This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.mft File: WKhqbHH7c0xwW15m50rBxWu5YF4.mft (raw, json) Hash identifier: vG2m3C2/L1LTDKbBngy0Ry9FlfOYdgwDF6iSKXDgc8k= Subject key identifier: BB:DB:D3:7D:17:96:3A:76:CC:D8:C2:CF:53:B6:F8:A7:49:7E:6C:D0 Authority key identifier: 58:A8:6A:6C:71:FB:73:4C:70:5B:5E:66:E7:4A:C1:C5:6B:B9:60:5E Certificate issuer: /CN=58a86a6c71fb734c705b5e66e74ac1c56bb9605e Certificate serial: 019C1FBA61F8F90CC78DC852E174D9A1A33C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKhqbHH7c0xwW15m50rBxWu5YF4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.mft Manifest number: 0E19 Signing time: Mon 02 Feb 2026 19:00:34 +0000 Manifest this update: Mon 02 Feb 2026 19:00:34 +0000 Manifest next update: Tue 03 Feb 2026 19:00:34 +0000 Files and hashes: 1: WKhqbHH7c0xwW15m50rBxWu5YF4.crl (hash: ToVtLdYcc6zQWlw5ntCdOXcqSILVtXBfTbf9oOU3+bE=) 2: cbzvxlYd2Sf5BPkKpVOxRrjDUx0.roa (hash: VqP2QOQPebJ1F3l2x635f2ND94zv4XuMIM8H7AehW9k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.mft rsync://rpki.ripe.net/repository/DEFAULT/WKhqbHH7c0xwW15m50rBxWu5YF4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 19:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1f:ba:61:f8:f9:0c:c7:8d:c8:52:e1:74:d9:a1:a3:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58a86a6c71fb734c705b5e66e74ac1c56bb9605e Validity Not Before: Feb 2 19:00:34 2026 GMT Not After : Feb 3 19:00:34 2026 GMT Subject: CN=bbdbd37d17963a76ccd8c2cf53b6f8a7497e6cd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d2:87:e6:14:a4:7b:be:25:88:7e:25:92:09: 2a:85:41:ed:0e:80:ff:26:92:5b:76:cb:51:fc:dd: dc:d0:86:77:36:0f:d6:4a:09:bf:37:b0:2b:ad:57: fc:03:77:ad:99:b2:3a:b9:7c:8d:d9:9d:94:18:29: 8f:26:16:3c:f2:2d:b5:60:2d:78:61:4f:55:1d:a8: 08:a4:bd:40:81:a2:8e:2c:b6:61:f9:5d:8b:0d:7a: df:fd:d9:90:4b:2d:e4:d0:21:ff:ff:05:c8:19:16: 16:f5:a7:a6:bb:5d:9e:df:be:fa:ba:08:e8:fa:a8: d4:05:0a:47:37:21:f4:bc:bb:0f:cb:9a:45:f5:04: e9:9c:76:d1:45:61:b7:a5:42:d1:7d:51:3d:db:2f: 13:fc:52:cc:73:0e:f8:86:52:75:98:67:e5:f6:04: 90:42:5a:0e:01:98:6d:1f:1f:67:49:c1:b4:da:c8: 5e:49:93:51:57:d5:48:e5:98:d2:79:62:29:13:11: 70:99:8f:fb:52:50:dc:1a:fe:87:f6:80:84:5a:bc: ac:8e:40:de:6c:93:a9:1d:4c:ab:4b:9d:69:ca:99: 19:e5:0c:68:e2:44:43:7f:d9:d8:7a:47:af:68:9b: fe:c8:02:b5:4d:c5:bb:d0:de:29:75:b3:59:8e:f1: bc:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:DB:D3:7D:17:96:3A:76:CC:D8:C2:CF:53:B6:F8:A7:49:7E:6C:D0 X509v3 Authority Key Identifier: