This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft File: DKtCI5upRIWzELVRXczH_u2SIFw.mft (raw, json) Hash identifier: /L5we26+Z4TsZ6yVi2vxYjKKQ1TJVfI5RalpK5tB6Pw= Subject key identifier: 65:6F:EF:3E:1D:5B:DA:DE:16:35:24:0A:F2:B2:89:E2:92:F9:3C:36 Authority key identifier: 0C:AB:42:23:9B:A9:44:85:B3:10:B5:51:5D:CC:C7:FE:ED:92:20:5C Certificate issuer: /CN=0cab42239ba94485b310b5515dccc7feed92205c Certificate serial: 019C43907830AE71F91C4E5656AE84454795 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft Manifest number: 1750 Signing time: Mon 09 Feb 2026 18:01:07 +0000 Manifest this update: Mon 09 Feb 2026 18:01:07 +0000 Manifest next update: Tue 10 Feb 2026 18:01:07 +0000 Files and hashes: 1: BT7pM6aA48OhQBOTNTxsIIj998o.roa (hash: KphTI+QWos8k5E5HwXib2t7YlXAqDNRWwkCn5ph3kyg=) 2: DKtCI5upRIWzELVRXczH_u2SIFw.crl (hash: tNIEGB6gIbZm8yK+QDelojRucu/FUtpEHhxDweodxyw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:78:30:ae:71:f9:1c:4e:56:56:ae:84:45:47:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0cab42239ba94485b310b5515dccc7feed92205c Validity Not Before: Feb 9 18:01:07 2026 GMT Not After : Feb 10 18:01:07 2026 GMT Subject: CN=656fef3e1d5bdade1635240af2b289e292f93c36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:92:f6:f5:a6:f2:89:9c:03:c4:12:73:68:ad: e6:a1:99:73:a5:22:a8:f2:bc:56:5f:48:7c:3a:3a: 2e:d8:a1:dd:8c:a0:13:26:31:94:47:98:49:ab:0d: 65:b4:0c:d9:e1:78:51:dc:b4:b1:cd:65:b0:29:3d: ef:3c:81:7b:3a:fb:6b:84:91:8a:ec:b4:f8:06:6c: e8:30:1f:81:46:48:db:f2:ed:2e:a7:04:a3:55:67: 0a:2c:05:f8:f7:a7:6c:af:05:b6:ba:11:2b:f8:c1: 24:b5:4b:ed:d9:36:ad:22:70:22:41:04:a0:72:d0: fe:63:99:c8:96:65:30:1f:fe:74:a6:4b:89:5d:43: b4:33:de:c6:0f:70:27:9e:fd:c5:ab:21:95:94:f1: d3:ae:ad:29:76:16:d9:6e:7e:d6:ca:6c:30:1d:22: eb:27:0a:71:90:9b:32:a1:6b:73:3b:cb:58:2e:48: 36:be:4f:9a:c2:c2:8e:17:b3:0f:85:23:2f:1a:f8: c8:e8:2f:94:3a:52:08:78:e6:c1:96:fb:f7:06:2d: fa:f7:25:6a:f0:52:e9:ee:e5:32:d8:66:31:5e:97: ca:64:c8:50:72:d3:45:55:46:79:1d:e6:ea:0d:c1: af:b9:4a:02:7d:c7:e9:ec:4f:39:e2:88:77:26:e1: a2:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:6F:EF:3E:1D:5B:DA:DE:16:35:24:0A:F2:B2:89:E2:92:F9:3C:36 X509v3 Authority Key Identifier: keyid:0C:AB:42:23:9B:A9:44:85:B3:10:B5:51:5D:CC:C7:FE:ED:92:20:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:38:af:7c:8e:27:af:8a:3f:9e:ed:d5:1c:b1:18:48:54:bb: 