This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b4e1bb-346a-44b3-a0af-bc53f388fafa/1/kDYQzypUZDoKG2sVH6ZuMlAEy0o.mft File: kDYQzypUZDoKG2sVH6ZuMlAEy0o.mft (raw, json) Hash identifier: JBvw5b8dRG7GhdAWx4VLGeLGaKg1f2R5IQKWEbH3go0= Subject key identifier: 6A:FF:35:79:42:9C:5A:7F:4F:CA:5C:DC:22:1C:54:00:DA:95:C2:18 Authority key identifier: 90:36:10:CF:2A:54:64:3A:0A:1B:6B:15:1F:A6:6E:32:50:04:CB:4A Certificate issuer: /CN=903610cf2a54643a0a1b6b151fa66e325004cb4a Certificate serial: 019C4390BFADAA1B1583A520FF2C80E77CA8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kDYQzypUZDoKG2sVH6ZuMlAEy0o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b4e1bb-346a-44b3-a0af-bc53f388fafa/1/kDYQzypUZDoKG2sVH6ZuMlAEy0o.mft Manifest number: 073A Signing time: Mon 09 Feb 2026 18:01:25 +0000 Manifest this update: Mon 09 Feb 2026 18:01:25 +0000 Manifest next update: Tue 10 Feb 2026 18:01:25 +0000 Files and hashes: 1: kDYQzypUZDoKG2sVH6ZuMlAEy0o.crl (hash: Ea5EZp7ccxfm/T1/UFtgiVjWiCdcx50egLYQrBlvqEw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b4e1bb-346a-44b3-a0af-bc53f388fafa/1/kDYQzypUZDoKG2sVH6ZuMlAEy0o.crl rsync://rpki.ripe.net/repository/DEFAULT/63/b4e1bb-346a-44b3-a0af-bc53f388fafa/1/kDYQzypUZDoKG2sVH6ZuMlAEy0o.mft rsync://rpki.ripe.net/repository/DEFAULT/kDYQzypUZDoKG2sVH6ZuMlAEy0o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:bf:ad:aa:1b:15:83:a5:20:ff:2c:80:e7:7c:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=903610cf2a54643a0a1b6b151fa66e325004cb4a Validity Not Before: Feb 9 18:01:25 2026 GMT Not After : Feb 10 18:01:25 2026 GMT Subject: CN=6aff3579429c5a7f4fca5cdc221c5400da95c218 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:98:20:a1:d3:07:9a:86:66:e8:05:58:d9:ca: 0c:ec:9f:76:f0:38:c0:a5:92:1b:1f:28:ea:d3:37: 18:4b:33:0d:43:3b:97:13:bf:2d:dc:3e:7e:a3:9f: 7c:8c:db:ef:1a:fb:fc:1c:21:e2:c9:e0:15:ec:08: 53:07:9a:5c:f2:e3:6f:35:08:eb:d6:24:ca:58:70: 09:3b:50:a5:d1:3e:5d:73:71:36:d3:1f:4a:45:fd: ed:a7:f5:70:e7:82:29:cc:f3:5f:d9:aa:21:6b:79: 14:58:0f:20:10:5d:fa:07:02:56:03:85:ed:16:31: 34:bc:18:fd:bd:e9:9f:85:0d:2d:86:e3:72:d8:39: 29:9a:fd:0c:c9:56:f4:18:a9:dd:00:b5:ae:d8:06: 99:b7:06:09:e3:c9:37:b2:2d:b0:cb:22:02:fa:56: 3a:15:d1:e2:7a:c6:8f:ba:9d:11:d4:ce:20:a6:f4: cd:79:68:c2:bf:be:d5:cd:d0:cf:e8:e6:a7:52:7f: 3d:fe:c4:89:8f:58:0f:f7:10:51:47:2d:df:bf:7d: d3:90:58:44:f8:a3:e2:c7:9e:ea:cc:86:57:bc:48: b4:c0:4d:29:3b:ef:fd:a1:c3:e2:e8:65:c8:ce:d9: cb:b6:02:70:0f:a9:8b:e8:99:40:bd:cf:04:ba:bf: f5:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:FF:35:79:42:9C:5A:7F:4F:CA:5C:DC:22:1C:54:00:DA:95:C2:18 X509v3 Authority Key Identifier: keyid:90:36:10:CF:2A:54:64:3A:0A:1B:6B:15:1F:A6:6E:32:50:04:CB:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kDYQzypUZDoKG2sVH6ZuMlAEy0o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b4e1bb-346a-44b3-a0af-bc53f388fafa/1/kDYQzypUZDoKG2sVH6ZuMlAEy0o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b4e1bb-346a-44b3-a0af-bc53f388fafa/1/kDYQzypUZDoKG2sVH6ZuMlAEy0o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:21:c5:54:d2:a1:ce:76:ec:92:5e:c3:89:b3:68:8d:d6:0b: d0:dd:5b:ab:dc:eb:cb:c6:ba:03:07:3f:5e:a4:5e:71:f5:ad: 9c:04:94:dd:06:f2:f0:dd:54:05:e6:05:67:cb:9a:55:6d:7e: 74:c0:c2:ce:f6:bc:5e:0c:48:c8:4c:2e:8e:e1:3b:9c:e8:69: d4:f3:a4:75:10:cf:d0:3d:2c:6f:1e:c5:26:99:4e:3c:ce:bd: 0d:8e:33:68:cd:0a:1e:31:e9:79:64:68:99:b7:46:8d:f9:61: 0f:27:29:d4:3f:c2:ad:73:f7:d8:8c:c0:e1:ff:06:48:7b:77: 93:ce:1f:6d:70:08:af:cb:a0:5d:93:3d:68:03:f8:11:2d:06: 12:d6:71:8b:f0:0f:66:2f:03:7d:9d:b9:08:ed:ec:d3:5d:3f: d2:f6:56:63:76:2c:b6:df:88:6c:40:59:58:66:e5:b0:f6:43: dc:32:e4:1e:60:f2:1d:d8:db:9f:b8:c0:42:6d:d8:43:ec:93: 7f:e6:a1:42:5d:27:3c:87:0f:8d:36:1e:a7:ee:97:0d:24:bc: ea:9b:4a:2e:3d:c9:8e:0b:79:2f:8b:7e:18:e0:43:65:62:64: 38:0f:04:55:db:70:d9:cc:43:5d:e5:85:2e:d8:70:c7:84:ee: 79:90:ea:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkL+tqhsVg6Ug/yyA53yoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwMzYxMGNmMmE1NDY0M2EwYTFiNmIxNTFmYTY2ZTMyNTAw NGNiNGEwHhcNMjYwMjA5MTgwMTI1WhcNMjYwMjEwMTgwMTI1WjAzMTEwLwYDVQQD Eyg2YWZmMzU3OTQyOWM1YTdmNGZjYTVjZGMyMjFjNTQwMGRhOTVjMjE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlJggodMHmoZm6AVY2coM7J928DjA pZIbHyjq0zcYSzMNQzuXE78t3D5+o598jNvvGvv8HCHiyeAV7AhTB5pc8uNvNQjr 1iTKWHAJO1Cl0T5dc3E20x9KRf3tp/Vw54IpzPNf2aoha3kUWA8gEF36BwJWA4Xt FjE0vBj9vemfhQ0thuNy2Dkpmv0MyVb0GKndALWu2AaZtwYJ48k3si2wyyIC+lY6 FdHiesaPup0R1M4gpvTNeWjCv77VzdDP6OanUn89/sSJj1gP9xBRRy3fv33TkFhE +KPix57qzIZXvEi0wE0pO+/9ocPi6GXIztnLtgJwD6mL6JlAvc8Eur/1NwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGr/NXlCnFp/T8pc3CIcVADalcIYMB8GA1UdIwQY MBaAFJA2EM8qVGQ6ChtrFR+mbjJQBMtKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva0RZUXp5cFVaRG9LRzJzVkg2WnVNbEFFeTBvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9iNGUxYmItMzQ2YS00NGIzLWEwYWYt YmM1M2YzODhmYWZhLzEva0RZUXp5cFVaRG9LRzJzVkg2WnVNbEFFeTBvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My9iNGUxYmItMzQ2YS00NGIzLWEwYWYtYmM1M2YzODhmYWZh LzEva0RZUXp5cFVaRG9LRzJzVkg2WnVNbEFFeTBvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADiHFVNKh znbskl7DibNojdYL0N1bq9zry8a6Awc/XqRecfWtnASU3Qby8N1UBeYFZ8uaVW1+ dMDCzva8XgxIyEwujuE7nOhp1POkdRDP0D0sbx7FJplOPM69DY4zaM0KHjHpeWRo mbdGjflhDycp1D/CrXP32IzA4f8GSHt3k84fbXAIr8ugXZM9aAP4ES0GEtZxi/AP Zi8DfZ25CO3s010/0vZWY3Ystt+IbEBZWGblsPZD3DLkHmDyHdjbn7jAQm3YQ+yT f+ahQl0nPIcPjTYep+6XDSS86ptKLj3Jjgt5L4t+GOBDZWJkOA8EVdtw2cxDXeWF Lthwx4TueZDqgA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:06 2026 by rpki-client