This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft File: mk2qT2rA5rwQK2iECirGu1QbQPw.mft (raw, json) Hash identifier: EnJ+Rai7VAzosKP9sBwL/v3LKXygPTFJBgCpr2c258w= Subject key identifier: F8:73:68:D5:25:27:34:FC:4F:5F:0C:04:4A:52:21:5E:18:40:B9:83 Authority key identifier: 9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC Certificate issuer: /CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc Certificate serial: 019C4434D34FDB7578D6665B99B6848D41B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft Manifest number: 0807 Signing time: Mon 09 Feb 2026 21:00:38 +0000 Manifest this update: Mon 09 Feb 2026 21:00:38 +0000 Manifest next update: Tue 10 Feb 2026 21:00:38 +0000 Files and hashes: 1: KIWGoOwTd_0to3ZfSp61C8HKyu8.roa (hash: zO+QGlqWRre1WYpcK0kFybtzqC8LgSXdzrWLa3l1LOU=) 2: mk2qT2rA5rwQK2iECirGu1QbQPw.crl (hash: bsW+JCQspHCTavtUYKyAt03m1Qmi5dFcOdDp/Bne+nE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:34:d3:4f:db:75:78:d6:66:5b:99:b6:84:8d:41:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc Validity Not Before: Feb 9 21:00:38 2026 GMT Not After : Feb 10 21:00:38 2026 GMT Subject: CN=f87368d5252734fc4f5f0c044a52215e1840b983 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:80:ba:41:2a:b0:48:9b:0c:8e:58:2e:4b:c2: 0a:e3:f4:54:99:c3:7a:5b:56:a6:88:2d:d9:f9:3f: b6:6d:27:7b:00:c8:5c:9b:67:12:6e:c3:e6:8e:6e: 44:40:f0:0a:57:a2:17:b0:1f:53:c1:32:06:48:14: 95:71:6f:2c:40:b8:df:a1:f3:52:7a:24:58:b6:f3: 4d:8d:35:92:39:4f:eb:21:5d:f9:f6:a3:60:45:ad: c5:97:41:a7:32:b1:f0:4b:5d:2c:5f:99:58:f6:c2: 9a:5b:22:cd:ee:3a:66:2a:c1:8b:80:24:fd:4f:28: b6:9d:3b:35:31:ca:6d:32:3c:6b:f2:b7:e8:d0:cb: 74:35:2d:cc:94:77:0d:cd:23:d5:95:b0:ed:42:c8: 49:f9:3a:dc:81:d4:69:f1:72:88:8a:bd:35:73:94: 0c:03:a3:a6:0e:04:a7:b7:d8:2e:7a:35:76:5b:2c: 79:ec:53:a3:99:2c:d1:85:04:b0:89:04:86:b3:55: ef:16:fb:e7:a5:b8:47:e2:18:8f:b6:d6:a8:b4:b9: ad:04:31:0f:34:e5:7a:75:4a:7c:57:2c:2e:b2:22: b8:b4:bc:0e:64:02:42:1d:21:83:12:f0:3d:f3:80: 0a:74:eb:47:e7:9c:37:91:fd:a2:6a:56:6b:3a:6f: eb:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:73:68:D5:25:27:34:FC:4F:5F:0C:04:4A:52:21:5E:18:40:B9:83 X509v3 Authority Key Identifier: keyid:9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:a1:cd:66:f7:0d:96:c1:33:6a:90:cc:0b:06:12:eb:fe:d2: e3:70:64:c3:bd:39:8b:c2:a5:b9:3c:91:13:bf:54:c2:9d:1e: b9:a2:b8:81:59:09:d9:79:7b:88:5f:e9:fe:da:56:df:40:ce: cd:e9:ca:f8:cc:bf:80:75:59:7e:83:f0:67:73:b5:26:a3:2e: 4f:52:cd:23:e7:68:18:b0:87:e7:20:20:6f:e0:78:9e:8a:45: 01:37:b1:ff:9a:ff:8d:2d:25:12:75:ef:15:c0:84:38:e2:03: 8f:a3:38:76:fb:19:6e:2d:b2:f2:e7:06:e5:32:3a:ba:5a:15: 58:ba:b7:af:02:f8:aa:5f:b4:9d:fd:67:ec:63:98:d4:20:d5: 1a:4d:ce:24:6d:28:9f:3f:31:a9:19:9f:c0:12:cc:b8:0d:bb: ec:ac:57:05:d8:8c:a4:d9:69:b7:bb:86:4c:4e:86:38:af:5a: 52:9f:45:cc:2a:49:65:24:73:c2:43:1f:09:30:f9:fa:65:73: cc:b9:88:0e:85:a0:78:21:72:a5:8a:e4:6a:3f:c3:18:ba:b0: 1c:85:f0:20:95:c8:e0:ba:d7:59:6f:0f:43:75:e1:02:76:7d: a9:b6:92:93:f5:25:b4:26:d5:1a:7c:d5:d9:66:ea:e3:54:91: 56:97:12:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxENNNP23V41mZbmbaEjUGwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhNGRhYTRmNmFjMGU2YmMxMDJiNjg4NDBhMmFjNmJiNTQx YjQwZmMwHhcNMjYwMjA5MjEwMDM4WhcNMjYwMjEwMjEwMDM4WjAzMTEwLwYDVQQD EyhmODczNjhkNTI1MjczNGZjNGY1ZjBjMDQ0YTUyMjE1ZTE4NDBiOTgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsYC6QSqwSJsMjlguS8IK4/RUmcN6 W1amiC3Z+T+2bSd7AMhcm2cSbsPmjm5EQPAKV6IXsB9TwTIGSBSVcW8sQLjfofNS eiRYtvNNjTWSOU/rIV359qNgRa3Fl0GnMrHwS10sX5lY9sKaWyLN7jpmKsGLgCT9 Tyi2nTs1McptMjxr8rfo0Mt0NS3MlHcNzSPVlbDtQshJ+TrcgdRp8XKIir01c5QM A6OmDgSnt9guejV2Wyx57FOjmSzRhQSwiQSGs1XvFvvnpbhH4hiPttaotLmtBDEP NOV6dUp8VywusiK4tLwOZAJCHSGDEvA984AKdOtH55w3kf2ialZrOm/rIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPhzaNUlJzT8T18MBEpSIV4YQLmDMB8GA1UdIwQY MBaAFJpNqk9qwOa8ECtohAoqxrtUG0D8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWsycVQyckE1cndRSzJpRUNpckd1MVFiUVB3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9jZDQ2MjQtNjIwYS00Y2IyLWE0MTYt NmJlOTJiMWFhOGIzLzEvbWsycVQyckE1cndRSzJpRUNpckd1MVFiUVB3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny9jZDQ2MjQtNjIwYS00Y2IyLWE0MTYtNmJlOTJiMWFhOGIz LzEvbWsycVQyckE1cndRSzJpRUNpckd1MVFiUVB3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlKHNZvcN lsEzapDMCwYS6/7S43Bkw705i8KluTyRE79Uwp0euaK4gVkJ2Xl7iF/p/tpW30DO zenK+My/gHVZfoPwZ3O1JqMuT1LNI+doGLCH5yAgb+B4nopFATex/5r/jS0lEnXv FcCEOOIDj6M4dvsZbi2y8ucG5TI6uloVWLq3rwL4ql+0nf1n7GOY1CDVGk3OJG0o nz8xqRmfwBLMuA277KxXBdiMpNlpt7uGTE6GOK9aUp9FzCpJZSRzwkMfCTD5+mVz zLmIDoWgeCFypYrkaj/DGLqwHIXwIJXI4LrXWW8PQ3XhAnZ9qbaSk/UltCbVGnzV 2Wbq41SRVpcSwQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:43:44 2026 by rpki-client