This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft File: 0kvL9emk_kMp8iPBFFBykFOPnMI.mft (raw, json) Hash identifier: 9JZEFlU4bXF5lGi7w4voeUaGQWAhH7kwoh5vfiUipW4= Subject key identifier: 0A:C7:0B:A8:54:C8:1F:78:31:75:3F:B7:80:F6:9C:92:8F:92:05:C5 Authority key identifier: D2:4B:CB:F5:E9:A4:FE:43:29:F2:23:C1:14:50:72:90:53:8F:9C:C2 Certificate issuer: /CN=d24bcbf5e9a4fe4329f223c114507290538f9cc2 Certificate serial: 019C43220F70DEB098E8831D71E270C085F2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft Manifest number: 135B Signing time: Mon 09 Feb 2026 16:00:31 +0000 Manifest this update: Mon 09 Feb 2026 16:00:31 +0000 Manifest next update: Tue 10 Feb 2026 16:00:31 +0000 Files and hashes: 1: 0kvL9emk_kMp8iPBFFBykFOPnMI.crl (hash: /YGUXD/bS1JmEtZWgE7l+zxdwPb0FyBkFTDICoycV3g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.crl rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:0f:70:de:b0:98:e8:83:1d:71:e2:70:c0:85:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d24bcbf5e9a4fe4329f223c114507290538f9cc2 Validity Not Before: Feb 9 16:00:31 2026 GMT Not After : Feb 10 16:00:31 2026 GMT Subject: CN=0ac70ba854c81f7831753fb780f69c928f9205c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:22:f5:cd:b4:72:6f:4f:5c:43:4d:4e:d6:bb: 3f:3e:97:8b:2b:66:eb:74:f3:17:b2:48:e4:67:4d: 2f:43:2f:90:d2:fa:5f:c6:1c:1f:7d:27:4b:b3:b5: 19:58:de:5e:1b:94:af:6c:90:21:0c:b9:20:99:38: 93:18:75:c1:a9:31:3b:0c:4c:17:c5:33:b1:72:14: 14:2e:ca:2d:2d:da:3c:4e:5d:7e:bc:ca:06:93:f1: ac:c5:d2:e0:01:1e:9d:10:72:c3:f3:23:e3:aa:32: 5a:ca:9c:1d:ea:68:7e:76:73:24:59:ea:aa:64:48: ac:15:4a:54:ef:3e:85:cc:57:c2:35:f3:18:2f:f9: ee:dd:d2:95:ba:99:c6:69:91:08:f3:f0:08:0b:75: 23:09:02:ae:8a:11:e7:37:be:e5:4a:97:3b:89:72: bf:15:8e:02:ca:7f:d0:14:d7:96:1c:80:3c:92:7c: ee:51:cd:b6:71:41:92:50:12:62:00:5b:fc:1c:63: 26:3f:0a:66:c4:15:da:df:40:68:0d:f9:4d:7c:d0: f5:38:0d:95:d1:1e:e2:76:f6:cb:50:21:23:cb:9e: 97:f5:f2:8f:26:fc:56:16:67:bd:f4:c8:11:cb:cc: da:06:5a:98:71:a7:b0:76:1b:b0:91:0a:f4:c1:ff: 0e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:C7:0B:A8:54:C8:1F:78:31:75:3F:B7:80:F6:9C:92:8F:92:05:C5 X509v3 Authority Key Identifier: keyid:D2:4B:CB:F5:E9:A4:FE:43:29:F2:23:C1:14:50:72:90:53:8F:9C:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:3f:81:c2:ed:e2:bc:db:48:8a:a6:aa:bf:03:d6:43:50:84: 9b:46:7e:29:5a:34:1b:62:1a:f5:19:3c:6b:67:fd:bd:c5:c7: 