This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft File: kGQm9IPDaqzahzIySriK1YAMmi0.mft (raw, json) Hash identifier: QVVb49oYjJCEbW7qkWdYQ/52pCq9kGvL9B/q1axG/Vw= Subject key identifier: 81:0B:A8:B8:01:D0:B5:4E:6E:E1:52:01:DC:E5:F3:99:3B:99:F7:F6 Authority key identifier: 90:64:26:F4:83:C3:6A:AC:DA:87:32:32:4A:B8:8A:D5:80:0C:9A:2D Certificate issuer: /CN=906426f483c36aacda8732324ab88ad5800c9a2d Certificate serial: 019C420F7F7C1BBC5CC9F0AE60F10CFAF925 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kGQm9IPDaqzahzIySriK1YAMmi0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft Manifest number: 0D33 Signing time: Mon 09 Feb 2026 11:00:37 +0000 Manifest this update: Mon 09 Feb 2026 11:00:37 +0000 Manifest next update: Tue 10 Feb 2026 11:00:37 +0000 Files and hashes: 1: kGQm9IPDaqzahzIySriK1YAMmi0.crl (hash: oj0676WHUI25ev1V4O8kp04TnotObXiLwE7nl1YxPas=) 2: pEXsp_wHHGLaZhZhYFoeKyAe4xU.roa (hash: xI/2+qldJxPTklb7r+PHTCSnZEv4TfvhGV7Tifv5aSk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft rsync://rpki.ripe.net/repository/DEFAULT/kGQm9IPDaqzahzIySriK1YAMmi0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:7f:7c:1b:bc:5c:c9:f0:ae:60:f1:0c:fa:f9:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=906426f483c36aacda8732324ab88ad5800c9a2d Validity Not Before: Feb 9 11:00:37 2026 GMT Not After : Feb 10 11:00:37 2026 GMT Subject: CN=810ba8b801d0b54e6ee15201dce5f3993b99f7f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:d0:9c:54:f4:71:36:ca:83:a1:c9:f9:e4:d1: bd:27:d2:42:e3:31:0e:cb:d7:04:cf:fc:72:d6:3d: 08:b6:f5:5a:24:2f:10:ec:48:4f:6b:88:ff:e3:43: b2:df:66:a1:24:2b:b5:ff:1a:ab:21:5a:63:ed:77: 89:ea:2f:92:5d:38:6a:48:d8:87:d4:c0:a5:76:0d: 07:bf:9b:b5:2c:ae:8c:c6:7f:3c:26:22:96:5c:60: 5a:5f:69:a6:37:cd:fb:fc:21:47:49:fa:2d:ee:18: 56:8e:b4:b9:0a:4e:61:7e:a3:f4:27:25:8c:8d:6a: d9:c0:0e:fa:a5:49:95:18:10:96:85:a8:80:84:eb: 54:8c:b5:93:5d:38:84:68:44:fd:dc:44:34:37:d1: 31:3f:2f:0a:a4:56:2d:1a:fe:57:9c:89:73:b5:f3: dc:e6:fa:cc:98:f6:2c:06:2e:c0:af:a6:3e:f7:a6: 81:70:c1:53:a8:d0:a6:21:df:21:88:5e:92:3f:73: 67:67:3f:27:e7:85:33:9d:55:85:10:09:be:ec:4a: 71:3a:e3:49:ae:90:d6:ae:05:b8:95:93:47:d4:2e: cd:44:5b:3a:c1:0c:ea:d2:38:ba:f5:36:be:3e:60: 71:5d:e0:25:5e:44:ca:2a:7d:f5:a8:50:f6:3c:47: 2e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:0B:A8:B8:01:D0:B5:4E:6E:E1:52:01:DC:E5:F3:99:3B:99:F7:F6 X509v3 Authority Key Identifier: keyid:90:64:26:F4:83:C3:6A:AC:DA:87:32:32:4A:B8:8A:D5:80:0C:9A:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kGQm9IPDaqzahzIySriK1YAMmi0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b6:eb:0c:3d:ff:5a:34:87:06:74:7d:b3:bd:18:a8:07:1b:95: fd:46:fb:ae:6a:0e:83:04:e0:d5:be:73:28:65:a1:61:d5:4c: ea:74:11:f7:df:b7:30:2a:63:c4:1c:74:42:77:bd:09:c7:0c: dd:52:f4:37:92:5c:6c:2e:1a:0b:28:df:e5:35:cf:fb:5b:f7: e0:27:73:ef:53:00:02:e9:41:ec:b8:c8:ee:28:3d:89:bd:51: 9e:4d:d8:49:ee:40:7c:8f:7c:43:f9:96:b9:ae:4f:70:ca:04: 27:64:90:f2:df:6a:90:d0:68:9e:18:1a:16:cc:e0:26:89:0e: de:53:6d:8e:27:04:ea:4e:dd:bb:eb:ad:ba:12:9a:4f:78:a6: e1:08:e2:5a:31:ab:96:3b:e1:45:0f:6a:4d:a0:cc:02:c7:d2: 7b:4d:4b:d9:16:7d:a0:d6:f1:70:af:b1:8f:6a:a8:98:27:09: 82:03:c1:60:90:ca:87:b2:cd:2a:a8:67:91:35:4a:f5:9b:cb: 7b:bd:e2:31:a3:85:d8:08:67:4a:51:a6:36:54:f8:b9:49:0d: 01:19:8d:9f:86:a3:63:fc:51:d9:e5:54:1a:4c:22:e6:d3:b0: 84:67:9f:6d:61:05:57:96:e2:88:b3:1c:2d:2d:b5:e8:10:14: 68:dd:bb:19 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD398G7xcyfCuYPEM+vklMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwNjQyNmY0ODNjMzZhYWNkYTg3MzIzMjRhYjg4YWQ1ODAw YzlhMmQwHhcNMjYwMjA5MTEwMDM3WhcNMjYwMjEwMTEwMDM3WjAzMTEwLwYDVQQD Eyg4MTBiYThiODAxZDBiNTRlNmVlMTUyMDFkY2U1ZjM5OTNiOTlmN2Y2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlNCcVPRxNsqDocn55NG9J9JC4zEO y9cEz/xy1j0ItvVaJC8Q7EhPa4j/40Oy32ahJCu1/xqrIVpj7XeJ6i+SXThqSNiH 1MCldg0Hv5u1LK6Mxn88JiKWXGBaX2mmN837/CFHSfot7hhWjrS5Ck5hfqP0JyWM jWrZwA76pUmVGBCWhaiAhOtUjLWTXTiEaET93EQ0N9ExPy8KpFYtGv5XnIlztfPc 5vrMmPYsBi7Ar6Y+96aBcMFTqNCmId8hiF6SP3NnZz8n54UznVWFEAm+7EpxOuNJ rpDWrgW4lZNH1C7NRFs6wQzq0ji69Ta+PmBxXeAlXkTKKn31qFD2PEcuMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIELqLgB0LVObuFSAdzl85k7mff2MB8GA1UdIwQY MBaAFJBkJvSDw2qs2ocyMkq4itWADJotMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva0dRbTlJUERhcXphaHpJeVNyaUsxWUFNbWkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85NGQ0NDEtZDk4Ny00MDYyLTg5YzEt OTRjNWFkMTdhN2EwLzEva0dRbTlJUERhcXphaHpJeVNyaUsxWUFNbWkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy85NGQ0NDEtZDk4Ny00MDYyLTg5YzEtOTRjNWFkMTdhN2Ew LzEva0dRbTlJUERhcXphaHpJeVNyaUsxWUFNbWkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtusMPf9a NIcGdH2zvRioBxuV/Ub7rmoOgwTg1b5zKGWhYdVM6nQR99+3MCpjxBx0Qne9CccM 3VL0N5JcbC4aCyjf5TXP+1v34Cdz71MAAulB7LjI7ig9ib1Rnk3YSe5AfI98Q/mW ua5PcMoEJ2SQ8t9qkNBonhgaFszgJokO3lNtjicE6k7du+utuhKaT3im4QjiWjGr ljvhRQ9qTaDMAsfSe01L2RZ9oNbxcK+xj2qomCcJggPBYJDKh7LNKqhnkTVK9ZvL e73iMaOF2AhnSlGmNlT4uUkNARmNn4ajY/xR2eVUGkwi5tOwhGefbWEFV5biiLMc LS216BAUaN27GQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:20 2026 by rpki-client