This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft File: l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft (raw, json) Hash identifier: S4u6Kr3b33vNHZCuvOkra1IoeIzZyCS9DzE/+wgvOEQ= Subject key identifier: 77:CC:37:88:C1:84:D0:B3:02:BC:85:09:E5:9F:23:F3:6A:C8:D5:39 Authority key identifier: 97:57:7F:84:18:8E:28:3F:DB:5D:7A:6F:CC:CC:48:56:C1:99:49:B8 Certificate issuer: /CN=97577f84188e283fdb5d7a6fcccc4856c19949b8 Certificate serial: 019C43908804958C23C6047B881989DC4DB2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l1d_hBiOKD_bXXpvzMxIVsGZSbg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft Manifest number: 180B Signing time: Mon 09 Feb 2026 18:01:11 +0000 Manifest this update: Mon 09 Feb 2026 18:01:11 +0000 Manifest next update: Tue 10 Feb 2026 18:01:11 +0000 Files and hashes: 1: l1d_hBiOKD_bXXpvzMxIVsGZSbg.crl (hash: AtfOF86P5zkDSIc7ZZlGLgBRhb7NTqUt82tOmmzpzFs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft rsync://rpki.ripe.net/repository/DEFAULT/l1d_hBiOKD_bXXpvzMxIVsGZSbg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:88:04:95:8c:23:c6:04:7b:88:19:89:dc:4d:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97577f84188e283fdb5d7a6fcccc4856c19949b8 Validity Not Before: Feb 9 18:01:11 2026 GMT Not After : Feb 10 18:01:11 2026 GMT Subject: CN=77cc3788c184d0b302bc8509e59f23f36ac8d539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:03:6c:46:84:47:d0:67:1f:99:93:35:09:c6: 48:1f:4d:0b:eb:78:f3:b7:60:c4:db:09:ef:c9:29: dc:ca:0b:eb:b3:de:56:49:9f:2e:ba:02:45:4f:ae: b3:0e:30:a0:8e:1e:84:c2:3a:3b:bd:ee:f3:80:ef: 6c:4e:bf:bd:cc:c3:e6:8f:41:b9:b1:40:0e:64:19: 74:0d:9f:c3:a8:29:04:bb:c6:35:3f:db:a1:0a:e9: 01:18:d9:c8:7c:87:06:bd:71:e9:d4:67:71:5f:7b: 78:b9:2e:94:4e:eb:e8:b5:8b:08:5d:fd:f2:70:cc: 80:bc:7e:b8:c1:e5:42:95:5f:e9:a5:5b:58:19:e3: 6e:a6:93:87:85:37:46:a3:65:8d:4b:fa:02:57:01: f3:2b:4b:d5:d8:72:55:85:a1:a3:b5:98:a3:07:d9: 3b:4a:dc:53:f5:0a:be:31:68:c7:f5:f4:97:a9:ff: 7e:fb:d6:45:5b:3a:0c:fb:74:4e:64:dd:70:fc:74: 21:6b:dc:53:04:53:a0:34:e1:c4:5c:ed:a5:9d:08: 3c:6a:4e:fd:c4:dd:b0:07:b6:98:47:d2:ac:6f:ab: 8a:c3:f2:78:9a:fd:fe:36:9f:7a:02:a4:8b:39:eb: fc:32:f5:ff:af:70:90:0e:7c:92:65:af:c5:ec:a5: dc:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:CC:37:88:C1:84:D0:B3:02:BC:85:09:E5:9F:23:F3:6A:C8:D5:39 X509v3 Authority Key Identifier: keyid:97:57:7F:84:18:8E:28:3F:DB:5D:7A:6F:CC:CC:48:56:C1:99:49:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l1d_hBiOKD_bXXpvzMxIVsGZSbg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:64:b5:14:07:d9:8f:ee:47:d3:ff:0f:11:40:af:59:12:48: ae:53:bf:f9:b0:6f:78:6b:85:64:26:da:4d:80:92:75:45:75: eb:60:be:e2:e5:dc:d0:39:10:77:76:d0:72:f2:c4:b7:ca:39: 02:67:68:fb:3f:3c:9d:e7:4e:59:1d:71:34:4a:c0:cd:50:82: 04:cf:ce:7a:66:59:04:e6:8b:1e:f9:7f:0f:08:c0:52:41:96: c8:d4:7a:fa:4f:1d:19:19:ec:38:b9:d1:18:5c:fd:f6:e6:45: 5a:fa:6d:93:de:4f:49:e9:51:93:98:fa:b3:4e:64:96:04:f8: 25:36:01:31:0a:1c:ca:70:e8:bb:90:e3:1c:71:3f:6d:48:c9: c0:29:0d:f3:b5:f6:d4:d6:95:e3:32:1d:55:bd:90:cc:14:97: fb:59:15:04:1d:95:eb:a8:2c:29:b4:3f:23:06:bc:58:c8:ca: 72:0c:16:68:b9:2d:2e:22:87:58:59:65:e4:39:cf:ae:a8:a7: de:d5:8a:db:9e:f1:29:71:fa:de:b3:41:bf:27:83:a5:7c:93: 4b:85:df:67:2d:1b:5a:c9:77:77:27:c4:f0:cd:03:60:93:8a: c3:77:84:92:81:89:31:fc:88:4b:bc:0c:9b:a0:44:55:71:cf: 87:24:5b:f8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkIgElYwjxgR7iBmJ3E2yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3NTc3Zjg0MTg4ZTI4M2ZkYjVkN2E2ZmNjY2M0ODU2YzE5 OTQ5YjgwHhcNMjYwMjA5MTgwMTExWhcNMjYwMjEwMTgwMTExWjAzMTEwLwYDVQQD Eyg3N2NjMzc4OGMxODRkMGIzMDJiYzg1MDllNTlmMjNmMzZhYzhkNTM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1QNsRoRH0GcfmZM1CcZIH00L63jz t2DE2wnvySncygvrs95WSZ8uugJFT66zDjCgjh6Ewjo7ve7zgO9sTr+9zMPmj0G5 sUAOZBl0DZ/DqCkEu8Y1P9uhCukBGNnIfIcGvXHp1GdxX3t4uS6UTuvotYsIXf3y cMyAvH64weVClV/ppVtYGeNuppOHhTdGo2WNS/oCVwHzK0vV2HJVhaGjtZijB9k7 StxT9Qq+MWjH9fSXqf9++9ZFWzoM+3ROZN1w/HQha9xTBFOgNOHEXO2lnQg8ak79 xN2wB7aYR9Ksb6uKw/J4mv3+Np96AqSLOev8MvX/r3CQDnySZa/F7KXcvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHfMN4jBhNCzAryFCeWfI/NqyNU5MB8GA1UdIwQY MBaAFJdXf4QYjig/2116b8zMSFbBmUm4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbDFkX2hCaU9LRF9iWFhwdnpNeElWc0daU2JnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9iMzg0YmEtNDBlYy00MmE0LTgzMzAt YTFhNjRiNDlmYTUwLzEvbDFkX2hCaU9LRF9iWFhwdnpNeElWc0daU2JnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC9iMzg0YmEtNDBlYy00MmE0LTgzMzAtYTFhNjRiNDlmYTUw LzEvbDFkX2hCaU9LRF9iWFhwdnpNeElWc0daU2JnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL2S1FAfZ j+5H0/8PEUCvWRJIrlO/+bBveGuFZCbaTYCSdUV162C+4uXc0DkQd3bQcvLEt8o5 Amdo+z88nedOWR1xNErAzVCCBM/OemZZBOaLHvl/DwjAUkGWyNR6+k8dGRnsOLnR GFz99uZFWvptk95PSelRk5j6s05klgT4JTYBMQocynDou5DjHHE/bUjJwCkN87X2 1NaV4zIdVb2QzBSX+1kVBB2V66gsKbQ/Iwa8WMjKcgwWaLktLiKHWFll5DnPrqin 3tWK257xKXH63rNBvyeDpXyTS4XfZy0bWsl3dyfE8M0DYJOKw3eEkoGJMfyIS7wM m6BEVXHPhyRb+A== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:32 2026 by rpki-client