This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/9kixVYLTS9UXCp3RO4EyW6uuXjo.mft File: 9kixVYLTS9UXCp3RO4EyW6uuXjo.mft (raw, json) Hash identifier: jWAI+PGAZZdrz9EhKWym1EQGeE/3CXmcynbzvsUloC8= Subject key identifier: 62:FA:5B:68:1D:AC:B1:6A:14:CA:33:BE:85:9D:27:3D:CE:5F:21:AD Authority key identifier: F6:48:B1:55:82:D3:4B:D5:17:0A:9D:D1:3B:81:32:5B:AB:AE:5E:3A Certificate issuer: /CN=f648b15582d34bd5170a9dd13b81325babae5e3a Certificate serial: 019C446BE7420E8CDF4BFA53231E651CF9CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9kixVYLTS9UXCp3RO4EyW6uuXjo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/9kixVYLTS9UXCp3RO4EyW6uuXjo.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 22:00:48 +0000 Manifest this update: Mon 09 Feb 2026 22:00:48 +0000 Manifest next update: Tue 10 Feb 2026 22:00:48 +0000 Files and hashes: 1: 9kixVYLTS9UXCp3RO4EyW6uuXjo.crl (hash: qgZQ/xkzM38hjVt/DDcA20gmCx0wqNjwWXEl7cL6CMQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/9kixVYLTS9UXCp3RO4EyW6uuXjo.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/9kixVYLTS9UXCp3RO4EyW6uuXjo.mft rsync://rpki.ripe.net/repository/DEFAULT/9kixVYLTS9UXCp3RO4EyW6uuXjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:e7:42:0e:8c:df:4b:fa:53:23:1e:65:1c:f9:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f648b15582d34bd5170a9dd13b81325babae5e3a Validity Not Before: Feb 9 22:00:48 2026 GMT Not After : Feb 10 22:00:48 2026 GMT Subject: CN=62fa5b681dacb16a14ca33be859d273dce5f21ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:d9:e8:c9:36:1d:6a:e8:f1:71:2c:57:15:69: 05:85:a3:97:10:3b:50:ec:2b:c0:ee:56:83:b1:ab: d4:83:a4:6b:ee:0b:0f:ef:78:d6:a6:19:0e:5b:be: 40:6a:5e:0c:c4:51:1b:ce:98:c3:1d:0a:da:6e:7f: 86:c0:2c:59:8a:12:fc:0c:72:3c:43:ce:f1:85:38: 1a:dd:93:58:83:bb:1d:11:03:c8:80:85:3a:df:ee: 70:65:41:e4:7e:5f:b1:e6:67:95:89:b9:79:62:41: ca:96:5f:94:47:2a:18:57:d2:5d:78:06:76:be:67: f5:af:96:88:e4:f4:e5:82:c7:fa:69:2c:6a:76:26: 38:30:a1:67:3e:37:e6:51:7e:02:f9:e1:a5:11:8b: 38:12:61:39:54:3a:ea:88:3d:6a:72:a8:4e:ed:a8: 3d:b6:0c:96:ca:c6:97:26:35:6d:00:8b:71:91:e3: 41:dc:1c:f7:c2:55:b3:2d:f9:67:cb:1d:ee:e6:ee: a4:3d:5c:25:3d:0e:af:f0:d0:2f:48:dd:29:cc:17: e7:f5:08:29:fe:ba:3d:db:6b:37:bc:5f:ad:fd:45: 7c:b3:cb:7a:6b:c8:d3:ee:d1:17:b1:36:54:a8:45: 2a:c5:dc:14:5e:b5:d9:0a:12:32:df:ff:3c:14:bd: 76:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:FA:5B:68:1D:AC:B1:6A:14:CA:33:BE:85:9D:27:3D:CE:5F:21:AD X509v3 Authority Key Identifier: keyid:F6:48:B1:55:82:D3:4B:D5:17:0A:9D:D1:3B:81:32:5B:AB:AE:5E:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9kixVYLTS9UXCp3RO4EyW6uuXjo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/9kixVYLTS9UXCp3RO4EyW6uuXjo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/9kixVYLTS9UXCp3RO4EyW6uuXjo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:bd:ec:fa:bf:75:c1:9c:ff:fc:b7:77:f3:f3:97:0f:89:d0: fa:e3:56:4b:cb:20:00:df:3f:20:9f:65:67:31:40:8a:c0:78: 05:5b:7b:e7:d1:6d:61:a1:1e:22:d3:37:09:f4:6d:9c:d1:1d: f6:a6:42:7c:f5:0d:ef:08:e4:70:34:12:81:32:e0:66:e7:a9: 51:d1:fd:b6:63:12:8d:16:4b:1f:89:db:c4:8f:f3:01:df:6a: 58:ac:ab:05:75:ff:64:26:9a:e4:1b:d5:e2:53:d4:fa:56:6d: 00:da:ad:12:ae:8c:a0:6f:fa:7a:e9:fc:0a:b0:c8:b2:89:ed: 40:dc:1c:81:a7:27:55:ef:3e:8e:fa:7b:e3:ad:a9:2c:dc:6a: db:b4:73:94:fa:56:87:ff:5e:95:6f:ab:b6:f1:b1:8e:e6:65: ef:11:84:0c:c8:25:39:f6:bd:e0:17:4f:29:81:34:48:71:85: c7:7a:ba:2a:ac:e4:a6:a3:ef:88:60:5f:96:91:4b:23:cd:1f: 2b:6b:a9:a8:dd:e5:2e:8a:ba:f2:08:02:3e:ce:a3:8f:0a:7d: 87:6d:c2:54:a0:db:ee:39:51:44:42:96:d6:dc:02:37:e5:b5: 8f:42:15:cc:d5:d3:dd:96:79:b3:1f:23:54:40:26:40:c6:5a: b7:ae:7a:0e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa+dCDozfS/pTIx5lHPnOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY2NDhiMTU1ODJkMzRiZDUxNzBhOWRkMTNiODEzMjViYWJh ZTVlM2EwHhcNMjYwMjA5MjIwMDQ4WhcNMjYwMjEwMjIwMDQ4WjAzMTEwLwYDVQQD Eyg2MmZhNWI2ODFkYWNiMTZhMTRjYTMzYmU4NTlkMjczZGNlNWYyMWFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7NnoyTYdaujxcSxXFWkFhaOXEDtQ 7CvA7laDsavUg6Rr7gsP73jWphkOW75Aal4MxFEbzpjDHQrabn+GwCxZihL8DHI8 Q87xhTga3ZNYg7sdEQPIgIU63+5wZUHkfl+x5meVibl5YkHKll+URyoYV9JdeAZ2 vmf1r5aI5PTlgsf6aSxqdiY4MKFnPjfmUX4C+eGlEYs4EmE5VDrqiD1qcqhO7ag9 tgyWysaXJjVtAItxkeNB3Bz3wlWzLflnyx3u5u6kPVwlPQ6v8NAvSN0pzBfn9Qgp /ro922s3vF+t/UV8s8t6a8jT7tEXsTZUqEUqxdwUXrXZChIy3/88FL12SwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGL6W2gdrLFqFMozvoWdJz3OXyGtMB8GA1UdIwQY MBaAFPZIsVWC00vVFwqd0TuBMlurrl46MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOWtpeFZZTFRTOVVYQ3AzUk80RXlXNnV1WGpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9kOGY2NzItNTM5Zi00MDFkLTlkYzct NjI3OTliOTAyMzFiLzEvOWtpeFZZTFRTOVVYQ3AzUk80RXlXNnV1WGpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9kOGY2NzItNTM5Zi00MDFkLTlkYzctNjI3OTliOTAyMzFi LzEvOWtpeFZZTFRTOVVYQ3AzUk80RXlXNnV1WGpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANr3s+r91 wZz//Ld38/OXD4nQ+uNWS8sgAN8/IJ9lZzFAisB4BVt759FtYaEeItM3CfRtnNEd 9qZCfPUN7wjkcDQSgTLgZuepUdH9tmMSjRZLH4nbxI/zAd9qWKyrBXX/ZCaa5BvV 4lPU+lZtANqtEq6MoG/6eun8CrDIsontQNwcgacnVe8+jvp7462pLNxq27RzlPpW h/9elW+rtvGxjuZl7xGEDMglOfa94BdPKYE0SHGFx3q6KqzkpqPviGBflpFLI80f K2upqN3lLoq68ggCPs6jjwp9h23CVKDb7jlRREKW1twCN+W1j0IVzNXT3ZZ5sx8j VEAmQMZat656Dg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:36:49 2026 by rpki-client