This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft File: ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft (raw, json) Hash identifier: 8gOeKmYxWol7WspOvYxV292jQTlXneE03n3GaVBDstw= Subject key identifier: F6:24:2E:BC:3D:EC:A5:9E:68:14:88:5F:92:6C:7C:FB:A0:2B:65:18 Authority key identifier: 72:48:1D:D9:0D:10:0B:D5:BC:23:C0:4B:10:C0:A8:43:1C:C9:A5:B5 Certificate issuer: /CN=72481dd90d100bd5bc23c04b10c0a8431cc9a5b5 Certificate serial: 019C40FD2B01B9ADF29CAE7128022E641926 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft Manifest number: 1753 Signing time: Mon 09 Feb 2026 06:00:59 +0000 Manifest this update: Mon 09 Feb 2026 06:00:59 +0000 Manifest next update: Tue 10 Feb 2026 06:00:59 +0000 Files and hashes: 1: NvNBBzczdvedzfA0zmq_oqTjNy0.roa (hash: aNRFQnk32ELUJc2di3VPfCYAy8SNGZZzchv0G1guk1k=) 2: ckgd2Q0QC9W8I8BLEMCoQxzJpbU.crl (hash: S5iSWACY9WeG2DIILL7z4QyKDtywZDCtCTOrSKJhYE4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.crl rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fd:2b:01:b9:ad:f2:9c:ae:71:28:02:2e:64:19:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72481dd90d100bd5bc23c04b10c0a8431cc9a5b5 Validity Not Before: Feb 9 06:00:59 2026 GMT Not After : Feb 10 06:00:59 2026 GMT Subject: CN=f6242ebc3deca59e6814885f926c7cfba02b6518 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:8b:bb:14:75:c1:8f:31:16:01:51:24:e2:39: 87:1e:6b:b5:83:a0:76:43:ee:08:56:dd:0f:ff:a9: 53:99:e2:67:76:b9:1c:f8:41:0a:72:10:3c:36:ae: 87:76:0d:eb:b4:2a:ab:6f:53:e3:d5:e1:8b:c4:13: b3:8f:eb:6f:5e:3c:60:79:22:ec:72:51:5b:6d:61: 91:92:ee:5b:10:8e:54:d3:84:d3:71:fc:a0:19:1f: 77:1f:dd:27:c1:27:d4:e1:aa:a3:dc:7f:eb:88:e7: b2:fe:87:46:bb:7b:d4:8d:f1:b6:19:78:5a:c0:c2: 6a:3e:02:80:4a:78:21:2a:34:5a:c3:1b:8e:ec:b0: 79:cf:10:30:85:89:e2:5e:fd:a4:d9:36:5c:cf:7f: 14:f5:31:11:7b:d1:c6:da:2f:90:cd:7b:15:4f:f6: f9:04:0f:e2:0c:eb:c3:f3:4a:11:35:49:1f:6a:b3: 78:f9:37:b0:29:d3:be:3b:bc:02:12:fb:94:79:dd: b0:18:20:77:c2:8c:c4:ff:51:eb:72:96:ad:9f:a6: 42:49:ae:4a:b5:c8:10:ed:e3:54:d8:56:b6:3e:03: 17:94:64:cd:b8:d0:b5:bd:cd:89:16:81:e2:6b:4f: 93:84:57:17:fe:fd:b3:1b:80:b8:69:6c:39:d7:10: 0f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:24:2E:BC:3D:EC:A5:9E:68:14:88:5F:92:6C:7C:FB:A0:2B:65:18 X509v3 Authority Key Identifier: keyid:72:48:1D:D9:0D:10:0B:D5:BC:23:C0:4B:10:C0:A8:43:1C:C9:A5:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:06:db:42:6f:04:e0:29:ca:b6:1e:3b:41:47:1e:1a:b1:ce: e2:75:9d:f4:31:ba:e5:94:68:7e:1c:85:e1:64:47:4f:e0:9b: 93:e0:46:b9:b6:fb:20:a2:b0:71:f0:f0:f7:10:29:7f:0d:f9: 12:af:d1:d7:c0:e2:13:4b:4d:a7:18:a4:5d:1e:52:7d:06:1b: ad:30:2d:66:5d:e8:05:16:2d:b0:83:56:ed:db:24:a6:34:43: 71:9d:ae:d0:09:69:5d:a6:e6:e7:35:76:5b:ed:e4:30:3c:c7: 45:b1:6e:07:85:33:7c:10:a5:ed:65:98:c0:f4:6b:0f:0f:4d: ed:94:7d:11:9e:5f:b7:7d:99:d7:95:43:4f:9e:a7:69:73:c8: 16:1f:d4:59:90:74:9d:1b:4d:5f:02:74:16:c0:19:0c:a8:a1: c7:f2:40:7f:b0:95:7c:a1:f3:f6:ee:a0:c9:fb:2d:59:12:76: c6:95:fd:02:5a:71:58:fe:a9:e0:35:05:2f:c0:27:e7:f6:45: 01:40:d4:11:db:eb:ba:7e:b6:50:be:07:fe:d1:8c:a1:4c:c9: c0:1a:90:e9:0f:6f:a7:b5:8a:0f:41:77:57:07:dd:de:d3:da: d8:6d:af:6f:d4:08:f1:a4:2b:f8:66:29:89:d2:7d:2f:77:e1: c2:77:cf:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/SsBua3ynK5xKAIuZBkmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyNDgxZGQ5MGQxMDBiZDViYzIzYzA0YjEwYzBhODQzMWNj OWE1YjUwHhcNMjYwMjA5MDYwMDU5WhcNMjYwMjEwMDYwMDU5WjAzMTEwLwYDVQQD EyhmNjI0MmViYzNkZWNhNTllNjgxNDg4NWY5MjZjN2NmYmEwMmI2NTE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Yu7FHXBjzEWAVEk4jmHHmu1g6B2 Q+4IVt0P/6lTmeJndrkc+EEKchA8Nq6Hdg3rtCqrb1Pj1eGLxBOzj+tvXjxgeSLs clFbbWGRku5bEI5U04TTcfygGR93H90nwSfU4aqj3H/riOey/odGu3vUjfG2GXha wMJqPgKASnghKjRawxuO7LB5zxAwhYniXv2k2TZcz38U9TERe9HG2i+QzXsVT/b5 BA/iDOvD80oRNUkfarN4+TewKdO+O7wCEvuUed2wGCB3wozE/1Hrcpatn6ZCSa5K tcgQ7eNU2Fa2PgMXlGTNuNC1vc2JFoHia0+ThFcX/v2zG4C4aWw51xAPfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPYkLrw97KWeaBSIX5JsfPugK2UYMB8GA1UdIwQY MBaAFHJIHdkNEAvVvCPASxDAqEMcyaW1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2tnZDJRMFFDOVc4SThCTEVNQ29ReHpKcGJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC84MzAwZjgtOWVjZS00N2NkLTgzN2Qt ZjE5OTBiMGM3MDVhLzEvY2tnZDJRMFFDOVc4SThCTEVNQ29ReHpKcGJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC84MzAwZjgtOWVjZS00N2NkLTgzN2QtZjE5OTBiMGM3MDVh LzEvY2tnZDJRMFFDOVc4SThCTEVNQ29ReHpKcGJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbQbbQm8E 4CnKth47QUceGrHO4nWd9DG65ZRofhyF4WRHT+Cbk+BGubb7IKKwcfDw9xApfw35 Eq/R18DiE0tNpxikXR5SfQYbrTAtZl3oBRYtsINW7dskpjRDcZ2u0AlpXabm5zV2 W+3kMDzHRbFuB4UzfBCl7WWYwPRrDw9N7ZR9EZ5ft32Z15VDT56naXPIFh/UWZB0 nRtNXwJ0FsAZDKihx/JAf7CVfKHz9u6gyfstWRJ2xpX9AlpxWP6p4DUFL8An5/ZF AUDUEdvrun62UL4H/tGMoUzJwBqQ6Q9vp7WKD0F3Vwfd3tPa2G2vb9QI8aQr+GYp idJ9L3fhwnfPHg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:47 2026 by rpki-client