This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft File: dCnR70knCBDhAgzqhhmGQjORMaA.mft (raw, json) Hash identifier: yV9c/H75vzPsabGIovsTmOCYNdzn4MfvVHvGP96WYWQ= Subject key identifier: A6:BB:77:1D:F2:E1:17:E8:FE:4D:29:5B:49:7C:83:04:EE:F5:6E:B9 Authority key identifier: 74:29:D1:EF:49:27:08:10:E1:02:0C:EA:86:19:86:42:33:91:31:A0 Certificate issuer: /CN=7429d1ef49270810e1020cea86198642339131a0 Certificate serial: 019C432282CC142174AC41D84B54ECC5313C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft Manifest number: 0CDC Signing time: Mon 09 Feb 2026 16:01:01 +0000 Manifest this update: Mon 09 Feb 2026 16:01:01 +0000 Manifest next update: Tue 10 Feb 2026 16:01:01 +0000 Files and hashes: 1: dCnR70knCBDhAgzqhhmGQjORMaA.crl (hash: aOxZrl+r/ryRK5ZkpPB4g+reI6fJdI5F4UtqvyPiejg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:82:cc:14:21:74:ac:41:d8:4b:54:ec:c5:31:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7429d1ef49270810e1020cea86198642339131a0 Validity Not Before: Feb 9 16:01:01 2026 GMT Not After : Feb 10 16:01:01 2026 GMT Subject: CN=a6bb771df2e117e8fe4d295b497c8304eef56eb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6b:3d:6a:76:de:f5:66:68:f6:9c:d4:26:af: 4a:69:66:44:6c:92:37:f2:05:73:ab:5d:42:72:a1: bc:08:40:e1:91:ec:63:94:43:4b:f2:25:55:d8:f3: b1:79:81:74:31:8e:73:4e:9d:c3:71:55:c6:30:7d: 82:90:3d:f1:57:ae:a4:3f:5b:d6:13:f9:ce:e2:c7: 80:95:54:a9:84:8f:13:ab:60:10:d0:58:fb:6e:12: db:5c:1c:3d:1d:a6:c2:84:c9:88:47:5b:d7:2c:61: 79:ff:0a:27:f7:3d:d3:7f:80:4e:7b:41:18:d4:eb: 9b:7e:16:fa:f6:8f:88:97:44:6a:09:66:54:c5:fd: e2:f1:32:d6:a5:c0:b7:cd:ae:1a:0b:f3:06:49:59: f6:67:3d:17:1a:0e:14:5c:20:7f:7a:ed:04:ca:93: 2b:ae:d7:76:78:fb:f7:01:8d:ea:28:b1:e1:b3:e5: 0d:c7:e8:d5:66:58:a3:f3:72:42:36:13:74:62:ff: f8:97:8c:59:d8:a1:f3:08:c5:c5:21:6e:78:39:35: c3:3e:01:62:5b:e6:c9:20:ca:51:1f:28:28:6a:28: 13:55:0c:ed:1c:5f:4e:2f:dd:ec:51:34:55:c9:44: 6f:fa:de:8a:86:08:af:d9:a8:c9:4f:aa:07:7e:63: d2:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:BB:77:1D:F2:E1:17:E8:FE:4D:29:5B:49:7C:83:04:EE:F5:6E:B9 X509v3 Authority Key Identifier: keyid:74:29:D1:EF:49:27:08:10:E1:02:0C:EA:86:19:86:42:33:91:31:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:60:a7:b0:49:db:be:50:2c:de:fe:ba:71:e6:ff:a4:bc:bc: 33:63:50:f8:47:54:79:26:42:9f:18:1f:d9:0b:95:0a:a5:c8: a5:0b:65:a4:a5:1f:d0:19:26:e4:0c:f4:ac:c2:cf:03:09:76: f1:b1:ed:b1:78:a4:b9:d6:49:b6:64:4c:46:66:3e:1a:af:83: af:af:d3:bc:63:40:5e:d5:04:b4:31:6e:1a:7f:47:f6:d3:00: ae:7a:3d:6d:9b:3d:07:ca:af:28:d3:cf:1d:ab:87:10:8b:41: 8f:30:0f:db:77:83:9a:de:ae:d2:4b:6c:f1:10:74:61:72:27: 39:99:f6:8b:2e:7d:07:36:46:45:c3:07:27:af:ac:8b:e9:51: 28:e7:a2:3d:e5:ce:03:c0:06:48:19:9b:13:5d:84:5d:d0:f6: b4:2a:0c:0d:85:22:6d:ea:41:ca:cd:59:3e:e0:12:e2:34:fa: 1f:9a:89:28:56:45:85:75:63:61:63:bf:9e:9a:44:5d:af:13: 6e:7f:49:66:b4:db:48:81:7e:76:5a:b2:ff:0b:d8:ee:30:b8: d8:26:ff:05:33:62:aa:db:42:ce:a7:64:ac:67:b4:01:24:20: df:62:26:0e:0b:20:79:f6:a3:a1:8d:c3:c8:d8:7a:f2:0d:57: 2d:30:6f:d3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIoLMFCF0rEHYS1TsxTE8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0MjlkMWVmNDkyNzA4MTBlMTAyMGNlYTg2MTk4NjQyMzM5 MTMxYTAwHhcNMjYwMjA5MTYwMTAxWhcNMjYwMjEwMTYwMTAxWjAzMTEwLwYDVQQD EyhhNmJiNzcxZGYyZTExN2U4ZmU0ZDI5NWI0OTdjODMwNGVlZjU2ZWI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtGs9anbe9WZo9pzUJq9KaWZEbJI3 8gVzq11CcqG8CEDhkexjlENL8iVV2POxeYF0MY5zTp3DcVXGMH2CkD3xV66kP1vW E/nO4seAlVSphI8Tq2AQ0Fj7bhLbXBw9HabChMmIR1vXLGF5/won9z3Tf4BOe0EY 1Oubfhb69o+Il0RqCWZUxf3i8TLWpcC3za4aC/MGSVn2Zz0XGg4UXCB/eu0EypMr rtd2ePv3AY3qKLHhs+UNx+jVZlij83JCNhN0Yv/4l4xZ2KHzCMXFIW54OTXDPgFi W+bJIMpRHygoaigTVQztHF9OL93sUTRVyURv+t6Khgiv2ajJT6oHfmPS7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKa7dx3y4Rfo/k0pW0l8gwTu9W65MB8GA1UdIwQY MBaAFHQp0e9JJwgQ4QIM6oYZhkIzkTGgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZENuUjcwa25DQkRoQWd6cWhobUdRak9STWFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9mYzBkMjEtN2YxNC00NGFiLTk5NWMt ZTBiYWU4YmFlNjc0LzEvZENuUjcwa25DQkRoQWd6cWhobUdRak9STWFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy9mYzBkMjEtN2YxNC00NGFiLTk5NWMtZTBiYWU4YmFlNjc0 LzEvZENuUjcwa25DQkRoQWd6cWhobUdRak9STWFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARGCnsEnb vlAs3v66ceb/pLy8M2NQ+EdUeSZCnxgf2QuVCqXIpQtlpKUf0Bkm5Az0rMLPAwl2 8bHtsXikudZJtmRMRmY+Gq+Dr6/TvGNAXtUEtDFuGn9H9tMArno9bZs9B8qvKNPP HauHEItBjzAP23eDmt6u0kts8RB0YXInOZn2iy59BzZGRcMHJ6+si+lRKOeiPeXO A8AGSBmbE12EXdD2tCoMDYUibepBys1ZPuAS4jT6H5qJKFZFhXVjYWO/nppEXa8T bn9JZrTbSIF+dlqy/wvY7jC42Cb/BTNiqttCzqdkrGe0ASQg32ImDgsgefajoY3D yNh68g1XLTBv0w== -----END CERTIFICATE-----Generated at Mon Feb 9 18:41:31 2026 by rpki-client