This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft File: cdm6oCIZQu3-SzqaVwgpXARBboA.mft (raw, json) Hash identifier: a8Ex38oA4BQ0SY38bI/YxGL1K81lEawdUlcjb349cV8= Subject key identifier: CC:52:D9:20:E7:4C:CF:F9:79:C0:99:DA:C5:87:61:D1:8C:D2:04:A8 Authority key identifier: 71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80 Certificate issuer: /CN=71d9baa0221942edfe4b3a9a5708295c04416e80 Certificate serial: 019C446BAD6EEFDA7BA0600ECB7A206DA801 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 22:00:33 +0000 Manifest this update: Mon 09 Feb 2026 22:00:33 +0000 Manifest next update: Tue 10 Feb 2026 22:00:33 +0000 Files and hashes: 1: 6jv9jlHJmC7k64rvSsealEF_Ys4.roa (hash: crUEU6To7tUPJ210jDOrFjZwtJRVZ4icX9N2S6uxoc0=) 2: cdm6oCIZQu3-SzqaVwgpXARBboA.crl (hash: 3EdJHraNdORylZkHnlBRzTYT1AmBZ594slkZ/futs8M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:ad:6e:ef:da:7b:a0:60:0e:cb:7a:20:6d:a8:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71d9baa0221942edfe4b3a9a5708295c04416e80 Validity Not Before: Feb 9 22:00:33 2026 GMT Not After : Feb 10 22:00:33 2026 GMT Subject: CN=cc52d920e74ccff979c099dac58761d18cd204a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7f:ba:4a:f0:d0:4c:8b:63:ed:03:71:c4:90: c2:e8:cf:8b:d6:c1:7c:10:88:ec:d3:c0:97:f0:e6: 3d:fb:8e:95:7c:f6:57:d3:10:6d:b9:0f:bb:3a:d6: 73:a6:ed:c5:d0:7e:9f:a0:e3:33:68:d2:d9:6b:6d: e2:32:7d:15:e5:31:4a:3a:58:ed:08:35:a8:70:0e: 4b:40:b5:0f:ca:21:e7:ad:7d:83:2b:e9:8c:b2:39: 9c:b0:ac:41:e5:1b:5b:66:49:7f:01:c2:d6:c8:0c: 9a:a4:de:6b:06:41:43:a3:c6:e8:a9:32:9e:cb:09: f0:8b:c4:30:56:fc:04:ce:7a:11:be:73:fc:16:8c: 9b:5c:02:b7:50:81:3a:e0:97:bd:90:b2:9c:51:db: db:40:67:41:53:b1:f1:f4:29:84:a1:1d:e2:f1:17: 96:10:29:fd:23:e5:83:b0:3c:e1:72:88:7b:39:7e: f4:f9:37:49:25:63:32:b9:ce:aa:ba:84:03:6f:a4: e8:e4:a4:7d:24:04:c2:57:1c:2a:53:bb:1c:91:3a: 97:7a:b8:36:2c:f4:ff:eb:6b:03:85:fb:c8:d8:a5: c4:ec:2c:24:98:2c:75:27:f1:11:64:7c:a3:d1:6b: b6:14:d1:42:b1:bb:76:1f:c9:9b:1f:c2:4a:da:70: 50:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:52:D9:20:E7:4C:CF:F9:79:C0:99:DA:C5:87:61:D1:8C:D2:04:A8 X509v3 Authority Key Identifier: keyid:71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:c7:01:7f:cb:21:03:48:fb:33:c8:ed:0e:0e:37:23:d4:bd: 74:ac:71:8d:bf:51:40:44:7c:4f:7b:d1:43:60:a0:57:77:64: 