This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft File: kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft (raw, json) Hash identifier: 0yelvPl2u8dCMMGw8iBtJki9VzTuQLJ7IJrUqdA8CL8= Subject key identifier: 10:A9:9D:16:8E:BD:39:7B:DC:39:B5:B4:3C:C1:C9:E5:74:9A:3F:44 Authority key identifier: 91:38:36:85:9C:6C:E1:86:93:40:ED:F1:F2:73:70:9B:80:94:D9:D4 Certificate issuer: /CN=913836859c6ce1869340edf1f273709b8094d9d4 Certificate serial: 019C4359182F50AA7D80F20F23DB93E025D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft Manifest number: 1778 Signing time: Mon 09 Feb 2026 17:00:38 +0000 Manifest this update: Mon 09 Feb 2026 17:00:38 +0000 Manifest next update: Tue 10 Feb 2026 17:00:38 +0000 Files and hashes: 1: QkiwDdoqGneFxhueC1tYh17gEHY.roa (hash: S+EvCH9iwtFs/o9t8OSVI9PK9t1NWkiQ5QvCjj3oEWA=) 2: kTg2hZxs4YaTQO3x8nNwm4CU2dQ.crl (hash: AY8IqpREttHR9hzg7YL4BhV7jY09R7xxkNhYiTbt9oA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.crl rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft rsync://rpki.ripe.net/repository/DEFAULT/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:18:2f:50:aa:7d:80:f2:0f:23:db:93:e0:25:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=913836859c6ce1869340edf1f273709b8094d9d4 Validity Not Before: Feb 9 17:00:38 2026 GMT Not After : Feb 10 17:00:38 2026 GMT Subject: CN=10a99d168ebd397bdc39b5b43cc1c9e5749a3f44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4f:0c:9c:f7:8d:d9:b0:17:02:c3:4b:c9:a7: 98:99:52:02:0d:d6:46:63:0a:9a:8c:83:37:a1:cd: 32:25:b9:37:2f:e3:8f:7d:76:7b:2a:8d:c9:be:d7: 35:75:ea:13:18:40:44:1b:e9:c8:aa:b1:00:2e:92: 24:17:5c:a8:65:3b:e2:3e:7c:19:71:25:f0:0a:81: 87:c6:33:b8:0f:f2:92:82:df:ed:2e:4e:23:72:40: 6f:e2:38:38:81:46:d7:8e:ca:2d:b0:b0:0e:98:25: f0:66:48:31:36:d8:ef:21:60:40:d5:9d:5d:78:78: 63:00:9a:42:28:de:8d:64:87:ee:c6:e8:b9:c9:ed: 16:1d:1e:88:75:d3:ec:0b:5f:33:d6:a5:fd:b8:1e: 2e:a0:66:96:7e:27:c3:ad:8d:47:39:72:40:49:a0: 70:05:ab:8f:f5:6e:f2:de:70:75:8c:e3:53:ad:ed: 05:9f:d5:4b:b4:2b:8c:5c:1f:d5:33:f5:f2:fa:0f: f6:d8:73:52:5d:e3:eb:29:23:0f:b0:47:07:8e:73: ad:86:ed:58:9b:71:71:4c:94:c8:6c:fa:4c:51:7c: b6:43:e8:29:51:65:27:fc:4f:1e:b3:77:c7:2b:9d: 08:70:77:cf:ab:0d:98:7e:e1:02:cd:ff:c2:7d:f1: 9b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:A9:9D:16:8E:BD:39:7B:DC:39:B5:B4:3C:C1:C9:E5:74:9A:3F:44 X509v3 Authority Key Identifier: keyid:91:38:36:85:9C:6C:E1:86:93:40:ED:F1:F2:73:70:9B:80:94:D9:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:63:21:31:54:c1:3c:e9:0f:2a:bd:7e:c2:e6:00:fc:29:93: d9:e7:87:54:a7:68:fb:b5:90:e1:9e:db:8f:f4:11:c8:99:0c: 16:a9:18:ea:fc:8a:49:c7:3e:a0:80:e5:c9:a4:02:26:0d:f9: 81:75:56:b8:9e:07:1d:f9:10:52:4f:df:26:c2:ac:6e:85:bf: 08:2d:be:ee:89:f6:f4:6e:12:16:56:91:86:2b:d4:00:01:49: 00:bd:8c:95:7f:3f:2c:9e:40:94:58:ce:29:ad:5a:1f:1c:f5: ed:ec:80:7c:ea:17:7a:d0:fb:a4:e0:5d:1c:e5:e7:a2:3f:16: c4:54:33:40:42:8e:8f:a5:75:bb:be:96:a3:a8:21:87:06:af: 50:dd:24:ab:81:c4:57:41:36:95:85:ba:35:8e:df:a7:85:cd: 54:82:ab:d6:2d:12:d2:bf:28:9e:20:47:87:d7:9c:19:3b:ed: 30:d6:9f:e1:59:86:9f:1d:f2:0e:3d:0f:2a:3a:21:b8:29:79: e0:ac:5f:ab:65:95:56:fc:ea:f0:6d:36:a6:4b:b2:a2:8c:31: 77:5e:a1:bc:17:ac:7c:9b:5d:f1:92:4c:d4:74:1d:5e:b8:71: cc:66:45:2a:2c:17:eb:aa:b7:64:ad:d6:97:71:c5:91:d1:16: 70:7d:21:b5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWRgvUKp9gPIPI9uT4CXUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxMzgzNjg1OWM2Y2UxODY5MzQwZWRmMWYyNzM3MDliODA5 NGQ5ZDQwHhcNMjYwMjA5MTcwMDM4WhcNMjYwMjEwMTcwMDM4WjAzMTEwLwYDVQQD EygxMGE5OWQxNjhlYmQzOTdiZGMzOWI1YjQzY2MxYzllNTc0OWEzZjQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArE8MnPeN2bAXAsNLyaeYmVICDdZG YwqajIM3oc0yJbk3L+OPfXZ7Ko3Jvtc1deoTGEBEG+nIqrEALpIkF1yoZTviPnwZ cSXwCoGHxjO4D/KSgt/tLk4jckBv4jg4gUbXjsotsLAOmCXwZkgxNtjvIWBA1Z1d eHhjAJpCKN6NZIfuxui5ye0WHR6IddPsC18z1qX9uB4uoGaWfifDrY1HOXJASaBw BauP9W7y3nB1jONTre0Fn9VLtCuMXB/VM/Xy+g/22HNSXePrKSMPsEcHjnOthu1Y m3FxTJTIbPpMUXy2Q+gpUWUn/E8es3fHK50IcHfPqw2YfuECzf/CffGbRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBCpnRaOvTl73Dm1tDzByeV0mj9EMB8GA1UdIwQY MBaAFJE4NoWcbOGGk0Dt8fJzcJuAlNnUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1RnMmhaeHM0WWFUUU8zeDhuTndtNENVMmRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9lOGYzNDQtZWRiMi00NDAwLWIzY2Et NTI3YWM1NGMyMzU3LzEva1RnMmhaeHM0WWFUUU8zeDhuTndtNENVMmRRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC9lOGYzNDQtZWRiMi00NDAwLWIzY2EtNTI3YWM1NGMyMzU3 LzEva1RnMmhaeHM0WWFUUU8zeDhuTndtNENVMmRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmmMhMVTB POkPKr1+wuYA/CmT2eeHVKdo+7WQ4Z7bj/QRyJkMFqkY6vyKScc+oIDlyaQCJg35 gXVWuJ4HHfkQUk/fJsKsboW/CC2+7on29G4SFlaRhivUAAFJAL2MlX8/LJ5AlFjO Ka1aHxz17eyAfOoXetD7pOBdHOXnoj8WxFQzQEKOj6V1u76Wo6ghhwavUN0kq4HE V0E2lYW6NY7fp4XNVIKr1i0S0r8oniBHh9ecGTvtMNaf4VmGnx3yDj0PKjohuCl5 4Kxfq2WVVvzq8G02pkuyoowxd16hvBesfJtd8ZJM1HQdXrhxzGZFKiwX66q3ZK3W l3HFkdEWcH0htQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:07:14 2026 by rpki-client