This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.mft File: khjNJev3TLGwBLAe5QVQP_8kbWE.mft (raw, json) Hash identifier: xF2wNknbgrD6rJZpldSxuxNRJ8O9cQjm8ezd43fyCMI= Subject key identifier: AE:39:CA:43:A2:FB:C0:B0:D8:F1:1F:0E:D7:5B:B7:62:43:E5:9F:F1 Authority key identifier: 92:18:CD:25:EB:F7:4C:B1:B0:04:B0:1E:E5:05:50:3F:FF:24:6D:61 Certificate issuer: /CN=9218cd25ebf74cb1b004b01ee505503fff246d61 Certificate serial: 019C439002D95275DB7D5D6FCB8FAEA1006E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khjNJev3TLGwBLAe5QVQP_8kbWE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.mft Manifest number: 0648 Signing time: Mon 09 Feb 2026 18:00:37 +0000 Manifest this update: Mon 09 Feb 2026 18:00:37 +0000 Manifest next update: Tue 10 Feb 2026 18:00:37 +0000 Files and hashes: 1: WsvNi9fHVaR-QhhBc-1gHE69wug.roa (hash: Lfbnxpr5l5lYF7k2njm/AqL3hJumFpGwecHcxo26Gqc=) 2: khjNJev3TLGwBLAe5QVQP_8kbWE.crl (hash: 4EVT+cxULlT1q67cqkuUdeQfoQmKqCxBpInjt4fC42s=) 3: rmPK-2arqwQhilMnOZ0KFnfC2n0.roa (hash: Ik9jCJ7xxR+lg/nG9DpBqXvmyqxrBlr3ClzK4O2QwTU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.crl rsync://rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.mft rsync://rpki.ripe.net/repository/DEFAULT/khjNJev3TLGwBLAe5QVQP_8kbWE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:02:d9:52:75:db:7d:5d:6f:cb:8f:ae:a1:00:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9218cd25ebf74cb1b004b01ee505503fff246d61 Validity Not Before: Feb 9 18:00:37 2026 GMT Not After : Feb 10 18:00:37 2026 GMT Subject: CN=ae39ca43a2fbc0b0d8f11f0ed75bb76243e59ff1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d0:2a:0a:3c:23:42:73:3b:3f:70:ee:44:c9: dc:7d:df:3c:a7:3a:55:e8:86:f2:f4:47:90:63:fa: b9:38:70:35:7f:71:1d:14:4a:af:17:e9:90:bf:6e: 78:a2:c1:20:97:76:ad:eb:a7:17:cc:d2:0f:66:fb: c4:1c:61:2c:68:f0:a3:58:e1:f8:ba:d3:e0:66:14: de:1a:70:e2:3a:77:2e:b4:9f:84:24:21:4b:0e:8f: 28:72:6f:67:1f:a0:d5:58:d3:e3:39:a9:e1:e6:7a: 02:3b:a3:0b:2d:47:db:1f:50:53:53:c3:44:ce:53: 30:02:20:fb:26:04:3f:55:16:da:68:7f:a5:1b:6e: c1:c0:f3:4a:60:ef:6e:c6:85:b1:c5:ef:ae:b9:73: 6b:36:f3:8d:77:65:b6:a3:a1:d9:71:40:24:9b:48: 9d:63:04:88:2f:2c:23:33:af:76:3d:3e:20:8e:07: 34:73:a8:39:02:8f:e8:75:9d:10:48:26:fe:1e:3e: dc:f0:63:5f:52:35:c7:06:d1:a4:06:c5:61:e4:24: 3e:3f:58:02:16:90:00:4e:17:9c:a6:b5:d4:5d:ff: 1d:76:33:65:01:61:62:37:1a:aa:b9:bb:de:87:1b: 6a:71:2c:25:6c:1b:7b:19:5b:ac:f9:16:b7:e2:8a: 16:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:39:CA:43:A2:FB:C0:B0:D8:F1:1F:0E:D7:5B:B7:62:43:E5:9F:F1 X509v3 Authority Key Identifier: