This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.mft File: dqIj-utMXd95nTyiqWDAbB1tHZY.mft (raw, json) Hash identifier: ihMrIjhGGMOPX21z2tcCA8xGrAkCuFr4gis+EBzjPX8= Subject key identifier: 71:E9:78:B6:C7:0A:A5:9E:34:E8:FE:F3:71:BE:EF:AC:D9:5D:43:A4 Authority key identifier: 76:A2:23:FA:EB:4C:5D:DF:79:9D:3C:A2:A9:60:C0:6C:1D:6D:1D:96 Certificate issuer: /CN=76a223faeb4c5ddf799d3ca2a960c06c1d6d1d96 Certificate serial: 019C42467CD7302454C31F0316DC9E977316 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqIj-utMXd95nTyiqWDAbB1tHZY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.mft Manifest number: 0DBE Signing time: Mon 09 Feb 2026 12:00:41 +0000 Manifest this update: Mon 09 Feb 2026 12:00:41 +0000 Manifest next update: Tue 10 Feb 2026 12:00:41 +0000 Files and hashes: 1: dqIj-utMXd95nTyiqWDAbB1tHZY.crl (hash: qHRbBTqmEiXVX1LWnBz15SNqRBE9bgwPHQ0DROfQswE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.mft rsync://rpki.ripe.net/repository/DEFAULT/dqIj-utMXd95nTyiqWDAbB1tHZY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:7c:d7:30:24:54:c3:1f:03:16:dc:9e:97:73:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76a223faeb4c5ddf799d3ca2a960c06c1d6d1d96 Validity Not Before: Feb 9 12:00:41 2026 GMT Not After : Feb 10 12:00:41 2026 GMT Subject: CN=71e978b6c70aa59e34e8fef371beefacd95d43a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:94:05:25:8f:41:2d:76:58:ba:a8:42:bd:08: 12:e0:9f:14:9b:8d:0c:d1:f6:67:66:4d:87:d8:dc: 2e:90:62:4b:8b:6e:33:38:60:34:58:e9:92:b6:6c: 2e:6b:7f:15:ca:56:c2:ca:3e:64:e9:13:a0:9c:55: 4d:73:e4:3d:15:da:d7:c6:54:ca:89:f0:58:21:99: e4:c8:ec:3e:be:28:1a:d3:3b:19:04:69:cc:57:50: 8c:0d:71:a5:86:05:8b:c8:47:9b:1c:d4:38:a5:a9: cf:fb:3a:2c:dc:7c:9c:bb:78:a4:c9:1c:7a:52:be: e7:77:39:c5:fc:3c:ef:0b:57:2b:2a:5f:51:3c:71: 0e:67:bc:fd:89:ee:1d:2c:a0:6c:8e:92:b7:fe:7b: 6a:8a:8a:58:f3:c5:46:f3:f5:c0:45:41:fe:cd:86: ff:34:2e:ce:fe:91:57:d3:43:ce:27:51:44:5c:d8: dc:d7:d4:d4:ca:e3:7a:32:5b:4b:dc:fa:22:14:af: 56:4a:34:0f:36:a1:5a:4b:18:fe:c6:ea:b5:8a:c2: ff:2a:a3:ab:f4:6e:3f:df:41:ef:86:1e:9f:d4:9a: 4c:0d:63:06:c6:72:a0:f5:db:7c:66:4b:4f:19:da: 1d:c8:da:a5:91:a5:d6:6f:eb:e2:1d:bf:80:50:12: 41:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:E9:78:B6:C7:0A:A5:9E:34:E8:FE:F3:71:BE:EF:AC:D9:5D:43:A4 X509v3 Authority Key Identifier: keyid:76:A2:23:FA:EB:4C:5D:DF:79:9D:3C:A2:A9:60:C0:6C:1D:6D:1D:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqIj-utMXd95nTyiqWDAbB1tHZY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:9a:5f:de:58:a8:9a:8b:28:d5:cb:04:27:3f:78:4d:c9:45: 