This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/2fc804-2477-4d6b-8137-704a995e3db6/1/wKopmx5fodUSbfrXXf1Km65EOhc.mft File: wKopmx5fodUSbfrXXf1Km65EOhc.mft (raw, json) Hash identifier: HhPYZz+KoCSf3nKmxT1m4nsVnUNX8DgCHMPpS22G7G0= Subject key identifier: E0:47:E0:54:D8:6A:08:8F:15:4A:19:BC:C7:02:74:83:65:80:8F:5F Authority key identifier: C0:AA:29:9B:1E:5F:A1:D5:12:6D:FA:D7:5D:FD:4A:9B:AE:44:3A:17 Certificate issuer: /CN=c0aa299b1e5fa1d5126dfad75dfd4a9bae443a17 Certificate serial: 019C4322DE94580C1D8524E30600895FC40F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wKopmx5fodUSbfrXXf1Km65EOhc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/2fc804-2477-4d6b-8137-704a995e3db6/1/wKopmx5fodUSbfrXXf1Km65EOhc.mft Manifest number: 074A Signing time: Mon 09 Feb 2026 16:01:24 +0000 Manifest this update: Mon 09 Feb 2026 16:01:24 +0000 Manifest next update: Tue 10 Feb 2026 16:01:24 +0000 Files and hashes: 1: wKopmx5fodUSbfrXXf1Km65EOhc.crl (hash: rOMdcU+mdrEMSjabGHTgTK+WZ+IgN+obzTphC5zOozc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/2fc804-2477-4d6b-8137-704a995e3db6/1/wKopmx5fodUSbfrXXf1Km65EOhc.crl rsync://rpki.ripe.net/repository/DEFAULT/94/2fc804-2477-4d6b-8137-704a995e3db6/1/wKopmx5fodUSbfrXXf1Km65EOhc.mft rsync://rpki.ripe.net/repository/DEFAULT/wKopmx5fodUSbfrXXf1Km65EOhc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:de:94:58:0c:1d:85:24:e3:06:00:89:5f:c4:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c0aa299b1e5fa1d5126dfad75dfd4a9bae443a17 Validity Not Before: Feb 9 16:01:24 2026 GMT Not After : Feb 10 16:01:24 2026 GMT Subject: CN=e047e054d86a088f154a19bcc702748365808f5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:71:bd:c1:88:4e:1e:e9:48:b7:cf:b0:72:24: 19:e7:6c:45:41:cb:4d:fe:a1:b8:32:d2:ad:e9:86: d9:6b:0f:ff:c7:6b:f0:ae:33:29:cc:a7:e3:1f:2c: 41:0c:32:09:59:08:93:ed:a3:91:88:00:28:ae:15: e8:5e:c3:98:58:2d:20:bf:ca:42:9d:04:05:1b:b8: 8a:6e:fb:92:91:86:33:fc:55:d5:db:aa:6f:b9:1c: bb:b5:d8:0b:7e:60:ee:7b:23:ef:d9:d3:d4:5c:88: 07:a9:02:20:54:b8:4b:0a:14:2f:65:c2:41:f0:32: 91:56:53:e3:88:98:f8:39:13:ba:64:3d:ae:8e:b0: 8d:eb:25:96:aa:e2:f1:50:53:9b:f4:cf:a9:1b:1e: c3:f4:f8:a0:01:f5:c1:0a:84:9f:5f:20:a5:e8:4d: 45:ce:a5:1a:96:6e:f9:b7:30:69:d6:80:e0:fd:ee: f1:25:e5:47:52:41:8d:54:07:df:b5:52:5a:fb:ed: d1:a5:f8:85:91:67:ec:2d:2b:5e:f3:dd:8b:e7:da: db:ae:50:9d:c0:ca:b1:5b:bd:bf:f8:95:99:4f:80: 94:84:5c:64:f8:0a:67:89:15:d0:2d:ad:b5:5d:d5: 97:29:d4:85:4b:c8:3e:0c:4c:f0:8a:a5:dc:b3:41: 95:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:47:E0:54:D8:6A:08:8F:15:4A:19:BC:C7:02:74:83:65:80:8F:5F X509v3 Authority Key Identifier: