This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft File: KZkwB8fJLfYXjny0MYP9f1KlJtg.mft (raw, json) Hash identifier: j14uOAGx7MdZ6Y7Q8OMtyeOkDPVjVXiIFyDsdAeJ1yo= Subject key identifier: D9:FD:0B:EE:C5:B5:5C:F8:63:B4:0B:A6:1E:3B:81:64:8A:6C:5D:54 Authority key identifier: 29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8 Certificate issuer: /CN=29993007c7c92df6178e7cb43183fd7f52a526d8 Certificate serial: 019C4510B7E7E90FA4861FF13DB347241C18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft Manifest number: 05C0 Signing time: Tue 10 Feb 2026 01:00:49 +0000 Manifest this update: Tue 10 Feb 2026 01:00:49 +0000 Manifest next update: Wed 11 Feb 2026 01:00:49 +0000 Files and hashes: 1: 7f4UvQlMdpfAbI5t8bFTk5iRj8k.roa (hash: /N2n+SGiRBz3V3eyWEIptUhy7tOM9oDQMEZwfy867yE=) 2: CGspQAEXscYtnhUkcO43B4rOMYI.roa (hash: ZmpcN0BqbrZBIrGn5PsZ/DSc38P9usOvQmrKlG150S0=) 3: JdmDASsiVF3OIVzqa3C7Cim1k98.roa (hash: nFwnLYcc5xw59Kim5t3Ysus4IUlGUDLjCzJ6lO8Sg5o=) 4: KZkwB8fJLfYXjny0MYP9f1KlJtg.crl (hash: 41ubkmEFXPuTkC1Yr2PLedrjR4TiEEenCdt9WMTInkc=) 5: c_SCSSOMfndQeyUkFaC27pfW1mU.roa (hash: uAY189SdMJyDwdqEHdr62YdMVXHkgzdNjAsXqKard7o=) 6: zq_9_kcYqu3vefIRsvfC8bPWQ-g.roa (hash: QDKMvUQqB0HqtMyuZtPJ5BCeeeIwdd+NrKPpEKtzi6U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 11 Feb 2026 00:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:10:b7:e7:e9:0f:a4:86:1f:f1:3d:b3:47:24:1c:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29993007c7c92df6178e7cb43183fd7f52a526d8 Validity Not Before: Feb 10 01:00:49 2026 GMT Not After : Feb 11 01:00:49 2026 GMT Subject: CN=d9fd0beec5b55cf863b40ba61e3b81648a6c5d54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d0:6c:22:2d:c9:64:b6:13:25:9d:f4:2e:73: 24:b6:58:bb:a4:22:f6:ce:14:fd:f6:26:ce:9b:37: 59:b4:4c:43:de:b2:58:69:f8:3e:0b:97:4c:f9:73: d6:6a:88:97:ed:91:cd:3a:6d:e7:0c:2b:64:01:94: 9a:6e:af:09:8f:00:1e:0f:fd:30:2f:30:fe:04:78: 62:05:f8:5b:55:44:0d:7e:18:74:26:8d:32:38:36: 66:34:87:04:4a:04:d5:7d:1a:40:ac:07:8d:4d:f2: 69:a4:dc:3e:fb:08:52:4d:e5:31:c8:b6:cd:88:5a: 5f:1e:1e:3b:35:60:10:a1:6a:a1:ac:be:21:3c:c9: 55:78:bf:74:51:71:02:70:7d:3a:74:79:39:0b:20: ee:50:00:f8:00:38:c4:23:a3:05:5a:a8:83:d5:4d: b0:64:50:bd:58:bf:62:db:d4:dd:13:c3:3e:ff:12: 60:e4:ad:2b:a8:46:99:19:3e:80:76:90:18:1c:00: 17:b4:82:bd:fc:94:6b:1c:01:cc:7d:e3:86:26:29: 46:02:1d:e1:14:bc:8f:89:4a:0e:a4:34:4e:3c:10: 57:d1:a6:98:d5:40:aa:64:fc:a7:e1:82:6e:f8:e4: b3:2b:68:62:36:8a:b4:37:18:2a:46:12:31:d9:d8: