This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.mft File: RD1PlXMp3zFJj6hUPCPxLIdMxg0.mft (raw, json) Hash identifier: ckZNTEWw//41GnVTf+p6Q9PCeBaEnItk0nHIDQg1To0= Subject key identifier: 83:CF:C6:B1:F9:21:E2:49:88:7D:A3:39:B3:36:5C:AB:0D:2D:62:EB Authority key identifier: 44:3D:4F:95:73:29:DF:31:49:8F:A8:54:3C:23:F1:2C:87:4C:C6:0D Certificate issuer: /CN=443d4f957329df31498fa8543c23f12c874cc60d Certificate serial: 019C4321D99B7E252E8846D78C50CE41352C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RD1PlXMp3zFJj6hUPCPxLIdMxg0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.mft Manifest number: 027C Signing time: Mon 09 Feb 2026 16:00:17 +0000 Manifest this update: Mon 09 Feb 2026 16:00:17 +0000 Manifest next update: Tue 10 Feb 2026 16:00:17 +0000 Files and hashes: 1: RD1PlXMp3zFJj6hUPCPxLIdMxg0.crl (hash: jpkxFIruMpsnbdEJaJ9GM2FAlQWJutCDdtEIN1ADcfc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.mft rsync://rpki.ripe.net/repository/DEFAULT/RD1PlXMp3zFJj6hUPCPxLIdMxg0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:d9:9b:7e:25:2e:88:46:d7:8c:50:ce:41:35:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=443d4f957329df31498fa8543c23f12c874cc60d Validity Not Before: Feb 9 16:00:17 2026 GMT Not After : Feb 10 16:00:17 2026 GMT Subject: CN=83cfc6b1f921e249887da339b3365cab0d2d62eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:81:a5:4c:69:9e:ed:da:c9:42:1e:64:36:ce: 3e:39:93:4b:0d:95:14:44:76:a0:82:b5:9a:ef:d7: ea:1f:f2:d0:2a:44:59:94:b5:43:fc:7b:c5:5c:e1: 56:2c:40:91:be:7e:de:8b:48:b8:19:8e:ae:9b:e6: 90:08:73:ed:e7:b1:7b:c5:da:d1:4c:82:73:24:ed: 7a:f8:3d:d2:a7:5a:97:d4:f2:5c:b7:6f:79:87:f6: 66:4d:6c:f9:fd:1a:93:5a:0c:90:5b:87:1c:99:3d: e5:fc:25:fe:8d:84:33:6a:ec:aa:60:88:35:4c:5d: 19:f2:42:e6:3f:29:3f:84:ac:20:3b:19:3f:5d:30: 5d:43:cf:9a:bb:3f:ca:38:c6:b3:ec:64:cb:25:36: 90:08:df:63:e5:0d:41:77:19:3a:8b:66:a2:2d:51: c1:11:e4:f2:ca:7a:aa:61:f1:ce:b3:f6:5a:ec:09: fe:d1:6f:69:81:2d:fc:0d:32:0e:55:c8:38:78:8b: dd:a8:e1:3c:8e:58:2e:98:93:7c:d0:b6:2d:79:53: cf:ef:6e:3e:4e:3e:6f:49:be:c1:ac:1b:f9:c1:b9: 3a:27:8a:54:c9:da:7b:99:4c:31:57:49:2e:e5:d2: 0f:25:4f:2d:c9:38:a6:32:3c:25:a8:ba:d3:b9:06: e0:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:CF:C6:B1:F9:21:E2:49:88:7D:A3:39:B3:36:5C:AB:0D:2D:62:EB X509v3 Authority Key Identifier: keyid:44:3D:4F:95:73:29:DF:31:49:8F:A8:54:3C:23:F1:2C:87:4C:C6:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RD1PlXMp3zFJj6hUPCPxLIdMxg0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:f0:ca:cd:79:95:86:1f:33:40:19:40:d4:a2:13:29:86:97: 