This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/030646-7bb4-484b-8f67-3b4f6a4be50d/1/F9LKgB4WduKghonur6RC87ZoWB0.mft File: F9LKgB4WduKghonur6RC87ZoWB0.mft (raw, json) Hash identifier: n7/HuwQgtUcugz7DQjUF9XHrjS66CHklsrj4cNzarYQ= Subject key identifier: C7:5D:C2:4C:38:49:DE:67:20:E7:75:FD:80:8D:34:E0:84:81:5A:FA Authority key identifier: 17:D2:CA:80:1E:16:76:E2:A0:86:89:EE:AF:A4:42:F3:B6:68:58:1D Certificate issuer: /CN=17d2ca801e1676e2a08689eeafa442f3b668581d Certificate serial: 019C43C6CCFBE945ED9DE032AF6D639D178A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9LKgB4WduKghonur6RC87ZoWB0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/030646-7bb4-484b-8f67-3b4f6a4be50d/1/F9LKgB4WduKghonur6RC87ZoWB0.mft Manifest number: 34 Signing time: Mon 09 Feb 2026 19:00:27 +0000 Manifest this update: Mon 09 Feb 2026 19:00:27 +0000 Manifest next update: Tue 10 Feb 2026 19:00:27 +0000 Files and hashes: 1: F9LKgB4WduKghonur6RC87ZoWB0.crl (hash: tahNrBKh6rk3FjosVq0qVx5XSkmXmdrVvQy6toK2IKU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/030646-7bb4-484b-8f67-3b4f6a4be50d/1/F9LKgB4WduKghonur6RC87ZoWB0.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/030646-7bb4-484b-8f67-3b4f6a4be50d/1/F9LKgB4WduKghonur6RC87ZoWB0.mft rsync://rpki.ripe.net/repository/DEFAULT/F9LKgB4WduKghonur6RC87ZoWB0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:cc:fb:e9:45:ed:9d:e0:32:af:6d:63:9d:17:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17d2ca801e1676e2a08689eeafa442f3b668581d Validity Not Before: Feb 9 19:00:27 2026 GMT Not After : Feb 10 19:00:27 2026 GMT Subject: CN=c75dc24c3849de6720e775fd808d34e084815afa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:86:0a:b9:13:d4:b6:28:87:42:6a:3e:d6:e0: 3f:2d:64:a5:ab:f0:74:7b:b8:5a:2b:9e:9a:0b:fb: 24:14:39:71:90:7a:79:0e:cb:52:6d:25:9f:db:0c: 14:a4:2e:09:fd:2e:67:31:c2:77:1c:1a:66:e7:42: e6:ef:ed:c6:01:90:74:33:fa:68:07:93:b4:91:16: 93:c2:90:75:99:69:8e:da:8b:6d:59:30:cb:98:fc: fe:10:50:c0:01:c6:c3:50:14:ee:f8:9e:67:c0:ed: d6:a2:05:45:c0:5c:f7:01:fe:fd:a8:97:da:2d:50: 5f:8b:19:06:43:91:a5:54:14:eb:f1:f7:51:9a:3b: 91:e0:c9:15:59:6b:e7:1d:0a:ef:39:97:10:06:f9: cb:06:da:49:34:72:09:4f:79:30:fd:50:a9:75:66: 40:1e:3e:da:3d:ee:47:fc:df:b2:c0:79:9a:86:ba: d7:8d:18:66:e0:ce:13:ff:93:90:cb:5a:c6:6f:3a: 6f:d6:43:21:3e:23:d8:97:61:04:50:47:1b:94:b4: 77:a1:41:55:5e:55:05:d9:92:e2:b2:f7:5d:26:b4: 1a:8e:59:7b:1e:7b:28:7f:1b:8d:16:ce:02:f0:cb: e8:5e:48:f1:25:1e:c4:dd:d4:b6:93:ac:f3:85:98: b4:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:5D:C2:4C:38:49:DE:67:20:E7:75:FD:80:8D:34:E0:84:81:5A:FA X509v3 Authority Key Identifier: keyid:17:D2:CA:80:1E:16:76:E2:A0:86:89:EE:AF:A4:42:F3:B6:68:58:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9LKgB4WduKghonur6RC87ZoWB0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/030646-7bb4-484b-8f67-3b4f6a4be50d/1/F9LKgB4WduKghonur6RC87ZoWB0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/030646-7bb4-484b-8f67-3b4f6a4be50d/1/F9LKgB4WduKghonur6RC87ZoWB0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:48:08:28:10:13:96:13:60:fd:bb:72:54:21:73:09:52:f6: 4f:e9:d7:48:2c:6e:5e:5c:4a:e7:0b:20:54:78:ca:6b:6e:85: 0a:71:c3:63:e7:1f:1b:5a:eb:89:12:41:38:1d:94:75:c3:0d: 9a:f0:48:69:d6:7e:63:1e:7b:97:b7:d9:e0:61:a3:e3:d2:60: 68:e9:b4:01:8c:3b:79:61:49:5a:3d:94:f7:ab:bb:8e:28:e6: 94:1b:a1:d4:87:44:c4:18:be:56:51:75:42:29:c7:74:e9:99: 6e:64:9a:bd:6e:65:d5:ef:ac:2c:5a:01:c4:d9:fb:d0:20:43: 02:20:42:f0:b2:c2:ac:0f:62:08:ed:0b:ab:53:18:28:9b:25: 30:7a:40:8d:2e:4e:0b:51:34:8a:07:f2:e5:1f:53:1d:a7:55: 67:44:5d:b7:b4:62:52:dc:d9:b2:fa:38:62:b6:60:48:8c:46: 64:da:5e:df:86:d6:7d:e3:62:3b:da:65:8a:4b:98:cc:6a:db: f3:b7:d5:42:a8:61:0c:d4:33:3c:49:3e:37:ad:13:3a:75:4f: 2b:04:77:ac:c4:14:9c:63:49:dc:0a:ae:29:2f:75:c7:33:16: 0e:37:69:1f:75:e1:0b:80:bc:49:92:b4:68:a4:0c:d6:a0:6f: 6a:ec:db:12 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxsz76UXtneAyr21jnReKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3ZDJjYTgwMWUxNjc2ZTJhMDg2ODllZWFmYTQ0MmYzYjY2 ODU4MWQwHhcNMjYwMjA5MTkwMDI3WhcNMjYwMjEwMTkwMDI3WjAzMTEwLwYDVQQD EyhjNzVkYzI0YzM4NDlkZTY3MjBlNzc1ZmQ4MDhkMzRlMDg0ODE1YWZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApIYKuRPUtiiHQmo+1uA/LWSlq/B0 e7haK56aC/skFDlxkHp5DstSbSWf2wwUpC4J/S5nMcJ3HBpm50Lm7+3GAZB0M/po B5O0kRaTwpB1mWmO2ottWTDLmPz+EFDAAcbDUBTu+J5nwO3WogVFwFz3Af79qJfa LVBfixkGQ5GlVBTr8fdRmjuR4MkVWWvnHQrvOZcQBvnLBtpJNHIJT3kw/VCpdWZA Hj7aPe5H/N+ywHmahrrXjRhm4M4T/5OQy1rGbzpv1kMhPiPYl2EEUEcblLR3oUFV XlUF2ZLisvddJrQajll7HnsofxuNFs4C8MvoXkjxJR7E3dS2k6zzhZi0yQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMddwkw4Sd5nIOd1/YCNNOCEgVr6MB8GA1UdIwQY MBaAFBfSyoAeFnbioIaJ7q+kQvO2aFgdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjlMS2dCNFdkdUtnaG9udXI2UkM4N1pvV0IwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8wMzA2NDYtN2JiNC00ODRiLThmNjct M2I0ZjZhNGJlNTBkLzEvRjlMS2dCNFdkdUtnaG9udXI2UkM4N1pvV0IwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS8wMzA2NDYtN2JiNC00ODRiLThmNjctM2I0ZjZhNGJlNTBk LzEvRjlMS2dCNFdkdUtnaG9udXI2UkM4N1pvV0IwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkEgIKBAT lhNg/btyVCFzCVL2T+nXSCxuXlxK5wsgVHjKa26FCnHDY+cfG1rriRJBOB2UdcMN mvBIadZ+Yx57l7fZ4GGj49JgaOm0AYw7eWFJWj2U96u7jijmlBuh1IdExBi+VlF1 QinHdOmZbmSavW5l1e+sLFoBxNn70CBDAiBC8LLCrA9iCO0Lq1MYKJslMHpAjS5O C1E0igfy5R9THadVZ0Rdt7RiUtzZsvo4YrZgSIxGZNpe34bWfeNiO9plikuYzGrb 87fVQqhhDNQzPEk+N60TOnVPKwR3rMQUnGNJ3AquKS91xzMWDjdpH3XhC4C8SZK0 aKQM1qBvauzbEg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:45:44 2026 by rpki-client