This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft File: CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft (raw, json) Hash identifier: ZjShAn7tWRWWakdFZszPVQwDalnfoxce/UXT66OXVCw= Subject key identifier: 80:A1:2D:BB:B1:AA:2B:56:7B:DF:7A:C1:CA:F2:0C:E6:61:90:58:70 Authority key identifier: 08:A5:C3:AB:A4:21:B7:8A:7D:5D:09:B7:5B:4C:E3:BE:52:73:CA:AC Certificate issuer: /CN=08a5c3aba421b78a7d5d09b75b4ce3be5273caac Certificate serial: 019C42101ABD04987B9D014F583791ABF2F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft Manifest number: 1814 Signing time: Mon 09 Feb 2026 11:01:17 +0000 Manifest this update: Mon 09 Feb 2026 11:01:17 +0000 Manifest next update: Tue 10 Feb 2026 11:01:17 +0000 Files and hashes: 1: CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl (hash: nmNyc2Vm3v580MW7w9ycmEoJ8tMBQ4ME22gaYSIOAvg=) 2: cDoC-jSYN7u0frpLx2bXUSxluu0.roa (hash: 0c+KBOgKhiecSN5vnMV9D8GmEY0jyIF5LXtXoNSNf7w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:1a:bd:04:98:7b:9d:01:4f:58:37:91:ab:f2:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08a5c3aba421b78a7d5d09b75b4ce3be5273caac Validity Not Before: Feb 9 11:01:17 2026 GMT Not After : Feb 10 11:01:17 2026 GMT Subject: CN=80a12dbbb1aa2b567bdf7ac1caf20ce661905870 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:16:5d:cc:24:94:df:67:e1:04:9e:8e:40:bd: a0:7a:2f:28:69:eb:bb:12:81:2f:48:a4:30:a3:65: f2:2c:dc:83:f2:27:c4:71:2d:87:67:79:25:2e:3b: bc:6b:f5:9c:f7:4a:1a:0c:e1:34:0f:2f:77:30:1b: 0a:45:df:3b:aa:6a:91:20:18:4b:2d:1d:cf:f3:bb: c5:9a:21:50:d8:97:9d:8e:f5:3e:41:0a:e2:e6:c3: 68:07:41:24:84:3c:58:1a:97:ce:68:3a:f7:a7:bc: 92:2a:8e:d5:4e:89:68:80:f3:32:c1:08:8c:fc:90: 57:c2:fc:11:f4:6a:dd:c1:27:21:82:45:60:b0:2f: 03:ae:74:9a:71:30:27:83:5d:72:7f:02:a2:97:0d: c5:4d:7f:f7:61:54:43:3d:28:9c:57:0a:b3:f2:c8: 13:19:43:60:50:e0:a5:87:5b:6c:7f:f9:6d:31:f3: 1c:6b:74:b4:2d:cd:2c:e8:33:54:82:d1:d4:db:b5: c7:a5:74:3c:f0:26:ed:8d:35:d9:e5:59:dd:86:88: 90:27:6c:e5:b8:bb:de:51:cc:d8:e6:ab:ee:24:39: 5a:c1:aa:79:4e:3c:7b:0c:f2:66:16:49:c2:c4:ed: 9d:2b:6e:f6:54:4b:cc:87:10:87:a6:b4:f7:fd:a5: 7a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:A1:2D:BB:B1:AA:2B:56:7B:DF:7A:C1:CA:F2:0C:E6:61:90:58:70 X509v3 Authority Key Identifier: keyid:08:A5:C3:AB:A4:21:B7:8A:7D:5D:09:B7:5B:4C:E3:BE:52:73:CA:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:8d:03:87:bd:54:c3:5f:c2:bc:21:35:77:ec:14:d3:80:50: 