This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft File: kd3H2eAtRMa_jGNcHQcV9uicEBI.mft (raw, json) Hash identifier: UXZJdmAcD2Sxg18vi5QqzTR5+0KzsI6rjG5JQ7YleU0= Subject key identifier: 4D:E3:D4:5E:62:6F:D5:10:B3:5C:2B:A3:90:BC:A2:CB:84:21:DE:FB Authority key identifier: 91:DD:C7:D9:E0:2D:44:C6:BF:8C:63:5C:1D:07:15:F6:E8:9C:10:12 Certificate issuer: /CN=91ddc7d9e02d44c6bf8c635c1d0715f6e89c1012 Certificate serial: 019C43C729A3AFB262BE432B1DA4B67404AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kd3H2eAtRMa_jGNcHQcV9uicEBI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft Manifest number: 01CC Signing time: Mon 09 Feb 2026 19:00:51 +0000 Manifest this update: Mon 09 Feb 2026 19:00:51 +0000 Manifest next update: Tue 10 Feb 2026 19:00:51 +0000 Files and hashes: 1: MvpTS49h0GRvY0Tj2YEwLbaS2cM.roa (hash: gDgNzdOYz3KjBH95RxNa3YAdnlDk82nruMEoI3Ezi38=) 2: kd3H2eAtRMa_jGNcHQcV9uicEBI.crl (hash: KheofgeAqGbgOxFy1G4WXaMfXpS8g1CSl0RSZoLRuNk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.crl rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft rsync://rpki.ripe.net/repository/DEFAULT/kd3H2eAtRMa_jGNcHQcV9uicEBI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:29:a3:af:b2:62:be:43:2b:1d:a4:b6:74:04:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91ddc7d9e02d44c6bf8c635c1d0715f6e89c1012 Validity Not Before: Feb 9 19:00:51 2026 GMT Not After : Feb 10 19:00:51 2026 GMT Subject: CN=4de3d45e626fd510b35c2ba390bca2cb8421defb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e7:02:ac:52:91:93:3c:b0:7a:1b:07:92:36: 95:9d:5b:6e:cb:72:e5:62:93:a3:da:dd:af:45:b3: 74:89:5a:00:d8:d4:9d:7c:7b:7a:da:86:2b:dc:57: 2a:7a:84:65:68:da:5d:c9:06:0d:7f:32:bb:96:a5: f8:11:1d:cc:3e:90:f7:67:a9:cd:0a:65:c2:0c:1f: e6:5c:18:47:aa:01:fc:80:56:98:39:76:40:71:9a: 1e:c7:55:61:ee:7f:2f:69:80:ae:e3:30:aa:5c:1d: 2b:27:b0:04:0c:75:71:a8:73:bc:11:73:2b:52:b2: 65:02:77:28:20:71:84:d2:71:5e:33:13:03:b8:05: 96:1f:57:80:1a:64:d2:92:e4:f4:6c:92:5d:73:33: 7b:2a:26:1b:4f:0e:a6:bf:54:c7:4e:51:03:d3:69: 62:e9:0a:35:c0:3f:6f:07:27:98:e5:90:55:c1:6e: 80:95:a3:14:7e:a1:10:ac:97:49:29:98:62:81:4b: a6:e0:53:26:43:4a:c2:d3:fe:f4:82:69:4e:74:17: c3:e0:7d:07:fc:f8:71:3a:3d:0f:7e:56:da:16:dc: cb:97:4d:f0:3f:60:37:5a:e2:26:c3:b9:2b:58:a3: 36:0e:1b:0d:fb:23:0c:71:07:bb:3a:21:ec:c1:c0: 7c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:E3:D4:5E:62:6F:D5:10:B3:5C:2B:A3:90:BC:A2:CB:84:21:DE:FB X509v3 Authority Key Identifier: