This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft File: ChCKKMcHsOXCwubCE31Fh5EUu5I.mft (raw, json) Hash identifier: IQIpMRQ36fn9EUIoW9fFoHe5fAbhcGrpFqLog01V0fk= Subject key identifier: F9:62:93:18:1D:03:FD:DC:0B:79:6A:3A:6F:17:95:5D:9A:3E:7A:AB Authority key identifier: 0A:10:8A:28:C7:07:B0:E5:C2:C2:E6:C2:13:7D:45:87:91:14:BB:92 Certificate issuer: /CN=0a108a28c707b0e5c2c2e6c2137d45879114bb92 Certificate serial: 019C40FCBE1FF9110CC84AD56B190B86DB75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ChCKKMcHsOXCwubCE31Fh5EUu5I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft Manifest number: 0A09 Signing time: Mon 09 Feb 2026 06:00:31 +0000 Manifest this update: Mon 09 Feb 2026 06:00:31 +0000 Manifest next update: Tue 10 Feb 2026 06:00:31 +0000 Files and hashes: 1: ChCKKMcHsOXCwubCE31Fh5EUu5I.crl (hash: tVYYXmEvks0nK9tugAHQTZL7I0P8HfA6DtxAo/PRZPU=) 2: Fp4UEgpqLjFgWOhGK_G7aio72NU.roa (hash: YSrfGKlIuE0FqJ0gu+vKGaGUCKaaLtU+2IoC/r0Bjwg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.crl rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft rsync://rpki.ripe.net/repository/DEFAULT/ChCKKMcHsOXCwubCE31Fh5EUu5I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fc:be:1f:f9:11:0c:c8:4a:d5:6b:19:0b:86:db:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0a108a28c707b0e5c2c2e6c2137d45879114bb92 Validity Not Before: Feb 9 06:00:31 2026 GMT Not After : Feb 10 06:00:31 2026 GMT Subject: CN=f96293181d03fddc0b796a3a6f17955d9a3e7aab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d8:72:0f:36:b9:20:ee:d4:3f:73:0d:26:3f: f1:4d:98:0b:10:d4:e8:4b:e7:9f:fe:78:83:ba:87: 7c:75:c9:4f:c3:d5:ca:5e:af:b5:27:58:ea:0c:b7: a4:cf:49:c9:5b:15:ee:4b:1f:33:bd:a9:c2:6e:4d: 70:71:57:c9:e8:62:1c:8d:9b:dc:f8:2a:5b:d1:6d: eb:d7:65:d1:b9:f4:11:4e:1d:a1:c9:4b:e7:93:92: c3:8e:b7:20:85:3a:37:c1:8c:c8:66:76:f1:39:d9: d0:bb:29:99:2d:6b:f6:84:b3:a0:cf:9e:9d:ed:44: 2f:c0:4c:c7:6d:48:62:3a:e6:85:bc:b3:0b:74:ae: 57:7a:19:8d:7d:f6:c6:a8:c3:a2:c7:44:4c:ec:f4: 17:37:b9:9f:bf:99:15:9a:f1:27:b2:e9:e3:d0:d9: d9:2e:ac:ff:f8:a4:f3:f3:c7:67:6f:49:2d:5e:39: 2b:a7:17:eb:a8:d7:5d:a2:e1:95:d6:e2:7d:d3:1b: 32:a6:e8:b6:e6:82:a6:ad:a4:1a:61:1f:f3:3f:06: 5e:8c:a4:d7:93:bb:43:35:65:9c:df:1d:89:2a:e9: d8:86:8e:f3:f9:8e:06:6e:24:ff:19:e1:5b:9b:3c: 20:2c:18:6a:0f:99:c8:e2:10:ee:3a:54:b8:45:ea: 8b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:62:93:18:1D:03:FD:DC:0B:79:6A:3A:6F:17:95:5D:9A:3E:7A:AB X509v3 Authority Key Identifier: keyid:0A:10:8A:28:C7:07:B0:E5:C2:C2:E6:C2:13:7D:45:87:91:14:BB:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ChCKKMcHsOXCwubCE31Fh5EUu5I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:48:99:54:a9:71:59:f8:f3:3a:79:e3:4b:81:29:c1:7e:e7: 52:67:fb:2c:5c:93:9a:d4:0d:2e:59:73:6b:d9:4c:da:18:11: 61:95:70:d4:e2:32:f0:91:b6:ce:bb:88:26:32:90:c8:f3:b7: 9f:ba:cb:6d:82:dd:27:32:ea:10:f6:14:bb:d2:76:a5:32:30: 62:b1:2c:b3:2b:d5:4d:19:d5:ae:3b:bc:ef:de:ae:a7:ae:b1: b3:d5:c3:1a:99:49:2a:67:97:1b:e4:d4:92:96:74:8e:6f:b6: f3:5f:b6:af:3e:d2:d3:53:89:40:e2:22:bf:2c:ec:3c:b2:b7: b0:20:ab:7f:c5:75:15:89:fb:3c:7c:f2:68:1b:8b:d6:12:7b: 7b:5e:a8:7e:86:88:61:c5:5d:98:1f:c2:7c:da:bb:34:05:7e: ca:4f:1d:01:96:fe:83:fc:b9:f7:0f:bf:ea:e7:9f:ec:b6:bb: fd:8d:6c:0f:c3:31:cd:cf:95:4c:48:5e:83:b3:18:b0:79:a9: de:73:c6:61:8a:ea:6b:71:c3:6e:4b:89:cf:ee:1a:44:29:62: 15:10:2a:63:c8:96:89:df:7e:c2:ea:60:93:a9:eb:e2:25:d6: 33:bb:48:1c:8b:71:f5:89:56:fa:7d:92:d2:e4:8c:83:9e:5b: 76:91:58:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/L4f+REMyErVaxkLhtt1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBhMTA4YTI4YzcwN2IwZTVjMmMyZTZjMjEzN2Q0NTg3OTEx NGJiOTIwHhcNMjYwMjA5MDYwMDMxWhcNMjYwMjEwMDYwMDMxWjAzMTEwLwYDVQQD EyhmOTYyOTMxODFkMDNmZGRjMGI3OTZhM2E2ZjE3OTU1ZDlhM2U3YWFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA29hyDza5IO7UP3MNJj/xTZgLENTo S+ef/niDuod8dclPw9XKXq+1J1jqDLekz0nJWxXuSx8zvanCbk1wcVfJ6GIcjZvc +Cpb0W3r12XRufQRTh2hyUvnk5LDjrcghTo3wYzIZnbxOdnQuymZLWv2hLOgz56d 7UQvwEzHbUhiOuaFvLMLdK5XehmNffbGqMOix0RM7PQXN7mfv5kVmvEnsunj0NnZ Lqz/+KTz88dnb0ktXjkrpxfrqNddouGV1uJ90xsypui25oKmraQaYR/zPwZejKTX k7tDNWWc3x2JKunYho7z+Y4GbiT/GeFbmzwgLBhqD5nI4hDuOlS4ReqLZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPlikxgdA/3cC3lqOm8XlV2aPnqrMB8GA1UdIwQY MBaAFAoQiijHB7DlwsLmwhN9RYeRFLuSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ2hDS0tNY0hzT1hDd3ViQ0UzMUZoNUVVdTVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS8xMzlkMjMtODAyZC00MjI0LTgzMmUt MWY4NTgxNDIxNzYwLzEvQ2hDS0tNY0hzT1hDd3ViQ0UzMUZoNUVVdTVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS8xMzlkMjMtODAyZC00MjI0LTgzMmUtMWY4NTgxNDIxNzYw LzEvQ2hDS0tNY0hzT1hDd3ViQ0UzMUZoNUVVdTVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh0iZVKlx WfjzOnnjS4EpwX7nUmf7LFyTmtQNLllza9lM2hgRYZVw1OIy8JG2zruIJjKQyPO3 n7rLbYLdJzLqEPYUu9J2pTIwYrEssyvVTRnVrju8796up66xs9XDGplJKmeXG+TU kpZ0jm+281+2rz7S01OJQOIivyzsPLK3sCCrf8V1FYn7PHzyaBuL1hJ7e16ofoaI YcVdmB/CfNq7NAV+yk8dAZb+g/y59w+/6uef7La7/Y1sD8Mxzc+VTEheg7MYsHmp 3nPGYYrqa3HDbkuJz+4aRCliFRAqY8iWid9+wupgk6nr4iXWM7tIHItx9YlW+n2S 0uSMg55bdpFYnA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:43 2026 by rpki-client