This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.mft File: DyKg7jvG4y2JLt3iV8u3mRefLNY.mft (raw, json) Hash identifier: hJrbDTDYLcRTtW+FmSZL3YYfMzCUN701lLew4Rmo0ts= Subject key identifier: 21:E3:15:64:45:E4:68:CA:40:73:4C:29:F8:A9:EB:A8:84:78:0C:16 Authority key identifier: 0F:22:A0:EE:3B:C6:E3:2D:89:2E:DD:E2:57:CB:B7:99:17:9F:2C:D6 Certificate issuer: /CN=0f22a0ee3bc6e32d892edde257cbb799179f2cd6 Certificate serial: 019C44A26C1AB624F8107CE640C6A75D4882 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DyKg7jvG4y2JLt3iV8u3mRefLNY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.mft Manifest number: 097C Signing time: Mon 09 Feb 2026 23:00:20 +0000 Manifest this update: Mon 09 Feb 2026 23:00:20 +0000 Manifest next update: Tue 10 Feb 2026 23:00:20 +0000 Files and hashes: 1: 6anxR7oWcscDd04QL41XaD9H2mI.roa (hash: HOaKAJ+9l8ZBJN2kLFM0Go13VYLLmXxM5vLOU8G4dHg=) 2: DyKg7jvG4y2JLt3iV8u3mRefLNY.crl (hash: 5GON/HoZuACSGT7hTujRHxnT1bIyfGdVlvdkOgWyZWU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.mft rsync://rpki.ripe.net/repository/DEFAULT/DyKg7jvG4y2JLt3iV8u3mRefLNY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:a2:6c:1a:b6:24:f8:10:7c:e6:40:c6:a7:5d:48:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f22a0ee3bc6e32d892edde257cbb799179f2cd6 Validity Not Before: Feb 9 23:00:20 2026 GMT Not After : Feb 10 23:00:20 2026 GMT Subject: CN=21e3156445e468ca40734c29f8a9eba884780c16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ef:8f:2a:4a:21:02:d8:40:e7:2c:ce:c8:81: 83:9e:1c:75:8f:5c:f6:e8:05:43:d0:42:5e:77:da: 04:c7:5b:88:6a:c8:70:2d:5e:aa:74:9c:6e:55:f8: ac:7d:79:f8:d9:63:9d:fa:fd:ed:e9:6c:ae:d8:ff: 4e:23:08:ee:58:42:07:1f:51:fd:b7:2b:cc:c9:45: 11:95:ef:cf:64:44:1b:7b:23:59:39:23:76:56:6a: fb:b4:a4:b0:56:25:b1:7d:6f:fd:02:b3:57:d4:67: 38:ca:c3:f4:ee:b4:87:d6:0d:4c:cd:2e:35:98:8c: 2e:9d:ca:1c:66:bc:0b:76:37:a6:e8:01:da:6f:52: 3f:6f:67:fb:d2:9b:f3:c2:f3:08:68:42:3f:74:09: 4c:ec:fa:6c:0b:35:f7:0f:8d:5a:7b:5c:2f:2e:bb: b8:2a:6c:99:34:b2:4b:b8:b0:1e:37:f5:fe:6f:39: f9:a8:14:18:78:44:21:7a:b5:54:0b:c1:82:c5:78: 65:84:97:0c:cb:1b:81:81:20:44:48:78:70:2d:08: 63:32:e6:93:f1:5d:67:3c:72:4e:3b:51:fa:43:3e: 11:32:25:8b:47:f3:cb:80:51:ae:9f:4d:3c:95:fa: 71:e5:39:c7:49:b0:00:7c:ec:b8:7e:72:b8:21:e7: 44:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E3:15:64:45:E4:68:CA:40:73:4C:29:F8:A9:EB:A8:84:78:0C:16 X509v3 Authority Key Identifier: keyid:0F:22:A0:EE:3B:C6:E3:2D:89:2E:DD:E2:57:CB:B7:99:17:9F:2C:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DyKg7jvG4y2JLt3iV8u3mRefLNY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:f3:13:10:ee:3d:30:f4:a0:0c:c5:58:65:78:8c:09:59:ce: f5:47:c0:af:c7:05:4c:6c:52:0b:23:09:d9:79:44:76:92:fd: ec:ec:f4:a7:29:fb:0e:7d:8d:d4:df:b6:d0:c6:0a:dd:19:9b: d3:47:f3:31:5d:a3:ea:4e:46:63:f7:c3:c6:5e:ae:a5:46:81: f1:6b:fe:4e:05:b8:5f:f5:db:a3:6f:6d:c1:11:25:00:ec:ba: d2:be:ca:a9:3a:4a:d5:8c:5a:24:8c:e6:3f:13:b7:f7:ba:68: b2:50:db:26:d8:99:26:fd:50:b6:bc:cb:b8:31:4c:b0:32:45: 68:f8:5a:60:23:9c:1b:74:e5:db:d2:d1:ba:06:7b:5b:40:03: be:96:31:51:3b:8f:86:f0:5d:ef:a6:a9:60:b4:e9:74:93:e2: 62:8d:dd:8d:06:d1:e8:e2:c1:fb:f8:da:38:c3:b1:02:1e:7d: 97:f9:40:34:ed:81:33:75:ae:1a:86:7a:23:f1:da:8b:f0:f9: 71:85:fb:a5:02:0e:cf:4f:2e:27:80:e1:1a:8a:f7:75:be:32: 3d:cf:6b:7f:25:8f:df:cc:b2:70:88:4a:13:7a:6e:89:f8:ef: bb:26:1e:fd:9d:b2:bf:cf:5a:3d:5e:73:25:fc:6a:8b:68:a7: 8d:7c:2e:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEomwatiT4EHzmQManXUiCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmMjJhMGVlM2JjNmUzMmQ4OTJlZGRlMjU3Y2JiNzk5MTc5 ZjJjZDYwHhcNMjYwMjA5MjMwMDIwWhcNMjYwMjEwMjMwMDIwWjAzMTEwLwYDVQQD EygyMWUzMTU2NDQ1ZTQ2OGNhNDA3MzRjMjlmOGE5ZWJhODg0NzgwYzE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwe+PKkohAthA5yzOyIGDnhx1j1z2 6AVD0EJed9oEx1uIashwLV6qdJxuVfisfXn42WOd+v3t6Wyu2P9OIwjuWEIHH1H9 tyvMyUURle/PZEQbeyNZOSN2Vmr7tKSwViWxfW/9ArNX1Gc4ysP07rSH1g1MzS41 mIwuncocZrwLdjem6AHab1I/b2f70pvzwvMIaEI/dAlM7PpsCzX3D41ae1wvLru4 KmyZNLJLuLAeN/X+bzn5qBQYeEQherVUC8GCxXhlhJcMyxuBgSBESHhwLQhjMuaT 8V1nPHJOO1H6Qz4RMiWLR/PLgFGun008lfpx5TnHSbAAfOy4fnK4IedE6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCHjFWRF5GjKQHNMKfip66iEeAwWMB8GA1UdIwQY MBaAFA8ioO47xuMtiS7d4lfLt5kXnyzWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRHlLZzdqdkc0eTJKTHQzaVY4dTNtUmVmTE5ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy8zMDg0ZGUtYjE1OS00ZTU0LTllZDct NDJkNjc4NDA5NDRkLzEvRHlLZzdqdkc0eTJKTHQzaVY4dTNtUmVmTE5ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy8zMDg0ZGUtYjE1OS00ZTU0LTllZDctNDJkNjc4NDA5NDRk LzEvRHlLZzdqdkc0eTJKTHQzaVY4dTNtUmVmTE5ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB/MTEO49 MPSgDMVYZXiMCVnO9UfAr8cFTGxSCyMJ2XlEdpL97Oz0pyn7Dn2N1N+20MYK3Rmb 00fzMV2j6k5GY/fDxl6upUaB8Wv+TgW4X/Xbo29twRElAOy60r7KqTpK1YxaJIzm PxO397poslDbJtiZJv1QtrzLuDFMsDJFaPhaYCOcG3Tl29LRugZ7W0ADvpYxUTuP hvBd76apYLTpdJPiYo3djQbR6OLB+/jaOMOxAh59l/lANO2BM3WuGoZ6I/Hai/D5 cYX7pQIOz08uJ4DhGor3db4yPc9rfyWP38yycIhKE3puifjvuyYe/Z2yv89aPV5z Jfxqi2injXwu2g== -----END CERTIFICATE-----Generated at Tue Feb 10 05:31:38 2026 by rpki-client