This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft File: D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft (raw, json) Hash identifier: zjGPN/P0sQmlCso9yrsizgRZjmFAFZY0rJVL4nw77ns= Subject key identifier: 85:31:3B:E6:66:58:3F:3C:FA:DA:F0:80:F7:89:79:65:9D:B4:44:97 Authority key identifier: 0F:79:76:05:20:B7:C1:5C:2E:42:60:30:82:72:B8:49:F8:8E:D6:77 Certificate issuer: /CN=0f79760520b7c15c2e4260308272b849f88ed677 Certificate serial: 019C435966A9994274168481EEBC27D9702C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3l2BSC3wVwuQmAwgnK4SfiO1nc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft Manifest number: 180F Signing time: Mon 09 Feb 2026 17:00:58 +0000 Manifest this update: Mon 09 Feb 2026 17:00:58 +0000 Manifest next update: Tue 10 Feb 2026 17:00:58 +0000 Files and hashes: 1: D3l2BSC3wVwuQmAwgnK4SfiO1nc.crl (hash: Pq/WRgX2YIvC+nCj5G3GjMuqj8loPQ8Bf0gjkT/1A/w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.crl rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft rsync://rpki.ripe.net/repository/DEFAULT/D3l2BSC3wVwuQmAwgnK4SfiO1nc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:66:a9:99:42:74:16:84:81:ee:bc:27:d9:70:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f79760520b7c15c2e4260308272b849f88ed677 Validity Not Before: Feb 9 17:00:58 2026 GMT Not After : Feb 10 17:00:58 2026 GMT Subject: CN=85313be666583f3cfadaf080f78979659db44497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:52:9d:c6:d2:fe:60:d5:c7:c4:5f:c1:72:c9: ae:1a:58:c7:d3:ce:f5:60:20:6b:b6:22:40:bf:2e: cc:4c:3e:0e:b6:fc:c2:b8:20:94:bc:23:ec:fe:d9: 78:d3:63:eb:a3:30:c1:50:17:4c:bb:15:0f:69:47: 0f:5a:ef:cf:6c:d4:b5:3f:8f:15:bd:6b:2c:6c:17: 5c:6c:2f:60:26:20:3f:52:d3:16:7c:35:39:f5:7d: 4a:d2:a0:1d:2e:8b:c8:a4:d5:0c:86:4f:5a:a4:51: 1f:88:43:b8:cb:b9:d6:df:25:3e:d9:fc:a5:e5:73: 5a:28:6c:b2:ea:80:e6:34:0e:aa:a9:7a:55:0b:6d: d7:40:25:c6:6c:01:ae:18:48:3c:fd:cd:ba:d8:53: 21:26:95:8c:cf:f5:59:0e:09:7a:8b:c5:e1:d3:3a: 73:af:d7:56:eb:80:71:7b:c4:8c:d1:06:d2:51:44: ea:93:6a:de:13:90:a2:53:56:90:83:14:27:c7:33: a8:25:d9:06:89:9f:b9:ad:04:75:e1:07:3a:33:da: 68:b9:2b:22:62:c6:e1:92:ea:95:cc:9a:f2:9e:00: cf:a9:cc:7c:a8:50:89:41:08:39:66:f4:5d:25:24: 82:ee:17:77:b1:f0:02:f6:46:da:9d:a5:1d:aa:b7: 43:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:31:3B:E6:66:58:3F:3C:FA:DA:F0:80:F7:89:79:65:9D:B4:44:97 X509v3 Authority Key Identifier: keyid:0F:79:76:05:20:B7:C1:5C:2E:42:60:30:82:72:B8:49:F8:8E:D6:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3l2BSC3wVwuQmAwgnK4SfiO1nc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:2c:b9:74:ad:b7:19:63:22:92:0a:d1:6c:70:3f:cd:17:09: 