This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft File: 4koD-A9i2oZjUuGZCZfx1GzrL7A.mft (raw, json) Hash identifier: uUzUXZ3bFdQirzEJoVL2usAv1OfPN6Vjzn4Hlfmq+K8= Subject key identifier: 9C:08:25:CC:04:8C:76:F2:03:0B:2C:7C:D9:C1:97:DA:D8:DD:D9:1D Authority key identifier: E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0 Certificate issuer: /CN=e24a03f80f62da866352e1990997f1d46ceb2fb0 Certificate serial: 019C421026C613E401E693AF436BF99D0A82 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft Manifest number: 14CD Signing time: Mon 09 Feb 2026 11:01:20 +0000 Manifest this update: Mon 09 Feb 2026 11:01:20 +0000 Manifest next update: Tue 10 Feb 2026 11:01:20 +0000 Files and hashes: 1: 4koD-A9i2oZjUuGZCZfx1GzrL7A.crl (hash: hIV4PKpWphSWaqRVwPyeyBPulGknEy5RF2GleTW72rI=) 2: WlHlPJ2Yx-QYEFNJTd1fZunOqeI.roa (hash: V3F5Ix6QWwGrgFg4N8xfN4dbqz/bAEkV9NWs0dFeZ8I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.crl rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:26:c6:13:e4:01:e6:93:af:43:6b:f9:9d:0a:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e24a03f80f62da866352e1990997f1d46ceb2fb0 Validity Not Before: Feb 9 11:01:20 2026 GMT Not After : Feb 10 11:01:20 2026 GMT Subject: CN=9c0825cc048c76f2030b2c7cd9c197dad8ddd91d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:c2:a1:bc:2f:f3:9d:9c:7d:1d:5f:e2:e2:a3: 75:28:35:b8:7a:c2:04:42:01:4e:13:e7:cc:ac:8f: fc:6e:57:bb:a7:37:78:14:d6:69:61:b8:79:63:b1: da:e3:5e:e3:69:ce:a2:83:ed:49:6b:d3:50:2c:a6: 81:86:ce:13:0f:dc:3a:bb:76:22:e3:e6:e7:a4:31: 61:2d:1f:d0:ff:50:10:1a:2b:d1:c9:4d:03:72:fb: 6c:8e:c3:68:df:7b:e3:3d:1e:e2:2d:cd:bf:3e:8e: 90:53:1d:ce:41:7d:67:bc:40:86:f2:3f:3d:84:29: c3:86:8b:50:2b:f9:83:5d:d7:fa:22:ef:51:3c:20: 97:52:63:4e:da:4d:f7:fa:08:40:e7:3f:d2:e5:3a: d9:ae:54:8b:52:4c:66:13:98:49:e7:a7:6f:9a:57: 88:1a:57:d4:d9:5b:89:c8:cf:c0:51:83:e7:92:33: 26:a2:06:47:d4:34:59:16:29:12:89:c6:9a:52:d1: e7:d5:1a:dd:8a:f0:70:5a:8a:6f:24:9b:57:25:19: 1f:d5:a2:9b:ce:2b:83:fd:96:ae:c9:d0:f2:54:88: 39:7a:b4:f2:b3:de:ca:2a:74:b5:2b:9d:0b:19:c6: 50:6f:aa:91:58:f4:81:e9:53:56:4a:2d:9b:e3:37: 82:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:08:25:CC:04:8C:76:F2:03:0B:2C:7C:D9:C1:97:DA:D8:DD:D9:1D X509v3 Authority Key Identifier: keyid:E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:b6:ca:0a:4b:68:4e:67:ab:bd:01:da:47:87:07:d1:05:17: ee:6e:43:74:29:a6:10:7a:2a:ae:6d:a9:39:b5:bc:64:11:1a: 7a:44:29:e6:3a:88:d7:d6:0a:be:66:2f:be:8f:98:ec:a7:2c: 84:1e:73:aa:3a:80:4f:6c:35:ba:0f:c1:52:a2:b9:c2:28:31: 30:ae:76:65:2d:d1:3d:ae:c0:51:a9:99:3c:cf:4a:f7:87:1f: 9c:12:b8:1d:96:ee:86:cc:3f:99:4f:0d:2e:18:cd:18:82:dc: 23:37:c6:ff:d1:bf:a6:54:ce:3f:e6:1f:ac:29:d9:5f:b8:b8: bd:61:98:ea:bb:91:87:14:4a:51:e7:27:b7:cb:eb:10:72:98: 2b:65:0a:62:d7:e1:34:72:25:c3:21:1b:07:6b:e7:1d:0f:d6: bf:51:68:29:39:9c:2f:d2:05:6b:b6:c7:c9:dc:71:9c:42:eb: 66:e9:21:78:48:68:e4:1b:7a:34:8e:42:39:96:98:e1:66:55: b1:af:f2:13:73:6c:68:f1:e4:f4:99:2e:3f:2d:ee:d0:e7:59: d0:3e:b2:b6:89:d6:f8:a2:38:f4:1a:ea:0e:1c:e9:48:6d:34: c5:13:70:37:38:ce:e0:5d:73:df:b0:96:3e:57:6d:38:1c:c4: 2e:ab:ba:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCECbGE+QB5pOvQ2v5nQqCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyNGEwM2Y4MGY2MmRhODY2MzUyZTE5OTA5OTdmMWQ0NmNl YjJmYjAwHhcNMjYwMjA5MTEwMTIwWhcNMjYwMjEwMTEwMTIwWjAzMTEwLwYDVQQD Eyg5YzA4MjVjYzA0OGM3NmYyMDMwYjJjN2NkOWMxOTdkYWQ4ZGRkOTFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlcKhvC/znZx9HV/i4qN1KDW4esIE QgFOE+fMrI/8ble7pzd4FNZpYbh5Y7Ha417jac6ig+1Ja9NQLKaBhs4TD9w6u3Yi 4+bnpDFhLR/Q/1AQGivRyU0DcvtsjsNo33vjPR7iLc2/Po6QUx3OQX1nvECG8j89 hCnDhotQK/mDXdf6Iu9RPCCXUmNO2k33+ghA5z/S5TrZrlSLUkxmE5hJ56dvmleI GlfU2VuJyM/AUYPnkjMmogZH1DRZFikSicaaUtHn1RrdivBwWopvJJtXJRkf1aKb ziuD/ZauydDyVIg5erTys97KKnS1K50LGcZQb6qRWPSB6VNWSi2b4zeCuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJwIJcwEjHbyAwssfNnBl9rY3dkdMB8GA1UdIwQY MBaAFOJKA/gPYtqGY1LhmQmX8dRs6y+wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNGtvRC1BOWkyb1pqVXVHWkNaZngxR3pyTDdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC81NDBjNWYtYTJhMi00NGU0LTkyODct NDFiNTQ1MDBmZGNmLzEvNGtvRC1BOWkyb1pqVXVHWkNaZngxR3pyTDdBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC81NDBjNWYtYTJhMi00NGU0LTkyODctNDFiNTQ1MDBmZGNm LzEvNGtvRC1BOWkyb1pqVXVHWkNaZngxR3pyTDdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq7bKCkto TmervQHaR4cH0QUX7m5DdCmmEHoqrm2pObW8ZBEaekQp5jqI19YKvmYvvo+Y7Kcs hB5zqjqAT2w1ug/BUqK5wigxMK52ZS3RPa7AUamZPM9K94cfnBK4HZbuhsw/mU8N LhjNGILcIzfG/9G/plTOP+YfrCnZX7i4vWGY6ruRhxRKUecnt8vrEHKYK2UKYtfh NHIlwyEbB2vnHQ/Wv1FoKTmcL9IFa7bHydxxnELrZukheEho5Bt6NI5COZaY4WZV sa/yE3NsaPHk9JkuPy3u0OdZ0D6ytonW+KI49BrqDhzpSG00xRNwNzjO4F1z37CW PldtOBzELqu6uQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:50 2026 by rpki-client