keyid:C0:AA:29:9B:1E:5F:A1:D5:12:6D:FA:D7:5D:FD:4A:9B:AE:44:3A:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wKopmx5fodUSbfrXXf1Km65EOhc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2fc804-2477-4d6b-8137-704a995e3db6/1/wKopmx5fodUSbfrXXf1Km65EOhc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2fc804-2477-4d6b-8137-704a995e3db6/1/wKopmx5fodUSbfrXXf1Km65EOhc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:64:34:43:d3:85:bf:53:1a:a8:91:39:da:3a:45:82:9f:c0: 9f:fc:99:81:ce:27:1b:4b:42:7a:14:e5:44:7b:d7:93:7f:df: 92:cf:9b:8f:62:b0:12:ba:86:a6:05:d8:8c:cb:2f:23:82:cc: de:6c:9e:e9:17:5b:e2:8c:8d:9f:87:87:29:ad:40:f1:23:07: 6a:37:db:51:32:ed:3f:01:64:6a:a7:3a:2e:80:ad:4a:e7:5d: b2:9c:53:ad:fc:e5:5b:5e:76:cb:3d:6c:0f:dc:85:52:d9:ee: 25:92:0f:c5:b0:85:70:e9:fc:83:7d:04:f0:65:ba:f3:91:60: 0e:1c:02:a5:e5:6f:50:cd:bb:7f:0f:9f:cb:6b:41:ed:3c:d3: 81:47:46:43:fc:02:7e:cf:da:62:18:93:88:f8:bb:9e:ce:89: 83:15:e2:8c:21:78:4f:4d:8c:33:c2:78:71:fc:d4:bf:9f:6d: 17:43:2d:c6:78:22:e7:8a:23:0a:6a:c6:c8:61:62:78:27:01: 90:d1:c1:39:eb:ea:cd:16:54:2f:b3:33:36:c2:6f:5f:1b:c6: 86:e3:aa:c8:90:88:ff:66:42:db:27:2a:8d:70:15:c4:a3:ad: 03:4b:1c:c0:64:12:2d:99:8e:f7:65:5d:a6:78:64:78:1a:9e: ba:b9:2e:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIt6UWAwdhSTjBgCJX8QPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMwYWEyOTliMWU1ZmExZDUxMjZkZmFkNzVkZmQ0YTliYWU0 NDNhMTcwHhcNMjYwMjA5MTYwMTI0WhcNMjYwMjEwMTYwMTI0WjAzMTEwLwYDVQQD EyhlMDQ3ZTA1NGQ4NmEwODhmMTU0YTE5YmNjNzAyNzQ4MzY1ODA4ZjVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo3G9wYhOHulIt8+wciQZ52xFQctN /qG4MtKt6YbZaw//x2vwrjMpzKfjHyxBDDIJWQiT7aORiAAorhXoXsOYWC0gv8pC nQQFG7iKbvuSkYYz/FXV26pvuRy7tdgLfmDueyPv2dPUXIgHqQIgVLhLChQvZcJB 8DKRVlPjiJj4ORO6ZD2ujrCN6yWWquLxUFOb9M+pGx7D9PigAfXBCoSfXyCl6E1F zqUalm75tzBp1oDg/e7xJeVHUkGNVAfftVJa++3RpfiFkWfsLSte892L59rbrlCd wMqxW72/+JWZT4CUhFxk+ApniRXQLa21XdWXKdSFS8g+DEzwiqXcs0GVQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOBH4FTYagiPFUoZvMcCdINlgI9fMB8GA1UdIwQY MBaAFMCqKZseX6HVEm361139SpuuRDoXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd0tvcG14NWZvZFVTYmZyWFhmMUttNjVFT2hjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC8yZmM4MDQtMjQ3Ny00ZDZiLTgxMzct NzA0YTk5NWUzZGI2LzEvd0tvcG14NWZvZFVTYmZyWFhmMUttNjVFT2hjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC8yZmM4MDQtMjQ3Ny00ZDZiLTgxMzctNzA0YTk5NWUzZGI2 LzEvd0tvcG14NWZvZFVTYmZyWFhmMUttNjVFT2hjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIWQ0Q9OF v1MaqJE52jpFgp/An/yZgc4nG0tCehTlRHvXk3/fks+bj2KwErqGpgXYjMsvI4LM 3mye6Rdb4oyNn4eHKa1A8SMHajfbUTLtPwFkaqc6LoCtSuddspxTrfzlW152yz1s D9yFUtnuJZIPxbCFcOn8g30E8GW685FgDhwCpeVvUM27fw+fy2tB7TzTgUdGQ/wC fs/aYhiTiPi7ns6JgxXijCF4T02MM8J4cfzUv59tF0Mtxngi54ojCmrGyGFieCcB kNHBOevqzRZUL7MzNsJvXxvGhuOqyJCI/2ZC2ycqjXAVxKOtA0scwGQSLZmO92Vd pnhkeBqeurkuhA== -----END CERTIFICATE-----Generated at Mon Feb 9 20:54:21 2026 by rpki-client