0f:f6:53:73:67:cd:1b:19:46:b0:90:c5:8c:f9:aa:6f:60:de: cc:d9:b4:cf:fa:6e:87:b6:d8:9a:c1:af:cd:35:16:c6:ac:a4: 15:0a:24:cf:31:71:6e:65:03:2c:b7:70:fa:f0:94:70:dc:66: ba:23:ab:05:67:da:24:13:40:7d:93:07:6c:3a:da:8d:58:ad: d1:43:18:4d:dd:66:13:74:a7:dc:14:4b:87:53:91:e3:1e:03: 2f:28:f5:72:63:9a:6a:96:66:87:ee:b1:7d:c9:11:b6:de:04: 52:08:86:44:b1:52:a6:48:84:96:9d:1d:07:bb:d0:d6:3c:b5: 20:de:73:9d:4b:e2:f8:ca:b6:17:7d:7a:0e:0b:57:be:6b:cb: 49:00:11:96:7a:90:b1:eb:06:76:8b:ba:de:6e:c7:59:15:88: 4f:94:76:ef:75:b2:4b:6a:35:91:f7:81:e4:9f:f9:1e:b5:54: a7:94:c9:2b:66:7b:c4:2a:c0:83:1e:7c:16:9c:f8:e4:de:6b: a9:54:21:e6:49:3f:26:9b:65:e7:07:75:8c:e8:01:1d:41:fc: 84:6c:8b:5a:c7:2b:c6:cb:a7:fb:91:94:bf:c8:b5:d6:b3:48: 4a:29:ec:d1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkHgwrnH5HE5WVq6ERUeVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjYWI0MjIzOWJhOTQ0ODViMzEwYjU1MTVkY2NjN2ZlZWQ5 MjIwNWMwHhcNMjYwMjA5MTgwMTA3WhcNMjYwMjEwMTgwMTA3WjAzMTEwLwYDVQQD Eyg2NTZmZWYzZTFkNWJkYWRlMTYzNTI0MGFmMmIyODllMjkyZjkzYzM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5JL29abyiZwDxBJzaK3moZlzpSKo 8rxWX0h8Ojou2KHdjKATJjGUR5hJqw1ltAzZ4XhR3LSxzWWwKT3vPIF7OvtrhJGK 7LT4BmzoMB+BRkjb8u0upwSjVWcKLAX496dsrwW2uhEr+MEktUvt2TatInAiQQSg ctD+Y5nIlmUwH/50pkuJXUO0M97GD3Annv3FqyGVlPHTrq0pdhbZbn7WymwwHSLr JwpxkJsyoWtzO8tYLkg2vk+awsKOF7MPhSMvGvjI6C+UOlIIeObBlvv3Bi369yVq 8FLp7uUy2GYxXpfKZMhQctNFVUZ5HebqDcGvuUoCfcfp7E854oh3JuGioQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGVv7z4dW9reFjUkCvKyieKS+Tw2MB8GA1UdIwQY MBaAFAyrQiObqUSFsxC1UV3Mx/7tkiBcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvREt0Q0k1dXBSSVd6RUxWUlhjekhfdTJTSUZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9hYWI2MmUtNDA4Yy00ODNkLTk1ZmEt Y2MxMTlkMjc3MTQ4LzEvREt0Q0k1dXBSSVd6RUxWUlhjekhfdTJTSUZ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi9hYWI2MmUtNDA4Yy00ODNkLTk1ZmEtY2MxMTlkMjc3MTQ4 LzEvREt0Q0k1dXBSSVd6RUxWUlhjekhfdTJTSUZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApTivfI4n r4o/nu3VHLEYSFS7D/ZTc2fNGxlGsJDFjPmqb2DezNm0z/puh7bYmsGvzTUWxqyk FQokzzFxbmUDLLdw+vCUcNxmuiOrBWfaJBNAfZMHbDrajVit0UMYTd1mE3Sn3BRL h1OR4x4DLyj1cmOaapZmh+6xfckRtt4EUgiGRLFSpkiElp0dB7vQ1jy1IN5znUvi +Mq2F316DgtXvmvLSQARlnqQsesGdou63m7HWRWIT5R273WyS2o1kfeB5J/5HrVU p5TJK2Z7xCrAgx58Fpz45N5rqVQh5kk/Jptl5wd1jOgBHUH8hGyLWscrxsun+5GU v8i11rNISins0Q== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:46 2026 by rpki-client