This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft File: KqJOWBL8wxBrnrCusA5ie6I10FY.mft (raw, json) Hash identifier: +2wwQ6mM6tpZappeSb0sAnmbZSP/95xUYruQNgOuxb4= Subject key identifier: 98:08:53:06:43:A4:0B:7F:B4:59:05:10:DC:C1:A6:91:D2:A4:B9:32 Authority key identifier: 2A:A2:4E:58:12:FC:C3:10:6B:9E:B0:AE:B0:0E:62:7B:A2:35:D0:56 Certificate issuer: /CN=2aa24e5812fcc3106b9eb0aeb00e627ba235d056 Certificate serial: 019C42B433757329545C72578A35C3AA9A18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft Manifest number: 0AA4 Signing time: Mon 09 Feb 2026 14:00:31 +0000 Manifest this update: Mon 09 Feb 2026 14:00:31 +0000 Manifest next update: Tue 10 Feb 2026 14:00:31 +0000 Files and hashes: 1: KqJOWBL8wxBrnrCusA5ie6I10FY.crl (hash: YIZ0wm1wpzMGFtyOqHnY0P0EoyKKEBvcOTbaLsW7tA4=) 2: yXEtTJb7Q9QNq9QwBOpKF1Og1mg.roa (hash: DbsY9yqJmKOSdLO9tL/m8Sp1oKJbQqdJXvqChVz5qJw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.crl rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:33:75:73:29:54:5c:72:57:8a:35:c3:aa:9a:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2aa24e5812fcc3106b9eb0aeb00e627ba235d056 Validity Not Before: Feb 9 14:00:31 2026 GMT Not After : Feb 10 14:00:31 2026 GMT Subject: CN=9808530643a40b7fb4590510dcc1a691d2a4b932 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:23:4c:58:66:92:2e:ee:3b:87:62:dc:ad:40: bc:ed:8b:37:37:f6:ec:ac:44:42:f0:e6:bf:57:7b: 67:d3:9f:fa:34:90:69:e8:7e:31:f6:94:1f:40:0a: eb:20:47:c3:9a:d3:d8:54:00:04:85:63:51:87:ba: d5:ab:2c:c4:58:24:50:2a:0c:b1:85:d3:d1:73:ad: 0d:d9:7c:4d:ff:a7:e2:95:b0:25:09:b9:19:67:98: e0:d5:62:96:c1:e6:0a:41:b1:3c:64:63:44:96:92: cd:fe:2f:24:9b:9a:a2:c0:90:c3:77:ef:c2:72:6f: 56:ad:6f:b8:4f:a3:45:77:42:40:2e:df:de:de:c2: f8:3c:95:bc:fe:a4:2c:3b:7e:a3:2f:c8:49:32:be: d8:a7:72:e9:95:4c:89:c0:b6:c5:1d:3d:62:ce:08: 6c:a0:d3:ff:34:b8:d3:99:87:67:35:5d:06:68:bc: 5b:17:26:64:3c:44:47:ae:a7:39:34:4d:80:49:45: 79:65:a5:57:68:4c:01:51:b2:de:8d:2a:57:f3:dc: c9:ac:60:ed:d0:14:cd:8c:ed:6f:45:ac:68:a6:36: 00:ad:a0:33:24:76:f9:73:37:c1:40:f8:3c:7a:35: cb:af:d7:6b:01:ff:3a:2b:26:3f:05:96:75:80:d7: 39:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:08:53:06:43:A4:0B:7F:B4:59:05:10:DC:C1:A6:91:D2:A4:B9:32 X509v3 Authority Key Identifier: keyid:2A:A2:4E:58:12:FC:C3:10:6B:9E:B0:AE:B0:0E:62:7B:A2:35:D0:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:09:16:04:51:84:72:17:bf:c3:d6:77:7a:66:d3:67:6d:10: 