This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/3d6b1a-6d61-44b8-8cbb-23608f6ae2ea/1/khxP2jZ8U4OxXCpxQ61LEMlVzqA.mft File: khxP2jZ8U4OxXCpxQ61LEMlVzqA.mft (raw, json) Hash identifier: s6s9pBnXMJuzy6v0yXkpZnzc8LnXuFSlDBNP9UuW+fM= Subject key identifier: 7E:13:B9:32:51:EC:88:1F:D3:E8:77:9A:DE:93:FD:A1:98:3D:42:8D Authority key identifier: 92:1C:4F:DA:36:7C:53:83:B1:5C:2A:71:43:AD:4B:10:C9:55:CE:A0 Certificate issuer: /CN=921c4fda367c5383b15c2a7143ad4b10c955cea0 Certificate serial: 019C41A1741BB78ABD6CE13CECB71BEED25C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khxP2jZ8U4OxXCpxQ61LEMlVzqA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/3d6b1a-6d61-44b8-8cbb-23608f6ae2ea/1/khxP2jZ8U4OxXCpxQ61LEMlVzqA.mft Manifest number: 1522 Signing time: Mon 09 Feb 2026 09:00:25 +0000 Manifest this update: Mon 09 Feb 2026 09:00:25 +0000 Manifest next update: Tue 10 Feb 2026 09:00:25 +0000 Files and hashes: 1: khxP2jZ8U4OxXCpxQ61LEMlVzqA.crl (hash: AbiOqDCUWJ/oWBr7bqiFZYqKSiRie5yz26Xm+DJ2hrs=) 2: wzQ_1HuFlBCWtBgTiIg-4_ON4Ec.roa (hash: Po5isFSJ0zw1oEwxSbVlxEIJ6Q1+V1FNWqf4intCsK4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/3d6b1a-6d61-44b8-8cbb-23608f6ae2ea/1/khxP2jZ8U4OxXCpxQ61LEMlVzqA.crl rsync://rpki.ripe.net/repository/DEFAULT/19/3d6b1a-6d61-44b8-8cbb-23608f6ae2ea/1/khxP2jZ8U4OxXCpxQ61LEMlVzqA.mft rsync://rpki.ripe.net/repository/DEFAULT/khxP2jZ8U4OxXCpxQ61LEMlVzqA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:74:1b:b7:8a:bd:6c:e1:3c:ec:b7:1b:ee:d2:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=921c4fda367c5383b15c2a7143ad4b10c955cea0 Validity Not Before: Feb 9 09:00:25 2026 GMT Not After : Feb 10 09:00:25 2026 GMT Subject: CN=7e13b93251ec881fd3e8779ade93fda1983d428d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:5d:21:12:83:d4:8e:02:32:8e:c3:45:30:3d: 13:21:68:5d:c2:34:be:29:71:a7:26:db:1e:4e:8f: 28:88:94:fb:37:6c:cc:50:ac:a5:ba:34:0b:cd:23: e5:91:ed:84:eb:a2:3d:4f:1d:65:2b:7a:86:a0:6e: be:3b:87:08:09:83:d2:a9:52:4e:57:f5:c6:1a:f9: 22:60:04:13:d8:b1:fe:a6:72:7c:90:3d:4b:12:c7: e2:53:7e:f0:92:43:94:f6:3b:46:70:8a:1c:ab:db: 0e:ff:27:aa:8b:80:d8:10:8d:ce:f2:0d:93:3a:58: 8f:29:22:4b:9f:32:be:46:74:ba:2b:11:b8:9e:81: a9:0d:09:a7:cf:ac:a2:1c:58:3f:49:32:c7:1c:58: 74:f4:a3:05:29:22:c8:96:df:fc:1b:21:86:e0:16: 44:81:69:69:46:64:27:54:ea:9c:af:8b:0f:b8:26: a3:3e:86:42:b2:22:69:43:0a:c6:d4:70:eb:9d:51: b2:76:57:ef:9c:f1:5b:89:f3:ef:cc:8d:2b:9a:56: a6:7b:41:98:60:bc:89:1e:75:bc:96:48:37:69:b9: 7b:53:e9:12:59:50:4b:01:c5:76:5b:0f:80:c4:39: b7:04:8c:27:74:04:dd:a9:c9:15:a1:20:4b:14:8d: 48:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:13:B9:32:51:EC:88:1F:D3:E8:77:9A:DE:93:FD:A1:98:3D:42:8D X509v3 Authority Key Identifier: keyid:92:1C:4F:DA:36:7C:53:83:B1:5C:2A:71:43:AD:4B:10:C9:55:CE:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khxP2jZ8U4OxXCpxQ61LEMlVzqA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/3d6b1a-6d61-44b8-8cbb-23608f6ae2ea/1/khxP2jZ8U4OxXCpxQ61LEMlVzqA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/3d6b1a-6d61-44b8-8cbb-23608f6ae2ea/1/khxP2jZ8U4OxXCpxQ61LEMlVzqA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:4b:6d:af:5e:6b:1c:1e:7a:fd:1c:73:f1:e4:2d:e2:50:d6: 70:c6:c2:c2:7a:a7:c5:12:84:ec:48:14:35:a2:20:07:51:67: f3:62:85:6d:02:35:5a:3e:54:30:56:d6:34:9b:83:a0:02:91: 92:a4:ec:c9:4a:a5:5c:77:16:f0:0a:c1:5d:3e:19:5f:fb:10: b4:f0:d4:a9:51:12:02:23:42:ec:32:38:12:7c:11:70:2e:84: f1:68:c4:c9:40:4a:c1:75:57:04:6e:63:99:3d:7a:a7:21:1a: e9:b9:e3:c1:a3:e9:c1:04:31:75:90:a2:25:e6:52:24:cd:2d: 4f:12:dc:e3:a2:e4:a4:32:b9:d1:aa:5c:f0:1f:e5:be:b9:30: dc:83:39:8b:a2:4a:ea:44:09:84:5f:74:e5:8f:86:44:60:ac: c5:2e:80:ab:46:ae:f1:04:24:df:4e:0c:51:bd:06:64:a1:a5: 2e:58:36:b2:2a:5e:ec:dc:0d:14:a4:52:de:a4:90:03:31:c0: 4d:46:57:c0:e6:b7:d0:61:5d:e3:16:11:f4:62:29:e8:c2:96: d6:78:4f:f3:72:43:6e:49:72:3a:dc:b3:e2:3a:d0:3c:a6:09: 5c:8b:4b:a7:94:a7:c8:76:d1:1d:0d:35:f7:0d:4d:f8:3d:ae: 91:e0:66:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoXQbt4q9bOE87Lcb7tJcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMWM0ZmRhMzY3YzUzODNiMTVjMmE3MTQzYWQ0YjEwYzk1 NWNlYTAwHhcNMjYwMjA5MDkwMDI1WhcNMjYwMjEwMDkwMDI1WjAzMTEwLwYDVQQD Eyg3ZTEzYjkzMjUxZWM4ODFmZDNlODc3OWFkZTkzZmRhMTk4M2Q0MjhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoV0hEoPUjgIyjsNFMD0TIWhdwjS+ KXGnJtseTo8oiJT7N2zMUKylujQLzSPlke2E66I9Tx1lK3qGoG6+O4cICYPSqVJO V/XGGvkiYAQT2LH+pnJ8kD1LEsfiU37wkkOU9jtGcIocq9sO/yeqi4DYEI3O8g2T OliPKSJLnzK+RnS6KxG4noGpDQmnz6yiHFg/STLHHFh09KMFKSLIlt/8GyGG4BZE gWlpRmQnVOqcr4sPuCajPoZCsiJpQwrG1HDrnVGydlfvnPFbifPvzI0rmlame0GY YLyJHnW8lkg3abl7U+kSWVBLAcV2Ww+AxDm3BIwndATdqckVoSBLFI1IQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH4TuTJR7Igf0+h3mt6T/aGYPUKNMB8GA1UdIwQY MBaAFJIcT9o2fFODsVwqcUOtSxDJVc6gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2h4UDJqWjhVNE94WENweFE2MUxFTWxWenFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8zZDZiMWEtNmQ2MS00NGI4LThjYmIt MjM2MDhmNmFlMmVhLzEva2h4UDJqWjhVNE94WENweFE2MUxFTWxWenFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS8zZDZiMWEtNmQ2MS00NGI4LThjYmItMjM2MDhmNmFlMmVh LzEva2h4UDJqWjhVNE94WENweFE2MUxFTWxWenFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA0ttr15r HB56/Rxz8eQt4lDWcMbCwnqnxRKE7EgUNaIgB1Fn82KFbQI1Wj5UMFbWNJuDoAKR kqTsyUqlXHcW8ArBXT4ZX/sQtPDUqVESAiNC7DI4EnwRcC6E8WjEyUBKwXVXBG5j mT16pyEa6bnjwaPpwQQxdZCiJeZSJM0tTxLc46LkpDK50apc8B/lvrkw3IM5i6JK 6kQJhF905Y+GRGCsxS6Aq0au8QQk304MUb0GZKGlLlg2sipe7NwNFKRS3qSQAzHA TUZXwOa30GFd4xYR9GIp6MKW1nhP83JDbklyOtyz4jrQPKYJXItLp5SnyHbRHQ01 9w1N+D2ukeBmPg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:56 2026 by rpki-client