keyid:58:A8:6A:6C:71:FB:73:4C:70:5B:5E:66:E7:4A:C1:C5:6B:B9:60:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKhqbHH7c0xwW15m50rBxWu5YF4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c0:65:fa:d6:3d:b8:3f:2f:99:37:14:8a:23:49:17:73:fe:ea: 53:bd:8f:7c:d1:d5:73:f9:33:88:ed:a5:c7:d3:63:df:32:1a: 88:be:d4:6a:2a:8f:ff:30:82:2b:eb:6e:b1:2e:9d:30:6f:69: e9:83:d3:89:58:9d:15:90:2a:31:97:f6:93:f0:20:8d:9a:36: c7:7a:32:cc:e7:29:81:67:fb:fb:90:76:bc:bd:9d:f6:c1:7c: b2:e1:bd:58:8e:e4:96:c6:27:8b:ec:94:84:bf:47:a7:70:a9: a3:25:13:6a:6d:71:b5:90:51:d5:f3:98:1d:78:62:fb:63:14: 1f:14:88:47:ac:83:85:48:1d:71:41:44:34:5b:7e:64:69:de: eb:29:45:05:bd:93:0d:7d:94:09:59:2e:48:48:32:da:3b:9e: 59:d9:04:35:40:f2:2e:94:2d:6f:c1:0e:a0:93:b7:f7:14:70: c7:b5:d2:9b:e4:18:41:8a:9e:1c:5a:b5:44:37:ba:87:62:cb: 5c:67:d8:75:83:9e:29:04:ad:e6:a5:63:b1:ed:ff:41:2e:d6: 4e:74:f5:af:0c:9a:fd:43:cb:e5:cb:a0:22:22:aa:59:31:40: 53:96:48:97:96:ca:21:45:0e:29:2d:b8:2e:ab:09:c0:5e:af: f3:88:0a:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwfumH4+QzHjchS4XTZoaM8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4YTg2YTZjNzFmYjczNGM3MDViNWU2NmU3NGFjMWM1NmJi OTYwNWUwHhcNMjYwMjAyMTkwMDM0WhcNMjYwMjAzMTkwMDM0WjAzMTEwLwYDVQQD EyhiYmRiZDM3ZDE3OTYzYTc2Y2NkOGMyY2Y1M2I2ZjhhNzQ5N2U2Y2QwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqNKH5hSke74liH4lkgkqhUHtDoD/ JpJbdstR/N3c0IZ3Ng/WSgm/N7ArrVf8A3etmbI6uXyN2Z2UGCmPJhY88i21YC14 YU9VHagIpL1AgaKOLLZh+V2LDXrf/dmQSy3k0CH//wXIGRYW9aemu12e3776ugjo +qjUBQpHNyH0vLsPy5pF9QTpnHbRRWG3pULRfVE92y8T/FLMcw74hlJ1mGfl9gSQ QloOAZhtHx9nScG02sheSZNRV9VI5ZjSeWIpExFwmY/7UlDcGv6H9oCEWrysjkDe bJOpHUyrS51pypkZ5Qxo4kRDf9nYekevaJv+yAK1TcW70N4pdbNZjvG88QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLvb030Xljp2zNjCz1O2+KdJfmzQMB8GA1UdIwQY MBaAFFioamxx+3NMcFteZudKwcVruWBeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0tocWJISDdjMHh3VzE1bTUwckJ4V3U1WUY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS85YzQzNjUtYTk4Zi00M2ZlLTk5NTAt YTliMTNjMjgwMGFmLzEvV0tocWJISDdjMHh3VzE1bTUwckJ4V3U1WUY0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS85YzQzNjUtYTk4Zi00M2ZlLTk5NTAtYTliMTNjMjgwMGFm LzEvV0tocWJISDdjMHh3VzE1bTUwckJ4V3U1WUY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwGX61j24 Py+ZNxSKI0kXc/7qU72PfNHVc/kziO2lx9Nj3zIaiL7UaiqP/zCCK+tusS6dMG9p 6YPTiVidFZAqMZf2k/AgjZo2x3oyzOcpgWf7+5B2vL2d9sF8suG9WI7klsYni+yU hL9Hp3CpoyUTam1xtZBR1fOYHXhi+2MUHxSIR6yDhUgdcUFENFt+ZGne6ylFBb2T DX2UCVkuSEgy2jueWdkENUDyLpQtb8EOoJO39xRwx7XSm+QYQYqeHFq1RDe6h2LL XGfYdYOeKQSt5qVjse3/QS7WTnT1rwya/UPL5cugIiKqWTFAU5ZIl5bKIUUOKS24 LqsJwF6v84gKMQ== -----END CERTIFICATE-----Generated at Tue Feb 3 01:55:36 2026 by rpki-client