This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft File: d_M68l-VqylxEYjp_-pQzMshHXY.mft (raw, json) Hash identifier: EjwZn8pbRcdo4O8jcq+feIc0b0l8owG8+ptUM7VxHtQ= Subject key identifier: B7:8E:52:94:EA:03:CA:36:0E:33:3E:BD:79:C3:5D:6B:4A:48:88:C4 Authority key identifier: 77:F3:3A:F2:5F:95:AB:29:71:11:88:E9:FF:EA:50:CC:CB:21:1D:76 Certificate issuer: /CN=77f33af25f95ab29711188e9ffea50cccb211d76 Certificate serial: 019C427D5FA7E2D214CDE707D533DA038789 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_M68l-VqylxEYjp_-pQzMshHXY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft Manifest number: 0F85 Signing time: Mon 09 Feb 2026 13:00:38 +0000 Manifest this update: Mon 09 Feb 2026 13:00:38 +0000 Manifest next update: Tue 10 Feb 2026 13:00:38 +0000 Files and hashes: 1: d_M68l-VqylxEYjp_-pQzMshHXY.crl (hash: 5A9qOb3oAVttvncbA15LrI9McxWmUcVX4d35dCfzc40=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.crl rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft rsync://rpki.ripe.net/repository/DEFAULT/d_M68l-VqylxEYjp_-pQzMshHXY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:5f:a7:e2:d2:14:cd:e7:07:d5:33:da:03:87:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=77f33af25f95ab29711188e9ffea50cccb211d76 Validity Not Before: Feb 9 13:00:38 2026 GMT Not After : Feb 10 13:00:38 2026 GMT Subject: CN=b78e5294ea03ca360e333ebd79c35d6b4a4888c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1f:11:ff:5f:29:ad:f1:03:0b:b3:f3:b0:d0: 39:b9:97:0c:92:04:aa:4a:4f:3f:a0:77:d2:50:a5: 79:a2:f3:40:e3:12:8b:63:8d:7d:96:66:52:70:e1: 75:6b:e6:d0:76:c2:11:15:6b:26:9f:2c:eb:1e:33: b4:af:2b:77:39:6b:b2:b9:af:38:42:56:28:61:38: 0d:d3:d9:3a:dc:5d:67:31:e5:a5:2a:9b:ae:c8:6a: 49:3d:b6:32:a0:e4:de:1a:c5:07:7e:57:e0:3d:bb: 28:a4:6e:b5:f5:a6:aa:99:2c:66:95:bb:54:b7:37: aa:9b:2f:34:07:4e:6e:f1:d6:5a:08:50:e3:f1:b3: 1a:6b:5c:44:5f:b0:8d:7f:c0:cd:40:72:3e:a1:e6: 57:5f:ad:d8:1f:1b:e5:9f:6f:ee:ee:f4:c3:28:24: ed:62:f6:9f:63:81:81:cb:6d:b8:14:08:0f:7f:2d: 37:64:73:c9:21:d7:b8:1e:e5:de:09:00:9f:a8:ca: 03:d6:ab:3d:5b:f5:cb:9d:c6:b1:b4:12:8a:4f:3b: 4e:44:a6:85:f9:25:86:c2:fe:fd:73:d0:8e:fa:dd: 8d:b8:92:a8:a8:83:40:dd:c4:08:9c:cf:ba:cb:78: 77:a1:8d:a1:5c:47:97:9a:18:18:29:79:f3:0f:b4: a7:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:8E:52:94:EA:03:CA:36:0E:33:3E:BD:79:C3:5D:6B:4A:48:88:C4 X509v3 Authority Key Identifier: keyid:77:F3:3A:F2:5F:95:AB:29:71:11:88:E9:FF:EA:50:CC:CB:21:1D:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_M68l-VqylxEYjp_-pQzMshHXY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:36:a9:98:c2:03:4c:c7:d0:ac:52:be:c3:7a:ae:77:67:de: 