8e:fa:e7:d7:be:a3:c6:f7:5a:ce:6e:27:dc:9f:3d:e8:7a:ba: 7f:78:bd:1c:b2:3d:80:8b:0e:75:80:8a:14:9a:3d:ae:57:59: 7d:12:26:a6:eb:4e:a7:84:81:df:60:f7:88:fa:0f:a2:f5:16: 15:f6:45:d0:7c:18:85:8a:99:58:a8:46:ef:cf:6e:74:00:e8: 3b:41:33:6b:94:13:01:59:64:b5:5a:a8:97:31:c1:15:c8:0b: 5c:50:17:00:5e:36:e0:0b:5c:46:be:9b:39:5a:c1:18:e2:a6: cc:7b:c9:4c:4d:ee:1d:b4:63:92:5f:c5:a5:c2:a5:28:9a:d1: 0c:14:98:51:ee:1b:49:dc:b1:94:6c:b7:73:f6:ab:70:72:f4: 9d:e0:59:2a:7f:f1:81:48:40:1f:47:d5:bd:61:1f:1c:ab:c5: 32:c1:89:06:75:d0:55:31:bc:ef:53:98:ca:ae:aa:4a:d3:e2: 0b:1c:13:6e:70:1a:78:2b:ad:13:79:af:88:2e:c6:7d:8f:3d: 3d:8c:b7:93:70:1f:ec:a2:49:d3:54:12:7b:13:04:96:96:0c: 9c:06:6b:5b:84:b7:dd:08:7f:1e:14:ca:c3:d6:72:70:d3:d5: 7d:ab:92:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRnzXMCRUwx8DFtyel3MWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2YTIyM2ZhZWI0YzVkZGY3OTlkM2NhMmE5NjBjMDZjMWQ2 ZDFkOTYwHhcNMjYwMjA5MTIwMDQxWhcNMjYwMjEwMTIwMDQxWjAzMTEwLwYDVQQD Eyg3MWU5NzhiNmM3MGFhNTllMzRlOGZlZjM3MWJlZWZhY2Q5NWQ0M2E0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZQFJY9BLXZYuqhCvQgS4J8Um40M 0fZnZk2H2NwukGJLi24zOGA0WOmStmwua38VylbCyj5k6ROgnFVNc+Q9FdrXxlTK ifBYIZnkyOw+viga0zsZBGnMV1CMDXGlhgWLyEebHNQ4panP+zos3Hycu3ikyRx6 Ur7ndznF/DzvC1crKl9RPHEOZ7z9ie4dLKBsjpK3/ntqiopY88VG8/XARUH+zYb/ NC7O/pFX00POJ1FEXNjc19TUyuN6MltL3PoiFK9WSjQPNqFaSxj+xuq1isL/KqOr 9G4/30Hvhh6f1JpMDWMGxnKg9dt8ZktPGdodyNqlkaXWb+viHb+AUBJB+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHHpeLbHCqWeNOj+83G+76zZXUOkMB8GA1UdIwQY MBaAFHaiI/rrTF3feZ08oqlgwGwdbR2WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHFJai11dE1YZDk1blR5aXFXREFiQjF0SFpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS81ZjBhYjEtMjM1Yy00Y2RhLWI1Mzgt MWRkZWU4NTVjZGY4LzEvZHFJai11dE1YZDk1blR5aXFXREFiQjF0SFpZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS81ZjBhYjEtMjM1Yy00Y2RhLWI1MzgtMWRkZWU4NTVjZGY4 LzEvZHFJai11dE1YZDk1blR5aXFXREFiQjF0SFpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk5pf3lio moso1csEJz94TclFjvrn176jxvdazm4n3J896Hq6f3i9HLI9gIsOdYCKFJo9rldZ fRImputOp4SB32D3iPoPovUWFfZF0HwYhYqZWKhG789udADoO0Eza5QTAVlktVqo lzHBFcgLXFAXAF424AtcRr6bOVrBGOKmzHvJTE3uHbRjkl/FpcKlKJrRDBSYUe4b SdyxlGy3c/arcHL0neBZKn/xgUhAH0fVvWEfHKvFMsGJBnXQVTG871OYyq6qStPi CxwTbnAaeCutE3mviC7GfY89PYy3k3Af7KJJ01QSexMElpYMnAZrW4S33Qh/HhTK w9ZycNPVfauS1A== -----END CERTIFICATE-----Generated at Mon Feb 9 20:06:38 2026 by rpki-client