This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft File: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft (raw, json) Hash identifier: naE1XaE1lUoaucSYYNizL+iob7zFb+Dqba3p/GeKXnc= Subject key identifier: B4:F3:C6:99:C5:5D:C5:80:39:73:C9:00:78:F1:D0:15:7D:0E:69:49 Authority key identifier: 90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E Certificate issuer: /CN=90b3a3a0d662d14da8404bd21dc489e63945624e Certificate serial: 019C4390CFB4CA83560E01AABAD32EA85E30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 18:01:29 +0000 Manifest this update: Mon 09 Feb 2026 18:01:29 +0000 Manifest next update: Tue 10 Feb 2026 18:01:29 +0000 Files and hashes: 1: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl (hash: NfnwH5d0kRs1RGJ4n/kBKaZ6xfQvlTZ3arvGwt5kHqk=) 2: qKzL_ME8UuHWQc0CLPTCLEEBp0E.roa (hash: Nj/emuAe0XidzndkLYnMG2PIERjSJH89bACx94cpGMg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:cf:b4:ca:83:56:0e:01:aa:ba:d3:2e:a8:5e:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90b3a3a0d662d14da8404bd21dc489e63945624e Validity Not Before: Feb 9 18:01:29 2026 GMT Not After : Feb 10 18:01:29 2026 GMT Subject: CN=b4f3c699c55dc5803973c90078f1d0157d0e6949 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:fa:fc:01:b3:0e:28:3d:37:7c:ff:01:ba:6b: a7:18:1c:b6:98:bc:cf:89:27:0a:5b:bb:b8:bd:99: 53:e9:04:88:a6:53:56:d2:d9:06:d3:9b:d6:c1:76: 23:ca:a4:d4:20:dd:9b:bd:8d:6a:11:1f:fc:8b:d0: 46:95:9e:7f:aa:e6:48:57:ff:fc:35:a7:be:68:da: 80:9d:33:d0:dc:96:82:10:96:e9:55:1f:ad:dc:80: a4:78:83:86:78:5e:79:bf:11:0d:89:d8:8b:0a:80: c1:ab:e2:47:30:5e:ce:88:87:8d:8f:cc:19:83:d7: 73:79:4a:55:d7:70:fe:9a:c3:51:b4:aa:af:95:a8: fc:0d:8a:99:d0:1e:a7:25:f5:21:01:29:9c:9f:b2: 3e:35:5b:4e:eb:14:f6:67:64:d7:a2:be:a6:ee:b6: 95:9a:43:51:7c:e5:ed:5d:cf:c2:db:c7:56:82:e4: 21:90:5c:c0:b5:cd:10:ed:dc:cd:01:a0:f8:4a:72: f3:f8:a1:6d:1d:9d:9e:44:d9:72:92:f7:8a:a3:90: 86:17:d8:bb:ca:7f:b5:96:cc:cb:ce:7e:99:a4:de: 43:5a:0f:18:4f:34:17:17:85:45:ed:39:a5:43:a0: a3:45:b9:ab:c9:83:63:cf:9b:55:58:5a:23:0e:55: 5a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:F3:C6:99:C5:5D:C5:80:39:73:C9:00:78:F1:D0:15:7D:0E:69:49 X509v3 Authority Key Identifier: keyid:90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:aa:e9:bd:e3:06:4f:17:65:9a:02:a7:6c:b0:bd:51:35:06: c8:34:97:83:3b:06:6c:79:40:2f:44:c1:e0:9a:8d:c6:62:09: fe:4c:73:f3:d6:9f:d3:f5:41:23:cd:e6:9f:01:b5:73:60:a4: 84:ad:21:50:c9:37:ac:c6:9e:71:99:c2:c5:c8:a7:9e:b3:16: 00:af:e0:1b:b5:90:80:30:71:e5:8a:94:a7:6f:2e:47:3d:6d: b6:97:c6:9f:81:91:6c:13:af:af:eb:bc:09:9f:02:42:9f:46: db:48:b6:98:ce:99:49:fb:ca:9b:98:b1:53:b8:bd:6d:c9:be: db:92:d1:3d:04:ec:27:89:77:85:73:0c:a0:3b:f7:a7:15:c1: 9d:27:8c:ab:db:75:49:05:75:40:c7:3f:c6:83:86:a1:80:1f: 32:9e:0b:21:3f:06:af:5f:c5:1e:7e:66:e4:ff:45:c3:2d:3c: 2a:84:bf:8e:18:d8:fa:c6:18:61:10:02:79:28:4b:69:65:39: 75:52:41:9c:38:88:91:e9:68:ff:ce:94:2b:2c:58:e1:91:ee: ac:74:64:94:4e:b3:69:b9:fe:a6:b2:ff:4f:40:fb:c3:85:ea: d4:22:c2:0e:4a:44:7e:a6:af:eb:d4:b9:85:1c:84:44:61:12: d1:55:bd:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkM+0yoNWDgGqutMuqF4wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwYjNhM2EwZDY2MmQxNGRhODQwNGJkMjFkYzQ4OWU2Mzk0 NTYyNGUwHhcNMjYwMjA5MTgwMTI5WhcNMjYwMjEwMTgwMTI5WjAzMTEwLwYDVQQD EyhiNGYzYzY5OWM1NWRjNTgwMzk3M2M5MDA3OGYxZDAxNTdkMGU2OTQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1vr8AbMOKD03fP8BumunGBy2mLzP iScKW7u4vZlT6QSIplNW0tkG05vWwXYjyqTUIN2bvY1qER/8i9BGlZ5/quZIV//8 Nae+aNqAnTPQ3JaCEJbpVR+t3ICkeIOGeF55vxENidiLCoDBq+JHMF7OiIeNj8wZ g9dzeUpV13D+msNRtKqvlaj8DYqZ0B6nJfUhASmcn7I+NVtO6xT2Z2TXor6m7raV mkNRfOXtXc/C28dWguQhkFzAtc0Q7dzNAaD4SnLz+KFtHZ2eRNlykveKo5CGF9i7 yn+1lszLzn6ZpN5DWg8YTzQXF4VF7TmlQ6CjRbmryYNjz5tVWFojDlVaeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLTzxpnFXcWAOXPJAHjx0BV9DmlJMB8GA1UdIwQY MBaAFJCzo6DWYtFNqEBL0h3EieY5RWJOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva0xPam9OWmkwVTJvUUV2U0hjU0o1amxGWWs0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS83ZmI0ZWEtNWJiYy00YzhjLThiNWQt Mjg4Y2ZkMWMyYTNkLzEva0xPam9OWmkwVTJvUUV2U0hjU0o1amxGWWs0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS83ZmI0ZWEtNWJiYy00YzhjLThiNWQtMjg4Y2ZkMWMyYTNk LzEva0xPam9OWmkwVTJvUUV2U0hjU0o1amxGWWs0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqqrpveMG TxdlmgKnbLC9UTUGyDSXgzsGbHlAL0TB4JqNxmIJ/kxz89af0/VBI83mnwG1c2Ck hK0hUMk3rMaecZnCxcinnrMWAK/gG7WQgDBx5YqUp28uRz1ttpfGn4GRbBOvr+u8 CZ8CQp9G20i2mM6ZSfvKm5ixU7i9bcm+25LRPQTsJ4l3hXMMoDv3pxXBnSeMq9t1 SQV1QMc/xoOGoYAfMp4LIT8Gr1/FHn5m5P9Fwy08KoS/jhjY+sYYYRACeShLaWU5 dVJBnDiIkelo/86UKyxY4ZHurHRklE6zabn+prL/T0D7w4Xq1CLCDkpEfqav69S5 hRyERGES0VW9oQ== -----END CERTIFICATE-----Generated at Tue Feb 10 02:55:39 2026 by rpki-client