This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft File: kwNiKzxU5F9BZvMBeY-G27pHGAw.mft (raw, json) Hash identifier: RI5WAYp3khjwFpZIYytWuaAMceuxL+IpN+9pn2xhpDM= Subject key identifier: 93:B4:9D:69:F1:E8:2A:14:20:C5:D0:FD:2C:7B:4E:84:50:73:BA:09 Authority key identifier: 93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C Certificate issuer: /CN=9303622b3c54e45f4166f301798f86dbba47180c Certificate serial: 019C427E1B7E3260197B5171CF942DD2E75B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft Manifest number: 09AA Signing time: Mon 09 Feb 2026 13:01:26 +0000 Manifest this update: Mon 09 Feb 2026 13:01:26 +0000 Manifest next update: Tue 10 Feb 2026 13:01:26 +0000 Files and hashes: 1: kwNiKzxU5F9BZvMBeY-G27pHGAw.crl (hash: 3oJ5519iq2WI7eyafejPPIpySUtR9h5U3UsONtTdyYI=) 2: oEI10F1yOzZXTlBBBvzIeX5OXog.roa (hash: QNwI0l8coi9XbWot/ryVzcBU4wEtxZkGadr7asLldw8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7e:1b:7e:32:60:19:7b:51:71:cf:94:2d:d2:e7:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9303622b3c54e45f4166f301798f86dbba47180c Validity Not Before: Feb 9 13:01:26 2026 GMT Not After : Feb 10 13:01:26 2026 GMT Subject: CN=93b49d69f1e82a1420c5d0fd2c7b4e845073ba09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:90:38:40:6f:c4:e9:cf:23:f2:df:cd:8c:e3: 38:aa:ff:d2:60:46:c1:1b:01:40:b9:70:b2:63:9b: df:e4:cf:1c:62:9f:be:63:80:e2:29:2f:4d:18:a5: 82:fc:9d:3b:c4:68:ba:19:e7:3c:83:70:31:89:15: f9:9e:c7:be:ff:f2:19:c7:0a:1f:2b:fa:2d:c8:72: 3c:9f:3a:17:60:b4:b9:77:7b:a8:14:51:9d:a0:47: 2f:9c:8c:f1:b4:d3:24:cf:f3:42:58:b4:a6:11:70: a7:d1:8f:5d:f7:19:4a:1a:35:ad:56:b9:18:c2:94: bd:6f:ef:9c:d4:9d:15:fa:57:c1:df:b2:ca:e6:62: 03:83:20:a2:3e:67:09:ca:b2:cb:62:a5:6d:31:cb: ff:a6:80:aa:2b:a9:06:53:35:69:48:5b:a5:44:eb: 46:42:02:70:28:85:72:ed:d8:11:c4:37:bb:18:2a: 5c:a6:6e:87:f5:63:76:44:ff:ed:d1:2e:26:c0:a7: 6d:74:34:81:89:6c:3c:24:db:38:34:d7:86:c0:20: 07:a7:ac:76:7e:fc:6d:ed:ef:26:3f:c9:12:cf:6e: 83:36:b6:89:a7:07:19:de:0f:d3:6c:3e:bc:6c:5c: b9:e6:51:2e:7e:cd:4c:5c:5a:04:81:3f:6d:02:f1: de:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:B4:9D:69:F1:E8:2A:14:20:C5:D0:FD:2C:7B:4E:84:50:73:BA:09 X509v3 Authority Key Identifier: keyid:93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:b8:aa:ab:91:29:36:6e:10:f2:06:34:1b:2d:be:e0:3c:dd: a9:14:63:63:0d:86:76:2b:56:5e:d2:29:9b:f8:b3:51:dd:f5: 