This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.mft File: kBZCwNRvjU5MI0wzr771pIOcaiI.mft (raw, json) Hash identifier: gbcJxXg1/MZEcRq55VtEASIYGCIyM4hgDc8VDpZXrOM= Subject key identifier: 74:19:13:9B:7A:6B:24:95:94:92:BE:C8:E5:3A:39:7C:DB:9B:D9:D3 Authority key identifier: 90:16:42:C0:D4:6F:8D:4E:4C:23:4C:33:AF:BE:F5:A4:83:9C:6A:22 Certificate issuer: /CN=901642c0d46f8d4e4c234c33afbef5a4839c6a22 Certificate serial: 019C427D58CF1FE342D88C2C0573744D6079 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kBZCwNRvjU5MI0wzr771pIOcaiI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.mft Manifest number: 4B Signing time: Mon 09 Feb 2026 13:00:36 +0000 Manifest this update: Mon 09 Feb 2026 13:00:36 +0000 Manifest next update: Tue 10 Feb 2026 13:00:36 +0000 Files and hashes: 1: A9-wOdp_rVCM0ESzhr89kQtrxAk.roa (hash: EEXrwqrXm4OhbrVH1e+ftGoZf1df8IiOvwtrHVI9K44=) 2: kBZCwNRvjU5MI0wzr771pIOcaiI.crl (hash: 6CwVBx3s+HjbiI6Vjz7SvoHrnXhUjthl6KPtlr4VwSs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.crl rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.mft rsync://rpki.ripe.net/repository/DEFAULT/kBZCwNRvjU5MI0wzr771pIOcaiI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:58:cf:1f:e3:42:d8:8c:2c:05:73:74:4d:60:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=901642c0d46f8d4e4c234c33afbef5a4839c6a22 Validity Not Before: Feb 9 13:00:36 2026 GMT Not After : Feb 10 13:00:36 2026 GMT Subject: CN=7419139b7a6b24959492bec8e53a397cdb9bd9d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:28:42:d5:f5:1e:b1:7d:94:42:d1:96:fb:85: 0a:75:55:c3:fd:b6:10:9d:05:3c:58:49:05:ab:5d: fc:ed:1c:06:4d:6e:54:6c:25:9c:38:10:c8:fc:fe: 2c:2d:1b:e6:e6:a2:93:e3:cf:5d:b2:1a:d7:e2:a3: b6:4e:b8:67:ff:90:02:ed:10:de:d0:b2:06:1c:59: 95:3a:93:e8:6e:18:8c:be:d8:22:e3:b1:5c:0f:f3: c5:56:57:39:cc:b4:0a:ce:80:0d:42:ce:bb:a5:bd: 23:02:23:5d:92:1c:8a:17:6c:22:de:f3:74:4d:22: 02:05:a1:af:d4:69:a5:d4:63:be:64:68:82:97:46: 26:58:74:f6:9e:2e:1f:01:11:df:75:11:78:c2:56: ca:ac:19:da:e1:28:45:fa:a1:52:ba:4b:de:7c:8c: ab:6e:8a:a9:6b:67:ec:db:f1:c5:60:ae:ce:16:64: e7:29:7f:b5:ce:59:45:aa:43:36:77:e3:33:ef:ba: 8d:97:c4:53:7f:74:2c:eb:6c:cb:06:09:9f:b9:e5: d0:0d:23:ce:3a:55:14:3f:e1:b8:b3:58:37:cc:d3: 0a:b0:79:89:ca:b4:c0:b6:dd:67:7e:89:34:68:19: a4:07:be:6c:92:d6:b9:3b:c2:7c:05:c2:e5:ed:25: 45:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:19:13:9B:7A:6B:24:95:94:92:BE:C8:E5:3A:39:7C:DB:9B:D9:D3 X509v3 Authority Key Identifier: keyid:90:16:42:C0:D4:6F:8D:4E:4C:23:4C:33:AF:BE:F5:A4:83:9C:6A:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kBZCwNRvjU5MI0wzr771pIOcaiI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:47:ac:f2:25:1c:a5:0a:44:a8:21:f5:9c:1d:aa:46:89:be: 9d:7d:b8:3a:fc:d5:25:f5:71:8d:0f:2b:a2:6c:2e:3a:76:03: fd:88:bf:d3:03:46:bf:b6:29:94:e8:af:65:d0:40:60:66:4f: 18:dd:c4:13:e1:97:e2:bc:ed:86:76:68:c6:c7:8f:87:bf:6d: 26:b1:d3:68:8b:a8:e5:a5:16:b1:67:4a:b4:e3:44:39:e0:4d: 7f:13:36:cb:ba:ad:17:b0:aa:04:2d:fd:2e:59:60:dc:ef:20: 63:4c:36:15:f5:b6:dc:ea:4a:39:54:93:9a:37:ad:22:49:36: 26:b3:b0:1d:25:85:82:d2:c7:e6:8b:47:b8:66:80:98:1a:42: e5:41:dd:de:7e:23:fc:4c:4b:95:43:bf:fb:fe:41:81:c4:8b: 6a:c0:fb:3d:4b:4e:45:fa:28:de:80:93:67:7a:65:c7:19:3a: b7:8f:7a:7a:38:b4:5b:51:b9:77:e1:28:20:b2:0e:e7:9e:25: bb:66:14:ff:c2:7c:b0:ea:53:82:ca:98:f5:eb:44:b3:53:48: ce:3d:e5:e6:52:87:9e:34:ba:fe:32:87:24:59:61:ba:ca:79: bc:1d:46:66:76:bb:ad:28:0a:bf:ad:9f:61:b6:33:7a:1a:1f: 7e:91:a0:05 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfVjPH+NC2IwsBXN0TWB5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwMTY0MmMwZDQ2ZjhkNGU0YzIzNGMzM2FmYmVmNWE0ODM5 YzZhMjIwHhcNMjYwMjA5MTMwMDM2WhcNMjYwMjEwMTMwMDM2WjAzMTEwLwYDVQQD Eyg3NDE5MTM5YjdhNmIyNDk1OTQ5MmJlYzhlNTNhMzk3Y2RiOWJkOWQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkihC1fUesX2UQtGW+4UKdVXD/bYQ nQU8WEkFq1387RwGTW5UbCWcOBDI/P4sLRvm5qKT489dshrX4qO2Trhn/5AC7RDe 0LIGHFmVOpPobhiMvtgi47FcD/PFVlc5zLQKzoANQs67pb0jAiNdkhyKF2wi3vN0 TSICBaGv1Gml1GO+ZGiCl0YmWHT2ni4fARHfdRF4wlbKrBna4ShF+qFSukvefIyr boqpa2fs2/HFYK7OFmTnKX+1zllFqkM2d+Mz77qNl8RTf3Qs62zLBgmfueXQDSPO OlUUP+G4s1g3zNMKsHmJyrTAtt1nfok0aBmkB75skta5O8J8BcLl7SVF0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHQZE5t6aySVlJK+yOU6OXzbm9nTMB8GA1UdIwQY MBaAFJAWQsDUb41OTCNMM6++9aSDnGoiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva0JaQ3dOUnZqVTVNSTB3enI3NzFwSU9jYWlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy9mMTZiNTEtNWEyMi00ZGI0LWI4OTAt NDMxMjViZjA5NmIxLzEva0JaQ3dOUnZqVTVNSTB3enI3NzFwSU9jYWlJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yy9mMTZiNTEtNWEyMi00ZGI0LWI4OTAtNDMxMjViZjA5NmIx LzEva0JaQ3dOUnZqVTVNSTB3enI3NzFwSU9jYWlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh0es8iUc pQpEqCH1nB2qRom+nX24OvzVJfVxjQ8romwuOnYD/Yi/0wNGv7YplOivZdBAYGZP GN3EE+GX4rzthnZoxsePh79tJrHTaIuo5aUWsWdKtONEOeBNfxM2y7qtF7CqBC39 Lllg3O8gY0w2FfW23OpKOVSTmjetIkk2JrOwHSWFgtLH5otHuGaAmBpC5UHd3n4j /ExLlUO/+/5BgcSLasD7PUtORfoo3oCTZ3plxxk6t496eji0W1G5d+EoILIO554l u2YU/8J8sOpTgsqY9etEs1NIzj3l5lKHnjS6/jKHJFlhusp5vB1GZna7rSgKv62f YbYzehoffpGgBQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:23:24 2026 by rpki-client