keyid:92:18:CD:25:EB:F7:4C:B1:B0:04:B0:1E:E5:05:50:3F:FF:24:6D:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khjNJev3TLGwBLAe5QVQP_8kbWE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:14:7b:1a:21:83:3b:12:34:ca:5c:18:bc:9f:e8:72:06:59: a7:9f:75:5d:05:b2:e6:00:dc:0f:06:89:bb:8b:a8:10:89:9d: 9a:87:41:34:69:b1:3f:81:13:b7:1d:8d:bc:2c:b6:a5:e6:98: c3:fc:ca:f3:18:80:a4:86:31:aa:2d:d2:10:69:7f:2c:af:c9: f5:a7:8b:d2:10:68:58:5e:4b:d1:55:c0:07:cc:67:57:99:82: 89:24:b0:2e:6a:1e:c6:d7:ea:8e:86:c0:69:e3:bd:36:86:5c: 2a:b4:43:ae:ec:08:81:3e:40:a3:1f:7d:e9:cc:ad:ab:1d:29: a4:6f:7f:15:99:ed:65:60:60:4c:b5:0f:bc:86:b8:8c:ef:5e: c5:95:8d:4c:2a:3e:ef:02:7a:44:31:5a:7b:5b:33:15:9f:52: 4f:35:24:16:56:64:0a:1e:ac:ba:b3:ec:e8:aa:4f:3a:fb:f4: 2f:c3:6b:6c:92:e0:08:61:e8:bb:7f:e1:0a:fc:c7:59:79:f4: 2c:24:64:a8:69:70:90:de:f5:93:c0:21:d3:66:82:b0:34:45: e7:5a:c5:0e:98:3d:4e:b0:d3:fb:bc:75:60:48:0c:eb:a4:e1: b5:c7:55:42:df:66:38:a6:80:09:3a:0a:0e:9a:f8:42:1a:a8: ba:d0:d8:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkALZUnXbfV1vy4+uoQBuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMThjZDI1ZWJmNzRjYjFiMDA0YjAxZWU1MDU1MDNmZmYy NDZkNjEwHhcNMjYwMjA5MTgwMDM3WhcNMjYwMjEwMTgwMDM3WjAzMTEwLwYDVQQD EyhhZTM5Y2E0M2EyZmJjMGIwZDhmMTFmMGVkNzViYjc2MjQzZTU5ZmYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9AqCjwjQnM7P3DuRMncfd88pzpV 6Iby9EeQY/q5OHA1f3EdFEqvF+mQv254osEgl3at66cXzNIPZvvEHGEsaPCjWOH4 utPgZhTeGnDiOncutJ+EJCFLDo8ocm9nH6DVWNPjOanh5noCO6MLLUfbH1BTU8NE zlMwAiD7JgQ/VRbaaH+lG27BwPNKYO9uxoWxxe+uuXNrNvONd2W2o6HZcUAkm0id YwSILywjM692PT4gjgc0c6g5Ao/odZ0QSCb+Hj7c8GNfUjXHBtGkBsVh5CQ+P1gC FpAAThecprXUXf8ddjNlAWFiNxqqubvehxtqcSwlbBt7GVus+Ra34ooWqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK45ykOi+8Cw2PEfDtdbt2JD5Z/xMB8GA1UdIwQY MBaAFJIYzSXr90yxsASwHuUFUD//JG1hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2hqTkpldjNUTEd3QkxBZTVRVlFQXzhrYldFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni80NmUyMjMtNmQyMy00Nzk1LTk1MjUt YmM4NzdjZTkwNjFhLzEva2hqTkpldjNUTEd3QkxBZTVRVlFQXzhrYldFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni80NmUyMjMtNmQyMy00Nzk1LTk1MjUtYmM4NzdjZTkwNjFh LzEva2hqTkpldjNUTEd3QkxBZTVRVlFQXzhrYldFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkRR7GiGD OxI0ylwYvJ/ocgZZp591XQWy5gDcDwaJu4uoEImdmodBNGmxP4ETtx2NvCy2peaY w/zK8xiApIYxqi3SEGl/LK/J9aeL0hBoWF5L0VXAB8xnV5mCiSSwLmoextfqjobA aeO9NoZcKrRDruwIgT5Aox996cytqx0ppG9/FZntZWBgTLUPvIa4jO9exZWNTCo+ 7wJ6RDFae1szFZ9STzUkFlZkCh6surPs6KpPOvv0L8NrbJLgCGHou3/hCvzHWXn0 LCRkqGlwkN71k8Ah02aCsDRF51rFDpg9TrDT+7x1YEgM66ThtcdVQt9mOKaACToK Dpr4QhqoutDYjA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:05 2026 by rpki-client