f6:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:FD:0B:EE:C5:B5:5C:F8:63:B4:0B:A6:1E:3B:81:64:8A:6C:5D:54 X509v3 Authority Key Identifier: keyid:29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:e9:ea:7b:3a:d3:cd:e0:09:55:25:1a:62:d1:ed:cc:f8:9f: 14:fd:4d:33:42:29:df:f2:49:f8:47:19:fe:01:4e:e8:a2:2e: 1f:17:85:5d:20:9a:8b:9c:df:b3:c6:ab:aa:ee:e1:e5:f8:8f: 33:7e:e1:a2:c6:d9:f1:75:99:b6:9d:b4:92:cd:61:4e:cf:64: ce:b9:17:75:16:0f:1f:fe:12:df:1f:19:9c:7a:f6:b5:4b:53: be:c1:f7:bd:0c:1b:67:81:a0:82:af:11:8d:5e:e4:da:3c:29: 24:d2:e3:3d:c6:17:02:8a:d4:87:3a:d8:f5:82:c4:87:40:31: 9d:8f:23:5c:2c:31:07:63:38:dd:47:fd:b9:93:7f:72:40:c1: 48:63:f7:61:c0:47:73:7f:06:d5:39:0f:2f:6c:43:8b:55:5b: 2f:46:a8:b3:50:02:16:95:9a:b7:e3:7c:8a:0d:6f:73:e7:1d: 72:ce:c9:f1:f1:96:10:86:2d:a4:45:76:02:af:48:76:5f:9c: dd:fa:41:69:23:16:dd:11:6f:62:b8:75:47:d3:01:1c:2a:8d: f9:6f:8a:27:21:65:05:1d:df:07:c8:26:6a:44:31:f2:75:f2: 27:5d:d2:4d:91:3b:fd:a2:75:60:e8:f3:37:ec:18:f8:ef:b0: b8:a3:32:e8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFELfn6Q+khh/xPbNHJBwYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5OTkzMDA3YzdjOTJkZjYxNzhlN2NiNDMxODNmZDdmNTJh NTI2ZDgwHhcNMjYwMjEwMDEwMDQ5WhcNMjYwMjExMDEwMDQ5WjAzMTEwLwYDVQQD EyhkOWZkMGJlZWM1YjU1Y2Y4NjNiNDBiYTYxZTNiODE2NDhhNmM1ZDU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3dBsIi3JZLYTJZ30LnMktli7pCL2 zhT99ibOmzdZtExD3rJYafg+C5dM+XPWaoiX7ZHNOm3nDCtkAZSabq8JjwAeD/0w LzD+BHhiBfhbVUQNfhh0Jo0yODZmNIcESgTVfRpArAeNTfJppNw++whSTeUxyLbN iFpfHh47NWAQoWqhrL4hPMlVeL90UXECcH06dHk5CyDuUAD4ADjEI6MFWqiD1U2w ZFC9WL9i29TdE8M+/xJg5K0rqEaZGT6AdpAYHAAXtIK9/JRrHAHMfeOGJilGAh3h FLyPiUoOpDROPBBX0aaY1UCqZPyn4YJu+OSzK2hiNoq0NxgqRhIx2dj2bwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNn9C+7FtVz4Y7QLph47gWSKbF1UMB8GA1UdIwQY MBaAFCmZMAfHyS32F458tDGD/X9SpSbYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODkt MWU4MjlmZmExYzNhLzEvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODktMWU4MjlmZmExYzNh LzEvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAenqezrT zeAJVSUaYtHtzPifFP1NM0Ip3/JJ+EcZ/gFO6KIuHxeFXSCai5zfs8arqu7h5fiP M37hosbZ8XWZtp20ks1hTs9kzrkXdRYPH/4S3x8ZnHr2tUtTvsH3vQwbZ4Gggq8R jV7k2jwpJNLjPcYXAorUhzrY9YLEh0AxnY8jXCwxB2M43Uf9uZN/ckDBSGP3YcBH c38G1TkPL2xDi1VbL0aos1ACFpWat+N8ig1vc+cdcs7J8fGWEIYtpEV2Aq9Idl+c 3fpBaSMW3RFvYrh1R9MBHCqN+W+KJyFlBR3fB8gmakQx8nXyJ13STZE7/aJ1YOjz N+wY+O+wuKMy6A== -----END CERTIFICATE-----Generated at Tue Feb 10 10:13:31 2026 by rpki-client