40:55:a1:8e:cc:6b:97:18:5f:53:80:d4:b0:17:8e:35:9a:ec: 26:34:3f:ee:93:66:e7:49:62:20:9f:64:6a:fb:c0:47:1f:90: be:a0:fc:f3:dd:26:21:9c:f4:72:b5:64:0d:5a:66:00:d7:61: 1b:be:0c:3d:cc:1c:b1:34:5b:b5:6d:1d:9c:d7:82:89:d9:6c: 54:3e:54:e1:22:bd:54:67:c5:c6:a8:50:8a:cc:de:1c:99:e5: ff:c8:42:13:13:ba:13:45:23:97:b4:b4:f6:3b:1c:1e:15:2a: 62:70:ff:8a:8a:c1:2c:41:25:c5:e9:ce:b2:5b:ef:cf:82:af: 5c:b4:f5:15:0e:d2:b9:73:db:0e:60:41:7a:49:7a:01:0d:46: 62:64:70:5a:7f:d4:22:14:e6:30:e7:48:1b:19:1a:04:82:a1: 70:07:fc:6c:48:fc:9f:11:32:48:aa:0e:42:50:8a:46:eb:3b: 73:e2:49:b2:6d:92:4c:7f:82:3c:26:57:e5:a3:5b:c3:ef:e4: 27:58:cb:8c:c2:f5:b2:94:98:67:df:c3:e9:15:2a:b3:ba:ef: f9:17:35:6d:a7:32:d9:a5:45:d8:9c:39:2a:bc:94:ec:2c:65: 30:49:1c:ae -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWWapmUJ0FoSB7rwn2XAsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmNzk3NjA1MjBiN2MxNWMyZTQyNjAzMDgyNzJiODQ5Zjg4 ZWQ2NzcwHhcNMjYwMjA5MTcwMDU4WhcNMjYwMjEwMTcwMDU4WjAzMTEwLwYDVQQD Eyg4NTMxM2JlNjY2NTgzZjNjZmFkYWYwODBmNzg5Nzk2NTlkYjQ0NDk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApVKdxtL+YNXHxF/BcsmuGljH0871 YCBrtiJAvy7MTD4OtvzCuCCUvCPs/tl402ProzDBUBdMuxUPaUcPWu/PbNS1P48V vWssbBdcbC9gJiA/UtMWfDU59X1K0qAdLovIpNUMhk9apFEfiEO4y7nW3yU+2fyl 5XNaKGyy6oDmNA6qqXpVC23XQCXGbAGuGEg8/c262FMhJpWMz/VZDgl6i8Xh0zpz r9dW64Bxe8SM0QbSUUTqk2reE5CiU1aQgxQnxzOoJdkGiZ+5rQR14Qc6M9pouSsi YsbhkuqVzJryngDPqcx8qFCJQQg5ZvRdJSSC7hd3sfAC9kbanaUdqrdDQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIUxO+ZmWD88+trwgPeJeWWdtESXMB8GA1UdIwQY MBaAFA95dgUgt8FcLkJgMIJyuEn4jtZ3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDNsMkJTQzN3Vnd1UW1Bd2duSzRTZmlPMW5jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9mODQ3NGItNWFlYi00MDU4LTlmNGUt MDA0MjQyNWJhYjFhLzEvRDNsMkJTQzN3Vnd1UW1Bd2duSzRTZmlPMW5jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYi9mODQ3NGItNWFlYi00MDU4LTlmNGUtMDA0MjQyNWJhYjFh LzEvRDNsMkJTQzN3Vnd1UW1Bd2duSzRTZmlPMW5jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZiy5dK23 GWMikgrRbHA/zRcJQFWhjsxrlxhfU4DUsBeONZrsJjQ/7pNm50liIJ9kavvARx+Q vqD8890mIZz0crVkDVpmANdhG74MPcwcsTRbtW0dnNeCidlsVD5U4SK9VGfFxqhQ iszeHJnl/8hCExO6E0Ujl7S09jscHhUqYnD/iorBLEElxenOslvvz4KvXLT1FQ7S uXPbDmBBekl6AQ1GYmRwWn/UIhTmMOdIGxkaBIKhcAf8bEj8nxEySKoOQlCKRus7 c+JJsm2STH+CPCZX5aNbw+/kJ1jLjML1spSYZ9/D6RUqs7rv+Rc1bacy2aVF2Jw5 KryU7CxlMEkcrg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:40:49 2026 by rpki-client