This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.mft File: Dimkgt4NVnRsMEUmn5kgUgT5VIQ.mft (raw, json) Hash identifier: 58m1QHkE6reSynbosTDDlQA6Cf0pQVX/sNw9X/xEqL4= Subject key identifier: C0:B8:BC:D0:D9:BC:5B:85:53:B2:7D:CF:33:4A:C5:CE:ED:1F:5C:A8 Authority key identifier: 0E:29:A4:82:DE:0D:56:74:6C:30:45:26:9F:99:20:52:04:F9:54:84 Certificate issuer: /CN=0e29a482de0d56746c3045269f99205204f95484 Certificate serial: 019C4321EF8D5710C72A43834919ED9D6E8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.mft Manifest number: 13B6 Signing time: Mon 09 Feb 2026 16:00:23 +0000 Manifest this update: Mon 09 Feb 2026 16:00:23 +0000 Manifest next update: Tue 10 Feb 2026 16:00:23 +0000 Files and hashes: 1: Dimkgt4NVnRsMEUmn5kgUgT5VIQ.crl (hash: fQYIJTRTiGH9QKMkiEEcvbj+CrisMq211eiEbAl4Eug=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:ef:8d:57:10:c7:2a:43:83:49:19:ed:9d:6e:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e29a482de0d56746c3045269f99205204f95484 Validity Not Before: Feb 9 16:00:23 2026 GMT Not After : Feb 10 16:00:23 2026 GMT Subject: CN=c0b8bcd0d9bc5b8553b27dcf334ac5ceed1f5ca8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:94:8c:be:1b:9a:19:fe:c4:05:a0:8f:d6:f2: ac:77:64:3e:fd:4e:c1:4c:f6:5a:3b:de:18:d3:05: 77:91:9a:72:6f:b4:01:b4:d1:3f:a0:59:3c:5d:cd: 06:0c:19:4e:39:fb:45:67:8c:64:b4:eb:99:0a:9a: 31:c0:aa:97:48:d7:3b:e7:3f:6b:28:6e:63:35:78: ac:55:ad:fa:35:56:7f:0d:14:d4:8a:ee:5f:b1:67: 35:53:bb:f0:db:6c:00:64:3a:67:b4:94:00:9c:3e: 2d:d8:0e:1b:16:16:83:cb:d0:ee:b5:6e:a4:44:3e: 46:da:b4:c4:e8:37:38:cc:33:6b:c4:34:42:79:b5: f5:e9:fa:f9:2d:3b:75:4e:24:69:64:fb:85:47:74: 30:35:d4:12:92:2c:77:eb:d0:32:82:0f:0f:34:af: bf:4e:a8:c2:12:4e:eb:45:35:c2:6b:29:40:5c:b0: 07:9a:fe:ef:71:36:42:2e:c9:02:21:92:fb:72:c9: f7:f9:75:ef:e6:b2:59:87:99:e7:6d:74:88:7b:66: 88:f0:ff:63:e3:ef:bd:f2:6a:d9:17:63:b1:5e:2d: 96:da:bd:b6:eb:af:3f:fe:7f:88:fd:b8:15:40:d8: 18:19:07:a4:eb:79:42:0c:e3:4f:43:b7:5d:f5:e9: b0:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:B8:BC:D0:D9:BC:5B:85:53:B2:7D:CF:33:4A:C5:CE:ED:1F:5C:A8 X509v3 Authority Key Identifier: keyid:0E:29:A4:82:DE:0D:56:74:6C:30:45:26:9F:99:20:52:04:F9:54:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:b4:33:94:a5:8e:4c:d6:ed:12:2d:f8:be:ca:9b:bf:c7:ef: 3c:ec:9d:a9:a1:e7:ea:55:c5:3e:f7:a5:a6:80:e2:51:9d:70: ee:6a:e4:af:15:73:b4:45:8c:f9:3c:82:54:fd:15:90:75:47: 24:74:75:68:9a:db:b0:1d:19:17:58:16:a4:21:d0:9f:94:54: b8:2a:fe:38:0d:0c:e3:8c:19:5f:a4:4b:7f:81:30:f7:92:a0: 83:37:4a:4b:d7:2b:1f:ae:38:ae:a5:a3:8a:08:7d:af:80:fc: ba:38:25:db:82:b5:d5:e1:b9:a0:e8:80:13:ae:37:bb:ea:d4: 4a:d6:b4:41:c2:11:7d:01:ac:05:cd:32:72:8b:8a:6d:2c:af: a4:97:f6:9d:2a:02:76:87:f4:46:c8:31:45:9c:73:15:38:ea: 88:d5:12:1c:ab:dd:d6:7f:44:5e:07:ca:49:2b:68:42:90:f8: c1:d3:fd:5c:03:22:d4:af:8d:12:61:86:e6:ca:2f:40:f2:df: f3:af:50:08:eb:ac:5c:22:c9:bd:5a:95:da:46:1c:2d:c9:8b: 17:87:f6:85:20:9d:b8:ab:75:0a:4b:8a:57:aa:b2:fb:df:23: 6d:b9:cb:5c:c5:c9:20:0c:5d:74:8d:be:d6:0f:65:47:43:7b: df:36:4f:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIe+NVxDHKkODSRntnW6NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlMjlhNDgyZGUwZDU2NzQ2YzMwNDUyNjlmOTkyMDUyMDRm OTU0ODQwHhcNMjYwMjA5MTYwMDIzWhcNMjYwMjEwMTYwMDIzWjAzMTEwLwYDVQQD EyhjMGI4YmNkMGQ5YmM1Yjg1NTNiMjdkY2YzMzRhYzVjZWVkMWY1Y2E4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1JSMvhuaGf7EBaCP1vKsd2Q+/U7B TPZaO94Y0wV3kZpyb7QBtNE/oFk8Xc0GDBlOOftFZ4xktOuZCpoxwKqXSNc75z9r KG5jNXisVa36NVZ/DRTUiu5fsWc1U7vw22wAZDpntJQAnD4t2A4bFhaDy9DutW6k RD5G2rTE6Dc4zDNrxDRCebX16fr5LTt1TiRpZPuFR3QwNdQSkix369Aygg8PNK+/ TqjCEk7rRTXCaylAXLAHmv7vcTZCLskCIZL7csn3+XXv5rJZh5nnbXSIe2aI8P9j 4++98mrZF2OxXi2W2r22668//n+I/bgVQNgYGQek63lCDONPQ7dd9emwtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMC4vNDZvFuFU7J9zzNKxc7tH1yoMB8GA1UdIwQY MBaAFA4ppILeDVZ0bDBFJp+ZIFIE+VSEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGlta2d0NE5WblJzTUVVbW41a2dVZ1Q1VklRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8xNGEyNzMtOGI3NS00NzZjLWI5ZTMt OGJiZDkzOTQwZWVmLzEvRGlta2d0NE5WblJzTUVVbW41a2dVZ1Q1VklRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy8xNGEyNzMtOGI3NS00NzZjLWI5ZTMtOGJiZDkzOTQwZWVm LzEvRGlta2d0NE5WblJzTUVVbW41a2dVZ1Q1VklRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn7QzlKWO TNbtEi34vsqbv8fvPOydqaHn6lXFPvelpoDiUZ1w7mrkrxVztEWM+TyCVP0VkHVH JHR1aJrbsB0ZF1gWpCHQn5RUuCr+OA0M44wZX6RLf4Ew95KggzdKS9crH644rqWj igh9r4D8ujgl24K11eG5oOiAE643u+rUSta0QcIRfQGsBc0ycouKbSyvpJf2nSoC dof0RsgxRZxzFTjqiNUSHKvd1n9EXgfKSStoQpD4wdP9XAMi1K+NEmGG5sovQPLf 869QCOusXCLJvVqV2kYcLcmLF4f2hSCduKt1CkuKV6qy+98jbbnLXMXJIAxddI2+ 1g9lR0N73zZPig== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:42 2026 by rpki-client