This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft File: KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft (raw, json) Hash identifier: Z58UYxAyC2tvO43sOJwOMjzfUMS+p/5Eb98gkwTN/Is= Subject key identifier: 69:8B:A9:3A:82:D7:7E:38:4B:3F:46:69:A5:48:5A:3E:EC:0A:0A:7D Authority key identifier: 2A:A3:80:E2:30:CB:33:43:61:B4:86:1E:2F:69:41:24:38:7F:85:29 Certificate issuer: /CN=2aa380e230cb334361b4861e2f694124387f8529 Certificate serial: 019C4390B2435AB69B484404B8E7AA9505B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqOA4jDLM0NhtIYeL2lBJDh_hSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 18:01:22 +0000 Manifest this update: Mon 09 Feb 2026 18:01:22 +0000 Manifest next update: Tue 10 Feb 2026 18:01:22 +0000 Files and hashes: 1: Be1pwyGp5FXy6-3Vf2cbj3OaaLE.roa (hash: 720qMBSCWVcC0hnisEl9DaePON43Av8/XJC6cladPqM=) 2: KqOA4jDLM0NhtIYeL2lBJDh_hSk.crl (hash: 4JJD1BTNh8aIJsH8SgjwV3w8IsV9iLAkYNDwTr3e6XM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft rsync://rpki.ripe.net/repository/DEFAULT/KqOA4jDLM0NhtIYeL2lBJDh_hSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:b2:43:5a:b6:9b:48:44:04:b8:e7:aa:95:05:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2aa380e230cb334361b4861e2f694124387f8529 Validity Not Before: Feb 9 18:01:22 2026 GMT Not After : Feb 10 18:01:22 2026 GMT Subject: CN=698ba93a82d77e384b3f4669a5485a3eec0a0a7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f3:6b:8c:47:12:e0:65:cd:4d:f6:e0:4d:90: a0:c6:4b:0b:1d:f2:a0:dd:68:5a:11:54:4e:32:4c: 69:e5:90:28:fc:68:53:c6:a9:ba:98:b8:88:da:81: b4:31:b5:80:c9:f3:ed:23:9f:f1:14:13:9d:b3:e9: 9f:10:d2:c5:b6:b5:97:09:6f:75:fe:6e:9a:04:e7: c3:28:23:18:81:31:55:a3:46:8b:68:f0:be:03:44: ae:7d:4a:43:45:ce:b9:c2:f1:df:b3:81:ed:3c:e1: 3f:d4:14:06:6a:6d:2a:11:86:b6:d7:7d:0b:68:6f: fa:fb:ab:06:3d:73:14:fa:11:09:05:63:44:32:23: af:6c:95:fe:41:5f:c9:3b:fd:87:ea:a0:02:79:73: f0:11:38:e0:f1:12:03:41:68:86:ed:20:85:7a:52: fb:4f:00:8a:01:3a:40:b7:1a:73:b5:38:66:5f:4e: e1:59:5c:a7:3b:c7:a3:34:f6:7c:9b:d7:74:d5:90: 03:69:40:94:9e:70:84:e1:7a:80:d9:ae:ce:83:18: 18:87:a4:ec:9f:6b:9a:15:94:68:7c:85:c0:c5:fc: 70:bc:76:72:ac:91:24:ca:ea:f7:58:34:16:e4:33: 76:56:ea:06:ff:10:81:23:11:07:f7:2b:11:a8:40: bf:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:8B:A9:3A:82:D7:7E:38:4B:3F:46:69:A5:48:5A:3E:EC:0A:0A:7D X509v3 Authority Key Identifier: keyid:2A:A3:80:E2:30:CB:33:43:61:B4:86:1E:2F:69:41:24:38:7F:85:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqOA4jDLM0NhtIYeL2lBJDh_hSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:53:e2:12:3e:2e:29:d6:73:0b:84:6c:39:b3:73:d1:1a:e0: c8:fd:a1:57:61:bb:bf:36:2d:ff:e9:62:16:10:7f:84:5c:4d: 4a:0f:28:24:e7:30:58:b8:3d:05:c4:40:ba:e8:61:72:cc:ce: 82:5c:ee:c9:25:c8:d9:e1:3a:58:96:71:03:7d:25:c0:33:a4: 17:d5:5c:09:92:dc:a0:53:6c:e8:9d:f7:79:da:ab:1c:16:d0: bc:39:62:d2:27:08:0f:4e:4c:1a:6d:fd:25:6a:80:9c:e5:eb: ab:d6:b2:9e:40:8f:a3:b2:00:56:25:b9:7d:b4:5d:77:ce:ac: 71:93:a4:18:2b:a3:e4:9c:e7:ef:da:ea:71:a3:7e:7a:a7:04: 5a:56:23:ab:65:08:b6:fb:4b:8e:a6:d8:a7:bd:0f:96:cf:01: c8:ac:31:7b:df:64:d3:63:a3:96:f3:83:eb:33:31:9c:2c:aa: 7a:2a:49:a5:48:13:0a:36:b5:38:d4:f2:5c:95:00:7e:36:2f: 2e:70:e8:c7:19:90:4a:ba:fd:92:cc:18:de:15:a5:1b:48:ae: cb:04:4d:ad:c2:14:56:ca:7c:ac:93:c5:2d:5b:95:c9:4a:3f: a7:40:58:db:44:92:87:6e:24:99:a3:9c:b7:fe:24:b1:ee:e8: a5:cb:31:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkLJDWrabSEQEuOeqlQW0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhYTM4MGUyMzBjYjMzNDM2MWI0ODYxZTJmNjk0MTI0Mzg3 Zjg1MjkwHhcNMjYwMjA5MTgwMTIyWhcNMjYwMjEwMTgwMTIyWjAzMTEwLwYDVQQD Eyg2OThiYTkzYTgyZDc3ZTM4NGIzZjQ2NjlhNTQ4NWEzZWVjMGEwYTdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzfNrjEcS4GXNTfbgTZCgxksLHfKg 3WhaEVROMkxp5ZAo/GhTxqm6mLiI2oG0MbWAyfPtI5/xFBOds+mfENLFtrWXCW91 /m6aBOfDKCMYgTFVo0aLaPC+A0SufUpDRc65wvHfs4HtPOE/1BQGam0qEYa2130L aG/6+6sGPXMU+hEJBWNEMiOvbJX+QV/JO/2H6qACeXPwETjg8RIDQWiG7SCFelL7 TwCKATpAtxpztThmX07hWVynO8ejNPZ8m9d01ZADaUCUnnCE4XqA2a7OgxgYh6Ts n2uaFZRofIXAxfxwvHZyrJEkyur3WDQW5DN2VuoG/xCBIxEH9ysRqEC/XQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGmLqTqC1344Sz9GaaVIWj7sCgp9MB8GA1UdIwQY MBaAFCqjgOIwyzNDYbSGHi9pQSQ4f4UpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3FPQTRqRExNME5odElZZUwybEJKRGhfaFNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi9mMmM4MDMtNDNjOC00NGJiLTlkZDAt NjUxMjI5ODMwMTcwLzEvS3FPQTRqRExNME5odElZZUwybEJKRGhfaFNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi9mMmM4MDMtNDNjOC00NGJiLTlkZDAtNjUxMjI5ODMwMTcw LzEvS3FPQTRqRExNME5odElZZUwybEJKRGhfaFNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAalPiEj4u KdZzC4RsObNz0RrgyP2hV2G7vzYt/+liFhB/hFxNSg8oJOcwWLg9BcRAuuhhcszO glzuySXI2eE6WJZxA30lwDOkF9VcCZLcoFNs6J33edqrHBbQvDli0icID05MGm39 JWqAnOXrq9aynkCPo7IAViW5fbRdd86scZOkGCuj5Jzn79rqcaN+eqcEWlYjq2UI tvtLjqbYp70Pls8ByKwxe99k02OjlvOD6zMxnCyqeipJpUgTCja1ONTyXJUAfjYv LnDoxxmQSrr9kswY3hWlG0iuywRNrcIUVsp8rJPFLVuVyUo/p0BY20SSh24kmaOc t/4kse7opcsxFw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:06 2026 by rpki-client