This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft File: KqPjBJdiCGjhestHhoLOegvRNTQ.mft (raw, json) Hash identifier: iej/wV1wqG+u7Z5hkIiiWNmHssd8LZ7TehWSkGFRds0= Subject key identifier: 14:2D:72:50:91:52:8E:C0:B6:BB:B6:90:73:74:46:AE:CD:52:33:14 Authority key identifier: 2A:A3:E3:04:97:62:08:68:E1:7A:CB:47:86:82:CE:7A:0B:D1:35:34 Certificate issuer: /CN=2aa3e30497620868e17acb478682ce7a0bd13534 Certificate serial: 019C41D8E30A06F8A60EA1E571FC64E5733F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqPjBJdiCGjhestHhoLOegvRNTQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft Manifest number: 180F Signing time: Mon 09 Feb 2026 10:00:58 +0000 Manifest this update: Mon 09 Feb 2026 10:00:58 +0000 Manifest next update: Tue 10 Feb 2026 10:00:58 +0000 Files and hashes: 1: KqPjBJdiCGjhestHhoLOegvRNTQ.crl (hash: 9CG211owZ12Ppe9zxL1UIP0HH3JFRLRH9I4ShV7qJws=) 2: MhVJs-dWDJmrXlKqcMfoLN_84JY.roa (hash: 2g0t0h8Fxp46vhAobXXA0I4CYe8p0TLn16sQB8keFq4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.crl rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft rsync://rpki.ripe.net/repository/DEFAULT/KqPjBJdiCGjhestHhoLOegvRNTQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:e3:0a:06:f8:a6:0e:a1:e5:71:fc:64:e5:73:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2aa3e30497620868e17acb478682ce7a0bd13534 Validity Not Before: Feb 9 10:00:58 2026 GMT Not After : Feb 10 10:00:58 2026 GMT Subject: CN=142d725091528ec0b6bbb690737446aecd523314 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b4:84:45:15:22:84:e0:d2:ff:a7:63:ea:75: 5f:b3:10:41:3c:98:80:3c:47:0e:81:34:e6:9b:f8: c2:71:dd:dd:e4:d9:49:9d:46:a5:6c:5e:5b:c3:06: 64:3f:af:41:72:6c:c0:a1:6e:cb:38:37:15:24:47: 31:b3:56:ef:05:ec:7d:e7:52:60:b4:d5:6b:f3:49: a0:4a:dd:bf:ee:0c:d9:0a:49:8b:74:93:f3:62:41: 2a:77:69:66:95:ed:0b:d0:60:87:cf:29:e8:37:37: 73:16:ed:2f:9a:f9:9e:02:4e:6a:fd:dc:a1:bb:5b: ac:94:15:e4:90:e9:c1:04:1c:34:15:de:93:29:01: 9f:c8:42:26:96:66:d8:a9:28:6a:cf:81:25:24:81: 38:e9:ae:d2:e1:f0:01:f5:37:e7:56:6d:c0:76:41: 5a:72:09:a3:d8:7f:96:ca:ef:fc:b8:cf:2a:a2:4c: a8:b0:71:56:6d:01:4d:6e:60:61:05:16:f1:76:0c: 81:ea:4d:6e:73:34:eb:2e:e3:8f:10:77:e7:5a:75: 3e:25:f2:4c:e2:9a:17:33:38:07:14:c4:5a:7e:60: ef:fc:45:8c:7b:1a:97:ee:35:ef:c2:bd:02:15:15: 8a:8f:c5:c4:a9:ce:94:90:4f:25:71:dd:d4:12:4e: fc:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:2D:72:50:91:52:8E:C0:B6:BB:B6:90:73:74:46:AE:CD:52:33:14 X509v3 Authority Key Identifier: keyid:2A:A3:E3:04:97:62:08:68:E1:7A:CB:47:86:82:CE:7A:0B:D1:35:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqPjBJdiCGjhestHhoLOegvRNTQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:9a:9d:30:58:fa:e9:29:5c:34:f9:7c:3e:b5:fc:86:90:05: a1:d8:8c:5a:34:ab:58:c9:e8:ec:88:72:cc:7a:42:1b:8c:d9: a4:47:ad:cf:ad:d7:36:c5:ab:85:d0:ca:6b:19:0c:12:d5:33: 4e:11:00:89:41:d0:91:39:c0:09:bf:3b:43:59:7e:7a:51:2b: be:70:7d:94:9d:cf:75:97:78:24:68:6e:24:e6:51:e2:72:1c: d1:f3:3f:25:e9:a6:bc:97:a1:25:37:91:5d:eb:ce:bc:ef:e7: 3d:3b:9b:9a:62:2e:3b:2b:40:f8:ce:bf:3c:26:ff:ff:29:cf: b9:e9:3e:2a:ea:24:d4:d0:09:71:e0:e8:6d:b8:84:8a:c0:5d: 5e:10:34:d7:e7:2a:76:eb:71:03:43:f6:48:65:71:28:94:c1: 02:01:73:6d:57:ac:8e:2f:b7:81:55:d2:34:3f:16:38:ee:59: a4:8c:55:cc:df:0a:a7:dc:3f:52:04:62:9c:d3:8a:a4:06:27: 0d:aa:53:67:80:ca:14:2a:16:32:80:4b:28:31:8a:60:df:4e: 3e:e9:8d:3f:3c:59:65:62:63:c4:af:df:78:9d:90:e3:ea:b1: 12:f6:1f:6a:2a:7f:da:06:10:67:da:7b:95:cd:f0:f1:a1:5c: 93:c0:f0:5e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2OMKBvimDqHlcfxk5XM/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhYTNlMzA0OTc2MjA4NjhlMTdhY2I0Nzg2ODJjZTdhMGJk MTM1MzQwHhcNMjYwMjA5MTAwMDU4WhcNMjYwMjEwMTAwMDU4WjAzMTEwLwYDVQQD EygxNDJkNzI1MDkxNTI4ZWMwYjZiYmI2OTA3Mzc0NDZhZWNkNTIzMzE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxrSERRUihODS/6dj6nVfsxBBPJiA PEcOgTTmm/jCcd3d5NlJnUalbF5bwwZkP69BcmzAoW7LODcVJEcxs1bvBex951Jg tNVr80mgSt2/7gzZCkmLdJPzYkEqd2lmle0L0GCHzynoNzdzFu0vmvmeAk5q/dyh u1uslBXkkOnBBBw0Fd6TKQGfyEImlmbYqShqz4ElJIE46a7S4fAB9TfnVm3AdkFa cgmj2H+Wyu/8uM8qokyosHFWbQFNbmBhBRbxdgyB6k1uczTrLuOPEHfnWnU+JfJM 4poXMzgHFMRafmDv/EWMexqX7jXvwr0CFRWKj8XEqc6UkE8lcd3UEk780wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBQtclCRUo7Atru2kHN0Rq7NUjMUMB8GA1UdIwQY MBaAFCqj4wSXYgho4XrLR4aCznoL0TU0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3FQakJKZGlDR2poZXN0SGhvTE9lZ3ZSTlRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS85ODdiM2MtZjM0NS00MTEyLTkyNDAt YTRjMGFiYTliYmViLzEvS3FQakJKZGlDR2poZXN0SGhvTE9lZ3ZSTlRRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS85ODdiM2MtZjM0NS00MTEyLTkyNDAtYTRjMGFiYTliYmVi LzEvS3FQakJKZGlDR2poZXN0SGhvTE9lZ3ZSTlRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFZqdMFj6 6SlcNPl8PrX8hpAFodiMWjSrWMno7IhyzHpCG4zZpEetz63XNsWrhdDKaxkMEtUz ThEAiUHQkTnACb87Q1l+elErvnB9lJ3PdZd4JGhuJOZR4nIc0fM/JemmvJehJTeR XevOvO/nPTubmmIuOytA+M6/PCb//ynPuek+Kuok1NAJceDobbiEisBdXhA01+cq dutxA0P2SGVxKJTBAgFzbVesji+3gVXSND8WOO5ZpIxVzN8Kp9w/UgRinNOKpAYn DapTZ4DKFCoWMoBLKDGKYN9OPumNPzxZZWJjxK/feJ2Q4+qxEvYfaip/2gYQZ9p7 lc3w8aFck8DwXg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:21 2026 by rpki-client