2c:e3:4c:97:73:54:41:77:44:38:4c:6d:44:a5:b3:fa:9a:20: b4:54:ba:25:2c:7f:7b:c6:6a:65:1d:c7:36:16:fb:69:bb:79: 5a:57:1d:2f:36:cc:0d:21:64:60:55:8d:d8:19:5f:0d:02:f2: 03:5a:8e:fb:51:36:73:7b:da:2a:47:aa:64:14:ee:e9:42:b4: a0:a7:f5:65:b6:1f:3f:39:15:ba:b3:ac:03:ca:d2:62:d6:e8: 39:60:22:cc:41:75:e1:1b:b7:ae:ec:c5:4b:35:d7:68:35:02: 14:98:79:68:16:59:74:76:9a:a0:1a:2f:46:fa:a2:81:9f:8c: 88:a0:ac:8b:b3:14:a1:5a:e6:71:34:1e:19:73:bf:e4:d1:41: 21:23:1e:9a:3d:a7:61:42:91:8b:51:cd:20:77:4f:f7:dc:cd: d9:2d:a5:86:e8:9d:01:f9:90:17:88:92:8b:76:53:a5:44:1e: f5:6f:78:e2:e1:99:51:28:ff:bc:ab:12:76:29:f9:56:99:1a: 9f:94:18:94:f1:94:57:46:8c:33:b9:ad:40:11:b9:95:9f:9f: 49:d8:51:22 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIg9w3rCY6IMdceJwwIXyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyNGJjYmY1ZTlhNGZlNDMyOWYyMjNjMTE0NTA3MjkwNTM4 ZjljYzIwHhcNMjYwMjA5MTYwMDMxWhcNMjYwMjEwMTYwMDMxWjAzMTEwLwYDVQQD EygwYWM3MGJhODU0YzgxZjc4MzE3NTNmYjc4MGY2OWM5MjhmOTIwNWM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqSL1zbRyb09cQ01O1rs/PpeLK2br dPMXskjkZ00vQy+Q0vpfxhwffSdLs7UZWN5eG5SvbJAhDLkgmTiTGHXBqTE7DEwX xTOxchQULsotLdo8Tl1+vMoGk/GsxdLgAR6dEHLD8yPjqjJaypwd6mh+dnMkWeqq ZEisFUpU7z6FzFfCNfMYL/nu3dKVupnGaZEI8/AIC3UjCQKuihHnN77lSpc7iXK/ FY4Cyn/QFNeWHIA8knzuUc22cUGSUBJiAFv8HGMmPwpmxBXa30BoDflNfND1OA2V 0R7idvbLUCEjy56X9fKPJvxWFme99MgRy8zaBlqYcaewdhuwkQr0wf8OFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFArHC6hUyB94MXU/t4D2nJKPkgXFMB8GA1UdIwQY MBaAFNJLy/XppP5DKfIjwRRQcpBTj5zCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGt2TDllbWtfa01wOGlQQkZGQnlrRk9Qbk1JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9iYzQxYTQtZmM5MS00OTZmLWEyMjUt MmU2ZTVlNWY1ZDliLzEvMGt2TDllbWtfa01wOGlQQkZGQnlrRk9Qbk1JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC9iYzQxYTQtZmM5MS00OTZmLWEyMjUtMmU2ZTVlNWY1ZDli LzEvMGt2TDllbWtfa01wOGlQQkZGQnlrRk9Qbk1JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXD+Bwu3i vNtIiqaqvwPWQ1CEm0Z+KVo0G2Ia9Rk8a2f9vcXHLONMl3NUQXdEOExtRKWz+pog tFS6JSx/e8ZqZR3HNhb7abt5WlcdLzbMDSFkYFWN2BlfDQLyA1qO+1E2c3vaKkeq ZBTu6UK0oKf1ZbYfPzkVurOsA8rSYtboOWAizEF14Ru3ruzFSzXXaDUCFJh5aBZZ dHaaoBovRvqigZ+MiKCsi7MUoVrmcTQeGXO/5NFBISMemj2nYUKRi1HNIHdP99zN 2S2lhuidAfmQF4iSi3ZTpUQe9W944uGZUSj/vKsSdin5Vpkan5QYlPGUV0aMM7mt QBG5lZ+fSdhRIg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:55 2026 by rpki-client