This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft File: MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft (raw, json) Hash identifier: iD7CphKdwd3YchzI1RshXWwSuZOEC0qLQ8ha8Z+yoUY= Subject key identifier: 0A:AD:10:CC:CC:6F:08:77:E3:2A:39:EB:79:41:55:EF:95:2D:87:9F Authority key identifier: 30:A2:42:CF:6C:15:29:AA:A0:69:33:67:E4:4C:84:A0:7D:8B:0C:9F Certificate issuer: /CN=30a242cf6c1529aaa0693367e44c84a07d8b0c9f Certificate serial: 019C43227FDC84A5E7C2E02C662A397E248E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft Manifest number: 0B97 Signing time: Mon 09 Feb 2026 16:01:00 +0000 Manifest this update: Mon 09 Feb 2026 16:01:00 +0000 Manifest next update: Tue 10 Feb 2026 16:01:00 +0000 Files and hashes: 1: MKJCz2wVKaqgaTNn5EyEoH2LDJ8.crl (hash: m6V6sAu70qT/CRmoj7CTGJmHqAMx1lC1a0uJXNqtlOA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.crl rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft rsync://rpki.ripe.net/repository/DEFAULT/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:7f:dc:84:a5:e7:c2:e0:2c:66:2a:39:7e:24:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30a242cf6c1529aaa0693367e44c84a07d8b0c9f Validity Not Before: Feb 9 16:01:00 2026 GMT Not After : Feb 10 16:01:00 2026 GMT Subject: CN=0aad10cccc6f0877e32a39eb794155ef952d879f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:21:ce:c3:e1:b0:c5:58:04:f0:b4:cc:42:cd: 16:cd:3b:8d:4f:2e:72:cd:f2:f0:07:68:da:9b:c9: 7e:86:e0:9c:c7:44:4f:e4:b6:13:22:b6:23:62:e3: 52:06:34:76:1c:cf:7f:89:74:aa:4e:fe:54:d9:47: 39:96:b9:1a:fe:e5:c1:65:25:8c:34:00:6d:00:98: cc:7f:c4:08:55:cf:2a:c7:cf:1b:b3:e2:a3:30:bc: 13:aa:36:c1:44:38:00:01:82:40:b0:a5:38:b0:dd: 89:af:2c:43:96:87:c5:c3:43:1e:5f:64:8b:a1:fa: 46:66:e8:fa:52:c6:83:3f:cf:63:09:eb:b6:37:0b: 16:02:1f:d8:65:f1:68:61:22:aa:1b:9a:b6:7f:77: 7d:fc:93:17:ff:f7:e2:b6:f0:6a:f4:fa:08:3c:c5: 8d:b8:38:38:79:e2:c1:21:69:53:0d:ea:5f:4f:05: c3:ba:60:8a:3b:e6:31:42:9c:5a:d0:f7:e8:14:4c: 0e:22:fb:2d:a8:47:b9:9e:fc:91:eb:9d:16:1a:aa: 3a:11:ba:07:59:3d:97:b8:da:d2:a4:66:24:6f:d6: eb:03:f3:c4:b0:e9:a6:53:e2:37:ef:5d:44:97:01: 36:11:c1:9c:c7:50:91:ae:a8:53:bf:0b:06:a0:2a: fd:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:AD:10:CC:CC:6F:08:77:E3:2A:39:EB:79:41:55:EF:95:2D:87:9F X509v3 Authority Key Identifier: keyid:30:A2:42:CF:6C:15:29:AA:A0:69:33:67:E4:4C:84:A0:7D:8B:0C:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:fc:74:6b:83:c6:a5:fc:ff:66:d7:2b:f6:45:af:17:f0:c8: 