keyid:91:DD:C7:D9:E0:2D:44:C6:BF:8C:63:5C:1D:07:15:F6:E8:9C:10:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kd3H2eAtRMa_jGNcHQcV9uicEBI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:b0:b6:0c:5b:fe:0b:cd:0f:d0:0b:91:21:57:e1:7c:e9:d5: 2d:19:1e:3e:b8:c3:90:2c:7d:51:4d:6b:da:a0:43:9b:30:9e: ef:86:19:8f:3a:7c:c9:13:10:a8:86:34:0f:ac:09:2d:1a:db: 84:a3:eb:86:04:27:15:69:0e:7b:ef:33:f4:ca:13:5e:dd:01: e0:65:e1:c4:ef:09:c0:b0:7e:ae:45:ef:43:66:18:d6:2c:07: eb:87:fe:f6:91:59:19:0d:be:5c:3e:c5:a9:c9:50:16:aa:c9: 93:62:15:32:ec:3d:2a:c0:c8:5e:b0:22:a7:6f:55:ba:bf:5a: 5c:a8:74:be:f0:63:fc:3d:f9:16:00:85:dc:37:6d:d9:32:1a: 49:1c:d4:c5:03:99:c7:33:36:7c:12:08:64:71:c0:60:b3:78: d9:9e:bd:d1:0d:9a:cc:58:8a:bb:4d:de:a6:b0:6e:24:2b:01: c9:4a:1c:3c:9b:9e:c7:17:b5:3a:b1:d1:6f:ba:d4:25:e0:cf: 22:3f:a3:be:8b:1f:07:ae:b6:7a:0f:7d:f8:d7:20:f3:55:1a: 51:d8:bb:e5:45:11:14:c2:e2:7b:2d:12:7c:e1:0f:d2:3d:d6: 75:42:49:9f:af:45:cb:51:8a:25:80:6a:0e:51:e9:89:f2:4d: 16:25:17:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxymjr7JivkMrHaS2dASvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxZGRjN2Q5ZTAyZDQ0YzZiZjhjNjM1YzFkMDcxNWY2ZTg5 YzEwMTIwHhcNMjYwMjA5MTkwMDUxWhcNMjYwMjEwMTkwMDUxWjAzMTEwLwYDVQQD Eyg0ZGUzZDQ1ZTYyNmZkNTEwYjM1YzJiYTM5MGJjYTJjYjg0MjFkZWZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq+cCrFKRkzywehsHkjaVnVtuy3Ll YpOj2t2vRbN0iVoA2NSdfHt62oYr3FcqeoRlaNpdyQYNfzK7lqX4ER3MPpD3Z6nN CmXCDB/mXBhHqgH8gFaYOXZAcZoex1Vh7n8vaYCu4zCqXB0rJ7AEDHVxqHO8EXMr UrJlAncoIHGE0nFeMxMDuAWWH1eAGmTSkuT0bJJdczN7KiYbTw6mv1THTlED02li 6Qo1wD9vByeY5ZBVwW6AlaMUfqEQrJdJKZhigUum4FMmQ0rC0/70gmlOdBfD4H0H /PhxOj0PflbaFtzLl03wP2A3WuImw7krWKM2DhsN+yMMcQe7OiHswcB8aQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE3j1F5ib9UQs1wro5C8osuEId77MB8GA1UdIwQY MBaAFJHdx9ngLUTGv4xjXB0HFfbonBASMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2QzSDJlQXRSTWFfakdOY0hRY1Y5dWljRUJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9jN2FmYmMtYjg4NS00NzU1LThkMTUt ODkzYjhkZDJkMmIwLzEva2QzSDJlQXRSTWFfakdOY0hRY1Y5dWljRUJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS9jN2FmYmMtYjg4NS00NzU1LThkMTUtODkzYjhkZDJkMmIw LzEva2QzSDJlQXRSTWFfakdOY0hRY1Y5dWljRUJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc7C2DFv+ C80P0AuRIVfhfOnVLRkePrjDkCx9UU1r2qBDmzCe74YZjzp8yRMQqIY0D6wJLRrb hKPrhgQnFWkOe+8z9MoTXt0B4GXhxO8JwLB+rkXvQ2YY1iwH64f+9pFZGQ2+XD7F qclQFqrJk2IVMuw9KsDIXrAip29Vur9aXKh0vvBj/D35FgCF3Ddt2TIaSRzUxQOZ xzM2fBIIZHHAYLN42Z690Q2azFiKu03eprBuJCsByUocPJuexxe1OrHRb7rUJeDP Ij+jvosfB662eg99+Ncg81UaUdi75UURFMLiey0SfOEP0j3WdUJJn69Fy1GKJYBq DlHpifJNFiUXbg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:02 2026 by rpki-client