This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft File: mK9kDIIO61-8kigcYRRPEae9cH4.mft (raw, json) Hash identifier: tsZzXRICLBVeIT7zwxmGJ+PcR4iRAVMA45Xeyugc5vQ= Subject key identifier: E2:E3:8E:FE:C7:2F:E0:36:5F:A8:0F:CA:B5:97:FF:85:82:DB:89:77 Authority key identifier: 98:AF:64:0C:82:0E:EB:5F:BC:92:28:1C:61:14:4F:11:A7:BD:70:7E Certificate issuer: /CN=98af640c820eeb5fbc92281c61144f11a7bd707e Certificate serial: 019C42B45E15894B60AA89F8D6DBB4763E90 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft Manifest number: 0567 Signing time: Mon 09 Feb 2026 14:00:42 +0000 Manifest this update: Mon 09 Feb 2026 14:00:42 +0000 Manifest next update: Tue 10 Feb 2026 14:00:42 +0000 Files and hashes: 1: L314PIS9EZuLIllvbYG4hWHPUco.roa (hash: oCRJ7CpfVca9XR76mJtqFGhJ4HnpliA09q5+Ns2Ex/4=) 2: mK9kDIIO61-8kigcYRRPEae9cH4.crl (hash: QP3D7GKOHoe+PzxlYe3poQkANLkleIk6gK6qLI871pw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:5e:15:89:4b:60:aa:89:f8:d6:db:b4:76:3e:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98af640c820eeb5fbc92281c61144f11a7bd707e Validity Not Before: Feb 9 14:00:42 2026 GMT Not After : Feb 10 14:00:42 2026 GMT Subject: CN=e2e38efec72fe0365fa80fcab597ff8582db8977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ab:e6:a9:5e:c3:f6:0a:3c:c8:c8:39:8c:af: f0:2a:73:88:d3:73:e2:72:07:09:e2:e5:56:b4:cf: b2:35:5b:72:75:01:dc:6a:ae:41:83:69:62:1e:bd: 3f:25:0b:37:f5:c0:3c:09:53:15:39:d3:6d:64:4a: 29:85:14:28:22:d4:0c:ce:89:62:03:cf:07:e6:e8: 61:30:8b:ae:c8:67:9b:30:ba:b5:6c:db:32:ea:20: 6d:7a:5d:86:6f:92:dc:23:d1:b0:22:dd:32:6d:d7: 8f:26:bf:3f:9a:74:da:0e:5e:2b:96:63:e0:89:b3: 31:b1:97:02:99:78:f5:08:da:6c:7c:8e:26:80:83: 8e:ff:a1:05:c5:2a:ea:c7:12:b9:c9:70:0a:c8:58: 4c:cc:2d:1c:c4:0d:8b:d8:4f:52:18:71:f2:10:cf: de:72:36:4a:6c:bb:a0:7b:14:80:5f:83:92:a4:80: e7:fd:a8:da:6d:e3:9d:c0:06:4c:ac:a2:3a:ec:c0: 8e:51:09:73:95:c2:73:42:09:84:d3:28:2d:52:87: 72:e6:8b:7d:21:8a:d2:90:52:bc:ab:e0:9e:24:f4: 71:53:6a:ac:bf:4b:66:2e:34:b3:fc:cc:8d:fb:37: 6f:b1:88:d3:80:b7:3a:2e:43:c6:8b:00:fb:d0:a7: d9:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:E3:8E:FE:C7:2F:E0:36:5F:A8:0F:CA:B5:97:FF:85:82:DB:89:77 X509v3 Authority Key Identifier: keyid:98:AF:64:0C:82:0E:EB:5F:BC:92:28:1C:61:14:4F:11:A7:BD:70:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:9f:c6:76:73:31:8c:28:8b:97:71:e8:0f:cb:c5:f5:8e:b9: fd:ff:6a:e8:96:68:58:e8:72:fb:d6:ce:1b:c7:93:74:a6:0a: 33:b0:2c:74:ea:40:4d:56:f0:f1:30:e0:90:91:eb:c7:93:af: 07:30:fc:9e:10:c5:62:50:ed:35:3a:eb:3f:5d:d9:45:50:66: 09:45:f9:e4:72:e2:a7:ce:6d:51:5f:ce:f5:a1:44:fc:98:73: c0:95:d1:15:b2:ac:db:3f:4c:0e:71:a8:7d:b4:06:38:c4:4a: 32:05:90:a0:45:69:fa:53:c4:b4:94:67:7d:1b:3e:5b:cd:0d: 2a:68:e2:ad:bc:62:43:7c:a9:58:97:51:ab:eb:87:c7:28:57: 3a:b7:04:c1:bb:93:a8:3e:0d:9e:77:11:ea:bd:27:cc:5d:62: c2:25:e0:c6:3f:fd:25:5f:5e:9f:4b:e1:db:c4:89:48:82:7e: 94:4a:57:48:0a:ae:6b:b6:da:14:0d:20:a4:2d:1f:3a:d4:91: d0:4a:f5:5f:39:5c:7e:03:c1:dd:ba:a9:de:f1:68:97:ca:d9: 60:02:5e:88:d2:e9:3d:e7:e0:16:b3:2e:cc:30:a9:f7:fc:90: e0:83:7c:8b:14:cf:1e:cf:bf:dc:4f:68:21:f6:9f:c3:5a:5f: 35:ce:f9:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtF4ViUtgqon41tu0dj6QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4YWY2NDBjODIwZWViNWZiYzkyMjgxYzYxMTQ0ZjExYTdi ZDcwN2UwHhcNMjYwMjA5MTQwMDQyWhcNMjYwMjEwMTQwMDQyWjAzMTEwLwYDVQQD EyhlMmUzOGVmZWM3MmZlMDM2NWZhODBmY2FiNTk3ZmY4NTgyZGI4OTc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy6vmqV7D9go8yMg5jK/wKnOI03Pi cgcJ4uVWtM+yNVtydQHcaq5Bg2liHr0/JQs39cA8CVMVOdNtZEophRQoItQMzoli A88H5uhhMIuuyGebMLq1bNsy6iBtel2Gb5LcI9GwIt0ybdePJr8/mnTaDl4rlmPg ibMxsZcCmXj1CNpsfI4mgIOO/6EFxSrqxxK5yXAKyFhMzC0cxA2L2E9SGHHyEM/e cjZKbLugexSAX4OSpIDn/ajabeOdwAZMrKI67MCOUQlzlcJzQgmE0ygtUody5ot9 IYrSkFK8q+CeJPRxU2qsv0tmLjSz/MyN+zdvsYjTgLc6LkPGiwD70KfZuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOLjjv7HL+A2X6gPyrWX/4WC24l3MB8GA1UdIwQY MBaAFJivZAyCDutfvJIoHGEUTxGnvXB+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbUs5a0RJSU82MS04a2lnY1lSUlBFYWU5Y0g0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8xMjJmZjQtYzRhNy00Njk4LTg3OWYt ZWNhYjcwZWYzMmRhLzEvbUs5a0RJSU82MS04a2lnY1lSUlBFYWU5Y0g0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS8xMjJmZjQtYzRhNy00Njk4LTg3OWYtZWNhYjcwZWYzMmRh LzEvbUs5a0RJSU82MS04a2lnY1lSUlBFYWU5Y0g0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk5/GdnMx jCiLl3HoD8vF9Y65/f9q6JZoWOhy+9bOG8eTdKYKM7AsdOpATVbw8TDgkJHrx5Ov BzD8nhDFYlDtNTrrP13ZRVBmCUX55HLip85tUV/O9aFE/JhzwJXRFbKs2z9MDnGo fbQGOMRKMgWQoEVp+lPEtJRnfRs+W80NKmjirbxiQ3ypWJdRq+uHxyhXOrcEwbuT qD4NnncR6r0nzF1iwiXgxj/9JV9en0vh28SJSIJ+lEpXSAqua7baFA0gpC0fOtSR 0Er1XzlcfgPB3bqp3vFol8rZYAJeiNLpPefgFrMuzDCp9/yQ4IN8ixTPHs+/3E9o Ifafw1pfNc756Q== -----END CERTIFICATE-----Generated at Mon Feb 9 23:52:46 2026 by rpki-client