1a:f9:aa:29:e7:ed:3a:87:8b:5d:31:a9:fd:35:84:75:fe:d6: 8e:5b:28:58:de:52:05:6f:4c:fc:3c:2c:3d:ec:c2:9c:18:04: 0e:e9:d1:f6:c1:f7:83:97:0c:4e:b7:14:fb:06:be:db:32:41: ab:fb:e1:52:60:78:05:13:85:0b:93:c6:bd:00:83:96:c2:74: bf:48:07:de:10:36:cb:47:c3:d3:f6:66:94:f1:8a:8e:ab:6d: a7:fb:05:2b:e5:25:4a:e1:da:8c:23:e1:0f:2a:f5:fe:51:60: 46:d9:b2:de:f8:76:53:f7:5c:f9:0a:36:cf:e1:a0:16:3e:a3: f7:16:d0:68:ad:21:0d:4c:ce:cb:34:e0:88:be:a7:46:8d:5c: ae:c6:e5:d4:ed:5a:7d:97:a8:ff:72:88:92:b1:43:d5:23:ee: ee:e9:50:e1:1b:31:19:4e:30:f1:96:8b:b2:fb:67:16:bd:43: 8f:01:8c:26:76:a7:33:b5:12:09:22:cf:81:53:1c:ce:02:0b: a1:94:a8:ce:d5:eb:6c:dc:0e:2b:d7:55:71:6a:50:91:0f:01: 1f:a2:05:08:26:8e:00:53:d3:7b:4f:1d:4a:0e:2d:87:27:ab: 24:bf:d6:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIn/chKXnwuAsZio5fiSOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwYTI0MmNmNmMxNTI5YWFhMDY5MzM2N2U0NGM4NGEwN2Q4 YjBjOWYwHhcNMjYwMjA5MTYwMTAwWhcNMjYwMjEwMTYwMTAwWjAzMTEwLwYDVQQD EygwYWFkMTBjY2NjNmYwODc3ZTMyYTM5ZWI3OTQxNTVlZjk1MmQ4NzlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhyHOw+GwxVgE8LTMQs0WzTuNTy5y zfLwB2jam8l+huCcx0RP5LYTIrYjYuNSBjR2HM9/iXSqTv5U2Uc5lrka/uXBZSWM NABtAJjMf8QIVc8qx88bs+KjMLwTqjbBRDgAAYJAsKU4sN2JryxDlofFw0MeX2SL ofpGZuj6UsaDP89jCeu2NwsWAh/YZfFoYSKqG5q2f3d9/JMX//fitvBq9PoIPMWN uDg4eeLBIWlTDepfTwXDumCKO+YxQpxa0PfoFEwOIvstqEe5nvyR650WGqo6EboH WT2XuNrSpGYkb9brA/PEsOmmU+I3711ElwE2EcGcx1CRrqhTvwsGoCr93QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAqtEMzMbwh34yo563lBVe+VLYefMB8GA1UdIwQY MBaAFDCiQs9sFSmqoGkzZ+RMhKB9iwyfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUtKQ3oyd1ZLYXFnYVRObjVFeUVvSDJMREo4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8xN2NkODYtN2ZiYi00MDhmLWEyOGMt ZmEyNjc2ZmUzOGZkLzEvTUtKQ3oyd1ZLYXFnYVRObjVFeUVvSDJMREo4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC8xN2NkODYtN2ZiYi00MDhmLWEyOGMtZmEyNjc2ZmUzOGZk LzEvTUtKQ3oyd1ZLYXFnYVRObjVFeUVvSDJMREo4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdPx0a4PG pfz/Ztcr9kWvF/DIGvmqKeftOoeLXTGp/TWEdf7WjlsoWN5SBW9M/DwsPezCnBgE DunR9sH3g5cMTrcU+wa+2zJBq/vhUmB4BROFC5PGvQCDlsJ0v0gH3hA2y0fD0/Zm lPGKjqttp/sFK+UlSuHajCPhDyr1/lFgRtmy3vh2U/dc+Qo2z+GgFj6j9xbQaK0h DUzOyzTgiL6nRo1crsbl1O1afZeo/3KIkrFD1SPu7ulQ4RsxGU4w8ZaLsvtnFr1D jwGMJnanM7USCSLPgVMczgILoZSoztXrbNwOK9dVcWpQkQ8BH6IFCCaOAFPTe08d Sg4thyerJL/WKg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:09 2026 by rpki-client