This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft File: 1dzeISXwQFitT0eOF4iEFCzy2tA.mft (raw, json) Hash identifier: NfGutP0P+2f6Jph+EMwhjfZkuWxBgf3DG2M7G0OTMiM= Subject key identifier: C9:85:EF:CD:BB:5A:70:61:7E:C2:96:9D:2A:BE:56:BD:C4:12:D5:26 Authority key identifier: D5:DC:DE:21:25:F0:40:58:AD:4F:47:8E:17:88:84:14:2C:F2:DA:D0 Certificate issuer: /CN=d5dcde2125f04058ad4f478e178884142cf2dad0 Certificate serial: 019C43C738C3A8D02E2D83EE586D096DE8C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1dzeISXwQFitT0eOF4iEFCzy2tA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft Manifest number: 11D9 Signing time: Mon 09 Feb 2026 19:00:55 +0000 Manifest this update: Mon 09 Feb 2026 19:00:55 +0000 Manifest next update: Tue 10 Feb 2026 19:00:55 +0000 Files and hashes: 1: 1dzeISXwQFitT0eOF4iEFCzy2tA.crl (hash: woaZvg0mDxksZAJ62MAuWJC/YTmbN/5QuAu7Upk3ZvU=) 2: 8BYDJuaf2CuIte9znhQTMnQNfzY.roa (hash: /nJhQIQ9VVW/Qtz2O6f+WJOXBH0IlvQwIRyYeoC0B4o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft rsync://rpki.ripe.net/repository/DEFAULT/1dzeISXwQFitT0eOF4iEFCzy2tA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:38:c3:a8:d0:2e:2d:83:ee:58:6d:09:6d:e8:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d5dcde2125f04058ad4f478e178884142cf2dad0 Validity Not Before: Feb 9 19:00:55 2026 GMT Not After : Feb 10 19:00:55 2026 GMT Subject: CN=c985efcdbb5a70617ec2969d2abe56bdc412d526 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b7:3b:e4:16:e2:20:04:ec:d4:82:89:bd:ce: 17:ab:7f:bf:7f:51:df:70:1d:06:f0:92:1f:48:67: c8:be:9c:da:9c:4c:48:dd:30:8e:a8:10:50:45:d4: 6a:46:51:aa:f8:1f:c5:33:0b:05:49:a4:4f:81:ee: 26:6d:10:fe:7d:fa:e5:30:9d:0f:8d:f1:d9:2a:94: ff:68:c3:2a:b4:69:2b:10:24:84:7d:1d:5c:07:04: 83:a8:f2:28:43:ce:68:53:89:57:0f:90:dc:e4:93: 43:5c:65:ae:f7:c1:a7:42:0e:88:71:55:24:20:12: 75:30:f3:70:6b:06:60:b0:1e:7c:4f:a1:b9:cf:c3: 8c:61:3a:07:d9:ff:9b:e7:6f:cd:78:6c:7c:bf:78: de:78:a0:6a:f4:00:b8:2b:4a:79:ee:03:37:24:83: e0:f7:7f:de:f9:11:e3:20:66:b4:36:d8:59:98:ae: 5a:0b:bb:60:e1:b3:ab:ee:49:b3:f1:e4:c2:13:a9: 0b:74:2e:58:45:f4:7b:50:61:61:e2:28:93:8b:72: 08:56:5d:6a:51:ac:5d:75:f0:89:d7:9a:c1:f9:eb: 77:a4:21:e1:cb:cf:6c:95:0f:f6:67:65:d5:27:83: a3:f5:b9:48:c1:ff:a6:4e:66:ca:57:f6:7c:94:b9: bf:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:85:EF:CD:BB:5A:70:61:7E:C2:96:9D:2A:BE:56:BD:C4:12:D5:26 X509v3 Authority Key Identifier: keyid:D5:DC:DE:21:25:F0:40:58:AD:4F:47:8E:17:88:84:14:2C:F2:DA:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1dzeISXwQFitT0eOF4iEFCzy2tA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:b2:f9:d6:9e:34:60:b2:06:27:4c:92:14:da:ba:d4:c9:85: 