This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.mft File: 29B3gCIiIDwWzo6v1Z8LCsHb58M.mft (raw, json) Hash identifier: DkVvzT2JKzOaNl5mFFqrjJ0qIR79ux7lSn1vWlXPBVE= Subject key identifier: C5:46:F3:FE:C2:0F:4D:65:42:A5:3F:3F:CC:5E:71:B2:FC:4D:0A:CA Authority key identifier: DB:D0:77:80:22:22:20:3C:16:CE:8E:AF:D5:9F:0B:0A:C1:DB:E7:C3 Certificate issuer: /CN=dbd077802222203c16ce8eafd59f0b0ac1dbe7c3 Certificate serial: 019C43225F9F55B8A610F61D4364014946FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/29B3gCIiIDwWzo6v1Z8LCsHb58M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.mft Manifest number: 10C5 Signing time: Mon 09 Feb 2026 16:00:51 +0000 Manifest this update: Mon 09 Feb 2026 16:00:51 +0000 Manifest next update: Tue 10 Feb 2026 16:00:51 +0000 Files and hashes: 1: 29B3gCIiIDwWzo6v1Z8LCsHb58M.crl (hash: Q/BSwe6HfLq9of6d7BqX262ETKewMme3rd7Pxsl41Do=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.crl rsync://rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.mft rsync://rpki.ripe.net/repository/DEFAULT/29B3gCIiIDwWzo6v1Z8LCsHb58M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:5f:9f:55:b8:a6:10:f6:1d:43:64:01:49:46:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dbd077802222203c16ce8eafd59f0b0ac1dbe7c3 Validity Not Before: Feb 9 16:00:51 2026 GMT Not After : Feb 10 16:00:51 2026 GMT Subject: CN=c546f3fec20f4d6542a53f3fcc5e71b2fc4d0aca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:02:8b:9f:87:f9:f6:e0:35:cd:23:9f:2b:db: c0:b8:7a:3a:66:84:e6:79:f4:5a:43:91:f4:16:77: b0:a6:9e:56:39:a9:8a:91:8c:fd:9e:2a:69:92:4b: e2:01:ce:bf:ef:7f:1e:fb:28:c3:0b:72:cd:4e:37: 00:33:8b:cf:05:a6:02:0d:cd:4b:4a:ca:aa:1a:3f: ff:af:63:9c:b5:80:36:56:e6:a3:9d:ed:73:17:01: 62:a7:c7:38:c1:d0:9b:53:fe:b6:b9:27:dc:80:bc: 36:a7:6d:5d:42:2f:0c:1e:53:83:66:1b:00:37:6d: 2d:b8:f2:74:85:b9:f5:56:3f:78:8b:ea:7a:ea:10: 4b:d7:0e:53:de:8f:52:08:c5:d5:a5:79:d7:40:76: 64:f0:ba:6e:01:99:47:59:ba:45:61:14:de:98:76: 01:ac:58:8e:23:93:b3:72:14:e1:b8:a5:f0:d3:1b: 7e:f7:61:a3:72:87:ef:8c:a7:b2:ba:0f:31:ee:ec: 05:d6:bf:cd:bb:bf:8c:76:0e:f5:30:08:2c:f0:5a: 9b:75:22:87:db:07:13:76:0c:ce:16:6b:c1:a5:06: 62:92:c5:f9:0d:69:d4:0b:dd:ce:4a:75:8e:0c:1f: bc:28:d0:68:c1:b8:d0:0a:6f:84:7d:54:e9:0e:0e: fb:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:46:F3:FE:C2:0F:4D:65:42:A5:3F:3F:CC:5E:71:B2:FC:4D:0A:CA X509v3 Authority Key Identifier: keyid:DB:D0:77:80:22:22:20:3C:16:CE:8E:AF:D5:9F:0B:0A:C1:DB:E7:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/29B3gCIiIDwWzo6v1Z8LCsHb58M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:52:fa:7e:40:63:29:01:71:1c:d6:cc:15:99:91:e1:82:e0: d4:cd:33:50:ea:1e:71:14:41:0a:68:62:ac:fc:e8:df:a6:cb: 08:7f:35:37:11:14:e0:75:2b:2b:ff:a3:4a:86:03:f5:40:d1: 0e:86:35:68:d0:b1:f2:99:37:a7:62:07:4a:f8:8d:cf:1c:35: 84:68:73:69:23:13:a8:ce:22:3c:2b:3b:ed:bc:2f:73:2e:20: d2:23:33:e5:75:fe:ce:58:6f:34:aa:87:5a:b3:7c:05:67:c7: 86:c4:69:d3:a4:f5:e4:50:6e:e5:2d:f9:23:a7:72:62:11:e8: a7:5a:0e:3a:15:7a:21:04:5c:c7:d6:c1:65:34:ba:c4:59:1d: 47:f8:d2:f3:e2:3a:26:ef:e6:8c:8c:b3:a7:7f:d0:ca:9f:3c: 24:9c:83:4d:56:b0:2d:35:92:73:56:c6:a1:48:b3:f3:88:d9: 0d:cb:8b:29:c0:b9:36:84:8e:79:4f:65:36:ff:fb:07:ab:06: aa:73:50:29:16:e9:91:55:4e:f5:a1:58:cf:da:7c:04:5d:ae: 5a:9f:74:6b:f4:55:3c:7b:79:e7:73:56:5e:a5:d4:0a:04:e3: b1:99:14:ce:6a:b8:54:18:3c:16:a6:28:40:1b:ae:e7:63:db: 94:f8:25:e8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIl+fVbimEPYdQ2QBSUb8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiZDA3NzgwMjIyMjIwM2MxNmNlOGVhZmQ1OWYwYjBhYzFk YmU3YzMwHhcNMjYwMjA5MTYwMDUxWhcNMjYwMjEwMTYwMDUxWjAzMTEwLwYDVQQD EyhjNTQ2ZjNmZWMyMGY0ZDY1NDJhNTNmM2ZjYzVlNzFiMmZjNGQwYWNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9AKLn4f59uA1zSOfK9vAuHo6ZoTm efRaQ5H0Fnewpp5WOamKkYz9nippkkviAc6/738e+yjDC3LNTjcAM4vPBaYCDc1L SsqqGj//r2OctYA2Vuajne1zFwFip8c4wdCbU/62uSfcgLw2p21dQi8MHlODZhsA N20tuPJ0hbn1Vj94i+p66hBL1w5T3o9SCMXVpXnXQHZk8LpuAZlHWbpFYRTemHYB rFiOI5OzchThuKXw0xt+92GjcofvjKeyug8x7uwF1r/Nu7+Mdg71MAgs8FqbdSKH 2wcTdgzOFmvBpQZiksX5DWnUC93OSnWODB+8KNBowbjQCm+EfVTpDg77rQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMVG8/7CD01lQqU/P8xecbL8TQrKMB8GA1UdIwQY MBaAFNvQd4AiIiA8Fs6Or9WfCwrB2+fDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjlCM2dDSWlJRHdXem82djFaOExDc0hiNThNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS81ZmEwOTQtZWZhNS00Y2Y3LTg2YjAt NWRkOTQ1MjllZWVhLzEvMjlCM2dDSWlJRHdXem82djFaOExDc0hiNThNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS81ZmEwOTQtZWZhNS00Y2Y3LTg2YjAtNWRkOTQ1MjllZWVh LzEvMjlCM2dDSWlJRHdXem82djFaOExDc0hiNThNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACVL6fkBj KQFxHNbMFZmR4YLg1M0zUOoecRRBCmhirPzo36bLCH81NxEU4HUrK/+jSoYD9UDR DoY1aNCx8pk3p2IHSviNzxw1hGhzaSMTqM4iPCs77bwvcy4g0iMz5XX+zlhvNKqH WrN8BWfHhsRp06T15FBu5S35I6dyYhHop1oOOhV6IQRcx9bBZTS6xFkdR/jS8+I6 Ju/mjIyzp3/Qyp88JJyDTVawLTWSc1bGoUiz84jZDcuLKcC5NoSOeU9lNv/7B6sG qnNQKRbpkVVO9aFYz9p8BF2uWp90a/RVPHt553NWXqXUCgTjsZkUzmq4VBg8FqYo QBuu52PblPgl6A== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:07 2026 by rpki-client