This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft File: kERLB53wCKfHy-KPy6Xb4GIOjhc.mft (raw, json) Hash identifier: p3qdsc178AQd5I/qN0yU1/mjysRzBiHhYIkrhwYoKFs= Subject key identifier: 08:64:1E:83:6E:A8:30:0D:B3:64:B2:52:0C:BD:97:BE:B4:57:60:39 Authority key identifier: 90:44:4B:07:9D:F0:08:A7:C7:CB:E2:8F:CB:A5:DB:E0:62:0E:8E:17 Certificate issuer: /CN=90444b079df008a7c7cbe28fcba5dbe0620e8e17 Certificate serial: 019C4210333D6433ABEC1AA329EF3F485236 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft Manifest number: 1683 Signing time: Mon 09 Feb 2026 11:01:23 +0000 Manifest this update: Mon 09 Feb 2026 11:01:23 +0000 Manifest next update: Tue 10 Feb 2026 11:01:23 +0000 Files and hashes: 1: kERLB53wCKfHy-KPy6Xb4GIOjhc.crl (hash: oVDuzCz3h8Qn/BISqxFedVGoYP9Q02P9FpFZjnrsODs=) 2: qh7XZDst8WsBCGjKLPzTSR00_9w.roa (hash: 91hvylgfnm1S7Q889lgwTcLMuKxZDx/xX3dO/XE0rko=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:33:3d:64:33:ab:ec:1a:a3:29:ef:3f:48:52:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90444b079df008a7c7cbe28fcba5dbe0620e8e17 Validity Not Before: Feb 9 11:01:23 2026 GMT Not After : Feb 10 11:01:23 2026 GMT Subject: CN=08641e836ea8300db364b2520cbd97beb4576039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:bd:03:e8:25:26:57:76:b0:6a:64:7e:5d:2d: 88:35:90:b2:25:ee:78:f0:b3:1f:ea:81:6d:38:c8: bf:80:8d:7d:cf:cb:3e:1c:97:bb:be:9b:74:8c:f8: 27:89:c5:12:df:75:b2:c9:df:24:12:6e:92:dc:f8: 2f:f3:0f:d6:a2:2a:1d:91:bc:47:8c:d9:c1:cf:6f: 48:9e:e2:c4:9d:06:60:52:c4:f5:e4:ed:16:a3:0b: bd:19:bb:c4:68:af:55:6f:62:0d:2b:e5:ff:9c:f8: 83:41:df:08:35:59:22:28:d9:6f:41:ed:c3:5a:da: 6e:76:a3:98:0a:ff:3b:ab:37:af:02:84:b3:4a:ca: fe:e2:2d:6d:f4:38:65:6a:25:5b:cc:7d:e2:ce:1d: e3:7b:e1:6a:2f:af:8c:2c:53:aa:9d:49:64:d5:6f: ba:3a:06:68:be:10:0b:86:78:f3:05:9e:f4:2f:93: 2e:19:f4:75:d4:92:33:17:cf:87:3e:09:f7:ff:e8: 91:9e:02:71:2e:7a:5e:3c:29:4b:64:a3:01:ba:2e: 38:5e:4c:12:96:f9:5f:b0:e2:97:1d:6e:64:f1:ed: 3c:54:ee:66:21:72:67:f6:78:ce:4a:86:71:af:9b: 7f:b9:d1:de:7c:d9:91:75:c1:23:a6:24:fd:1a:02: d2:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:64:1E:83:6E:A8:30:0D:B3:64:B2:52:0C:BD:97:BE:B4:57:60:39 X509v3 Authority Key Identifier: keyid:90:44:4B:07:9D:F0:08:A7:C7:CB:E2:8F:CB:A5:DB:E0:62:0E:8E:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:56:63:95:4c:92:c2:0b:82:a6:f1:45:d1:57:b3:30:d5:51: f6:4c:8f:83:a5:12:83:ce:89:d7:16:a4:ea:6f:ad:ec:68:f5: 08:48:e7:45:8d:f9:fc:b4:1b:fc:b0:b2:38:4c:e2:cf:12:48: ec:6d:e7:45:c3:c9:2d:96:76:8c:76:b9:ff:c9:1a:74:57:ec: d8:7d:ba:aa:58:cd:65:01:b7:02:35:b3:de:30:3a:b7:72:06: 95:37:a0:39:22:8d:3b:d6:3b:e1:dc:15:64:ed:65:f2:ce:35: dc:be:98:43:89:1c:40:56:bb:3c:d7:49:38:1b:6c:e0:dd:5c: fb:d3:ed:63:7f:1f:24:d5:43:c5:f1:eb:d7:03:4a:36:8b:fc: 03:45:5d:8f:86:ca:44:8a:86:5b:a9:51:c4:f2:43:70:3e:1f: 8e:11:d5:08:2b:13:12:5c:89:b6:f4:91:6f:4d:e2:51:f9:1a: fb:8a:07:d0:1a:a5:0d:d9:22:03:35:19:07:b4:8b:59:e3:2c: 75:b8:ac:8c:d9:43:01:00:4a:24:22:49:11:43:56:4c:b3:99: 72:bf:16:18:cd:7c:d9:f5:50:75:da:4c:5c:e8:b7:72:4c:d1: 95:9d:42:cc:aa:ac:2b:58:7d:31:4e:37:50:b8:ec:18:25:02: e3:02:29:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEDM9ZDOr7BqjKe8/SFI2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwNDQ0YjA3OWRmMDA4YTdjN2NiZTI4ZmNiYTVkYmUwNjIw ZThlMTcwHhcNMjYwMjA5MTEwMTIzWhcNMjYwMjEwMTEwMTIzWjAzMTEwLwYDVQQD EygwODY0MWU4MzZlYTgzMDBkYjM2NGIyNTIwY2JkOTdiZWI0NTc2MDM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkr0D6CUmV3awamR+XS2INZCyJe54 8LMf6oFtOMi/gI19z8s+HJe7vpt0jPgnicUS33Wyyd8kEm6S3Pgv8w/WoiodkbxH jNnBz29InuLEnQZgUsT15O0Wowu9GbvEaK9Vb2INK+X/nPiDQd8INVkiKNlvQe3D WtpudqOYCv87qzevAoSzSsr+4i1t9DhlaiVbzH3izh3je+FqL6+MLFOqnUlk1W+6 OgZovhALhnjzBZ70L5MuGfR11JIzF8+HPgn3/+iRngJxLnpePClLZKMBui44XkwS lvlfsOKXHW5k8e08VO5mIXJn9njOSoZxr5t/udHefNmRdcEjpiT9GgLSAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAhkHoNuqDANs2SyUgy9l760V2A5MB8GA1UdIwQY MBaAFJBESwed8Ainx8vij8ul2+BiDo4XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva0VSTEI1M3dDS2ZIeS1LUHk2WGI0R0lPamhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8yNGVjOGUtMWNjNi00NWUzLTkwNjMt OTkxNDk4NjdkYmY3LzEva0VSTEI1M3dDS2ZIeS1LUHk2WGI0R0lPamhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS8yNGVjOGUtMWNjNi00NWUzLTkwNjMtOTkxNDk4NjdkYmY3 LzEva0VSTEI1M3dDS2ZIeS1LUHk2WGI0R0lPamhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA1ZjlUyS wguCpvFF0VezMNVR9kyPg6USg86J1xak6m+t7Gj1CEjnRY35/LQb/LCyOEzizxJI 7G3nRcPJLZZ2jHa5/8kadFfs2H26qljNZQG3AjWz3jA6t3IGlTegOSKNO9Y74dwV ZO1l8s413L6YQ4kcQFa7PNdJOBts4N1c+9PtY38fJNVDxfHr1wNKNov8A0Vdj4bK RIqGW6lRxPJDcD4fjhHVCCsTElyJtvSRb03iUfka+4oH0BqlDdkiAzUZB7SLWeMs dbisjNlDAQBKJCJJEUNWTLOZcr8WGM182fVQddpMXOi3ckzRlZ1CzKqsK1h9MU43 ULjsGCUC4wIpBw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:50 2026 by rpki-client