This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.mft File: KoyNUYbIdxRVvhMbDHz9ZufThlU.mft (raw, json) Hash identifier: HfG03qG3XiPFkqfYYsEjbPDNwZRt9i+5New9BEMNnH4= Subject key identifier: 79:6B:3A:53:65:93:48:1B:DA:A9:03:5F:41:98:39:B0:93:E7:36:7F Authority key identifier: 2A:8C:8D:51:86:C8:77:14:55:BE:13:1B:0C:7C:FD:66:E7:D3:86:55 Certificate issuer: /CN=2a8c8d5186c8771455be131b0c7cfd66e7d38655 Certificate serial: 019C439061EE17D7F60BF1701F75D58CFB16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KoyNUYbIdxRVvhMbDHz9ZufThlU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.mft Manifest number: 0617 Signing time: Mon 09 Feb 2026 18:01:01 +0000 Manifest this update: Mon 09 Feb 2026 18:01:01 +0000 Manifest next update: Tue 10 Feb 2026 18:01:01 +0000 Files and hashes: 1: KoyNUYbIdxRVvhMbDHz9ZufThlU.crl (hash: gSYJRKtRB9bpzWHL9fynX65JlmhW6AOtBi/FjDnU2s8=) 2: vRHDe49dNuvNmUAPOcMtSNJoxSk.roa (hash: 5+TSEDtVIZGmMa4KwGaP+zSgVu5+duOGjOl+EoHvBLc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.mft rsync://rpki.ripe.net/repository/DEFAULT/KoyNUYbIdxRVvhMbDHz9ZufThlU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:61:ee:17:d7:f6:0b:f1:70:1f:75:d5:8c:fb:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a8c8d5186c8771455be131b0c7cfd66e7d38655 Validity Not Before: Feb 9 18:01:01 2026 GMT Not After : Feb 10 18:01:01 2026 GMT Subject: CN=796b3a536593481bdaa9035f419839b093e7367f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c9:90:ce:0e:11:c8:c5:30:3d:46:dd:ab:c5: 2f:2b:54:85:23:b2:e0:a8:2a:4d:ee:5f:a6:43:44: 95:b7:d8:9f:70:7a:5b:ec:45:b7:a7:1a:7c:e2:2a: 75:cd:69:2b:43:7d:4c:31:b8:ae:4a:b6:13:5a:2d: 21:a0:7b:13:8a:08:61:c3:a7:f9:90:9f:e4:8c:a0: 24:f6:25:70:bc:fc:54:67:4d:60:51:7e:2e:61:7c: 78:2f:b6:03:16:4a:6c:68:a5:50:ef:fc:a8:35:25: cf:51:90:63:1d:34:54:30:e1:72:f0:b4:8e:2d:00: 72:63:f0:eb:51:36:a5:3a:17:6f:02:94:ed:5c:c3: e4:64:46:b9:2f:81:fd:7c:d5:ca:34:96:af:52:19: 2f:75:98:be:c1:91:50:06:df:78:8a:c9:cf:0c:22: e0:b3:83:b9:2e:90:72:ea:54:e6:10:6d:da:db:17: 1a:9e:b2:9e:ac:87:77:d0:c5:dd:30:f8:cb:4e:01: a2:ef:80:2e:e7:ec:7b:7e:5b:77:ea:ff:2a:1a:12: 3b:46:d4:4b:0c:a7:6c:ef:8d:c7:9a:1d:48:cd:ed: bc:cc:f6:80:75:44:7f:17:d2:fb:2f:80:c1:1d:be: ce:d7:96:7b:c6:17:ea:38:54:e1:bc:34:9e:1d:9a: 54:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:6B:3A:53:65:93:48:1B:DA:A9:03:5F:41:98:39:B0:93:E7:36:7F X509v3 Authority Key Identifier: keyid:2A:8C:8D:51:86:C8:77:14:55:BE:13:1B:0C:7C:FD:66:E7:D3:86:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KoyNUYbIdxRVvhMbDHz9ZufThlU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:bc:6d:a0:4c:c0:fb:69:aa:05:b6:fa:5f:94:4f:97:d9:f7: 