This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft File: dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft (raw, json) Hash identifier: IztXYMkcquu9TZvzmEWIr/U06CXzs4QiHTSzKMNYI8A= Subject key identifier: 10:2A:EC:0D:D7:0B:7F:31:74:AB:56:70:22:5C:FB:92:94:7B:E2:98 Authority key identifier: 76:07:F6:9D:EE:43:AC:01:D7:DF:EA:CA:9B:76:A2:40:EA:6E:F3:66 Certificate issuer: /CN=7607f69dee43ac01d7dfeaca9b76a240ea6ef366 Certificate serial: 019C4322EC8134D5D8FDD1EAD44387A18135 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft Manifest number: 063B Signing time: Mon 09 Feb 2026 16:01:28 +0000 Manifest this update: Mon 09 Feb 2026 16:01:28 +0000 Manifest next update: Tue 10 Feb 2026 16:01:28 +0000 Files and hashes: 1: dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl (hash: 5NWy7RlpAVOn6wbTDfxvUjBXjicKmR8rn5j3ugIcheU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:ec:81:34:d5:d8:fd:d1:ea:d4:43:87:a1:81:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7607f69dee43ac01d7dfeaca9b76a240ea6ef366 Validity Not Before: Feb 9 16:01:28 2026 GMT Not After : Feb 10 16:01:28 2026 GMT Subject: CN=102aec0dd70b7f3174ab5670225cfb92947be298 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:3f:59:36:3e:39:9c:fd:d5:6a:f4:22:1f:ba: 28:27:13:40:ca:b5:7f:2f:7c:e1:d7:f2:05:a5:b3: a6:8a:fe:3d:1e:ca:ae:be:be:64:8f:d8:02:f8:65: 92:cb:f0:c6:e1:1b:6d:b6:41:74:f4:87:ee:c7:50: fe:73:88:ed:df:19:08:25:c5:41:b5:2e:ed:87:87: 7b:a7:82:a3:c6:9d:e2:9e:20:d5:a4:c6:fd:8e:d2: e7:ab:f0:60:4c:37:e7:8e:65:c8:a4:77:63:43:33: 01:d6:4e:0f:f8:a6:b3:bb:85:b9:a3:32:49:1c:05: 28:9d:d9:14:49:f5:45:a8:ec:b4:c9:f2:60:27:2c: eb:ef:16:cb:0a:21:b6:2b:2e:cc:69:f7:1d:fd:c4: 2b:76:82:80:c7:83:b5:4f:c2:ef:dd:7f:c6:d8:f0: a2:db:3b:5e:34:33:55:2b:9c:66:1c:01:9b:00:47: 22:2f:2f:73:f6:a9:a3:00:80:2a:bb:fb:eb:67:e4: b2:69:41:af:3a:e9:f0:0b:57:86:1e:f7:fe:03:0d: e2:11:6a:e5:44:66:ed:ef:26:3e:9a:39:d3:52:d9: 23:f9:aa:a6:48:58:93:01:04:a3:08:67:3e:3b:6d: 90:08:76:79:a4:2d:e8:35:6e:c1:1b:89:3e:67:39: 91:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:2A:EC:0D:D7:0B:7F:31:74:AB:56:70:22:5C:FB:92:94:7B:E2:98 X509v3 Authority Key Identifier: keyid:76:07:F6:9D:EE:43:AC:01:D7:DF:EA:CA:9B:76:A2:40:EA:6E:F3:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:fc:12:85:07:12:8d:21:87:63:df:34:e4:9e:13:ae:64:d3: 95:15:28:02:e9:59:b7:bd:05:5d:85:b2:ac:b9:30:4f:12:a0: 