15:56:c8:14:7f:22:04:47:5c:c0:61:11:28:96:5d:c9:3b:0f: 9f:e4:a0:4b:ec:eb:a0:4c:fd:98:60:fc:9c:bb:77:9a:4b:33: 39:e1:17:67:0e:56:dc:11:69:a0:69:7c:6a:88:7b:f1:53:ad: 3e:74:02:7f:b9:a9:fe:2c:3d:0a:35:7d:de:f0:79:4d:83:70: 8c:7c:1e:3d:17:f8:17:83:b0:9b:20:65:76:b7:dd:b2:0c:27: 86:8e:88:03:82:d3:dc:d7:fd:d2:be:b7:1c:64:e0:a6:b5:2f: 73:63:8d:08:b6:c7:45:41:ee:0e:13:58:19:3b:37:ca:e8:4a: 37:1e:79:63:93:8a:03:92:eb:6b:f4:b0:52:dd:05:ee:f6:07: 00:27:da:e1:30:13:ef:58:40:c3:fe:dc:28:a5:4d:f8:98:3f: e4:71:dc:eb:2a:a9:73:02:90:d6:ad:79:35:93:5f:bd:68:f3: be:6e:cc:16:07:54:f3:ad:e8:db:ae:fb:cd:c9:6f:70:52:20: a4:f7:f0:19:37:c7:56:d6:bd:e2:f5:f7:4f:f7:2a:07:6f:9f: 73:25:d3:cd:43:ea:74:54:9b:a3:ae:18:84:1e:fa:be:2d:a3: 2d:34:85:ad -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtDN1cylUXHJXijXDqpoYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhYTI0ZTU4MTJmY2MzMTA2YjllYjBhZWIwMGU2MjdiYTIz NWQwNTYwHhcNMjYwMjA5MTQwMDMxWhcNMjYwMjEwMTQwMDMxWjAzMTEwLwYDVQQD Eyg5ODA4NTMwNjQzYTQwYjdmYjQ1OTA1MTBkY2MxYTY5MWQyYTRiOTMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAziNMWGaSLu47h2LcrUC87Ys3N/bs rERC8Oa/V3tn05/6NJBp6H4x9pQfQArrIEfDmtPYVAAEhWNRh7rVqyzEWCRQKgyx hdPRc60N2XxN/6filbAlCbkZZ5jg1WKWweYKQbE8ZGNElpLN/i8km5qiwJDDd+/C cm9WrW+4T6NFd0JALt/e3sL4PJW8/qQsO36jL8hJMr7Yp3LplUyJwLbFHT1izghs oNP/NLjTmYdnNV0GaLxbFyZkPERHrqc5NE2ASUV5ZaVXaEwBUbLejSpX89zJrGDt 0BTNjO1vRaxopjYAraAzJHb5czfBQPg8ejXLr9drAf86KyY/BZZ1gNc59wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJgIUwZDpAt/tFkFENzBppHSpLkyMB8GA1UdIwQY MBaAFCqiTlgS/MMQa56wrrAOYnuiNdBWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3FKT1dCTDh3eEJybnJDdXNBNWllNkkxMEZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni8xMDM0NmUtMTUwNC00M2RkLWFiMjgt NjY4NThiYzhlYjc3LzEvS3FKT1dCTDh3eEJybnJDdXNBNWllNkkxMEZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni8xMDM0NmUtMTUwNC00M2RkLWFiMjgtNjY4NThiYzhlYjc3 LzEvS3FKT1dCTDh3eEJybnJDdXNBNWllNkkxMEZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbQkWBFGE che/w9Z3embTZ20QFVbIFH8iBEdcwGERKJZdyTsPn+SgS+zroEz9mGD8nLt3mksz OeEXZw5W3BFpoGl8aoh78VOtPnQCf7mp/iw9CjV93vB5TYNwjHwePRf4F4OwmyBl drfdsgwnho6IA4LT3Nf90r63HGTgprUvc2ONCLbHRUHuDhNYGTs3yuhKNx55Y5OK A5Lra/SwUt0F7vYHACfa4TAT71hAw/7cKKVN+Jg/5HHc6yqpcwKQ1q15NZNfvWjz vm7MFgdU863o2677zclvcFIgpPfwGTfHVta94vX3T/cqB2+fcyXTzUPqdFSbo64Y hB76vi2jLTSFrQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:47:40 2026 by rpki-client