This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.mft File: spK68_TAei7dR9iMKxW2Wir33q0.mft (raw, json) Hash identifier: qJutNl1CuicKlAqDBemEUa1bwonmGwDqmFWW7VkMNtM= Subject key identifier: 7C:06:D7:96:7F:F4:04:B4:7C:F4:DA:4E:76:72:08:31:C0:5D:58:43 Authority key identifier: B2:92:BA:F3:F4:C0:7A:2E:DD:47:D8:8C:2B:15:B6:5A:2A:F7:DE:AD Certificate issuer: /CN=b292baf3f4c07a2edd47d88c2b15b65a2af7dead Certificate serial: 019C4322D623FF9AFE3DB0D1CE1A2D48C645 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/spK68_TAei7dR9iMKxW2Wir33q0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.mft Manifest number: 0EA8 Signing time: Mon 09 Feb 2026 16:01:22 +0000 Manifest this update: Mon 09 Feb 2026 16:01:22 +0000 Manifest next update: Tue 10 Feb 2026 16:01:22 +0000 Files and hashes: 1: spK68_TAei7dR9iMKxW2Wir33q0.crl (hash: MWVzAb9mSSbRYAlqPtwDR/uBAd8oXAYXgs8sANWCuQE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.crl rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.mft rsync://rpki.ripe.net/repository/DEFAULT/spK68_TAei7dR9iMKxW2Wir33q0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:d6:23:ff:9a:fe:3d:b0:d1:ce:1a:2d:48:c6:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b292baf3f4c07a2edd47d88c2b15b65a2af7dead Validity Not Before: Feb 9 16:01:22 2026 GMT Not After : Feb 10 16:01:22 2026 GMT Subject: CN=7c06d7967ff404b47cf4da4e76720831c05d5843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:22:21:c0:d3:35:65:60:ed:04:94:61:f4:e0: e8:16:6b:53:0b:d3:cf:f3:33:7f:db:31:a2:ac:ef: 14:b3:50:76:38:b9:ae:4b:04:66:99:10:91:e5:a4: 2b:44:e8:f2:f3:49:dc:73:29:77:6c:bc:d8:f6:1a: 09:2a:1c:43:f8:21:6a:d5:e0:fa:48:a3:08:49:05: 14:43:a2:51:20:d5:e3:e4:bf:69:4b:45:c2:d9:9d: d8:37:1b:a4:b2:08:dd:a7:4b:4c:1b:b2:85:e7:a4: 8f:65:75:8c:ec:04:af:d8:26:17:e6:31:0e:58:df: 08:b5:1b:51:8f:87:f1:7f:e1:c1:d3:91:25:7c:6b: 41:41:3e:ca:a7:26:e9:03:e1:b6:08:82:1a:43:63: 87:8b:3c:66:64:55:1d:d3:74:89:2e:43:9b:3d:32: 84:b2:36:cb:62:e0:2e:a3:67:c7:cc:ad:94:e9:4a: 49:69:59:03:5d:55:61:ea:b7:90:bb:80:d2:43:98: 3b:da:9f:2e:e3:e6:42:25:25:ea:b4:18:26:7b:3b: bd:4c:d3:d8:a5:91:9f:e2:45:1a:fd:9a:53:35:74: 3c:5b:19:92:ea:77:00:78:b6:89:ab:de:be:65:25: fb:8b:4c:17:8a:41:38:17:f3:97:f2:e4:7f:ed:ef: f5:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:06:D7:96:7F:F4:04:B4:7C:F4:DA:4E:76:72:08:31:C0:5D:58:43 X509v3 Authority Key Identifier: keyid:B2:92:BA:F3:F4:C0:7A:2E:DD:47:D8:8C:2B:15:B6:5A:2A:F7:DE:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/spK68_TAei7dR9iMKxW2Wir33q0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:99:94:3a:dc:50:16:fe:c8:9b:f1:22:3b:81:d1:14:cd:2a: 