1c:a0:d3:48:1a:81:00:5b:52:76:42:03:53:be:13:85:a7:5b: 54:a6:f9:9b:68:d1:93:99:b1:63:3d:b3:ed:13:8e:45:44:74: f9:94:b2:a2:f8:4f:66:f1:b1:f9:33:be:cf:aa:f0:61:8e:25: 38:fe:d0:6a:55:03:0d:a6:7d:ba:9e:ba:d9:3f:10:54:d3:df: 9c:89:57:60:f5:38:97:f8:03:4e:58:24:66:82:10:4c:11:7b: 87:a8:42:e3:ab:98:b0:0a:7b:5c:83:63:0a:19:7d:eb:00:50: 75:fc:3e:62:29:b4:b1:99:81:40:b0:cd:2b:c2:17:73:bc:f1: 11:88:b8:6d:f5:9e:f2:a2:b1:74:23:a8:ad:b6:9d:ce:e8:3e: 37:86:fc:27:53:38:6d:76:02:58:5c:44:f1:4f:b3:af:73:67: 07:81:7a:b9:fc:47:a5:07:c5:d7:56:ec:03:ad:11:df:ac:6e: 31:7c:f1:6d:1d:7b:85:41:12:41:cb:b8:1c:08:79:d9:60:5d: fe:99:4e:d5:62:17:0d:8c:38:25:11:ac:c9:ad:fd:09:fa:fd: 70:99:4a:2e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIuyBNNXY/dHq1EOHoYE1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2MDdmNjlkZWU0M2FjMDFkN2RmZWFjYTliNzZhMjQwZWE2 ZWYzNjYwHhcNMjYwMjA5MTYwMTI4WhcNMjYwMjEwMTYwMTI4WjAzMTEwLwYDVQQD EygxMDJhZWMwZGQ3MGI3ZjMxNzRhYjU2NzAyMjVjZmI5Mjk0N2JlMjk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApT9ZNj45nP3VavQiH7ooJxNAyrV/ L3zh1/IFpbOmiv49Hsquvr5kj9gC+GWSy/DG4RtttkF09Ifux1D+c4jt3xkIJcVB tS7th4d7p4Kjxp3iniDVpMb9jtLnq/BgTDfnjmXIpHdjQzMB1k4P+Kazu4W5ozJJ HAUondkUSfVFqOy0yfJgJyzr7xbLCiG2Ky7Mafcd/cQrdoKAx4O1T8Lv3X/G2PCi 2zteNDNVK5xmHAGbAEciLy9z9qmjAIAqu/vrZ+SyaUGvOunwC1eGHvf+Aw3iEWrl RGbt7yY+mjnTUtkj+aqmSFiTAQSjCGc+O22QCHZ5pC3oNW7BG4k+ZzmRGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBAq7A3XC38xdKtWcCJc+5KUe+KYMB8GA1UdIwQY MBaAFHYH9p3uQ6wB19/qypt2okDqbvNmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZGdmMm5lNURyQUhYMy1yS20zYWlRT3B1ODJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8yY2RiM2QtYWI0My00NTI2LTgzNTct YzAyNDNhM2JkYWZiLzEvZGdmMm5lNURyQUhYMy1yS20zYWlRT3B1ODJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS8yY2RiM2QtYWI0My00NTI2LTgzNTctYzAyNDNhM2JkYWZi LzEvZGdmMm5lNURyQUhYMy1yS20zYWlRT3B1ODJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHPwShQcS jSGHY9805J4TrmTTlRUoAulZt70FXYWyrLkwTxKgHKDTSBqBAFtSdkIDU74Thadb VKb5m2jRk5mxYz2z7ROORUR0+ZSyovhPZvGx+TO+z6rwYY4lOP7QalUDDaZ9up66 2T8QVNPfnIlXYPU4l/gDTlgkZoIQTBF7h6hC46uYsAp7XINjChl96wBQdfw+Yim0 sZmBQLDNK8IXc7zxEYi4bfWe8qKxdCOorbadzug+N4b8J1M4bXYCWFxE8U+zr3Nn B4F6ufxHpQfF11bsA60R36xuMXzxbR17hUESQcu4HAh52WBd/plO1WIXDYw4JRGs ya39Cfr9cJlKLg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:15 2026 by rpki-client