50:22:87:b9:87:d5:dc:c4:fb:47:1f:ac:ce:60:22:16:3e:39: 40:94:fa:81:f8:0a:2a:9d:09:17:2a:58:fc:7c:2d:9b:27:da: c8:02:6f:21:d6:ea:a6:0d:f5:6b:13:f2:1b:ac:85:d1:be:66: 4f:8c:86:52:cc:2b:83:5f:25:4a:c5:2f:0b:68:10:f0:ed:72: f6:a8:b7:76:36:85:d8:c1:14:a4:87:c0:ba:41:eb:c6:c6:df: a9:19:36:7c:be:99:99:d1:04:51:34:ee:60:61:ba:b7:1e:99: 98:7e:92:8c:d8:75:17:42:95:dc:ab:56:32:04:de:a9:51:9d: c7:ca:d9:a5:6d:07:c3:e6:3a:a5:ab:ab:06:cb:06:0f:66:84: ce:97:c1:fd:fd:2d:e6:08:89:57:77:e6:33:9f:89:e9:2c:a6: 9c:2f:b6:6b:d1:32:93:b4:7b:53:13:df:72:82:de:93:87:5b: 87:3c:9a:da:fd:dd:3a:05:1b:ff:2b:a6:6e:d0:72:69:39:96: de:c7:1e:1c:2c:4c:2d:ec:96:d2:54:09:97:47:4d:25:57:ad: 65:00:80:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa61u79p7oGAOy3ogbagBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxZDliYWEwMjIxOTQyZWRmZTRiM2E5YTU3MDgyOTVjMDQ0 MTZlODAwHhcNMjYwMjA5MjIwMDMzWhcNMjYwMjEwMjIwMDMzWjAzMTEwLwYDVQQD EyhjYzUyZDkyMGU3NGNjZmY5NzljMDk5ZGFjNTg3NjFkMThjZDIwNGE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0H+6SvDQTItj7QNxxJDC6M+L1sF8 EIjs08CX8OY9+46VfPZX0xBtuQ+7OtZzpu3F0H6foOMzaNLZa23iMn0V5TFKOljt CDWocA5LQLUPyiHnrX2DK+mMsjmcsKxB5RtbZkl/AcLWyAyapN5rBkFDo8boqTKe ywnwi8QwVvwEznoRvnP8FoybXAK3UIE64Je9kLKcUdvbQGdBU7Hx9CmEoR3i8ReW ECn9I+WDsDzhcoh7OX70+TdJJWMyuc6quoQDb6To5KR9JATCVxwqU7sckTqXerg2 LPT/62sDhfvI2KXE7CwkmCx1J/ERZHyj0Wu2FNFCsbt2H8mbH8JK2nBQFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMxS2SDnTM/5ecCZ2sWHYdGM0gSoMB8GA1UdIwQY MBaAFHHZuqAiGULt/ks6mlcIKVwEQW6AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2RtNm9DSVpRdTMtU3pxYVZ3Z3BYQVJCYm9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS84YzNmYjgtNDBkZi00ZDVkLTkzNjMt NTA0NzI3YTUwYjhlLzEvY2RtNm9DSVpRdTMtU3pxYVZ3Z3BYQVJCYm9BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS84YzNmYjgtNDBkZi00ZDVkLTkzNjMtNTA0NzI3YTUwYjhl LzEvY2RtNm9DSVpRdTMtU3pxYVZ3Z3BYQVJCYm9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfscBf8sh A0j7M8jtDg43I9S9dKxxjb9RQER8T3vRQ2CgV3dkUCKHuYfV3MT7Rx+szmAiFj45 QJT6gfgKKp0JFypY/HwtmyfayAJvIdbqpg31axPyG6yF0b5mT4yGUswrg18lSsUv C2gQ8O1y9qi3djaF2MEUpIfAukHrxsbfqRk2fL6ZmdEEUTTuYGG6tx6ZmH6SjNh1 F0KV3KtWMgTeqVGdx8rZpW0Hw+Y6paurBssGD2aEzpfB/f0t5giJV3fmM5+J6Sym nC+2a9Eyk7R7UxPfcoLek4dbhzya2v3dOgUb/yumbtByaTmW3sceHCxMLeyW0lQJ l0dNJVetZQCAIQ== -----END CERTIFICATE-----Generated at Tue Feb 10 00:15:56 2026 by rpki-client