This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/4c84cd-0bf1-43a3-b442-65bd4224cdb9/1/0sAfMj0dJYn5qbRi_nDzawn6xjI.mft File: 0sAfMj0dJYn5qbRi_nDzawn6xjI.mft (raw, json) Hash identifier: VmTzAg1T8Hj+ED2RR1evZdeHtVTxWr5/FskqMrOI4FY= Subject key identifier: 83:B8:D6:8F:43:98:D6:5B:20:8F:E2:54:2C:51:BD:0C:96:61:02:60 Authority key identifier: D2:C0:1F:32:3D:1D:25:89:F9:A9:B4:62:FE:70:F3:6B:09:FA:C6:32 Certificate issuer: /CN=d2c01f323d1d2589f9a9b462fe70f36b09fac632 Certificate serial: 019C42460FF014847535F7AD4B53871873D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0sAfMj0dJYn5qbRi_nDzawn6xjI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/4c84cd-0bf1-43a3-b442-65bd4224cdb9/1/0sAfMj0dJYn5qbRi_nDzawn6xjI.mft Manifest number: 083C Signing time: Mon 09 Feb 2026 12:00:13 +0000 Manifest this update: Mon 09 Feb 2026 12:00:13 +0000 Manifest next update: Tue 10 Feb 2026 12:00:13 +0000 Files and hashes: 1: 0sAfMj0dJYn5qbRi_nDzawn6xjI.crl (hash: vAX8HNtpIsyqcqV5Xs0oPvL8bO8QHYuO1ikXWS3LT7Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/4c84cd-0bf1-43a3-b442-65bd4224cdb9/1/0sAfMj0dJYn5qbRi_nDzawn6xjI.crl rsync://rpki.ripe.net/repository/DEFAULT/de/4c84cd-0bf1-43a3-b442-65bd4224cdb9/1/0sAfMj0dJYn5qbRi_nDzawn6xjI.mft rsync://rpki.ripe.net/repository/DEFAULT/0sAfMj0dJYn5qbRi_nDzawn6xjI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:0f:f0:14:84:75:35:f7:ad:4b:53:87:18:73:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2c01f323d1d2589f9a9b462fe70f36b09fac632 Validity Not Before: Feb 9 12:00:13 2026 GMT Not After : Feb 10 12:00:13 2026 GMT Subject: CN=83b8d68f4398d65b208fe2542c51bd0c96610260 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b4:c7:88:3b:65:dd:65:3c:70:23:f4:30:c3: 06:74:11:40:cd:5e:20:f2:95:89:c2:2a:2a:0e:1e: 61:a3:c9:c1:34:c7:a2:43:8c:74:59:1c:e2:1f:09: 66:47:21:31:68:e9:f3:5c:84:5d:34:f2:3a:d8:72: 66:78:ed:04:3e:fa:02:1f:37:29:aa:d0:8c:99:73: e7:cb:d2:a6:57:1c:04:f3:c2:0c:97:22:05:32:92: 00:d4:11:28:54:a7:c3:eb:fa:c1:73:cf:62:6e:af: 56:ea:20:89:8a:7c:b4:41:cb:4f:66:eb:0a:a9:01: 23:a0:b6:06:00:8b:3a:d2:ef:eb:db:03:ff:ea:87: 27:f4:e0:b8:73:7a:fe:43:2e:d7:5d:9a:b8:fa:1f: ce:15:c6:2e:be:f5:a9:25:57:d9:c1:c7:2b:83:29: e3:83:91:56:66:10:75:66:cb:c8:c2:ed:90:9c:2a: 6f:e3:b6:2f:12:2c:8c:53:b3:43:88:7f:ec:80:06: be:a7:c7:44:05:6b:e4:73:16:b8:b9:fb:ba:7c:c0: 73:69:4c:8b:87:b7:18:29:d7:ba:f4:ea:7d:ae:9c: 1a:16:a6:04:8f:17:33:cd:a6:93:62:28:bf:e3:4d: c6:0e:ce:e8:7f:35:ad:2d:ad:9f:5f:5d:93:1e:c6: ba:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:B8:D6:8F:43:98:D6:5B:20:8F:E2:54:2C:51:BD:0C:96:61:02:60 X509v3 Authority Key Identifier: keyid:D2:C0:1F:32:3D:1D:25:89:F9:A9:B4:62:FE:70:F3:6B:09:FA:C6:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0sAfMj0dJYn5qbRi_nDzawn6xjI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/4c84cd-0bf1-43a3-b442-65bd4224cdb9/1/0sAfMj0dJYn5qbRi_nDzawn6xjI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/4c84cd-0bf1-43a3-b442-65bd4224cdb9/1/0sAfMj0dJYn5qbRi_nDzawn6xjI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:74:e2:bc:75:ff:f6:12:a6:c8:74:4b:b1:53:10:96:6c:7d: 12:65:b6:9a:ac:e0:a4:00:96:9b:50:64:53:02:64:29:0c:6b: a8:c6:01:a9:84:70:64:e9:c4:44:69:b0:10:c3:f4:9e:d4:7f: 3d:a0:76:fd:56:de:a6:2d:35:d9:98:1c:a7:46:79:a5:db:59: e6:56:9f:3e:f1:33:56:ed:5b:13:dc:a9:ad:ee:7f:fb:9b:dd: 2f:4f:3e:c2:93:09:73:73:3d:ab:96:d6:cb:01:7f:70:d7:6b: 2e:64:7e:79:46:ac:aa:87:92:79:f8:83:29:f5:43:76:84:6a: 16:71:81:7e:6b:1f:0d:be:a9:55:02:b6:7a:f4:30:7b:f7:81: ad:44:95:94:23:9e:e0:73:5e:c7:86:77:0b:9a:72:cb:51:29: 0b:87:71:31:1e:7e:e3:9a:11:c1:54:7d:da:4d:7f:bf:3c:80: d6:0e:87:4c:cf:eb:9b:73:fc:61:fd:97:82:aa:bb:e7:e0:a9: 45:92:67:92:c8:11:c0:89:b8:13:63:0a:9f:76:88:62:ee:f8: 57:55:97:07:2f:fa:db:ac:1b:78:c4:c8:2e:b6:f3:be:5a:09: 7a:13:e7:fd:3d:d7:aa:b7:a8:07:0b:10:6f:72:0a:2d:f0:f1: 97:72:57:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRg/wFIR1NfetS1OHGHPTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyYzAxZjMyM2QxZDI1ODlmOWE5YjQ2MmZlNzBmMzZiMDlm YWM2MzIwHhcNMjYwMjA5MTIwMDEzWhcNMjYwMjEwMTIwMDEzWjAzMTEwLwYDVQQD Eyg4M2I4ZDY4ZjQzOThkNjViMjA4ZmUyNTQyYzUxYmQwYzk2NjEwMjYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyLTHiDtl3WU8cCP0MMMGdBFAzV4g 8pWJwioqDh5ho8nBNMeiQ4x0WRziHwlmRyExaOnzXIRdNPI62HJmeO0EPvoCHzcp qtCMmXPny9KmVxwE88IMlyIFMpIA1BEoVKfD6/rBc89ibq9W6iCJiny0QctPZusK qQEjoLYGAIs60u/r2wP/6ocn9OC4c3r+Qy7XXZq4+h/OFcYuvvWpJVfZwccrgynj g5FWZhB1ZsvIwu2QnCpv47YvEiyMU7NDiH/sgAa+p8dEBWvkcxa4ufu6fMBzaUyL h7cYKde69Op9rpwaFqYEjxczzaaTYii/403GDs7ofzWtLa2fX12THsa6qwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIO41o9DmNZbII/iVCxRvQyWYQJgMB8GA1UdIwQY MBaAFNLAHzI9HSWJ+am0Yv5w82sJ+sYyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHNBZk1qMGRKWW41cWJSaV9uRHphd242eGpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS80Yzg0Y2QtMGJmMS00M2EzLWI0NDIt NjViZDQyMjRjZGI5LzEvMHNBZk1qMGRKWW41cWJSaV9uRHphd242eGpJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS80Yzg0Y2QtMGJmMS00M2EzLWI0NDItNjViZDQyMjRjZGI5 LzEvMHNBZk1qMGRKWW41cWJSaV9uRHphd242eGpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV3TivHX/ 9hKmyHRLsVMQlmx9EmW2mqzgpACWm1BkUwJkKQxrqMYBqYRwZOnERGmwEMP0ntR/ PaB2/Vbepi012Zgcp0Z5pdtZ5lafPvEzVu1bE9ypre5/+5vdL08+wpMJc3M9q5bW ywF/cNdrLmR+eUasqoeSefiDKfVDdoRqFnGBfmsfDb6pVQK2evQwe/eBrUSVlCOe 4HNex4Z3C5pyy1EpC4dxMR5+45oRwVR92k1/vzyA1g6HTM/rm3P8Yf2Xgqq75+Cp RZJnksgRwIm4E2MKn3aIYu74V1WXBy/626wbeMTILrbzvloJehPn/T3XqreoBwsQ b3IKLfDxl3JXkw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:41 2026 by rpki-client