This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft File: kniPTrt0HAw2mg_TBZTNAQHcdHY.mft (raw, json) Hash identifier: pLetqAMfihIatRbrPaTHMbaChqlvW1jpUtaEJjkq1/o= Subject key identifier: 0B:54:DA:5C:A7:F2:D6:E8:BD:5C:FE:9B:AC:FC:87:60:28:5E:25:73 Authority key identifier: 92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76 Certificate issuer: /CN=92788f4ebb741c0c369a0fd30594cd0101dc7476 Certificate serial: 019C439050E3C2F6D7D3A3276B6822F94518 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 18:00:57 +0000 Manifest this update: Mon 09 Feb 2026 18:00:57 +0000 Manifest next update: Tue 10 Feb 2026 18:00:57 +0000 Files and hashes: 1: b3JxtrhKDsDTqBI6cQvHONYRjVU.roa (hash: C950hko8WTv3REmoomJ1yY7S0AF8GUGo8sOTvPlJ2Dg=) 2: kniPTrt0HAw2mg_TBZTNAQHcdHY.crl (hash: W9fjJRlhFzDa7p6+++kFVxYs94GChqgbaPtbTZk/+TA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:50:e3:c2:f6:d7:d3:a3:27:6b:68:22:f9:45:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92788f4ebb741c0c369a0fd30594cd0101dc7476 Validity Not Before: Feb 9 18:00:57 2026 GMT Not After : Feb 10 18:00:57 2026 GMT Subject: CN=0b54da5ca7f2d6e8bd5cfe9bacfc8760285e2573 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6f:74:ba:13:2f:8f:e2:9a:f7:74:7a:c9:e2: 09:4f:54:bc:e1:a7:95:71:c1:5a:3a:27:ae:ba:96: 87:b6:1b:8e:08:be:ae:56:f8:03:cb:7a:ba:ec:5d: 1a:85:c1:e6:4b:61:fb:5a:98:83:67:52:24:0b:38: 52:ec:2f:a2:61:e6:b1:b5:28:45:ce:6a:18:ec:b0: fe:97:65:13:43:22:9c:8f:89:d4:f9:52:64:f4:c5: 42:d6:18:45:b3:19:e8:40:e4:d8:d8:33:2a:b3:12: 35:bd:f9:0d:77:e3:73:cd:0d:7b:c6:d9:b3:0b:4c: d3:bf:2e:ef:e7:d2:4e:d3:59:66:d4:a0:43:c0:96: 36:16:b2:a5:b0:11:35:56:62:53:17:0a:6f:69:0c: f8:66:15:79:70:be:45:d7:ba:88:b4:2e:7e:d7:91: 84:a5:bc:44:f6:b4:9e:cb:81:91:a3:3b:d7:14:0d: 02:06:10:07:69:9b:45:69:57:bd:3e:29:08:c2:84: 59:e2:c5:ec:1e:8c:9a:ad:9d:f0:60:6a:72:50:c0: b4:e1:13:9e:2f:7f:b0:47:10:70:91:05:a2:9a:d4: 49:73:91:e9:6e:0f:d1:2c:dd:36:7c:10:28:7c:36: 3a:00:ab:9e:ba:88:66:69:5d:bd:75:27:cb:cc:bd: 42:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:54:DA:5C:A7:F2:D6:E8:BD:5C:FE:9B:AC:FC:87:60:28:5E:25:73 X509v3 Authority Key Identifier: keyid:92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:31:ed:85:28:ba:5b:2a:f0:05:d6:05:db:5a:6b:a3:a6:3c: fb:b4:52:54:dd:de:47:4f:3c:e4:02:09:e0:ca:71:b1:48:42: e5:4a:c7:be:9e:16:22:f0:c2:63:c2:57:d1:4a:01:06:b2:ec: b3:3e:da:29:c3:42:af:cf:54:57:ee:6b:a2:01:af:95:22:c0: 56:e7:a5:0f:73:41:c3:f9:b9:1a:6d:aa:8f:61:df:f2:e3:0f: 29:f4:4d:a0:c4:d9:31:8d:44:9e:ab:ff:03:a8:8d:2d:29:f4: db:9d:69:fd:44:84:90:fe:f5:52:69:69:ce:da:9e:cc:44:9a: a9:eb:b0:b5:1c:a2:7c:6c:7e:4c:88:34:70:15:35:1d:7b:b6: a6:d7:1e:3a:9c:f3:8e:12:2a:f2:06:c7:f9:e2:37:06:22:4c: 49:c6:f9:4f:10:7a:27:8f:24:be:39:75:4e:3f:71:63:b3:34: 9d:0c:1b:47:66:55:c7:87:4f:1e:7f:aa:6f:d8:f8:7d:68:dc: 15:81:36:5f:3a:be:02:60:44:30:dc:fa:57:fb:1e:20:e1:c3: 12:0c:70:fa:b4:36:f7:f4:3e:36:40:21:5d:79:15:72:c4:5a: bd:6b:82:1b:e7:48:84:78:3f:ea:66:52:47:00:80:77:b8:6a: 17:86:6f:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkFDjwvbX06Mna2gi+UUYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyNzg4ZjRlYmI3NDFjMGMzNjlhMGZkMzA1OTRjZDAxMDFk Yzc0NzYwHhcNMjYwMjA5MTgwMDU3WhcNMjYwMjEwMTgwMDU3WjAzMTEwLwYDVQQD EygwYjU0ZGE1Y2E3ZjJkNmU4YmQ1Y2ZlOWJhY2ZjODc2MDI4NWUyNTczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArG90uhMvj+Ka93R6yeIJT1S84aeV ccFaOieuupaHthuOCL6uVvgDy3q67F0ahcHmS2H7WpiDZ1IkCzhS7C+iYeaxtShF zmoY7LD+l2UTQyKcj4nU+VJk9MVC1hhFsxnoQOTY2DMqsxI1vfkNd+NzzQ17xtmz C0zTvy7v59JO01lm1KBDwJY2FrKlsBE1VmJTFwpvaQz4ZhV5cL5F17qItC5+15GE pbxE9rSey4GRozvXFA0CBhAHaZtFaVe9PikIwoRZ4sXsHoyarZ3wYGpyUMC04ROe L3+wRxBwkQWimtRJc5Hpbg/RLN02fBAofDY6AKueuohmaV29dSfLzL1CEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAtU2lyn8tbovVz+m6z8h2AoXiVzMB8GA1UdIwQY MBaAFJJ4j067dBwMNpoP0wWUzQEB3HR2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva25pUFRydDBIQXcybWdfVEJaVE5BUUhjZEhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83NzFlNzctYzY0OS00N2YzLTk5YTgt ZGJmYWMwMGZiMGVmLzEva25pUFRydDBIQXcybWdfVEJaVE5BUUhjZEhZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS83NzFlNzctYzY0OS00N2YzLTk5YTgtZGJmYWMwMGZiMGVm LzEva25pUFRydDBIQXcybWdfVEJaVE5BUUhjZEhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiDHthSi6 WyrwBdYF21pro6Y8+7RSVN3eR0885AIJ4MpxsUhC5UrHvp4WIvDCY8JX0UoBBrLs sz7aKcNCr89UV+5rogGvlSLAVuelD3NBw/m5Gm2qj2Hf8uMPKfRNoMTZMY1Enqv/ A6iNLSn0251p/USEkP71UmlpztqezESaqeuwtRyifGx+TIg0cBU1HXu2ptceOpzz jhIq8gbH+eI3BiJMScb5TxB6J48kvjl1Tj9xY7M0nQwbR2ZVx4dPHn+qb9j4fWjc FYE2Xzq+AmBEMNz6V/seIOHDEgxw+rQ29/Q+NkAhXXkVcsRavWuCG+dIhHg/6mZS RwCAd7hqF4Zv3A== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:56 2026 by rpki-client