This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/335e98-8b36-4017-928a-ddade3d341c7/1/_D39VAG24EhxYrQuBDdnosKTGnc.mft File: _D39VAG24EhxYrQuBDdnosKTGnc.mft (raw, json) Hash identifier: IOmwAlGi+DsI5GEAfP6JO3t86lBv4UOJa+iB8DCSZ+w= Subject key identifier: 21:4C:3C:54:7C:C1:BC:B8:F3:2E:76:02:DC:C5:7D:37:23:28:94:ED Authority key identifier: FC:3D:FD:54:01:B6:E0:48:71:62:B4:2E:04:37:67:A2:C2:93:1A:77 Certificate issuer: /CN=fc3dfd5401b6e0487162b42e043767a2c2931a77 Certificate serial: 019C43229B65F5BAD23B21CFFC904D5C141E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_D39VAG24EhxYrQuBDdnosKTGnc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/335e98-8b36-4017-928a-ddade3d341c7/1/_D39VAG24EhxYrQuBDdnosKTGnc.mft Manifest number: 0B92 Signing time: Mon 09 Feb 2026 16:01:07 +0000 Manifest this update: Mon 09 Feb 2026 16:01:07 +0000 Manifest next update: Tue 10 Feb 2026 16:01:07 +0000 Files and hashes: 1: _D39VAG24EhxYrQuBDdnosKTGnc.crl (hash: vkCGUbS6uBHKAG6ppZiCHsG3dpG8+9WgPKoMgWjeHRo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/335e98-8b36-4017-928a-ddade3d341c7/1/_D39VAG24EhxYrQuBDdnosKTGnc.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/335e98-8b36-4017-928a-ddade3d341c7/1/_D39VAG24EhxYrQuBDdnosKTGnc.mft rsync://rpki.ripe.net/repository/DEFAULT/_D39VAG24EhxYrQuBDdnosKTGnc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:9b:65:f5:ba:d2:3b:21:cf:fc:90:4d:5c:14:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fc3dfd5401b6e0487162b42e043767a2c2931a77 Validity Not Before: Feb 9 16:01:07 2026 GMT Not After : Feb 10 16:01:07 2026 GMT Subject: CN=214c3c547cc1bcb8f32e7602dcc57d37232894ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:24:b3:f7:13:78:5c:e5:41:55:e8:85:15:39: 5b:23:c3:25:a8:d3:a8:d3:63:ef:74:56:37:70:ab: 5e:fd:c1:79:33:bb:db:13:05:75:18:37:39:c3:1d: c7:b6:fa:27:07:e7:57:72:6f:a6:c9:00:3c:9a:94: 02:08:36:45:7a:b1:84:3e:a4:e2:83:63:4f:93:2c: 89:40:77:7f:74:9f:95:b2:36:71:2b:73:a3:5c:e7: c6:25:cf:1c:72:9f:09:db:e8:c6:47:a2:80:71:b8: c3:eb:44:75:3c:03:c4:8e:bb:ef:ec:d0:4e:d3:6d: b5:7e:2b:d5:ae:52:53:77:71:98:2f:1c:23:41:7c: c3:69:cb:5f:36:0a:e9:63:11:75:fb:17:e6:58:b6: 25:15:87:1b:2e:94:96:59:d5:eb:2d:de:f4:5c:e6: 38:c2:6a:cf:d9:fa:37:3a:6f:94:72:ed:83:0e:be: 88:1c:9c:8e:37:81:fe:bb:2e:a8:e6:ec:b7:28:ff: 94:22:ad:9d:0f:dc:c1:f9:2b:16:8d:3f:82:0a:93: 55:e1:15:10:25:4a:6d:cf:cf:9d:3f:bc:c8:0d:c4: fd:d2:e7:c2:02:bb:6f:01:09:b5:00:bf:57:90:33: c0:86:26:58:27:d0:9b:75:ef:63:63:2c:82:60:83: d1:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:4C:3C:54:7C:C1:BC:B8:F3:2E:76:02:DC:C5:7D:37:23:28:94:ED X509v3 Authority Key Identifier: keyid:FC:3D:FD:54:01:B6:E0:48:71:62:B4:2E:04:37:67:A2:C2:93:1A:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_D39VAG24EhxYrQuBDdnosKTGnc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/335e98-8b36-4017-928a-ddade3d341c7/1/_D39VAG24EhxYrQuBDdnosKTGnc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/335e98-8b36-4017-928a-ddade3d341c7/1/_D39VAG24EhxYrQuBDdnosKTGnc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:2f:d3:30:8d:8a:d5:57:84:83:c7:e0:72:f4:c5:d5:e6:85: 96:20:cc:3c:ba:8e:e7:22:80:d9:b5:2e:3d:a6:c5:f7:44:bd: 08:0a:e8:90:ac:21:46:fe:e9:dd:52:1e:8c:78:95:34:3c:52: 34:4c:ff:c9:15:b6:7c:80:7d:93:ba:44:8a:d5:84:5b:15:32: 4f:66:09:72:3c:09:26:a8:92:01:c8:9b:03:87:3e:24:ab:35: 55:77:5e:69:81:7f:79:12:27:aa:cb:81:c0:49:0c:a1:14:0f: 18:f5:8a:1f:64:13:7d:23:9b:2a:a9:72:d2:ab:2c:a6:69:9a: a0:26:58:9f:5c:a9:ab:e6:fb:a3:17:ff:ae:a4:39:e0:e7:dd: f9:a5:6e:9b:9d:fb:4b:88:af:78:77:3c:62:9f:b8:4c:f0:e5: f3:e9:8b:60:3e:29:b7:44:8f:a6:9b:2a:27:6d:c2:6f:75:85: 66:76:c3:b6:af:87:de:2b:ba:d7:ce:80:5a:e0:31:f0:55:f7: 29:56:10:d3:bd:ea:29:76:8b:f6:7a:ac:52:ac:c0:8a:b2:61: 2a:ea:4a:27:5e:bb:86:76:93:19:77:b5:30:b1:63:61:4a:4d: bd:53:80:aa:f7:8a:58:d3:03:75:39:3f:d9:67:da:f2:f4:ec: 63:2c:e1:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIptl9brSOyHP/JBNXBQeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZjM2RmZDU0MDFiNmUwNDg3MTYyYjQyZTA0Mzc2N2EyYzI5 MzFhNzcwHhcNMjYwMjA5MTYwMTA3WhcNMjYwMjEwMTYwMTA3WjAzMTEwLwYDVQQD EygyMTRjM2M1NDdjYzFiY2I4ZjMyZTc2MDJkY2M1N2QzNzIzMjg5NGVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApiSz9xN4XOVBVeiFFTlbI8MlqNOo 02PvdFY3cKte/cF5M7vbEwV1GDc5wx3HtvonB+dXcm+myQA8mpQCCDZFerGEPqTi g2NPkyyJQHd/dJ+VsjZxK3OjXOfGJc8ccp8J2+jGR6KAcbjD60R1PAPEjrvv7NBO 0221fivVrlJTd3GYLxwjQXzDactfNgrpYxF1+xfmWLYlFYcbLpSWWdXrLd70XOY4 wmrP2fo3Om+Ucu2DDr6IHJyON4H+uy6o5uy3KP+UIq2dD9zB+SsWjT+CCpNV4RUQ JUptz8+dP7zIDcT90ufCArtvAQm1AL9XkDPAhiZYJ9Cbde9jYyyCYIPRdwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCFMPFR8wby48y52AtzFfTcjKJTtMB8GA1UdIwQY MBaAFPw9/VQBtuBIcWK0LgQ3Z6LCkxp3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX0QzOVZBRzI0RWh4WXJRdUJEZG5vc0tUR25jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi8zMzVlOTgtOGIzNi00MDE3LTkyOGEt ZGRhZGUzZDM0MWM3LzEvX0QzOVZBRzI0RWh4WXJRdUJEZG5vc0tUR25jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi8zMzVlOTgtOGIzNi00MDE3LTkyOGEtZGRhZGUzZDM0MWM3 LzEvX0QzOVZBRzI0RWh4WXJRdUJEZG5vc0tUR25jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAji/TMI2K 1VeEg8fgcvTF1eaFliDMPLqO5yKA2bUuPabF90S9CArokKwhRv7p3VIejHiVNDxS NEz/yRW2fIB9k7pEitWEWxUyT2YJcjwJJqiSAcibA4c+JKs1VXdeaYF/eRInqsuB wEkMoRQPGPWKH2QTfSObKqly0qsspmmaoCZYn1ypq+b7oxf/rqQ54Ofd+aVum537 S4iveHc8Yp+4TPDl8+mLYD4pt0SPppsqJ23Cb3WFZnbDtq+H3iu6186AWuAx8FX3 KVYQ073qKXaL9nqsUqzAirJhKupKJ167hnaTGXe1MLFjYUpNvVOAqveKWNMDdTk/ 2Wfa8vTsYyzhkA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:46:55 2026 by rpki-client