This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.mft File: kR2gx6mUBcRrqthMudk-g0WZyOE.mft (raw, json) Hash identifier: 2WNTuo7ALLBEHDbqwULNWvJP+ZuwDeAeGiwzyhLD1+I= Subject key identifier: DD:50:AF:1B:CC:42:D6:64:58:8D:5B:4E:0D:62:B3:CC:61:E3:D7:5A Authority key identifier: 91:1D:A0:C7:A9:94:05:C4:6B:AA:D8:4C:B9:D9:3E:83:45:99:C8:E1 Certificate issuer: /CN=911da0c7a99405c46baad84cb9d93e834599c8e1 Certificate serial: 019C41D8D7BC1AB3923D9F64FA1800107D8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kR2gx6mUBcRrqthMudk-g0WZyOE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 10:00:55 +0000 Manifest this update: Mon 09 Feb 2026 10:00:55 +0000 Manifest next update: Tue 10 Feb 2026 10:00:55 +0000 Files and hashes: 1: 0kE9whcbqDZPFxCT664hh63BKUs.roa (hash: 5C4ga/+QHi4o11rdDpXGfOfWtVfwE8VOC9vvm4vn/b4=) 2: kR2gx6mUBcRrqthMudk-g0WZyOE.crl (hash: z4l04Tz6udhslU3S5meu2evq8BW2QfbRiwqZDF+DIwQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.mft rsync://rpki.ripe.net/repository/DEFAULT/kR2gx6mUBcRrqthMudk-g0WZyOE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:d7:bc:1a:b3:92:3d:9f:64:fa:18:00:10:7d:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=911da0c7a99405c46baad84cb9d93e834599c8e1 Validity Not Before: Feb 9 10:00:55 2026 GMT Not After : Feb 10 10:00:55 2026 GMT Subject: CN=dd50af1bcc42d664588d5b4e0d62b3cc61e3d75a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:94:12:79:13:5f:0d:5c:15:52:7f:ba:b5:f7: d5:ff:a5:98:c5:82:f6:93:d1:93:59:df:f2:fc:b5: e4:cb:cb:08:18:8d:e9:7b:35:64:fd:2c:3d:c5:32: 5d:6e:e4:6b:b2:f0:bb:a7:40:c4:b9:90:2f:0e:ef: 00:8f:e0:21:e7:14:7e:e2:7a:16:b2:99:7b:03:a6: 4d:ab:47:30:0a:42:76:3d:06:34:c5:bf:98:12:84: 81:fa:07:3f:83:e6:2e:a5:85:5d:23:d5:16:7b:34: 88:62:44:92:2a:55:61:11:58:fa:fa:6a:de:c8:2d: ec:44:cf:2e:03:ef:83:b9:8d:5d:f8:5e:57:a3:ab: 12:6d:72:2d:20:4c:2d:ba:b3:28:f0:3d:52:85:e9: 72:9a:f4:b9:26:d4:c3:02:30:8f:8f:06:43:e4:af: 49:cf:29:6d:cf:82:5d:1b:a8:2d:32:d3:d7:3a:e1: fb:c1:fb:3c:d1:66:70:18:bf:7c:0c:8f:b7:1b:8f: b3:60:0b:90:36:8d:6a:0d:f1:37:7e:9d:c0:d5:5e: c8:c4:a4:a8:9a:90:ed:cb:c3:fd:d5:67:3c:ac:f5: bf:1a:6c:18:2d:45:db:81:b0:ae:ed:74:be:02:92: eb:4d:60:6c:42:b6:32:c4:d1:f5:a6:db:fa:20:49: 55:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:50:AF:1B:CC:42:D6:64:58:8D:5B:4E:0D:62:B3:CC:61:E3:D7:5A X509v3 Authority Key Identifier: keyid:91:1D:A0:C7:A9:94:05:C4:6B:AA:D8:4C:B9:D9:3E:83:45:99:C8:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kR2gx6mUBcRrqthMudk-g0WZyOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:e3:a7:b0:97:27:86:3b:d3:ad:32:80:62:1d:e2:ba:e2:4b: cd:f4:a9:f0:ce:15:d6:db:9a:ca:54:87:52:88:05:8a:15:30: 02:3f:c2:19:b3:d4:6a:06:d0:d3:df:32:6b:76:24:83:31:be: 89:52:b0:d0:30:df:a1:fc:6a:17:65:68:34:91:4a:ad:6a:c9: a7:f3:36:4f:25:cf:ce:69:18:01:a5:7c:14:88:32:1f:e1:77: 1d:d5:12:c0:d8:27:d1:4c:73:fe:cf:98:68:48:16:e0:b1:0f: 43:f5:ec:42:be:8f:60:ac:c5:f9:b8:ca:78:b6:ea:22:55:9b: 68:e8:9f:90:33:10:12:56:6a:63:d2:a6:dc:00:d4:7d:8c:0f: 61:b4:ef:56:a5:fe:5b:3d:23:73:8d:a5:98:30:26:8c:20:69: f2:52:76:4a:a6:92:61:6d:6b:68:0b:4c:59:c3:0d:87:89:f9: c6:4d:be:bd:f2:94:ac:aa:7d:f2:89:df:80:4f:d2:93:93:97: 30:8c:69:12:16:43:33:98:3b:8f:a8:64:dc:b3:36:cf:79:1d: e1:f5:e2:6f:7d:e8:ae:6b:4a:9e:2a:13:ca:51:50:84:8a:d5: 72:ba:dd:46:1d:ab:7b:0e:ed:f9:39:9c:ab:9a:ee:42:fa:64: bd:2e:4d:43 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2Ne8GrOSPZ9k+hgAEH2MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxMWRhMGM3YTk5NDA1YzQ2YmFhZDg0Y2I5ZDkzZTgzNDU5 OWM4ZTEwHhcNMjYwMjA5MTAwMDU1WhcNMjYwMjEwMTAwMDU1WjAzMTEwLwYDVQQD EyhkZDUwYWYxYmNjNDJkNjY0NTg4ZDViNGUwZDYyYjNjYzYxZTNkNzVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoZQSeRNfDVwVUn+6tffV/6WYxYL2 k9GTWd/y/LXky8sIGI3pezVk/Sw9xTJdbuRrsvC7p0DEuZAvDu8Aj+Ah5xR+4noW spl7A6ZNq0cwCkJ2PQY0xb+YEoSB+gc/g+YupYVdI9UWezSIYkSSKlVhEVj6+mre yC3sRM8uA++DuY1d+F5Xo6sSbXItIEwturMo8D1ShelymvS5JtTDAjCPjwZD5K9J zyltz4JdG6gtMtPXOuH7wfs80WZwGL98DI+3G4+zYAuQNo1qDfE3fp3A1V7IxKSo mpDty8P91Wc8rPW/GmwYLUXbgbCu7XS+ApLrTWBsQrYyxNH1ptv6IElV2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN1QrxvMQtZkWI1bTg1is8xh49daMB8GA1UdIwQY MBaAFJEdoMeplAXEa6rYTLnZPoNFmcjhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1IyZ3g2bVVCY1JycXRoTXVkay1nMFdaeU9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi8yYzdhYzMtZWVkZi00NTViLTllOTQt NDcyZjAyNDUwZWMzLzEva1IyZ3g2bVVCY1JycXRoTXVkay1nMFdaeU9FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi8yYzdhYzMtZWVkZi00NTViLTllOTQtNDcyZjAyNDUwZWMz LzEva1IyZ3g2bVVCY1JycXRoTXVkay1nMFdaeU9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALuOnsJcn hjvTrTKAYh3iuuJLzfSp8M4V1tuaylSHUogFihUwAj/CGbPUagbQ098ya3YkgzG+ iVKw0DDfofxqF2VoNJFKrWrJp/M2TyXPzmkYAaV8FIgyH+F3HdUSwNgn0Uxz/s+Y aEgW4LEPQ/XsQr6PYKzF+bjKeLbqIlWbaOifkDMQElZqY9Km3ADUfYwPYbTvVqX+ Wz0jc42lmDAmjCBp8lJ2SqaSYW1raAtMWcMNh4n5xk2+vfKUrKp98onfgE/Sk5OX MIxpEhZDM5g7j6hk3LM2z3kd4fXib33ormtKnioTylFQhIrVcrrdRh2rew7t+Tmc q5ruQvpkvS5NQw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:34 2026 by rpki-client