This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft File: DdL44N6hOH2vkDXSzfTrjJOticw.mft (raw, json) Hash identifier: CJGI9L3Ab9cDs7+ZHoDcorUSkfBb6fEoy7i6B0HdZFA= Subject key identifier: D8:16:BA:6B:C3:26:88:CB:8F:82:1C:83:9F:E9:19:02:15:6D:F5:C6 Authority key identifier: 0D:D2:F8:E0:DE:A1:38:7D:AF:90:35:D2:CD:F4:EB:8C:93:AD:89:CC Certificate issuer: /CN=0dd2f8e0dea1387daf9035d2cdf4eb8c93ad89cc Certificate serial: 019C421019F4E1317E74F8379A0BEA1BE82F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft Manifest number: 12C8 Signing time: Mon 09 Feb 2026 11:01:17 +0000 Manifest this update: Mon 09 Feb 2026 11:01:17 +0000 Manifest next update: Tue 10 Feb 2026 11:01:17 +0000 Files and hashes: 1: AL5mxy8CsYNcqWEtgLjCbmelqwQ.roa (hash: fdkV0rGstUR1Pzncs3bfmTmh9JkFZ1wdI7Ez0Xn02hM=) 2: DdL44N6hOH2vkDXSzfTrjJOticw.crl (hash: 5rLlfEi2F7tJ7W1CUCdYHoYsgZ1kSjL+uqmKsUbr25M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:19:f4:e1:31:7e:74:f8:37:9a:0b:ea:1b:e8:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0dd2f8e0dea1387daf9035d2cdf4eb8c93ad89cc Validity Not Before: Feb 9 11:01:17 2026 GMT Not After : Feb 10 11:01:17 2026 GMT Subject: CN=d816ba6bc32688cb8f821c839fe91902156df5c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:1f:8f:bc:07:df:e9:c7:56:2a:42:a7:dc:4e: ef:bd:8f:f1:fe:dc:83:87:55:49:f1:91:7d:aa:42: 90:74:e0:d3:2e:1f:00:34:b5:b8:da:38:ba:46:a1: 4e:97:69:55:08:6f:70:81:46:03:1d:6e:57:84:49: 2b:cc:4e:ec:ff:11:66:6d:e0:3e:02:a5:d9:5e:b0: 25:4e:7d:47:05:8b:69:c1:1e:70:79:1e:1b:b9:5a: 15:00:23:b1:a7:83:5e:fb:07:d7:9f:ae:f6:68:5a: 69:f3:aa:9c:76:41:51:3e:6e:df:dc:63:82:03:6d: d6:2e:a6:18:d5:dc:45:38:1f:ea:a7:69:21:84:cf: 83:80:67:61:07:73:fb:14:d8:ca:f5:b4:34:dd:9d: 50:f3:bd:77:b6:1b:24:30:c3:5d:66:60:8c:d1:bd: 8e:2d:20:42:ed:6b:17:e4:72:da:b7:94:75:71:db: cf:10:29:27:8f:c6:e2:ec:89:bf:cd:30:99:ee:e7: 40:25:f1:7c:81:1f:ef:49:e4:43:cc:76:fd:8c:3e: b5:47:f1:f9:b2:5e:ee:a8:d8:cd:be:91:36:ea:6d: 35:84:2a:3d:eb:f9:17:e9:db:55:a5:78:a4:43:68: 22:f8:fb:0a:8e:2a:f9:bf:6a:5b:e4:f9:36:8b:35: 0e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:16:BA:6B:C3:26:88:CB:8F:82:1C:83:9F:E9:19:02:15:6D:F5:C6 X509v3 Authority Key Identifier: keyid:0D:D2:F8:E0:DE:A1:38:7D:AF:90:35:D2:CD:F4:EB:8C:93:AD:89:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdL44N6hOH2vkDXSzfTrjJOticw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d3d466-d951-4c52-b330-aa8485cf3068/1/DdL44N6hOH2vkDXSzfTrjJOticw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:4e:26:63:97:80:e9:11:ae:2b:6f:2f:0b:02:25:63:83:b4: 