This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.mft File: RKMb41sydPLLhX5a81aLaFqJEn0.mft (raw, json) Hash identifier: 1DxP/d1eDKV5YTLBkBFWqIZRqN7q3hm5lG6M+9PMR1M= Subject key identifier: CE:B6:5E:D1:68:02:AA:50:88:1C:05:8E:F1:1C:B8:14:35:C8:21:AA Authority key identifier: 44:A3:1B:E3:5B:32:74:F2:CB:85:7E:5A:F3:56:8B:68:5A:89:12:7D Certificate issuer: /CN=44a31be35b3274f2cb857e5af3568b685a89127d Certificate serial: 019C43FE2F04888ED09FE48A780CC00674A2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RKMb41sydPLLhX5a81aLaFqJEn0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.mft Manifest number: 02C5 Signing time: Mon 09 Feb 2026 20:00:57 +0000 Manifest this update: Mon 09 Feb 2026 20:00:57 +0000 Manifest next update: Tue 10 Feb 2026 20:00:57 +0000 Files and hashes: 1: RKMb41sydPLLhX5a81aLaFqJEn0.crl (hash: pXfL5CbWo6FlGyaIdbPHwX662Juapyv/rq+4Yh3il8U=) 2: oBnAGTOyECz3qOvMpZNgO6Ho4ao.roa (hash: I5TS3LqyPe4PYtzp6IqjKbzYqpbpCZWL4keNAsLcZ+k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.crl rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.mft rsync://rpki.ripe.net/repository/DEFAULT/RKMb41sydPLLhX5a81aLaFqJEn0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:2f:04:88:8e:d0:9f:e4:8a:78:0c:c0:06:74:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44a31be35b3274f2cb857e5af3568b685a89127d Validity Not Before: Feb 9 20:00:57 2026 GMT Not After : Feb 10 20:00:57 2026 GMT Subject: CN=ceb65ed16802aa50881c058ef11cb81435c821aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2f:8f:86:1e:26:95:f9:4f:cd:0e:f1:a8:56: 26:c4:06:1f:fe:a2:0f:dd:a7:bf:0e:94:4d:8c:38: c0:92:e9:22:03:85:c8:e8:86:67:01:85:18:b1:42: 5b:10:2d:8a:1e:e3:7e:db:f5:7c:32:c8:91:55:c4: 93:7f:48:15:c7:91:28:f0:e8:01:f9:0d:93:05:ef: 7d:26:87:27:70:89:82:33:31:ed:63:69:45:a1:96: 86:c5:4e:1a:db:0b:87:9d:57:20:42:4b:d5:c4:37: 9a:53:1a:04:21:a1:5d:23:2d:59:b5:70:21:50:a3: 1f:c4:2c:b2:a4:fa:63:0a:d3:25:56:99:66:ce:c4: cf:27:af:fa:91:30:58:72:7b:c0:e9:26:78:71:b8: fa:7b:a9:47:75:fe:2a:50:07:28:b1:ac:60:bc:ad: 73:3c:24:e8:ce:52:81:63:28:c1:7e:1f:e4:44:29: ee:76:f7:33:fd:d2:0e:26:a9:07:66:97:12:2b:3a: 25:50:14:17:c2:26:9e:23:42:ae:a4:55:2a:2f:78: f6:bb:cf:34:e7:91:59:3a:33:b3:53:99:ca:37:a0: b5:31:c2:f8:3d:4f:77:19:d9:41:6d:f3:d1:ac:3d: 34:75:c5:78:2d:49:eb:fa:a6:bb:b8:8f:bf:9b:43: 51:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:B6:5E:D1:68:02:AA:50:88:1C:05:8E:F1:1C:B8:14:35:C8:21:AA X509v3 Authority Key Identifier: keyid:44:A3:1B:E3:5B:32:74:F2:CB:85:7E:5A:F3:56:8B:68:5A:89:12:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RKMb41sydPLLhX5a81aLaFqJEn0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:31:70:53:f7:d3:9f:57:91:a0:9e:cc:a5:ad:4f:0f:cc:c9: e8:f4:10:bf:3e:63:a3:95:02:70:6e:dc:93:86:cb:8d:22:b4: 08:76:04:11:fb:a2:00:1a:5d:6d:42:4f:6e:2f:e1:55:2a:52: d8:0f:d7:8e:07:ac:ce:75:fe:d9:32:f5:fc:64:fd:53:62:46: 72:ec:c4:7f:30:0a:10:a3:6f:c6:6c:18:22:30:05:b0:af:af: f7:11:c3:5e:16:88:86:c6:88:f6:24:3f:a9:d8:27:e0:fc:21: a0:f9:92:4b:0f:ed:a6:a7:04:f1:ce:ba:34:0e:d3:94:e7:f9: 72:41:37:00:e8:5a:94:28:6c:0d:12:80:f9:d2:ff:dd:d1:b4: 86:d9:3d:36:b5:76:12:a5:2a:fa:05:84:e2:7f:bf:3e:c4:8e: 04:38:bd:5d:96:62:3f:a4:65:4c:9c:54:05:84:f1:5d:47:2f: 17:69:b7:ad:d1:74:6a:8a:4e:9e:96:fe:19:e7:41:25:06:06: 14:d4:eb:bf:32:a5:c5:b7:40:be:bb:2f:c5:49:aa:ff:28:df: d5:f4:77:99:1a:c3:5b:f4:f6:06:ef:34:2b:4c:04:31:f7:44: 66:fa:4b:24:ff:1b:7a:70:18:4f:14:66:a8:4b:02:19:a9:33: 0f:9c:86:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/i8EiI7Qn+SKeAzABnSiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0YTMxYmUzNWIzMjc0ZjJjYjg1N2U1YWYzNTY4YjY4NWE4 OTEyN2QwHhcNMjYwMjA5MjAwMDU3WhcNMjYwMjEwMjAwMDU3WjAzMTEwLwYDVQQD EyhjZWI2NWVkMTY4MDJhYTUwODgxYzA1OGVmMTFjYjgxNDM1YzgyMWFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAty+Phh4mlflPzQ7xqFYmxAYf/qIP 3ae/DpRNjDjAkukiA4XI6IZnAYUYsUJbEC2KHuN+2/V8MsiRVcSTf0gVx5Eo8OgB +Q2TBe99JocncImCMzHtY2lFoZaGxU4a2wuHnVcgQkvVxDeaUxoEIaFdIy1ZtXAh UKMfxCyypPpjCtMlVplmzsTPJ6/6kTBYcnvA6SZ4cbj6e6lHdf4qUAcosaxgvK1z PCTozlKBYyjBfh/kRCnudvcz/dIOJqkHZpcSKzolUBQXwiaeI0KupFUqL3j2u880 55FZOjOzU5nKN6C1McL4PU93GdlBbfPRrD00dcV4LUnr+qa7uI+/m0NRWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM62XtFoAqpQiBwFjvEcuBQ1yCGqMB8GA1UdIwQY MBaAFESjG+NbMnTyy4V+WvNWi2haiRJ9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUktNYjQxc3lkUExMaFg1YTgxYUxhRnFKRW4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9hODZkZmItMTIwNC00N2UzLWFkNzYt YWU3NzI3OTQ5NDQ1LzEvUktNYjQxc3lkUExMaFg1YTgxYUxhRnFKRW4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My9hODZkZmItMTIwNC00N2UzLWFkNzYtYWU3NzI3OTQ5NDQ1 LzEvUktNYjQxc3lkUExMaFg1YTgxYUxhRnFKRW4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMzFwU/fT n1eRoJ7Mpa1PD8zJ6PQQvz5jo5UCcG7ck4bLjSK0CHYEEfuiABpdbUJPbi/hVSpS 2A/XjgesznX+2TL1/GT9U2JGcuzEfzAKEKNvxmwYIjAFsK+v9xHDXhaIhsaI9iQ/ qdgn4PwhoPmSSw/tpqcE8c66NA7TlOf5ckE3AOhalChsDRKA+dL/3dG0htk9NrV2 EqUq+gWE4n+/PsSOBDi9XZZiP6RlTJxUBYTxXUcvF2m3rdF0aopOnpb+GedBJQYG FNTrvzKlxbdAvrsvxUmq/yjf1fR3mRrDW/T2Bu80K0wEMfdEZvpLJP8benAYTxRm qEsCGakzD5yGHw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:18:46 2026 by rpki-client