24:1a:65:a0:c4:68:97:75:2d:4e:b1:35:95:83:b6:73:f6:95: 1a:06:ee:af:f1:d5:2b:d0:78:e5:5d:46:dc:7e:cb:dd:d1:18: e4:0c:ae:ac:94:15:49:9d:ee:cc:fa:36:cc:69:ea:11:63:ec: 71:28:a1:b6:4a:09:83:d6:6a:6e:04:19:14:15:5c:d6:03:02: f2:16:75:bf:c1:a8:5e:7b:76:ba:c8:86:5e:95:87:68:e1:e1: 20:e0:ee:d0:4d:d7:f7:70:98:70:3b:f0:7f:40:31:1a:1a:47: a9:69:f8:8b:a8:43:ab:1c:c7:ea:2c:0f:48:b4:05:c1:c6:b2: 64:9a:bf:94:d3:91:77:3d:64:ef:78:b3:48:ab:6c:48:69:b1: aa:9a:99:5e:d2:dd:b5:ae:09:99:6f:03:77:7e:ab:14:89:e3: cc:bd:68:1a:8c:14:6b:9f:4c:64:5f:40:c8:9d:45:b4:06:36: e1:95:c7:53:65:13:e0:a5:87:55:0b:77:70:e7:f0:e5:ed:d1: 29:4e:48:49:08:98:17:af:56:1c:1f:97:78:86:77:23:39:14: 1d:2e:11:f2:31:c6:97:27:23:a6:51:84:2d:fb:52:fb:22:64: ef:53:5a:a7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkGHuF9f2C/FwH3XVjPsWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOGM4ZDUxODZjODc3MTQ1NWJlMTMxYjBjN2NmZDY2ZTdk Mzg2NTUwHhcNMjYwMjA5MTgwMTAxWhcNMjYwMjEwMTgwMTAxWjAzMTEwLwYDVQQD Eyg3OTZiM2E1MzY1OTM0ODFiZGFhOTAzNWY0MTk4MzliMDkzZTczNjdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcmQzg4RyMUwPUbdq8UvK1SFI7Lg qCpN7l+mQ0SVt9ifcHpb7EW3pxp84ip1zWkrQ31MMbiuSrYTWi0hoHsTighhw6f5 kJ/kjKAk9iVwvPxUZ01gUX4uYXx4L7YDFkpsaKVQ7/yoNSXPUZBjHTRUMOFy8LSO LQByY/DrUTalOhdvApTtXMPkZEa5L4H9fNXKNJavUhkvdZi+wZFQBt94isnPDCLg s4O5LpBy6lTmEG3a2xcanrKerId30MXdMPjLTgGi74Au5+x7flt36v8qGhI7RtRL DKds743Hmh1Ize28zPaAdUR/F9L7L4DBHb7O15Z7xhfqOFThvDSeHZpUZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHlrOlNlk0gb2qkDX0GYObCT5zZ/MB8GA1UdIwQY MBaAFCqMjVGGyHcUVb4TGwx8/Wbn04ZVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS295TlVZYklkeFJWdmhNYkRIejladWZUaGxVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi8zNDk2ZDEtMzMyYy00MzNiLTk5ODAt MjY5YTUxZGQ4ZDM4LzEvS295TlVZYklkeFJWdmhNYkRIejladWZUaGxVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi8zNDk2ZDEtMzMyYy00MzNiLTk5ODAtMjY5YTUxZGQ4ZDM4 LzEvS295TlVZYklkeFJWdmhNYkRIejladWZUaGxVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACrxtoEzA +2mqBbb6X5RPl9n3JBploMRol3UtTrE1lYO2c/aVGgbur/HVK9B45V1G3H7L3dEY 5AyurJQVSZ3uzPo2zGnqEWPscSihtkoJg9ZqbgQZFBVc1gMC8hZ1v8GoXnt2usiG XpWHaOHhIODu0E3X93CYcDvwf0AxGhpHqWn4i6hDqxzH6iwPSLQFwcayZJq/lNOR dz1k73izSKtsSGmxqpqZXtLdta4JmW8Dd36rFInjzL1oGowUa59MZF9AyJ1FtAY2 4ZXHU2UT4KWHVQt3cOfw5e3RKU5ISQiYF69WHB+XeIZ3IzkUHS4R8jHGlycjplGE LftS+yJk71Napw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:37:08 2026 by rpki-client