88:49:63:52:8e:1d:b0:9f:7a:a8:c0:00:c5:d4:0a:ba:c6:3a: ec:31:ba:84:4b:cc:42:93:df:91:dc:c3:f7:da:17:79:37:65: cc:b1:46:5c:72:59:1c:fe:9e:ff:55:04:08:a7:ba:2b:4d:1e: f7:93:fb:fa:d3:3e:3a:d8:4d:29:eb:11:ac:e2:5a:17:69:58: 77:b8:b4:27:e2:59:04:46:44:54:7e:c9:a8:cd:e6:7c:e9:eb: 23:10:06:56:ad:31:9b:c3:24:f9:9f:f3:3b:75:52:7b:ad:64: 19:7e:fe:d8:98:5a:bd:9f:99:66:7d:11:01:02:1d:9a:de:e9: 4c:bd:89:20:95:d1:b6:2c:ba:db:00:d9:d8:bf:b9:04:a5:5e: af:f4:fb:4a:0a:98:c8:b5:0f:ed:e2:6a:de:71:f8:4b:aa:59: af:e3:09:d0:f1:52:8c:ce:7c:32:18:0a:e3:02:a1:93:c3:94: d3:08:2b:25:22:9b:36:4d:37:a0:f4:c8:97:c1:b9:d6:af:bd: 05:83:ba:7e:4e:80:ac:0a:da:e3:08:02:c7:9f:11:bc:b6:f7: f4:be:ab:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfht+MmAZe1Fxz5Qt0udbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzMDM2MjJiM2M1NGU0NWY0MTY2ZjMwMTc5OGY4NmRiYmE0 NzE4MGMwHhcNMjYwMjA5MTMwMTI2WhcNMjYwMjEwMTMwMTI2WjAzMTEwLwYDVQQD Eyg5M2I0OWQ2OWYxZTgyYTE0MjBjNWQwZmQyYzdiNGU4NDUwNzNiYTA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs5A4QG/E6c8j8t/NjOM4qv/SYEbB GwFAuXCyY5vf5M8cYp++Y4DiKS9NGKWC/J07xGi6Gec8g3AxiRX5nse+//IZxwof K/otyHI8nzoXYLS5d3uoFFGdoEcvnIzxtNMkz/NCWLSmEXCn0Y9d9xlKGjWtVrkY wpS9b++c1J0V+lfB37LK5mIDgyCiPmcJyrLLYqVtMcv/poCqK6kGUzVpSFulROtG QgJwKIVy7dgRxDe7GCpcpm6H9WN2RP/t0S4mwKdtdDSBiWw8JNs4NNeGwCAHp6x2 fvxt7e8mP8kSz26DNraJpwcZ3g/TbD68bFy55lEufs1MXFoEgT9tAvHeDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJO0nWnx6CoUIMXQ/Sx7ToRQc7oJMB8GA1UdIwQY MBaAFJMDYis8VORfQWbzAXmPhtu6RxgMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3dOaUt6eFU1RjlCWnZNQmVZLUcyN3BIR0F3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8wNzdhNTAtNDViNi00YTM4LTlkYjkt OTUwYzdlNzMyNDVjLzEva3dOaUt6eFU1RjlCWnZNQmVZLUcyN3BIR0F3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC8wNzdhNTAtNDViNi00YTM4LTlkYjktOTUwYzdlNzMyNDVj LzEva3dOaUt6eFU1RjlCWnZNQmVZLUcyN3BIR0F3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACbiqq5Ep Nm4Q8gY0Gy2+4DzdqRRjYw2GditWXtIpm/izUd31iEljUo4dsJ96qMAAxdQKusY6 7DG6hEvMQpPfkdzD99oXeTdlzLFGXHJZHP6e/1UECKe6K00e95P7+tM+OthNKesR rOJaF2lYd7i0J+JZBEZEVH7JqM3mfOnrIxAGVq0xm8Mk+Z/zO3VSe61kGX7+2Jha vZ+ZZn0RAQIdmt7pTL2JIJXRtiy62wDZ2L+5BKVer/T7SgqYyLUP7eJq3nH4S6pZ r+MJ0PFSjM58MhgK4wKhk8OU0wgrJSKbNk03oPTIl8G51q+9BYO6fk6ArAra4wgC x58RvLb39L6rkw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:00:07 2026 by rpki-client