5f:85:a7:c2:6a:b6:be:52:9a:8c:0d:49:d6:12:fe:d3:f9:bd: b1:72:f6:0a:be:15:72:3a:fb:5d:94:63:b7:f5:35:3c:27:cc: 36:3b:06:c6:bd:ff:13:ad:75:56:4e:84:cb:f6:c0:36:9d:50: 2c:f0:47:05:07:8e:63:84:d2:82:54:e4:32:3a:5f:1d:f4:12: 8e:a1:c1:47:58:99:35:6a:ca:59:f0:ed:51:5f:e2:1b:0c:57: 07:c2:b2:93:f6:35:ef:e9:12:17:8c:a5:95:97:9a:77:2c:f2: 58:61:a7:ad:ce:ff:76:0e:33:5e:7b:e7:88:67:41:10:8d:81: 63:ab:19:22:3c:7a:f8:42:2c:39:aa:be:ec:76:eb:a9:a8:d0: 1e:a4:a5:20:0d:f7:84:52:02:cc:83:1e:20:33:f4:ab:8c:48: 0d:19:82:0d:9c:1b:24:a7:a3:d9:f1:e5:5f:87:ec:5d:dd:b0: 28:ed:44:27:f8:00:bb:6d:9c:1c:54:d3:2c:ac:2c:dd:d0:94: cd:04:21:22:ae:71:e5:b6:43:fe:2f:36:6e:34:28:d7:d4:f3: cd:fa:70:a4:2a:38:37:6f:75:84:12:ae:a2:39:4a:57:aa:37: 42:96:75:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEBn04TF+dPg3mgvqG+gvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkZDJmOGUwZGVhMTM4N2RhZjkwMzVkMmNkZjRlYjhjOTNh ZDg5Y2MwHhcNMjYwMjA5MTEwMTE3WhcNMjYwMjEwMTEwMTE3WjAzMTEwLwYDVQQD EyhkODE2YmE2YmMzMjY4OGNiOGY4MjFjODM5ZmU5MTkwMjE1NmRmNWM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6B+PvAff6cdWKkKn3E7vvY/x/tyD h1VJ8ZF9qkKQdODTLh8ANLW42ji6RqFOl2lVCG9wgUYDHW5XhEkrzE7s/xFmbeA+ AqXZXrAlTn1HBYtpwR5weR4buVoVACOxp4Ne+wfXn672aFpp86qcdkFRPm7f3GOC A23WLqYY1dxFOB/qp2khhM+DgGdhB3P7FNjK9bQ03Z1Q8713thskMMNdZmCM0b2O LSBC7WsX5HLat5R1cdvPECknj8bi7Im/zTCZ7udAJfF8gR/vSeRDzHb9jD61R/H5 sl7uqNjNvpE26m01hCo96/kX6dtVpXikQ2gi+PsKjir5v2pb5Pk2izUOaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNgWumvDJojLj4Icg5/pGQIVbfXGMB8GA1UdIwQY MBaAFA3S+ODeoTh9r5A10s3064yTrYnMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGRMNDRONmhPSDJ2a0RYU3pmVHJqSk90aWN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9kM2Q0NjYtZDk1MS00YzUyLWIzMzAt YWE4NDg1Y2YzMDY4LzEvRGRMNDRONmhPSDJ2a0RYU3pmVHJqSk90aWN3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC9kM2Q0NjYtZDk1MS00YzUyLWIzMzAtYWE4NDg1Y2YzMDY4 LzEvRGRMNDRONmhPSDJ2a0RYU3pmVHJqSk90aWN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANU4mY5eA 6RGuK28vCwIlY4O0X4Wnwmq2vlKajA1J1hL+0/m9sXL2Cr4Vcjr7XZRjt/U1PCfM NjsGxr3/E611Vk6Ey/bANp1QLPBHBQeOY4TSglTkMjpfHfQSjqHBR1iZNWrKWfDt UV/iGwxXB8Kyk/Y17+kSF4yllZeadyzyWGGnrc7/dg4zXnvniGdBEI2BY6sZIjx6 +EIsOaq+7HbrqajQHqSlIA33hFICzIMeIDP0q4xIDRmCDZwbJKej2fHlX4fsXd2w KO1EJ/gAu22cHFTTLKws3dCUzQQhIq5x5bZD/i82bjQo19TzzfpwpCo4N291hBKu ojlKV6o3QpZ1ig== -----END CERTIFICATE-----Generated at Mon Feb 9 20:55:53 2026 by rpki-client