07:e6:44:e6:86:11:3c:08:98:8f:27:6f:d4:c4:c4:c2:42:f4: ef:26:4f:40:44:18:68:56:1f:84:2f:a8:46:c4:af:28:95:c4: 50:95:44:72:f0:0a:8f:59:03:ef:32:10:aa:56:93:fd:85:bd: ae:57:ca:41:cf:cc:53:5f:53:ae:91:67:79:87:9d:03:87:5a: e5:51:81:cb:0e:ca:79:82:c2:0f:8f:1d:4c:30:0f:11:5b:f8: 63:c2:56:5c:69:9f:c4:5a:8b:08:ce:14:93:6c:fa:bc:61:52: 5d:a6:6a:ea:76:13:47:51:b4:b6:7f:68:be:a0:72:2b:7a:19: 65:d5:10:46:73:61:af:3f:fa:e7:2f:b3:ce:1d:d5:05:e2:41: 88:4d:1e:bf:d6:64:1f:b3:8e:22:73:74:89:d3:00:d4:6e:10: 5d:59:cb:97:47:fb:ff:0e:f8:b8:c0:8c:e1:5e:a4:b4:75:e8: 84:8e:bf:2e:f3:60:ad:a6:65:ac:41:3a:57:c5:35:a6:05:c4: a4:b3:e2:43:a2:1f:56:11:29:c5:4e:51:53:ef:64:1e:a1:a5: 03:25:a0:36:7f:99:7c:ca:b2:4f:e5:93:ab:13:63:9d:af:0c: 8e:a0:67:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDItYj/5r+PbDRzhotSMZFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyOTJiYWYzZjRjMDdhMmVkZDQ3ZDg4YzJiMTViNjVhMmFm N2RlYWQwHhcNMjYwMjA5MTYwMTIyWhcNMjYwMjEwMTYwMTIyWjAzMTEwLwYDVQQD Eyg3YzA2ZDc5NjdmZjQwNGI0N2NmNGRhNGU3NjcyMDgzMWMwNWQ1ODQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoSIhwNM1ZWDtBJRh9ODoFmtTC9PP 8zN/2zGirO8Us1B2OLmuSwRmmRCR5aQrROjy80nccyl3bLzY9hoJKhxD+CFq1eD6 SKMISQUUQ6JRINXj5L9pS0XC2Z3YNxuksgjdp0tMG7KF56SPZXWM7ASv2CYX5jEO WN8ItRtRj4fxf+HB05ElfGtBQT7KpybpA+G2CIIaQ2OHizxmZFUd03SJLkObPTKE sjbLYuAuo2fHzK2U6UpJaVkDXVVh6reQu4DSQ5g72p8u4+ZCJSXqtBgmezu9TNPY pZGf4kUa/ZpTNXQ8WxmS6ncAeLaJq96+ZSX7i0wXikE4F/OX8uR/7e/11wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHwG15Z/9AS0fPTaTnZyCDHAXVhDMB8GA1UdIwQY MBaAFLKSuvP0wHou3UfYjCsVtloq996tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3BLNjhfVEFlaTdkUjlpTUt4VzJXaXIzM3EwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9jMWY4M2EtZGZjNy00OTRkLTlhNGIt MmE3MmMyODU4YmFjLzEvc3BLNjhfVEFlaTdkUjlpTUt4VzJXaXIzM3EwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC9jMWY4M2EtZGZjNy00OTRkLTlhNGItMmE3MmMyODU4YmFj LzEvc3BLNjhfVEFlaTdkUjlpTUt4VzJXaXIzM3EwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU5mUOtxQ Fv7Im/EiO4HRFM0qB+ZE5oYRPAiYjydv1MTEwkL07yZPQEQYaFYfhC+oRsSvKJXE UJVEcvAKj1kD7zIQqlaT/YW9rlfKQc/MU19TrpFneYedA4da5VGByw7KeYLCD48d TDAPEVv4Y8JWXGmfxFqLCM4Uk2z6vGFSXaZq6nYTR1G0tn9ovqByK3oZZdUQRnNh rz/65y+zzh3VBeJBiE0ev9ZkH7OOInN0idMA1G4QXVnLl0f7/w74uMCM4V6ktHXo hI6/LvNgraZlrEE6V8U1pgXEpLPiQ6IfVhEpxU5RU+9kHqGlAyWgNn+ZfMqyT+WT qxNjna8MjqBnHg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:44 2026 by rpki-client