27:bb:6b:d9:47:39:02:16:56:e0:af:65:22:7e:46:61:67:a2: ed:e5:2e:ad:9f:84:f5:99:0f:63:22:86:05:fc:b8:54:98:64: 55:72:ca:f5:23:c6:76:4a:99:27:fa:fa:05:4d:e0:28:49:a6: 47:86:cc:3c:94:9c:96:79:96:1b:1b:d6:fb:2c:d9:07:5a:d0: d3:df:8f:00:16:3a:b1:f6:74:9b:60:fa:4e:a6:df:de:dc:52: eb:ed:7e:9a:ab:cd:f4:49:08:c4:ce:d4:ce:b7:1b:f4:ef:fc: 79:8c:2c:1b:cf:22:f3:b5:3a:c1:b4:5f:06:09:f3:f1:45:9b: f4:ad:4e:87:04:cc:51:9d:96:a8:15:b0:03:9c:4f:0d:6f:53: 22:1d:eb:ce:ea:90:a7:3a:54:c4:68:d7:93:e7:c3:3b:63:60: 33:01:c0:ff:74:44:93:42:15:0b:f2:34:72:10:c0:f6:98:d4: 01:5d:11:3e:bf:d5:2e:eb:ed:b8:4c:29:03:30:97:cf:53:fa: fa:4d:f8:28:54:aa:20:77:6f:78:9f:95:b3:a5:09:3b:19:01: 66:a8:d2:97:37:d2:b7:e0:47:45:d9:f1:64:bd:86:b1:af:91: 8e:f5:85:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxzjDqNAuLYPuWG0JbejEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1ZGNkZTIxMjVmMDQwNThhZDRmNDc4ZTE3ODg4NDE0MmNm MmRhZDAwHhcNMjYwMjA5MTkwMDU1WhcNMjYwMjEwMTkwMDU1WjAzMTEwLwYDVQQD EyhjOTg1ZWZjZGJiNWE3MDYxN2VjMjk2OWQyYWJlNTZiZGM0MTJkNTI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Lc75BbiIATs1IKJvc4Xq3+/f1Hf cB0G8JIfSGfIvpzanExI3TCOqBBQRdRqRlGq+B/FMwsFSaRPge4mbRD+ffrlMJ0P jfHZKpT/aMMqtGkrECSEfR1cBwSDqPIoQ85oU4lXD5Dc5JNDXGWu98GnQg6IcVUk IBJ1MPNwawZgsB58T6G5z8OMYToH2f+b52/NeGx8v3jeeKBq9AC4K0p57gM3JIPg 93/e+RHjIGa0NthZmK5aC7tg4bOr7kmz8eTCE6kLdC5YRfR7UGFh4iiTi3IIVl1q UaxddfCJ15rB+et3pCHhy89slQ/2Z2XVJ4Oj9blIwf+mTmbKV/Z8lLm/2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMmF7827WnBhfsKWnSq+Vr3EEtUmMB8GA1UdIwQY MBaAFNXc3iEl8EBYrU9HjheIhBQs8trQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMWR6ZUlTWHdRRml0VDBlT0Y0aUVGQ3p5MnRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy81OTE1YzgtMDAzYy00ZDk4LTgyNDMt Y2ZkYWRiZGM0OGVjLzEvMWR6ZUlTWHdRRml0VDBlT0Y0aUVGQ3p5MnRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy81OTE1YzgtMDAzYy00ZDk4LTgyNDMtY2ZkYWRiZGM0OGVj LzEvMWR6ZUlTWHdRRml0VDBlT0Y0aUVGQ3p5MnRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADbL51p40 YLIGJ0ySFNq61MmFJ7tr2Uc5AhZW4K9lIn5GYWei7eUurZ+E9ZkPYyKGBfy4VJhk VXLK9SPGdkqZJ/r6BU3gKEmmR4bMPJSclnmWGxvW+yzZB1rQ09+PABY6sfZ0m2D6 Tqbf3txS6+1+mqvN9EkIxM7Uzrcb9O/8eYwsG88i87U6wbRfBgnz8UWb9K1OhwTM UZ2WqBWwA5xPDW9TIh3rzuqQpzpUxGjXk+fDO2NgMwHA/3REk0IVC/I0chDA9pjU AV0RPr/VLuvtuEwpAzCXz1P6+k34KFSqIHdveJ+Vs6UJOxkBZqjSlzfSt+BHRdnx ZL2Gsa+RjvWFWQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:40:52 2026 by rpki-client