This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft File: CKkhe9gwYnyz5lfAuQY8giNN28s.mft (raw, json) Hash identifier: rhXb83NIXAn+pv+OFR9/M5asls/hJnWN/0qcj91AIX0= Subject key identifier: 07:7C:BD:E2:AB:E2:EC:5D:68:0D:9E:57:4F:13:6D:58:E7:02:D0:C9 Authority key identifier: 08:A9:21:7B:D8:30:62:7C:B3:E6:57:C0:B9:06:3C:82:23:4D:DB:CB Certificate issuer: /CN=08a9217bd830627cb3e657c0b9063c82234ddbcb Certificate serial: 019C41A2698613F9C346E76E40068F543A69 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft Manifest number: 1813 Signing time: Mon 09 Feb 2026 09:01:28 +0000 Manifest this update: Mon 09 Feb 2026 09:01:28 +0000 Manifest next update: Tue 10 Feb 2026 09:01:28 +0000 Files and hashes: 1: CKkhe9gwYnyz5lfAuQY8giNN28s.crl (hash: yGPvxmcRUHJc1oRGETuO6pc6TC/fzlJrV67Oyyt51vY=) 2: r2staIGPnAB2fC8C0axIG4AKOBk.roa (hash: uFZHYgrj8p1JmsefAGSYoXv3EhDU7aOqOew1OyVD1rc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.crl rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:69:86:13:f9:c3:46:e7:6e:40:06:8f:54:3a:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08a9217bd830627cb3e657c0b9063c82234ddbcb Validity Not Before: Feb 9 09:01:28 2026 GMT Not After : Feb 10 09:01:28 2026 GMT Subject: CN=077cbde2abe2ec5d680d9e574f136d58e702d0c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:08:d3:2c:5b:81:2b:30:09:34:64:da:15:ac: 39:ab:37:f4:77:cb:3b:b8:e0:96:f9:be:80:5d:73: fc:0f:c5:3f:a0:a1:c8:fd:bd:59:ab:2a:3d:b0:d5: 42:21:4e:bb:2e:9f:61:95:b5:03:61:81:ae:82:b8: ac:12:53:5b:0d:df:ed:79:52:e6:3c:8d:15:17:a8: 72:93:49:6d:9d:f2:6d:e4:bc:d8:4c:f2:3b:b9:22: 02:37:16:80:9a:5a:4f:06:7f:64:e0:46:68:a5:ad: 2b:36:90:98:ee:a7:08:13:46:a9:b3:6f:29:4d:88: d2:61:d0:26:29:39:15:0d:6d:97:a0:79:f5:4c:39: bb:13:0b:5c:45:e0:59:4b:5e:34:95:52:75:c4:92: 7d:cb:53:bc:1b:e0:38:00:9b:e1:d5:99:5e:d0:3d: a3:a9:e2:6f:59:9b:26:cf:73:58:1b:eb:e6:73:89: 1b:48:98:2c:d3:77:bc:d4:83:3d:39:48:95:f5:ef: 73:29:11:a8:c3:d1:ae:ac:32:8d:7e:54:54:e4:a9: 95:49:fd:83:cc:3c:97:54:2b:15:ff:77:24:15:f9: b9:0e:be:98:c4:7a:df:92:34:92:62:02:9a:6b:8f: b5:ea:dc:4e:b6:25:92:bb:ec:80:5d:4c:ca:a5:ab: 34:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:7C:BD:E2:AB:E2:EC:5D:68:0D:9E:57:4F:13:6D:58:E7:02:D0:C9 X509v3 Authority Key Identifier: keyid:08:A9:21:7B:D8:30:62:7C:B3:E6:57:C0:B9:06:3C:82:23:4D:DB:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:89:96:19:22:13:db:a3:be:12:0d:cf:f5:c4:9b:20:ad:b0: b9:d4:a8:4a:d9:cc:7c:7e:78:b9:ea:ee:bb:65:e0:c5:42:b9: 37:d0:4d:98:08:ed:00:20:2b:86:43:46:04:67:5b:f4:b4:84: d9:91:a3:51:d9:11:9d:a5:e3:08:64:b8:02:9e:52:59:68:ff: 69:b0:65:c4:bc:1e:46:47:16:de:75:ae:d4:ef:b5:cf:01:84: 2a:84:78:21:d1:2f:61:f6:24:47:92:a0:42:12:7e:0b:1f:15: 1c:28:6c:51:07:7d:dc:d7:53:9b:3f:46:41:3f:f9:58:57:d8: ef:aa:68:8e:95:9e:c8:4a:66:37:c8:c5:cf:10:13:58:af:4c: 52:9a:56:d8:76:21:f8:a4:58:32:71:8e:24:20:5e:aa:ff:40: ae:40:9c:a5:eb:1b:a6:1e:d9:81:d5:7c:fd:db:08:25:a6:cd: aa:d8:4d:8f:5b:96:7e:f8:da:dd:4c:10:39:11:f0:9f:9f:2b: 6d:90:48:34:01:6e:2f:dd:98:35:4c:36:f8:e7:45:33:28:9f: ed:7a:c7:58:4c:fa:92:1b:d5:16:19:bd:c3:f2:46:dd:4e:89: ea:d8:3c:6f:4f:3e:b7:6b:0a:1d:32:f4:ff:8c:65:01:8f:5a: f6:ee:e3:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBommGE/nDRuduQAaPVDppMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4YTkyMTdiZDgzMDYyN2NiM2U2NTdjMGI5MDYzYzgyMjM0 ZGRiY2IwHhcNMjYwMjA5MDkwMTI4WhcNMjYwMjEwMDkwMTI4WjAzMTEwLwYDVQQD EygwNzdjYmRlMmFiZTJlYzVkNjgwZDllNTc0ZjEzNmQ1OGU3MDJkMGM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5gjTLFuBKzAJNGTaFaw5qzf0d8s7 uOCW+b6AXXP8D8U/oKHI/b1Zqyo9sNVCIU67Lp9hlbUDYYGugrisElNbDd/teVLm PI0VF6hyk0ltnfJt5LzYTPI7uSICNxaAmlpPBn9k4EZopa0rNpCY7qcIE0aps28p TYjSYdAmKTkVDW2XoHn1TDm7EwtcReBZS140lVJ1xJJ9y1O8G+A4AJvh1Zle0D2j qeJvWZsmz3NYG+vmc4kbSJgs03e81IM9OUiV9e9zKRGow9GurDKNflRU5KmVSf2D zDyXVCsV/3ckFfm5Dr6YxHrfkjSSYgKaa4+16txOtiWSu+yAXUzKpas0wQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAd8veKr4uxdaA2eV08TbVjnAtDJMB8GA1UdIwQY MBaAFAipIXvYMGJ8s+ZXwLkGPIIjTdvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0traGU5Z3dZbnl6NWxmQXVRWThnaU5OMjhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC83ZGRlNDQtZDdiNS00OGRhLWJjNjgt MmM1YmFjMzVjMzQ0LzEvQ0traGU5Z3dZbnl6NWxmQXVRWThnaU5OMjhzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC83ZGRlNDQtZDdiNS00OGRhLWJjNjgtMmM1YmFjMzVjMzQ0 LzEvQ0traGU5Z3dZbnl6NWxmQXVRWThnaU5OMjhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcImWGSIT 26O+Eg3P9cSbIK2wudSoStnMfH54ueruu2XgxUK5N9BNmAjtACArhkNGBGdb9LSE 2ZGjUdkRnaXjCGS4Ap5SWWj/abBlxLweRkcW3nWu1O+1zwGEKoR4IdEvYfYkR5Kg QhJ+Cx8VHChsUQd93NdTmz9GQT/5WFfY76pojpWeyEpmN8jFzxATWK9MUppW2HYh +KRYMnGOJCBeqv9ArkCcpesbph7ZgdV8/dsIJabNqthNj1uWfvja3UwQORHwn58r bZBINAFuL92YNUw2+OdFMyif7XrHWEz6khvVFhm9w/JG3U6J6tg8b08+t2sKHTL0 /4xlAY9a9u7jxw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:49 2026 by rpki-client