRDNqcVJzd2gxRjdXRW1qVXFmVm5Nc2hlSVZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi8wMjE5YzEtYTU1MS00YjkxLTljYTMtMDMyYjNiNjE0ZGQ4 LzEvRDNqcVJzd2gxRjdXRW1qVXFmVm5Nc2hlSVZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdND2SxDS ictPB+xVqiBQ40N3BVMRUm5JOTjkB8bHjQcICqqPGcfZGqwcMEmZu5MSNEd5QHtm QoMlurv82PYc97dgv9G5fzZFNw4YPMHrENAu0JseSRqQHAO5SsyocZl5DfvLv+Tm bzMW1h9UI52RaQlN877y6ECzHimmir00rIQjVJVK9pahDiHf6oAFiBMnVhjNiDDW 3q6Bqd6Emg4N00Amz5l/w72a51HrfP6E9vY33Eau+9q62+G3iueAYh5rAt9WgzRt sWiJnvEgvlzbz6fgDA1niQjW4H1fmHgJepTySvbpuGy7Rv2yn2tmfi/9P0zCLqlO vONLbykMenjFbA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:54 2026 by rpki-client