This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft File: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft (raw, json) Hash identifier: BUPR/cYwcOeVEkpjg3TMiX7kVxXwia1DEvESVU9w7SA= Subject key identifier: CB:D2:00:C2:2D:AD:70:8F:96:81:62:F8:74:82:67:8D:69:7C:27:3D Authority key identifier: D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30 Certificate issuer: /CN=d248185956e443b55b062200f964537bc10bc130 Certificate serial: 019C43C6F83EFB5F42C691E696183B779B42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft Manifest number: 0480 Signing time: Mon 09 Feb 2026 19:00:38 +0000 Manifest this update: Mon 09 Feb 2026 19:00:38 +0000 Manifest next update: Tue 10 Feb 2026 19:00:38 +0000 Files and hashes: 1: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl (hash: UxFry3+G90RyT7aiZmp+MOOet8gy15ln1LffaWFQVX8=) 2: Xudz0hLe8s3SLmiPVONXMND3hRM.roa (hash: oORSmt43XgnSynXZgH2ISuQJ8Cm/DBrmnJwy75rrXHU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:f8:3e:fb:5f:42:c6:91:e6:96:18:3b:77:9b:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d248185956e443b55b062200f964537bc10bc130 Validity Not Before: Feb 9 19:00:38 2026 GMT Not After : Feb 10 19:00:38 2026 GMT Subject: CN=cbd200c22dad708f968162f87482678d697c273d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9b:1b:63:f1:e5:f0:e6:f0:54:b1:ef:64:08: ee:7e:fa:ec:bc:6f:03:2f:9a:20:e1:93:f0:2c:04: 26:a0:f1:78:a8:ad:be:17:53:dc:61:58:c0:94:a9: a3:f6:57:fe:e3:ff:8b:4d:8b:49:c4:bf:e1:15:f4: a7:ea:06:bf:41:9a:76:7b:e7:50:22:66:c4:e8:94: 80:e3:22:f7:b5:80:99:fd:21:da:86:90:db:61:2f: e0:e5:55:3d:e8:d3:a6:f7:95:9d:17:85:be:bf:89: 11:37:13:6d:48:da:a6:f7:1a:d4:ea:94:6c:04:24: 51:a8:af:95:5b:6d:58:6f:7b:87:63:d9:a5:e5:38: cf:82:09:de:b8:a5:a2:f5:36:a6:d3:71:42:9a:a4: ab:fa:4e:9f:d2:27:d2:6c:ea:4d:53:60:3e:fb:9b: 17:b2:32:5a:75:d8:c3:3e:7d:d0:5d:bf:b3:ff:eb: 74:0e:db:f5:d2:a5:a3:4e:54:53:a8:74:dc:ed:28: fb:8d:c0:20:d4:fb:8e:c3:00:b3:00:42:a8:e7:0e: 47:56:28:a9:12:d3:d5:23:c3:cf:fc:1a:10:f5:20: 37:ec:07:c8:6f:b3:40:71:f9:5f:75:ce:85:ae:4c: de:96:8c:a1:12:45:72:96:dd:81:c0:4c:5f:ec:55: 60:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:D2:00:C2:2D:AD:70:8F:96:81:62:F8:74:82:67:8D:69:7C:27:3D X509v3 Authority Key Identifier: keyid:D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:91:be:f2:25:b4:44:96:dc:dd:81:1a:e5:f7:3d:53:0a:cf: 45:97:9a:92:73:89:9a:98:d6:7c:d8:a9:c0:a0:ab:bf:e7:28: 