This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft File: dbh4BinZITNXwHDBwBBgU0dIg8E.mft (raw, json) Hash identifier: +hJzoB/h3mTNhlHnaheoMQUERyFFsjLCUWdFpDXwf9c= Subject key identifier: 41:64:A0:62:DF:16:41:0D:23:11:12:E5:81:44:12:3F:C9:EF:B8:A4 Authority key identifier: 75:B8:78:06:29:D9:21:33:57:C0:70:C1:C0:10:60:53:47:48:83:C1 Certificate issuer: /CN=75b8780629d9213357c070c1c0106053474883c1 Certificate serial: 019C45109AE3AA7C596A8208577A3F7A8139 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dbh4BinZITNXwHDBwBBgU0dIg8E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft Manifest number: 0E35 Signing time: Tue 10 Feb 2026 01:00:41 +0000 Manifest this update: Tue 10 Feb 2026 01:00:41 +0000 Manifest next update: Wed 11 Feb 2026 01:00:41 +0000 Files and hashes: 1: dbh4BinZITNXwHDBwBBgU0dIg8E.crl (hash: Hzkn3UfUVrc99HIakoi3VHyIH5Ki8ceAmI1/ppbnn6E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft rsync://rpki.ripe.net/repository/DEFAULT/dbh4BinZITNXwHDBwBBgU0dIg8E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:10:9a:e3:aa:7c:59:6a:82:08:57:7a:3f:7a:81:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75b8780629d9213357c070c1c0106053474883c1 Validity Not Before: Feb 10 01:00:41 2026 GMT Not After : Feb 11 01:00:41 2026 GMT Subject: CN=4164a062df16410d231112e58144123fc9efb8a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:78:b9:af:50:50:cc:23:67:3c:a1:18:61:db: 98:a2:20:60:07:21:87:6a:4f:b9:5f:8d:02:46:68: af:6c:95:88:d1:a9:a0:27:bc:60:4a:1c:1c:c0:62: c2:6a:11:54:d0:e0:db:69:7e:70:b1:76:38:4f:6c: f8:0a:76:e2:02:05:f8:e7:b9:a4:38:56:e8:09:21: 8c:da:2c:53:58:12:5f:e6:79:01:0b:b1:1c:4b:25: bd:ff:76:a9:b9:0f:67:48:77:88:53:52:50:4f:6b: fa:6c:40:d2:f1:98:d6:94:e2:89:98:fe:10:f3:da: 2f:fc:7b:bc:74:69:8e:70:2a:77:08:f2:19:fe:5d: a0:7b:1f:2b:5f:81:98:06:1b:a2:61:d3:6f:a3:98: 90:a1:0f:85:c5:f2:94:b3:ba:da:45:09:45:cf:3f: ad:13:a4:a8:90:98:bc:57:d2:c6:1e:ae:6a:11:33: 07:4f:5b:bd:69:d1:c4:82:cf:db:a4:04:db:d5:6a: 60:20:7a:1e:ce:87:3f:99:02:7d:42:07:36:28:69: 7c:70:27:61:26:f9:57:2d:3f:c2:60:ce:0a:3d:b8: b6:a4:7c:b9:66:35:d2:04:73:4a:bd:71:50:3c:d2: 80:0a:7d:ca:6d:64:95:35:1a:d3:fa:60:c2:23:b5: 32:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:64:A0:62:DF:16:41:0D:23:11:12:E5:81:44:12:3F:C9:EF:B8:A4 X509v3 Authority Key Identifier: keyid:75:B8:78:06:29:D9:21:33:57:C0:70:C1:C0:10:60:53:47:48:83:C1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dbh4BinZITNXwHDBwBBgU0dIg8E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:f5:69:cd:d2:f8:5f:1b:dd:cb:91:9e:bc:f5:c9:b0:2d:ab: 