This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft File: MklHwK7O_of525bltFvrEK65h6Y.mft (raw, json) Hash identifier: SgYy5Q/E4OG9eXILAGLdbAa3RHYzTzS8QuyDJpXaok4= Subject key identifier: 07:D7:18:27:39:E6:5C:7A:0F:1C:3D:BB:9A:0D:7A:5A:6D:3B:1D:64 Authority key identifier: 32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6 Certificate issuer: /CN=324947c0aecefe87f9db96e5b45beb10aeb987a6 Certificate serial: 019C4358FFD5A284B3178CB5524FE7ABF53B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft Manifest number: 0D25 Signing time: Mon 09 Feb 2026 17:00:31 +0000 Manifest this update: Mon 09 Feb 2026 17:00:31 +0000 Manifest next update: Tue 10 Feb 2026 17:00:31 +0000 Files and hashes: 1: MklHwK7O_of525bltFvrEK65h6Y.crl (hash: W1V9tAC36jtAZycoh8hg9ZVLrCy6QR3b18gMAVRXSKY=) 2: fYsmeN-jCqvumQk1ANzN0bj9fD0.roa (hash: HXWJlZSBJsNOWJXHSVdFO/BZWcCQBKxp4a6Uo9maQhA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:ff:d5:a2:84:b3:17:8c:b5:52:4f:e7:ab:f5:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=324947c0aecefe87f9db96e5b45beb10aeb987a6 Validity Not Before: Feb 9 17:00:31 2026 GMT Not After : Feb 10 17:00:31 2026 GMT Subject: CN=07d7182739e65c7a0f1c3dbb9a0d7a5a6d3b1d64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:82:54:d0:da:80:98:cf:7d:74:25:72:95:3b: 02:05:41:c3:d3:98:a3:9c:04:e4:cb:54:c1:51:9b: 7f:ba:06:ed:4b:17:7e:f7:5c:67:f5:f8:cd:6f:cb: fb:b5:b2:7c:7e:dc:29:28:d0:12:d0:49:1d:c0:01: 22:e9:14:49:00:39:43:1f:11:9c:1f:85:42:1f:13: a1:19:31:4e:39:94:24:f0:fb:46:de:fb:0f:bf:94: 0e:4f:51:0c:bd:3f:e7:45:35:c1:1e:9d:2c:bc:6a: 1c:09:f3:5d:c1:9f:0a:0e:57:b6:bc:f6:b0:f7:db: 1d:72:25:30:81:1b:1c:51:79:33:42:04:61:ec:00: 18:07:81:72:59:ca:dd:18:f4:29:0d:a8:ac:4c:b5: 5b:f8:e4:2a:09:d3:75:b2:5a:b4:ba:a2:8b:cd:74: 3f:aa:08:a1:d6:84:47:96:a3:41:ca:6f:cf:03:fe: 3c:75:6d:96:57:3a:63:dd:e5:94:48:98:8f:f0:0a: 0d:18:89:24:16:b4:87:a5:b9:02:2f:8f:a8:26:e0: 6a:b7:a4:fc:b0:73:f3:97:6d:31:71:a4:19:1e:3d: 61:bc:85:f4:86:d4:14:51:be:8c:b3:55:80:76:0a: 8d:d0:c9:23:56:46:b5:a5:ac:77:fc:b0:40:cd:a9: f4:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:D7:18:27:39:E6:5C:7A:0F:1C:3D:BB:9A:0D:7A:5A:6D:3B:1D:64 X509v3 Authority Key Identifier: keyid:32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:8c:8f:0e:03:26:4e:37:fd:30:f7:a7:0c:e0:b8:a2:53:68: 94:7e:72:cb:92:f2:99:92:9a:ae:c5:b3:09:aa:8c:18:3b:f3: f2:97:6c:8b:e6:e8:fb:2b:77:f3:f0:c5:45:fe:6c:cb:00:8d: d2:ce:75:32:7e:6a:40:c9:b4:76:2b:01:8f:39:54:6c:cd:4a: c6:75:55:ee:37:d4:ad:f8:eb:ed:59:86:ef:29:6f:29:c1:81: a9:08:79:58:44:6a:10:dc:bb:5e:3a:8c:2f:79:2b:39:52:72: 11:4a:04:47:57:58:a9:9f:4a:48:45:cc:08:99:c4:5b:da:9d: 6e:ae:0d:3d:b1:86:f8:a4:e7:9e:bc:77:f6:ed:81:a9:f2:80: 37:3b:eb:3c:bb:32:b1:36:73:2f:a1:78:67:25:94:ef:d5:ed: 2c:f6:17:ea:82:46:34:53:4f:a8:e5:7b:60:53:a2:7e:3d:4e: 0a:b0:a4:a8:88:8a:75:40:01:c5:e9:b1:26:64:4e:fe:a3:10: 35:da:1b:82:cb:13:46:67:00:e5:2f:b3:2a:29:f9:38:3c:30: bd:b0:ff:af:2b:8e:2e:0f:6b:f2:e1:55:e1:4c:66:cc:5f:ff: f1:b8:e4:91:4d:40:54:a0:d7:43:ea:28:b0:85:68:51:3e:8e: 4d:54:0a:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWP/VooSzF4y1Uk/nq/U7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNDk0N2MwYWVjZWZlODdmOWRiOTZlNWI0NWJlYjEwYWVi OTg3YTYwHhcNMjYwMjA5MTcwMDMxWhcNMjYwMjEwMTcwMDMxWjAzMTEwLwYDVQQD EygwN2Q3MTgyNzM5ZTY1YzdhMGYxYzNkYmI5YTBkN2E1YTZkM2IxZDY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3oJU0NqAmM99dCVylTsCBUHD05ij nATky1TBUZt/ugbtSxd+91xn9fjNb8v7tbJ8ftwpKNAS0EkdwAEi6RRJADlDHxGc H4VCHxOhGTFOOZQk8PtG3vsPv5QOT1EMvT/nRTXBHp0svGocCfNdwZ8KDle2vPaw 99sdciUwgRscUXkzQgRh7AAYB4FyWcrdGPQpDaisTLVb+OQqCdN1slq0uqKLzXQ/ qgih1oRHlqNBym/PA/48dW2WVzpj3eWUSJiP8AoNGIkkFrSHpbkCL4+oJuBqt6T8 sHPzl20xcaQZHj1hvIX0htQUUb6Ms1WAdgqN0MkjVka1pax3/LBAzan0AwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAfXGCc55lx6Dxw9u5oNelptOx1kMB8GA1UdIwQY MBaAFDJJR8Cuzv6H+duW5bRb6xCuuYemMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWtsSHdLN09fb2Y1MjVibHRGdnJFSzY1aDZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9hOGQzOGItMzE3Ni00Y2M1LWJiNGYt YzM2MmQyYTllMTIxLzEvTWtsSHdLN09fb2Y1MjVibHRGdnJFSzY1aDZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9hOGQzOGItMzE3Ni00Y2M1LWJiNGYtYzM2MmQyYTllMTIx LzEvTWtsSHdLN09fb2Y1MjVibHRGdnJFSzY1aDZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKoyPDgMm Tjf9MPenDOC4olNolH5yy5LymZKarsWzCaqMGDvz8pdsi+bo+yt38/DFRf5sywCN 0s51Mn5qQMm0disBjzlUbM1KxnVV7jfUrfjr7VmG7ylvKcGBqQh5WERqENy7XjqM L3krOVJyEUoER1dYqZ9KSEXMCJnEW9qdbq4NPbGG+KTnnrx39u2BqfKANzvrPLsy sTZzL6F4ZyWU79XtLPYX6oJGNFNPqOV7YFOifj1OCrCkqIiKdUABxemxJmRO/qMQ NdobgssTRmcA5S+zKin5ODwwvbD/ryuOLg9r8uFV4UxmzF//8bjkkU1AVKDXQ+oo sIVoUT6OTVQKhw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:48:28 2026 by rpki-client