This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/818ac5-93dd-40fd-bf6f-e04f8fcc2ca1/1/dXHIkpmbtFZLzkgMkhtv8XIF7MY.mft File: dXHIkpmbtFZLzkgMkhtv8XIF7MY.mft (raw, json) Hash identifier: LkihUN4mBtnDE+TfH9MQUFVobHrvxpLQGT26ld89F60= Subject key identifier: 8F:5B:D3:04:56:65:DB:BE:C9:26:60:B0:7D:6C:67:64:66:5F:36:21 Authority key identifier: 75:71:C8:92:99:9B:B4:56:4B:CE:48:0C:92:1B:6F:F1:72:05:EC:C6 Certificate issuer: /CN=7571c892999bb4564bce480c921b6ff17205ecc6 Certificate serial: 019C43FD95EFC504EB1BE73FC39E40A95FEF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dXHIkpmbtFZLzkgMkhtv8XIF7MY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/818ac5-93dd-40fd-bf6f-e04f8fcc2ca1/1/dXHIkpmbtFZLzkgMkhtv8XIF7MY.mft Manifest number: 07EF Signing time: Mon 09 Feb 2026 20:00:18 +0000 Manifest this update: Mon 09 Feb 2026 20:00:18 +0000 Manifest next update: Tue 10 Feb 2026 20:00:18 +0000 Files and hashes: 1: dXHIkpmbtFZLzkgMkhtv8XIF7MY.crl (hash: nSC7d0adV8zglkjgype9K7qCJGfYQRyD2s/O32F8crw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/818ac5-93dd-40fd-bf6f-e04f8fcc2ca1/1/dXHIkpmbtFZLzkgMkhtv8XIF7MY.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/818ac5-93dd-40fd-bf6f-e04f8fcc2ca1/1/dXHIkpmbtFZLzkgMkhtv8XIF7MY.mft rsync://rpki.ripe.net/repository/DEFAULT/dXHIkpmbtFZLzkgMkhtv8XIF7MY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:95:ef:c5:04:eb:1b:e7:3f:c3:9e:40:a9:5f:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7571c892999bb4564bce480c921b6ff17205ecc6 Validity Not Before: Feb 9 20:00:18 2026 GMT Not After : Feb 10 20:00:18 2026 GMT Subject: CN=8f5bd3045665dbbec92660b07d6c6764665f3621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e3:9c:21:d4:e6:dc:a6:37:34:d5:4e:a0:62: 0f:d5:31:5a:2e:fa:18:56:b4:d3:fb:4c:c0:a1:46: 9d:da:1d:15:19:87:86:84:b5:49:11:f6:ef:64:de: 47:02:09:e7:c4:78:d4:b1:fb:3a:84:9b:42:dd:ca: c2:c8:32:a5:88:21:96:f8:a6:45:4c:ec:b1:ca:cc: fa:29:dd:39:eb:a3:92:66:12:bb:9d:c5:34:0e:09: 73:d0:0a:78:a1:77:7c:2e:5b:50:0b:8f:32:3c:a1: ba:fe:d4:40:0c:7b:d0:7d:9a:ce:46:75:9e:5c:d3: f0:45:b6:07:f5:73:30:d2:3f:43:9a:ec:e1:3c:63: fc:d5:67:3a:dd:e6:22:37:26:3e:0a:81:13:3a:c2: a0:2d:76:4b:ce:2e:00:29:09:15:d2:09:cb:b6:24: 0e:41:cd:aa:30:a1:17:ee:fe:a7:e7:27:64:dc:ce: d5:eb:74:77:d4:bd:7a:66:58:5d:74:5c:bd:af:f8: a0:15:03:e2:96:56:ed:62:ed:1f:68:7e:f9:7e:17: 2b:dd:13:a1:bd:ae:5a:dc:f7:89:2a:38:49:12:d6: b3:49:9a:9a:7b:fd:9b:36:d1:6b:51:86:76:dc:e8: dc:a4:aa:19:bf:ce:6b:4e:c2:fe:31:88:85:c3:80: ff:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:5B:D3:04:56:65:DB:BE:C9:26:60:B0:7D:6C:67:64:66:5F:36:21 X509v3 Authority Key Identifier: keyid:75:71:C8:92:99:9B:B4:56:4B:CE:48:0C:92:1B:6F:F1:72:05:EC:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dXHIkpmbtFZLzkgMkhtv8XIF7MY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/818ac5-93dd-40fd-bf6f-e04f8fcc2ca1/1/dXHIkpmbtFZLzkgMkhtv8XIF7MY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/818ac5-93dd-40fd-bf6f-e04f8fcc2ca1/1/dXHIkpmbtFZLzkgMkhtv8XIF7MY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:90:c6:13:19:8b:0f:9a:13:8f:35:ba:aa:92:b6:c1:b9:47: 5e:a8:a4:2d:4d:f6:c3:f7:b3:c7:e1:43:64:d1:aa:3e:c9:09: b6:73:61:fa:f1:70:f5:f2:c5:cf:40:d6:d0:18:e7:ef:ec:4d: 85:94:dc:04:b1:85:68:6e:3c:18:40:e4:27:3c:57:ef:82:f3: 07:46:d1:48:6a:2f:d8:63:18:26:d3:98:6e:e7:a8:7a:65:e7: 00:9d:04:04:15:36:44:3e:56:db:6d:3a:db:76:f9:e8:0e:08: 3f:60:7c:a4:e5:81:ae:03:ef:19:45:33:98:14:db:44:50:77: 73:f5:99:9e:ca:82:62:f4:33:48:dd:f9:55:ae:29:1b:12:f6: 51:e9:70:bd:4c:cc:a1:43:e0:aa:cf:a0:70:00:b2:3c:f8:af: c8:c2:42:b7:07:84:60:3f:8c:b8:bd:a1:f1:b3:73:ba:23:d2: ae:5b:05:ed:03:c4:ba:38:cf:8a:03:10:c9:12:79:e2:97:91: e3:82:b3:21:d5:b4:79:96:0f:59:f1:65:fd:47:85:18:eb:fb: 89:ed:98:da:92:76:4b:d3:0a:6c:c9:9e:46:b5:7c:50:a5:a2: be:4c:cb:6f:b6:86:b9:01:d4:f7:71:02:24:96:41:e5:98:09: 10:a9:82:2b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/ZXvxQTrG+c/w55AqV/vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1NzFjODkyOTk5YmI0NTY0YmNlNDgwYzkyMWI2ZmYxNzIw NWVjYzYwHhcNMjYwMjA5MjAwMDE4WhcNMjYwMjEwMjAwMDE4WjAzMTEwLwYDVQQD Eyg4ZjViZDMwNDU2NjVkYmJlYzkyNjYwYjA3ZDZjNjc2NDY2NWYzNjIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuOOcIdTm3KY3NNVOoGIP1TFaLvoY VrTT+0zAoUad2h0VGYeGhLVJEfbvZN5HAgnnxHjUsfs6hJtC3crCyDKliCGW+KZF TOyxysz6Kd0566OSZhK7ncU0Dglz0Ap4oXd8LltQC48yPKG6/tRADHvQfZrORnWe XNPwRbYH9XMw0j9DmuzhPGP81Wc63eYiNyY+CoETOsKgLXZLzi4AKQkV0gnLtiQO Qc2qMKEX7v6n5ydk3M7V63R31L16ZlhddFy9r/igFQPillbtYu0faH75fhcr3ROh va5a3PeJKjhJEtazSZqae/2bNtFrUYZ23OjcpKoZv85rTsL+MYiFw4D/DQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI9b0wRWZdu+ySZgsH1sZ2RmXzYhMB8GA1UdIwQY MBaAFHVxyJKZm7RWS85IDJIbb/FyBezGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFhISWtwbWJ0RlpMemtnTWtodHY4WElGN01ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC84MThhYzUtOTNkZC00MGZkLWJmNmYt ZTA0ZjhmY2MyY2ExLzEvZFhISWtwbWJ0RlpMemtnTWtodHY4WElGN01ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC84MThhYzUtOTNkZC00MGZkLWJmNmYtZTA0ZjhmY2MyY2Ex LzEvZFhISWtwbWJ0RlpMemtnTWtodHY4WElGN01ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfJDGExmL D5oTjzW6qpK2wblHXqikLU32w/ezx+FDZNGqPskJtnNh+vFw9fLFz0DW0Bjn7+xN hZTcBLGFaG48GEDkJzxX74LzB0bRSGov2GMYJtOYbueoemXnAJ0EBBU2RD5W2206 23b56A4IP2B8pOWBrgPvGUUzmBTbRFB3c/WZnsqCYvQzSN35Va4pGxL2UelwvUzM oUPgqs+gcACyPPivyMJCtweEYD+MuL2h8bNzuiPSrlsF7QPEujjPigMQyRJ54peR 44KzIdW0eZYPWfFl/UeFGOv7ie2Y2pJ2S9MKbMmeRrV8UKWivkzLb7aGuQHU93EC JJZB5ZgJEKmCKw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:41:38 2026 by rpki-client