21:64:9e:8a:e7:ef:9c:4d:70:a7:e4:a9:9d:b3:ca:aa:e5:51: e8:18:be:f8:b3:d9:e8:f6:4d:9c:e2:89:b6:e3:59:27:28:bb: 0a:c8:72:45:07:b9:b9:76:a1:e0:09:9f:a9:ab:ba:ad:db:e2: d5:ce:90:17:47:ab:a2:81:72:cb:8b:80:8f:65:a9:7b:a4:aa: c1:42:76:86:ce:c0:30:e3:f2:6a:27:02:b3:0f:23:87:b2:31: 35:62:57:d1:80:f8:e2:5b:3e:a5:70:41:6d:8e:dc:99:dc:ca: 3e:fc:fa:de:d5:f1:f6:64:43:ad:0d:e7:89:24:33:36:11:fa: 20:11:ce:44:ac:a2:d5:7e:32:be:25:1c:db:53:a3:0a:03:00: 54:5e:02:82:a9:fe:1f:39:01:71:34:53:c6:8d:9c:3b:ef:3a: 88:54:87:ab:14:85:2c:34:44:65:96:b2:45:09:9f:85:0e:13: e7:b1:0b:9e:b7:63:a5:ce:0b:99:49:a9:16:75:cd:ca:43:d4: 11:14:81:f1:f8:db:81:7c:58:91:24:1f:78:3d:ed:3a:f3:4c: 4b:6a:75:33:c3:04:19:aa:0e:0f:3d:55:37:97:da:84:f7:3b: 47:ae:2e:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfV+n4tIUzecH1TPaA4eJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3ZjMzYWYyNWY5NWFiMjk3MTExODhlOWZmZWE1MGNjY2Iy MTFkNzYwHhcNMjYwMjA5MTMwMDM4WhcNMjYwMjEwMTMwMDM4WjAzMTEwLwYDVQQD EyhiNzhlNTI5NGVhMDNjYTM2MGUzMzNlYmQ3OWMzNWQ2YjRhNDg4OGM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuh8R/18prfEDC7PzsNA5uZcMkgSq Sk8/oHfSUKV5ovNA4xKLY419lmZScOF1a+bQdsIRFWsmnyzrHjO0ryt3OWuyua84 QlYoYTgN09k63F1nMeWlKpuuyGpJPbYyoOTeGsUHflfgPbsopG619aaqmSxmlbtU tzeqmy80B05u8dZaCFDj8bMaa1xEX7CNf8DNQHI+oeZXX63YHxvln2/u7vTDKCTt YvafY4GBy224FAgPfy03ZHPJIde4HuXeCQCfqMoD1qs9W/XLncaxtBKKTztORKaF +SWGwv79c9CO+t2NuJKoqINA3cQInM+6y3h3oY2hXEeXmhgYKXnzD7SnaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLeOUpTqA8o2DjM+vXnDXWtKSIjEMB8GA1UdIwQY MBaAFHfzOvJflaspcRGI6f/qUMzLIR12MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZF9NNjhsLVZxeWx4RVlqcF8tcFF6TXNoSFhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC9iNjQ2MmYtY2M3Mi00ZjY5LTk2ZjQt OGJjYTA1NjFiNzJkLzEvZF9NNjhsLVZxeWx4RVlqcF8tcFF6TXNoSFhZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMC9iNjQ2MmYtY2M3Mi00ZjY5LTk2ZjQtOGJjYTA1NjFiNzJk LzEvZF9NNjhsLVZxeWx4RVlqcF8tcFF6TXNoSFhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlTapmMID TMfQrFK+w3qud2feIWSeiufvnE1wp+SpnbPKquVR6Bi++LPZ6PZNnOKJtuNZJyi7 CshyRQe5uXah4Amfqau6rdvi1c6QF0erooFyy4uAj2Wpe6SqwUJ2hs7AMOPyaicC sw8jh7IxNWJX0YD44ls+pXBBbY7cmdzKPvz63tXx9mRDrQ3niSQzNhH6IBHORKyi 1X4yviUc21OjCgMAVF4Cgqn+HzkBcTRTxo2cO+86iFSHqxSFLDREZZayRQmfhQ4T 57ELnrdjpc4LmUmpFnXNykPUERSB8fjbgXxYkSQfeD3tOvNMS2p1M8MEGaoODz1V N5fahPc7R64upQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:07:24 2026 by rpki-client