86:4d:fe:26:c9:f7:a1:db:09:63:31:3f:58:f2:32:b0:22:b4: be:72:52:34:1f:21:21:46:b6:b9:49:ab:17:2b:1f:ac:94:e9: fe:d9:54:23:75:40:3d:67:bf:c0:bd:c3:23:53:4d:83:7a:2b: 89:08:70:dc:20:f7:ad:93:59:ed:86:21:d7:fb:a0:d3:8b:c8: c2:84:36:02:09:c1:2e:a6:70:5b:dd:76:80:1d:b0:d1:a6:89: de:2e:72:50:53:0b:22:bc:8d:d5:58:45:af:b1:d7:84:c5:71: 89:35:ff:cc:2e:97:47:a6:1b:f2:e2:fc:14:bc:04:ce:3b:47: 5c:22:e4:1e:54:b6:2a:21:eb:be:32:4b:30:ae:4b:ad:b4:ad: 70:7a:ff:6a:8f:ac:9d:4c:6e:51:79:12:ab:59:b6:f8:2e:5a: 18:0c:e1:36:fc:ee:4e:01:f1:64:ad:a7:5a:00:29:3d:df:a0: 81:a6:27:cb:a9:6a:62:88:da:2d:b5:1f:bf:56:a7:e0:78:20: 42:be:57:40:96:6b:c8:38:40:42:a3:57:b0:aa:f0:70:ab:30: 93:4f:a6:42 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxvg++19CxpHmlhg7d5tCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyNDgxODU5NTZlNDQzYjU1YjA2MjIwMGY5NjQ1MzdiYzEw YmMxMzAwHhcNMjYwMjA5MTkwMDM4WhcNMjYwMjEwMTkwMDM4WjAzMTEwLwYDVQQD EyhjYmQyMDBjMjJkYWQ3MDhmOTY4MTYyZjg3NDgyNjc4ZDY5N2MyNzNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt5sbY/Hl8ObwVLHvZAjufvrsvG8D L5og4ZPwLAQmoPF4qK2+F1PcYVjAlKmj9lf+4/+LTYtJxL/hFfSn6ga/QZp2e+dQ ImbE6JSA4yL3tYCZ/SHahpDbYS/g5VU96NOm95WdF4W+v4kRNxNtSNqm9xrU6pRs BCRRqK+VW21Yb3uHY9ml5TjPggneuKWi9Tam03FCmqSr+k6f0ifSbOpNU2A++5sX sjJaddjDPn3QXb+z/+t0Dtv10qWjTlRTqHTc7Sj7jcAg1PuOwwCzAEKo5w5HViip EtPVI8PP/BoQ9SA37AfIb7NAcflfdc6FrkzeloyhEkVylt2BwExf7FVgPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMvSAMItrXCPloFi+HSCZ41pfCc9MB8GA1UdIwQY MBaAFNJIGFlW5EO1WwYiAPlkU3vBC8EwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGtnWVdWYmtRN1ZiQmlJQS1XUlRlOEVMd1RBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9kZTg3NWEtMDU3Ni00YTE1LWJlMjMt YWVhMDU0Y2Y0M2JiLzEvMGtnWVdWYmtRN1ZiQmlJQS1XUlRlOEVMd1RBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9kZTg3NWEtMDU3Ni00YTE1LWJlMjMtYWVhMDU0Y2Y0M2Ji LzEvMGtnWVdWYmtRN1ZiQmlJQS1XUlRlOEVMd1RBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACpG+8iW0 RJbc3YEa5fc9UwrPRZeaknOJmpjWfNipwKCrv+cohk3+Jsn3odsJYzE/WPIysCK0 vnJSNB8hIUa2uUmrFysfrJTp/tlUI3VAPWe/wL3DI1NNg3oriQhw3CD3rZNZ7YYh 1/ug04vIwoQ2AgnBLqZwW912gB2w0aaJ3i5yUFMLIryN1VhFr7HXhMVxiTX/zC6X R6Yb8uL8FLwEzjtHXCLkHlS2KiHrvjJLMK5LrbStcHr/ao+snUxuUXkSq1m2+C5a GAzhNvzuTgHxZK2nWgApPd+ggaYny6lqYojaLbUfv1an4HggQr5XQJZryDhAQqNX sKrwcKswk0+mQg== -----END CERTIFICATE-----Generated at Tue Feb 10 04:30:26 2026 by rpki-client