This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/d2388f-f8a9-4485-937f-840fd5352dc0/1/KmU0qslEKjlNE5oagwPcBJWcHaA.mft File: KmU0qslEKjlNE5oagwPcBJWcHaA.mft (raw, json) Hash identifier: NyYiHIxkwGYZZ4py/FKD6jMoB/NLzf/HN64bLq5oCFk= Subject key identifier: 2A:07:51:9A:38:4B:B5:DF:09:07:82:EB:28:88:45:C7:60:D8:06:14 Authority key identifier: 2A:65:34:AA:C9:44:2A:39:4D:13:9A:1A:83:03:DC:04:95:9C:1D:A0 Certificate issuer: /CN=2a6534aac9442a394d139a1a8303dc04959c1da0 Certificate serial: 019C4322981E33199C2D0BCB5E5F4F888026 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KmU0qslEKjlNE5oagwPcBJWcHaA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/d2388f-f8a9-4485-937f-840fd5352dc0/1/KmU0qslEKjlNE5oagwPcBJWcHaA.mft Manifest number: 1124 Signing time: Mon 09 Feb 2026 16:01:06 +0000 Manifest this update: Mon 09 Feb 2026 16:01:06 +0000 Manifest next update: Tue 10 Feb 2026 16:01:06 +0000 Files and hashes: 1: KmU0qslEKjlNE5oagwPcBJWcHaA.crl (hash: Cv7qDgwbp/he9eTxODtU8Ool08b3p+KPBg3BkWBH4Aw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/d2388f-f8a9-4485-937f-840fd5352dc0/1/KmU0qslEKjlNE5oagwPcBJWcHaA.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/d2388f-f8a9-4485-937f-840fd5352dc0/1/KmU0qslEKjlNE5oagwPcBJWcHaA.mft rsync://rpki.ripe.net/repository/DEFAULT/KmU0qslEKjlNE5oagwPcBJWcHaA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:98:1e:33:19:9c:2d:0b:cb:5e:5f:4f:88:80:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a6534aac9442a394d139a1a8303dc04959c1da0 Validity Not Before: Feb 9 16:01:06 2026 GMT Not After : Feb 10 16:01:06 2026 GMT Subject: CN=2a07519a384bb5df090782eb288845c760d80614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:d1:ec:3c:69:41:d7:69:93:22:ef:23:b3:db: 4d:67:fd:6c:27:16:f6:da:c7:1c:f6:7a:dc:8c:d5: c9:d6:56:4e:06:36:48:25:35:01:76:51:27:67:5e: 26:be:67:81:a2:04:61:ca:ca:55:cb:55:cc:1a:80: 3c:de:f0:4c:f1:6b:e3:c0:d6:42:b6:ff:0f:3d:d1: 9e:93:5b:5f:fe:37:c0:d6:9e:08:50:c7:54:59:3b: 1e:c3:90:b5:74:23:1a:0c:2e:43:43:29:a5:df:88: 77:2e:ff:7e:48:92:bd:d5:5e:e3:77:22:de:a6:19: a2:33:5b:b3:76:6d:98:e5:63:cc:14:b7:d7:ef:8f: c9:71:48:a1:a9:fb:e0:07:49:a3:cb:4f:3c:77:fd: da:29:6e:d2:38:a2:0a:04:7a:b4:5a:28:19:0e:aa: c2:ea:3a:a1:ed:1e:51:7c:9d:cd:e4:d0:c2:95:8f: e1:c2:2b:cc:9a:fe:85:20:58:8a:64:11:b8:14:9c: 8c:2b:8c:37:93:f9:31:a7:92:36:c2:dc:0a:2a:e0: 97:e1:d1:1c:91:98:ba:b6:71:e8:d6:47:9f:a4:f5: 28:d4:2e:d6:c1:cb:f0:34:27:2f:39:d0:9a:a8:84: 5d:8b:6a:58:fc:bf:94:b5:a9:f4:60:60:3d:51:5c: 6b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:07:51:9A:38:4B:B5:DF:09:07:82:EB:28:88:45:C7:60:D8:06:14 X509v3 Authority Key Identifier: keyid:2A:65:34:AA:C9:44:2A:39:4D:13:9A:1A:83:03:DC:04:95:9C:1D:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KmU0qslEKjlNE5oagwPcBJWcHaA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/d2388f-f8a9-4485-937f-840fd5352dc0/1/KmU0qslEKjlNE5oagwPcBJWcHaA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/d2388f-f8a9-4485-937f-840fd5352dc0/1/KmU0qslEKjlNE5oagwPcBJWcHaA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:a0:65:76:e8:8e:b0:5d:f8:b1:4a:a9:26:16:fe:7e:7f:cb: 04:6f:d3:0e:f9:d0:58:7c:39:e3:c3:f5:af:80:b7:32:e2:87: 6e:2b:9b:7e:91:8b:af:90:c4:13:94:fd:ab:65:10:2c:34:19: 5a:5f:f4:8b:49:80:98:d3:5a:27:eb:a5:e2:3c:d2:4e:d7:3c: d2:3d:ec:cf:69:5b:9c:f0:07:1f:d1:c9:a2:6d:ad:0b:1e:28: f6:68:6f:c2:c1:84:3c:e6:a8:55:bb:e6:12:04:5c:aa:01:0c: fe:5d:08:8c:32:1b:e4:1a:dd:3c:82:89:6c:d0:3c:40:2f:43: 43:10:89:9c:cc:db:8e:e7:34:4b:98:d3:f9:81:b7:bd:72:75: b9:7f:7d:3b:55:9a:8d:f4:4f:52:c5:ee:e9:ac:95:3f:49:12: 61:e9:5f:96:2d:70:1b:5d:26:03:54:14:d3:5a:9c:5e:31:60: f1:8d:c2:b0:99:d2:06:6f:6b:ae:a8:ec:9d:eb:77:14:17:34: 88:8d:2c:6a:ba:db:ae:60:e1:92:7c:a2:da:49:3a:04:a4:d1: e0:62:80:5e:56:cf:c0:36:df:f8:af:10:5b:03:04:8e:2f:33: da:55:a6:5d:2e:30:87:e6:45:82:50:bf:15:ef:00:a4:92:67: 50:f5:cc:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIpgeMxmcLQvLXl9PiIAmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhNjUzNGFhYzk0NDJhMzk0ZDEzOWExYTgzMDNkYzA0OTU5 YzFkYTAwHhcNMjYwMjA5MTYwMTA2WhcNMjYwMjEwMTYwMTA2WjAzMTEwLwYDVQQD EygyYTA3NTE5YTM4NGJiNWRmMDkwNzgyZWIyODg4NDVjNzYwZDgwNjE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAidHsPGlB12mTIu8js9tNZ/1sJxb2 2scc9nrcjNXJ1lZOBjZIJTUBdlEnZ14mvmeBogRhyspVy1XMGoA83vBM8WvjwNZC tv8PPdGek1tf/jfA1p4IUMdUWTsew5C1dCMaDC5DQyml34h3Lv9+SJK91V7jdyLe phmiM1uzdm2Y5WPMFLfX74/JcUihqfvgB0mjy088d/3aKW7SOKIKBHq0WigZDqrC 6jqh7R5RfJ3N5NDClY/hwivMmv6FIFiKZBG4FJyMK4w3k/kxp5I2wtwKKuCX4dEc kZi6tnHo1kefpPUo1C7WwcvwNCcvOdCaqIRdi2pY/L+Utan0YGA9UVxrOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCoHUZo4S7XfCQeC6yiIRcdg2AYUMB8GA1UdIwQY MBaAFCplNKrJRCo5TROaGoMD3ASVnB2gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS21VMHFzbEVLamxORTVvYWd3UGNCSldjSGFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9kMjM4OGYtZjhhOS00NDg1LTkzN2Yt ODQwZmQ1MzUyZGMwLzEvS21VMHFzbEVLamxORTVvYWd3UGNCSldjSGFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy9kMjM4OGYtZjhhOS00NDg1LTkzN2YtODQwZmQ1MzUyZGMw LzEvS21VMHFzbEVLamxORTVvYWd3UGNCSldjSGFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdqBlduiO sF34sUqpJhb+fn/LBG/TDvnQWHw548P1r4C3MuKHbiubfpGLr5DEE5T9q2UQLDQZ Wl/0i0mAmNNaJ+ul4jzSTtc80j3sz2lbnPAHH9HJom2tCx4o9mhvwsGEPOaoVbvm EgRcqgEM/l0IjDIb5BrdPIKJbNA8QC9DQxCJnMzbjuc0S5jT+YG3vXJ1uX99O1Wa jfRPUsXu6ayVP0kSYelfli1wG10mA1QU01qcXjFg8Y3CsJnSBm9rrqjsnet3FBc0 iI0sarrbrmDhknyi2kk6BKTR4GKAXlbPwDbf+K8QWwMEji8z2lWmXS4wh+ZFglC/ Fe8ApJJnUPXMQQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:01:16 2026 by rpki-client