6b:90:40:68:33:fa:2e:5d:c1:1c:a1:a4:66:9d:3e:f4:64:85: cd:ff:fb:9c:7a:4d:c9:98:be:c7:3c:a0:55:a3:d8:58:e1:93: 6b:3d:14:06:d1:3a:25:b5:79:2d:c4:d0:cd:93:3f:bb:e1:b0: 4c:cd:2f:53:c4:88:5f:1b:26:df:4c:68:cf:cb:d0:0a:e9:88: f7:f9:ab:59:7a:08:0d:84:44:b4:25:5b:91:e7:df:60:59:95: e9:b1:5e:8a:81:43:03:da:2e:d4:03:2f:e1:34:f1:bf:d7:ec: 09:ec:dc:c4:3d:7e:76:7b:80:90:81:41:ca:22:9d:5a:49:98: 2d:4c:0a:b5:b3:70:91:fb:c7:1f:e7:1c:a1:f8:e1:7a:87:e9: 6e:8a:7d:58:be:0b:f1:04:d2:c0:4d:f4:91:20:8f:b0:a3:14: ef:dc:9b:f2:f3:b1:15:94:e0:5c:3d:0e:ae:e2:63:fc:eb:f1: 64:be:5c:ab:d8:4c:92:f3:08:a9:41:9d:1d:53:7c:79:a4:b3: cd:7c:56:cc:58:d1:8c:f7:a0:cc:96:21:36:8a:7e:ad:7e:fa: 41:46:87:c8:1d:af:f7:26:8a:f5:90:a2:fb:cd:5c:93:f0:9a: ca:32:3e:97 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIdmbfiUuiEbXjFDOQTUsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0M2Q0Zjk1NzMyOWRmMzE0OThmYTg1NDNjMjNmMTJjODc0 Y2M2MGQwHhcNMjYwMjA5MTYwMDE3WhcNMjYwMjEwMTYwMDE3WjAzMTEwLwYDVQQD Eyg4M2NmYzZiMWY5MjFlMjQ5ODg3ZGEzMzliMzM2NWNhYjBkMmQ2MmViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAroGlTGme7drJQh5kNs4+OZNLDZUU RHaggrWa79fqH/LQKkRZlLVD/HvFXOFWLECRvn7ei0i4GY6um+aQCHPt57F7xdrR TIJzJO16+D3Sp1qX1PJct295h/ZmTWz5/RqTWgyQW4ccmT3l/CX+jYQzauyqYIg1 TF0Z8kLmPyk/hKwgOxk/XTBdQ8+auz/KOMaz7GTLJTaQCN9j5Q1Bdxk6i2aiLVHB EeTyynqqYfHOs/Za7An+0W9pgS38DTIOVcg4eIvdqOE8jlgumJN80LYteVPP724+ Tj5vSb7BrBv5wbk6J4pUydp7mUwxV0ku5dIPJU8tyTimMjwlqLrTuQbgKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIPPxrH5IeJJiH2jObM2XKsNLWLrMB8GA1UdIwQY MBaAFEQ9T5VzKd8xSY+oVDwj8SyHTMYNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUkQxUGxYTXAzekZKajZoVVBDUHhMSWRNeGcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC83OWRjM2MtMzYzMy00YjQ3LTliZDEt NmU5Yjg0YjI3MWUxLzEvUkQxUGxYTXAzekZKajZoVVBDUHhMSWRNeGcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC83OWRjM2MtMzYzMy00YjQ3LTliZDEtNmU5Yjg0YjI3MWUx LzEvUkQxUGxYTXAzekZKajZoVVBDUHhMSWRNeGcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXPDKzXmV hh8zQBlA1KITKYaXa5BAaDP6Ll3BHKGkZp0+9GSFzf/7nHpNyZi+xzygVaPYWOGT az0UBtE6JbV5LcTQzZM/u+GwTM0vU8SIXxsm30xoz8vQCumI9/mrWXoIDYREtCVb keffYFmV6bFeioFDA9ou1AMv4TTxv9fsCezcxD1+dnuAkIFByiKdWkmYLUwKtbNw kfvHH+ccofjheofpbop9WL4L8QTSwE30kSCPsKMU79yb8vOxFZTgXD0OruJj/Ovx ZL5cq9hMkvMIqUGdHVN8eaSzzXxWzFjRjPegzJYhNop+rX76QUaHyB2v9yaK9ZCi +81ck/CayjI+lw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:44 2026 by rpki-client