This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/f91eed-98c6-47f6-abf7-911070f27e37/1/kljqmCx9enWV6Dphx66z12GIlww.mft File: kljqmCx9enWV6Dphx66z12GIlww.mft (raw, json) Hash identifier: u1cFfmHSQoioD8P0m3AJN1OBPawYPaWneqPeT26Leio= Subject key identifier: 21:00:57:29:35:F2:BC:93:91:BF:7C:C0:7A:70:DC:06:B4:16:8E:5D Authority key identifier: 92:58:EA:98:2C:7D:7A:75:95:E8:3A:61:C7:AE:B3:D7:61:88:97:0C Certificate issuer: /CN=9258ea982c7d7a7595e83a61c7aeb3d76188970c Certificate serial: 019C427D5AF5D461BF7AD915AF310B6796AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kljqmCx9enWV6Dphx66z12GIlww.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/f91eed-98c6-47f6-abf7-911070f27e37/1/kljqmCx9enWV6Dphx66z12GIlww.mft Manifest number: 15B5 Signing time: Mon 09 Feb 2026 13:00:37 +0000 Manifest this update: Mon 09 Feb 2026 13:00:37 +0000 Manifest next update: Tue 10 Feb 2026 13:00:37 +0000 Files and hashes: 1: kljqmCx9enWV6Dphx66z12GIlww.crl (hash: CDOYfunn1UvvAQfnO9rfiGsHWh0/jaziDqHfilfsWJs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/f91eed-98c6-47f6-abf7-911070f27e37/1/kljqmCx9enWV6Dphx66z12GIlww.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/f91eed-98c6-47f6-abf7-911070f27e37/1/kljqmCx9enWV6Dphx66z12GIlww.mft rsync://rpki.ripe.net/repository/DEFAULT/kljqmCx9enWV6Dphx66z12GIlww.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:5a:f5:d4:61:bf:7a:d9:15:af:31:0b:67:96:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9258ea982c7d7a7595e83a61c7aeb3d76188970c Validity Not Before: Feb 9 13:00:37 2026 GMT Not After : Feb 10 13:00:37 2026 GMT Subject: CN=2100572935f2bc9391bf7cc07a70dc06b4168e5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:52:cb:6f:9d:bc:21:df:4b:1c:cb:b4:2c:81: f0:6b:88:d1:ac:f6:d3:dd:28:a9:ba:a6:66:e2:ba: b6:27:64:7f:85:87:ec:8c:74:01:f3:46:ab:3a:94: 37:84:a8:19:1b:12:df:a1:61:b6:ed:20:c0:fa:5b: 26:a5:62:19:da:72:48:2e:f5:f4:56:e6:9d:a3:43: f6:78:3d:ac:9c:ce:8d:2d:fc:07:f6:cf:67:39:16: 17:64:d0:ab:d2:7f:8f:65:28:e7:22:f1:77:d4:5c: 2d:75:b9:b0:22:88:60:f1:8f:73:2e:13:b4:5e:be: 43:cb:42:12:51:dc:09:16:75:bf:72:78:5a:ea:fd: b7:4a:4f:65:aa:99:e8:5d:64:59:a9:76:1c:a9:b4: 12:85:b0:90:94:8e:e1:ab:5d:e7:50:04:d9:40:8a: d8:c8:3c:c2:7c:7d:f4:b6:b2:72:0b:f8:3b:05:c6: b1:39:c1:d8:d8:d9:69:c0:13:0e:ac:10:a8:3d:ef: de:b9:4f:a2:de:96:df:85:e2:4a:03:6e:00:75:e3: 4b:98:36:26:1d:ef:5e:8a:5a:bd:e6:e6:30:2d:25: b4:99:7b:99:2d:06:5e:54:c4:3f:3f:cf:8d:39:f7: ab:1b:72:ac:f4:73:5c:8f:9a:87:40:ac:49:3a:ef: 4b:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:00:57:29:35:F2:BC:93:91:BF:7C:C0:7A:70:DC:06:B4:16:8E:5D X509v3 Authority Key Identifier: keyid:92:58:EA:98:2C:7D:7A:75:95:E8:3A:61:C7:AE:B3:D7:61:88:97:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kljqmCx9enWV6Dphx66z12GIlww.