This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft File: MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft (raw, json) Hash identifier: hHuJeOLEWLOH26AmJxGKTREgoUX7sxw/jPzVZMyXThg= Subject key identifier: FF:C4:CE:DF:6F:36:99:A9:0D:9C:31:F9:50:AD:EA:7B:F6:BE:3E:C4 Authority key identifier: 32:4C:71:04:6C:54:9F:B3:C7:D4:EB:C4:CF:95:19:D0:02:E7:6D:F1 Certificate issuer: /CN=324c71046c549fb3c7d4ebc4cf9519d002e76df1 Certificate serial: 019C427D8A252427C160DE8469706C966E96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft Manifest number: 0CD8 Signing time: Mon 09 Feb 2026 13:00:49 +0000 Manifest this update: Mon 09 Feb 2026 13:00:49 +0000 Manifest next update: Tue 10 Feb 2026 13:00:49 +0000 Files and hashes: 1: 0V_y0HBzvEsTHB0OqOkherqmcqg.roa (hash: 5K9v1dL8zyHCCylOHHNJD1ggYb0DLDZrjC3+O53wQvs=) 2: MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl (hash: NR/YYFRTfEeBeu9C3DN6NAuU9KucLOMlYhIJZV/76sY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:8a:25:24:27:c1:60:de:84:69:70:6c:96:6e:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=324c71046c549fb3c7d4ebc4cf9519d002e76df1 Validity Not Before: Feb 9 13:00:49 2026 GMT Not After : Feb 10 13:00:49 2026 GMT Subject: CN=ffc4cedf6f3699a90d9c31f950adea7bf6be3ec4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3a:58:e4:d4:3b:7d:d9:cd:86:d1:4f:e5:4a: 3c:d6:5a:7d:30:d5:72:41:cf:0f:44:63:3d:05:ea: 32:94:9c:a1:4b:d6:36:a9:46:14:53:ad:8b:44:0f: 07:51:98:81:a1:64:54:3a:7c:3e:7e:3b:48:0e:17: 27:54:16:12:f9:50:a5:fe:f4:7e:07:ce:b9:4c:08: c8:39:7b:46:4e:40:e8:32:8c:32:83:a5:15:63:7f: 5c:bf:aa:e5:ee:be:f3:f4:3a:2e:3b:87:db:a7:e3: ee:cd:3e:a1:bd:dd:65:f3:48:c3:b2:da:b4:0d:48: 73:b0:1a:4f:70:2c:95:bd:cd:c6:7b:cb:47:72:b3: 88:a4:df:aa:be:80:50:20:21:85:18:01:91:ae:f0: a3:ca:5f:87:9e:99:c8:b0:e5:6a:99:dc:78:62:29: b5:04:13:c6:ee:8b:f5:ae:26:e5:0d:ff:f6:40:a8: 60:01:c7:4a:7c:6f:e4:26:88:e9:c4:4e:4f:2e:e0: e2:de:5d:6e:e4:72:ae:97:d5:7a:bf:be:55:7e:79: 8e:52:fd:8d:67:56:72:bc:db:0d:f7:27:19:b4:92: a8:d3:bf:d8:f5:d6:78:47:04:03:98:46:ab:8c:8c: 39:82:eb:c4:d9:32:ab:95:78:d3:2e:8d:c8:d3:3f: 61:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:C4:CE:DF:6F:36:99:A9:0D:9C:31:F9:50:AD:EA:7B:F6:BE:3E:C4 X509v3 Authority Key Identifier: keyid:32:4C:71:04:6C:54:9F:B3:C7:D4:EB:C4:CF:95:19:D0:02:E7:6D:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:b6:c0:43:45:46:19:0d:92:a8:38:b9:b7:4a:3d:05:be:f7: e9:69:cc:14:f6:be:59:92:5a:ec:90:ee:8e:74:3c:42:21:0a: 62:5f:7e:9c:df:81:3e:62:30:b8:4f:2c:e7:b8:b1:ce:12:ca: b6:44:e4:d6:fa:0b:80:83:03:fc:c8:df:29:dc:c8:d7:4e:9a: 59:97:d7:1f:f5:70:6d:f6:98:0c:35:34:fe:32:1d:fc:7f:e4: 46:65:63:aa:ce:43:6b:bd:da:b3:a4:91:dc:5d:d1:04:e3:b7: 4e:0f:25:b8:2f:18:00:72:83:96:14:17:02:44:6a:61:24:57: 08:c4:61:ef:06:2d:b2:ea:22:62:bb:4f:9e:03:9e:bc:bc:82: 8e:ac:62:36:bc:17:e4:95:0a:e6:e5:c8:f6:91:f8:4d:f2:cc: 47:6a:19:24:d5:d0:bb:dd:49:7d:d9:da:f1:dd:d3:d5:8f:a8: 0e:3d:23:ff:20:56:6d:ce:b4:4b:d6:ef:cc:82:f3:f3:5d:ec: 9e:28:7e:53:37:1d:82:63:fd:e1:65:b9:fe:1c:6c:11:83:b4: 50:76:92:7c:7c:10:b9:5e:44:ba:a9:be:ee:6e:a2:5d:e3:5d: ca:d9:81:ad:aa:39:8a:46:21:ac:7b:f1:c3:f6:b1:4c:6e:dd: 80:1f:0c:09 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfYolJCfBYN6EaXBslm6WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNGM3MTA0NmM1NDlmYjNjN2Q0ZWJjNGNmOTUxOWQwMDJl NzZkZjEwHhcNMjYwMjA5MTMwMDQ5WhcNMjYwMjEwMTMwMDQ5WjAzMTEwLwYDVQQD EyhmZmM0Y2VkZjZmMzY5OWE5MGQ5YzMxZjk1MGFkZWE3YmY2YmUzZWM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArTpY5NQ7fdnNhtFP5Uo81lp9MNVy Qc8PRGM9BeoylJyhS9Y2qUYUU62LRA8HUZiBoWRUOnw+fjtIDhcnVBYS+VCl/vR+ B865TAjIOXtGTkDoMowyg6UVY39cv6rl7r7z9DouO4fbp+PuzT6hvd1l80jDstq0 DUhzsBpPcCyVvc3Ge8tHcrOIpN+qvoBQICGFGAGRrvCjyl+HnpnIsOVqmdx4Yim1 BBPG7ov1riblDf/2QKhgAcdKfG/kJojpxE5PLuDi3l1u5HKul9V6v75VfnmOUv2N Z1ZyvNsN9ycZtJKo07/Y9dZ4RwQDmEarjIw5guvE2TKrlXjTLo3I0z9h0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP/Ezt9vNpmpDZwx+VCt6nv2vj7EMB8GA1UdIwQY MBaAFDJMcQRsVJ+zx9TrxM+VGdAC523xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWt4eEJHeFVuN1BIMU92RXo1VVowQUxuYmZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni8xMjViOWQtMmExZi00NjNhLTk2NWUt N2NmZWFmMDg2ZTE0LzEvTWt4eEJHeFVuN1BIMU92RXo1VVowQUxuYmZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni8xMjViOWQtMmExZi00NjNhLTk2NWUtN2NmZWFmMDg2ZTE0 LzEvTWt4eEJHeFVuN1BIMU92RXo1VVowQUxuYmZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh7bAQ0VG GQ2SqDi5t0o9Bb736WnMFPa+WZJa7JDujnQ8QiEKYl9+nN+BPmIwuE8s57ixzhLK tkTk1voLgIMD/MjfKdzI106aWZfXH/VwbfaYDDU0/jId/H/kRmVjqs5Da73as6SR 3F3RBOO3Tg8luC8YAHKDlhQXAkRqYSRXCMRh7wYtsuoiYrtPngOevLyCjqxiNrwX 5JUK5uXI9pH4TfLMR2oZJNXQu91Jfdna8d3T1Y+oDj0j/yBWbc60S9bvzILz813s nih+UzcdgmP94WW5/hxsEYO0UHaSfHwQuV5Euqm+7m6iXeNdytmBrao5ikYhrHvx w/axTG7dgB8MCQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:11 2026 by rpki-client