4d:91:36:98:f3:a1:ff:c1:f4:65:dd:5a:83:2d:ef:f0:d9:ce: da:af:e0:68:0f:79:9b:20:9d:df:db:80:93:e4:6e:c6:84:de: a5:e7:86:61:6a:56:40:56:43:f7:de:c1:cc:99:14:a0:32:9d: 22:ee:47:cf:a0:50:73:54:af:07:60:71:cf:71:4f:89:3a:da: bd:06:1d:12:d9:a7:40:0b:6f:55:5f:78:50:cf:75:97:b4:83: a1:77:20:9d:c8:eb:df:c1:f5:86:e1:30:50:b8:4e:be:8f:e8: 90:12:99:74:3b:10:b8:68:81:d4:61:df:08:87:8f:16:a4:15: 1f:37:28:fc:bb:27:e3:a7:51:36:28:00:b7:6d:3b:d0:ef:24: eb:0f:f5:09:fd:30:c9:03:98:0c:62:40:ba:9c:12:f1:da:d5: a4:f1:38:2a:b9:60:36:04:31:cc:a7:80:90:e8:91:df:84:b4: 50:2e:fa:a6:c9:8a:13:2a:ee:16:da:9b:84:21:85:a2:dd:d0: 71:91:4a:28:46:3b:0e:a5:c9:7a:82:86:8c:46:e0:68:2e:fa: ad:9d:80:10:5e:9c:ec:1d:8f:63:37:38:d0:e1:b2:2c:05:78: 66:16:ac:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEBq9BJh7nQFPWDeRq/L5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4YTVjM2FiYTQyMWI3OGE3ZDVkMDliNzViNGNlM2JlNTI3 M2NhYWMwHhcNMjYwMjA5MTEwMTE3WhcNMjYwMjEwMTEwMTE3WjAzMTEwLwYDVQQD Eyg4MGExMmRiYmIxYWEyYjU2N2JkZjdhYzFjYWYyMGNlNjYxOTA1ODcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkBZdzCSU32fhBJ6OQL2gei8oaeu7 EoEvSKQwo2XyLNyD8ifEcS2HZ3klLju8a/Wc90oaDOE0Dy93MBsKRd87qmqRIBhL LR3P87vFmiFQ2JedjvU+QQri5sNoB0EkhDxYGpfOaDr3p7ySKo7VTologPMywQiM /JBXwvwR9GrdwSchgkVgsC8DrnSacTAng11yfwKilw3FTX/3YVRDPSicVwqz8sgT GUNgUOClh1tsf/ltMfMca3S0Lc0s6DNUgtHU27XHpXQ88CbtjTXZ5VndhoiQJ2zl uLveUczY5qvuJDlawap5Tjx7DPJmFknCxO2dK272VEvMhxCHprT3/aV6+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIChLbuxqitWe996wcryDOZhkFhwMB8GA1UdIwQY MBaAFAilw6ukIbeKfV0Jt1tM475Sc8qsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0tYRHE2UWh0NHA5WFFtM1cwemp2bEp6eXF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My83YmQ4Y2YtMmE2MS00Yjc0LTg2MGQt MzY0ZmFlN2M3MmM0LzEvQ0tYRHE2UWh0NHA5WFFtM1cwemp2bEp6eXF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My83YmQ4Y2YtMmE2MS00Yjc0LTg2MGQtMzY0ZmFlN2M3MmM0 LzEvQ0tYRHE2UWh0NHA5WFFtM1cwemp2bEp6eXF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn40Dh71U w1/CvCE1d+wU04BQTZE2mPOh/8H0Zd1agy3v8NnO2q/gaA95myCd39uAk+RuxoTe peeGYWpWQFZD997BzJkUoDKdIu5Hz6BQc1SvB2Bxz3FPiTravQYdEtmnQAtvVV94 UM91l7SDoXcgncjr38H1huEwULhOvo/okBKZdDsQuGiB1GHfCIePFqQVHzco/Lsn 46dRNigAt2070O8k6w/1Cf0wyQOYDGJAupwS8drVpPE4KrlgNgQxzKeAkOiR34S0 UC76psmKEyruFtqbhCGFot3QcZFKKEY7DqXJeoKGjEbgaC76rZ2AEF6c7B2PYzc4 0OGyLAV4ZhasRw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:01:58 2026 by rpki-client