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f91eed-98c6-47f6-abf7-911070f27e37/1/kljqmCx9enWV6Dphx66z12GIlww.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f91eed-98c6-47f6-abf7-911070f27e37/1/kljqmCx9enWV6Dphx66z12GIlww.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:60:96:23:55:be:6c:ac:f3:5c:79:f4:5a:24:9d:3f:51:23: ae:6e:ac:49:b8:78:e4:9e:99:90:b5:99:8c:fb:f3:85:9d:23: 01:ac:86:51:3b:12:9c:d6:6b:5c:30:ee:0a:21:44:1b:b1:83: 16:98:06:05:1c:4a:c1:7e:69:88:bf:62:a6:8f:62:c1:a4:0c: c0:6f:f3:d5:a3:ea:3a:03:96:e0:45:43:fb:81:da:1b:c4:a0: f0:53:66:88:a3:14:ef:48:9b:55:4d:e8:d6:ef:e8:7d:56:f8: ca:85:7c:d6:98:68:d6:16:da:64:a5:f7:43:9f:3c:5e:a9:6b: d2:25:02:e2:d6:5a:eb:02:73:cb:23:21:73:cc:7e:8b:39:e1: ce:68:2b:09:a2:b7:db:ad:4a:c7:c9:07:8f:f5:5b:9e:95:0b: 34:c6:02:6e:68:e1:f6:64:3b:4f:03:69:81:f7:ec:60:07:0a: 3e:20:bf:4c:6d:ea:a7:97:35:e1:43:f0:b5:79:f0:62:a5:ac: aa:dd:b0:ed:74:f1:ac:c7:23:a7:30:fa:9f:35:ee:18:40:70: 21:4a:10:85:74:1b:9e:6e:bc:95:b5:c0:2c:d6:15:0c:7a:15: 7a:e9:c3:25:00:5b:ae:19:ee:e5:eb:c1:2f:da:c6:19:23:dc: 49:4c:d3:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfVr11GG/etkVrzELZ5aqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyNThlYTk4MmM3ZDdhNzU5NWU4M2E2MWM3YWViM2Q3NjE4 ODk3MGMwHhcNMjYwMjA5MTMwMDM3WhcNMjYwMjEwMTMwMDM3WjAzMTEwLwYDVQQD EygyMTAwNTcyOTM1ZjJiYzkzOTFiZjdjYzA3YTcwZGMwNmI0MTY4ZTVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA41LLb528Id9LHMu0LIHwa4jRrPbT 3SipuqZm4rq2J2R/hYfsjHQB80arOpQ3hKgZGxLfoWG27SDA+lsmpWIZ2nJILvX0 Vuado0P2eD2snM6NLfwH9s9nORYXZNCr0n+PZSjnIvF31FwtdbmwIohg8Y9zLhO0 Xr5Dy0ISUdwJFnW/cnha6v23Sk9lqpnoXWRZqXYcqbQShbCQlI7hq13nUATZQIrY yDzCfH30trJyC/g7BcaxOcHY2NlpwBMOrBCoPe/euU+i3pbfheJKA24AdeNLmDYm He9eilq95uYwLSW0mXuZLQZeVMQ/P8+NOferG3Ks9HNcj5qHQKxJOu9LxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCEAVyk18ryTkb98wHpw3Aa0Fo5dMB8GA1UdIwQY MBaAFJJY6pgsfXp1leg6Yceus9dhiJcMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2xqcW1DeDllbldWNkRwaHg2NnoxMkdJbHd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9mOTFlZWQtOThjNi00N2Y2LWFiZjct OTExMDcwZjI3ZTM3LzEva2xqcW1DeDllbldWNkRwaHg2NnoxMkdJbHd3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy9mOTFlZWQtOThjNi00N2Y2LWFiZjctOTExMDcwZjI3ZTM3 LzEva2xqcW1DeDllbldWNkRwaHg2NnoxMkdJbHd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHWCWI1W+ bKzzXHn0WiSdP1Ejrm6sSbh45J6ZkLWZjPvzhZ0jAayGUTsSnNZrXDDuCiFEG7GD FpgGBRxKwX5piL9ipo9iwaQMwG/z1aPqOgOW4EVD+4HaG8Sg8FNmiKMU70ibVU3o 1u/ofVb4yoV81pho1hbaZKX3Q588Xqlr0iUC4tZa6wJzyyMhc8x+iznhzmgrCaK3 261Kx8kHj/VbnpULNMYCbmjh9mQ7TwNpgffsYAcKPiC/TG3qp5c14UPwtXnwYqWs qt2w7XTxrMcjpzD6nzXuGEBwIUoQhXQbnm68lbXALNYVDHoVeunDJQBbrhnu5evB L9rGGSPcSUzTtg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:47:46 2026 by rpki-client