42:55:78:c7:db:36:28:a9:b5:8f:b6:2e:01:58:18:32:5a:17: 39:b7:ce:4e:c6:7d:bf:63:e2:fd:dc:13:a1:53:cf:fb:d9:a9: ba:86:b9:03:57:90:34:b0:61:9b:6f:ff:c9:24:7d:c3:bd:cb: b6:a3:5e:bf:dd:20:71:d3:97:3e:1a:d6:11:01:ee:0d:a5:73: 42:64:7b:3b:0f:05:8c:c6:9d:33:9f:0e:7b:36:bf:a4:9f:cf: 81:3c:b3:96:24:e7:1b:5f:0b:b4:91:a5:a6:5d:40:b0:26:30: da:ad:64:ae:0e:ac:a4:43:7a:c9:21:11:34:d7:d8:a3:0e:06: 35:75:e4:ce:2f:68:05:3c:5f:d3:4b:97:17:f1:57:59:43:e6: 9f:47:ab:eb:cd:89:a7:92:c8:de:06:3d:67:5a:94:b5:40:a2: 84:11:3c:26:5c:ec:d4:a7:60:17:4f:28:a4:b8:3c:72:7d:6b: e0:57:fa:8d:d3:83:e4:27:9a:6c:e5:00:e9:90:9d:10:e5:1f: f6:d9:6d:e0:23:f3:81:81:31:b8:20:47:c5:50:f4:5c:38:58: 32:77:34:c1:66:e2:52:36:50:93:be:9c:31:b9:84:ce:12:f0: c8:92:ce:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFEJrjqnxZaoIIV3o/eoE5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1Yjg3ODA2MjlkOTIxMzM1N2MwNzBjMWMwMTA2MDUzNDc0 ODgzYzEwHhcNMjYwMjEwMDEwMDQxWhcNMjYwMjExMDEwMDQxWjAzMTEwLwYDVQQD Eyg0MTY0YTA2MmRmMTY0MTBkMjMxMTEyZTU4MTQ0MTIzZmM5ZWZiOGE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnXi5r1BQzCNnPKEYYduYoiBgByGH ak+5X40CRmivbJWI0amgJ7xgShwcwGLCahFU0ODbaX5wsXY4T2z4CnbiAgX457mk OFboCSGM2ixTWBJf5nkBC7EcSyW9/3apuQ9nSHeIU1JQT2v6bEDS8ZjWlOKJmP4Q 89ov/Hu8dGmOcCp3CPIZ/l2gex8rX4GYBhuiYdNvo5iQoQ+FxfKUs7raRQlFzz+t E6SokJi8V9LGHq5qETMHT1u9adHEgs/bpATb1WpgIHoezoc/mQJ9Qgc2KGl8cCdh JvlXLT/CYM4KPbi2pHy5ZjXSBHNKvXFQPNKACn3KbWSVNRrT+mDCI7UyuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEFkoGLfFkENIxES5YFEEj/J77ikMB8GA1UdIwQY MBaAFHW4eAYp2SEzV8BwwcAQYFNHSIPBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZGJoNEJpblpJVE5Yd0hEQndCQmdVMGRJZzhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS85NmZiOWQtZmY5Zi00ZDVkLWI2YzEt ZDkxMGI3NzIxZDIwLzEvZGJoNEJpblpJVE5Yd0hEQndCQmdVMGRJZzhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS85NmZiOWQtZmY5Zi00ZDVkLWI2YzEtZDkxMGI3NzIxZDIw LzEvZGJoNEJpblpJVE5Yd0hEQndCQmdVMGRJZzhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALPVpzdL4 Xxvdy5GevPXJsC2rQlV4x9s2KKm1j7YuAVgYMloXObfOTsZ9v2Pi/dwToVPP+9mp uoa5A1eQNLBhm2//ySR9w73LtqNev90gcdOXPhrWEQHuDaVzQmR7Ow8FjMadM58O eza/pJ/PgTyzliTnG18LtJGlpl1AsCYw2q1krg6spEN6ySERNNfYow4GNXXkzi9o BTxf00uXF/FXWUPmn0er682Jp5LI3gY9Z1qUtUCihBE8Jlzs1KdgF08opLg8cn1r 4Ff6jdOD5CeabOUA6ZCdEOUf9tlt4CPzgYExuCBHxVD0XDhYMnc0wWbiUjZQk76c MbmEzhLwyJLOZA== -----END CERTIFICATE-----Generated at Tue Feb 10 03:15:55 2026 by rpki-client