This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft File: mkM22h63IW4g7ASn8DHrShtjG7M.mft (raw, json) Hash identifier: y2y0c8Fccbgn3RKrdCn8wXDNUe7Mlq56HJ7ZgAyjW8E= Subject key identifier: 1D:3B:49:BD:AD:CA:B9:B7:74:F4:6F:CD:CE:F5:D0:92:8B:C3:22:3C Authority key identifier: 9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3 Certificate issuer: /CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3 Certificate serial: 019C427DCDEA9E29D05026D14EF807BFED67 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 13:01:06 +0000 Manifest this update: Mon 09 Feb 2026 13:01:06 +0000 Manifest next update: Tue 10 Feb 2026 13:01:06 +0000 Files and hashes: 1: KGRZtAAx-sknvQQcwhztrA8NJos.roa (hash: uYCNY8bnQOpiSbQHGpcKZAraJm0QfOSnQkHdbbBpb7U=) 2: mkM22h63IW4g7ASn8DHrShtjG7M.crl (hash: 5jQfy6mIuSCD1T6Okz/AaiQzKje19fiJByNui1AVX30=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:cd:ea:9e:29:d0:50:26:d1:4e:f8:07:bf:ed:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3 Validity Not Before: Feb 9 13:01:06 2026 GMT Not After : Feb 10 13:01:06 2026 GMT Subject: CN=1d3b49bdadcab9b774f46fcdcef5d0928bc3223c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:42:99:f0:ed:8b:b8:36:59:39:48:87:44:6d: 75:87:fa:9e:3c:7f:a6:7b:dc:de:55:5c:3b:8b:50: 70:36:19:87:75:40:7e:80:67:42:62:4e:69:7a:a2: d2:e5:4a:42:7e:c6:03:4e:bf:cf:15:04:a6:e7:9b: 75:26:d5:86:20:3e:c8:ed:4d:86:82:98:e5:fc:a0: 2b:10:56:23:ea:61:91:ec:26:d4:13:52:26:13:1d: fd:f4:4d:63:70:83:c0:81:af:b2:a1:f7:eb:3d:7c: e4:51:0f:93:7f:6a:18:43:0c:9e:4c:8f:cb:fc:01: 4c:bd:4b:07:0c:7f:f0:25:f9:bb:7e:0f:4e:76:10: 54:c1:1c:f8:5b:60:b2:72:ea:eb:0c:17:74:a9:28: c6:5e:2a:ea:e4:7b:39:e2:81:20:e8:4b:6a:bd:88: 7b:04:11:66:fe:b1:31:99:36:3b:1d:46:d2:7f:bd: 3c:f3:d8:8e:b9:2b:e4:98:28:f0:a0:f0:e2:1e:c2: 20:36:72:a1:f0:05:57:9e:89:9a:17:23:0a:d7:2c: fa:90:8f:60:00:25:ad:25:e0:f2:24:2c:2f:69:59: bf:e6:98:c5:bf:22:a2:3c:17:a0:29:44:8e:af:a4: 49:e1:ab:7d:ac:7f:58:e9:f4:18:3f:11:e6:c7:e7: 8a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:3B:49:BD:AD:CA:B9:B7:74:F4:6F:CD:CE:F5:D0:92:8B:C3:22:3C X509v3 Authority Key Identifier: keyid:9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:28:96:4c:f0:c8:ab:d8:10:cb:b6:46:ce:95:03:e9:2c:30: 35:51:58:e5:05:f3:10:04:fe:ab:1d:f3:ba:a4:be:79:cf:fb: 07:aa:4f:03:ea:f8:71:5c:4c:2f:bc:6c:2d:cf:67:9d:86:5d: 38:19:36:8e:9a:fd:2b:8c:f6:ba:da:9b:a0:4f:85:88:15:45: f9:4b:f6:85:3a:55:4e:d3:30:39:30:43:12:ff:3b:9c:29:9c: 8d:66:54:a2:af:c9:b8:0e:74:6d:cc:f6:c3:bf:3f:dd:0a:39: 87:15:c6:7b:69:df:6b:6a:ee:35:fa:e9:ae:ba:a5:46:3b:29: a7:5a:40:7e:da:84:0c:d5:93:2d:f0:18:59:c8:47:98:24:7b: 5c:5b:4a:bd:c0:03:e9:f3:87:c2:d7:5d:5d:5d:f9:98:4a:07: 7a:b1:a5:29:0d:9e:5a:d7:8c:75:01:f3:64:9b:a2:51:cb:35: ee:8a:06:97:89:af:17:71:ce:fe:94:be:72:ea:84:6c:d8:8b: ff:2a:6f:18:99:30:1d:e0:40:09:83:2a:53:34:40:fd:ec:15: c4:31:0b:4f:72:fe:80:e6:48:c7:8b:40:d4:ee:1c:d2:29:c2: 13:57:06:94:24:48:c6:b1:44:73:af:b8:5b:d8:18:e1:a8:cd: b0:14:20:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfc3qninQUCbRTvgHv+1nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhNDMzNmRhMWViNzIxNmUyMGVjMDRhN2YwMzFlYjRhMWI2 MzFiYjMwHhcNMjYwMjA5MTMwMTA2WhcNMjYwMjEwMTMwMTA2WjAzMTEwLwYDVQQD EygxZDNiNDliZGFkY2FiOWI3NzRmNDZmY2RjZWY1ZDA5MjhiYzMyMjNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj0KZ8O2LuDZZOUiHRG11h/qePH+m e9zeVVw7i1BwNhmHdUB+gGdCYk5peqLS5UpCfsYDTr/PFQSm55t1JtWGID7I7U2G gpjl/KArEFYj6mGR7CbUE1ImEx399E1jcIPAga+yoffrPXzkUQ+Tf2oYQwyeTI/L /AFMvUsHDH/wJfm7fg9OdhBUwRz4W2CycurrDBd0qSjGXirq5Hs54oEg6EtqvYh7 BBFm/rExmTY7HUbSf70889iOuSvkmCjwoPDiHsIgNnKh8AVXnomaFyMK1yz6kI9g ACWtJeDyJCwvaVm/5pjFvyKiPBegKUSOr6RJ4at9rH9Y6fQYPxHmx+eKFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB07Sb2tyrm3dPRvzc710JKLwyI8MB8GA1UdIwQY MBaAFJpDNtoetyFuIOwEp/Ax60obYxuzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9hN2U5YjktNmJhYy00NTM4LWE5ZTYt ZmE4ODA2YTAyNGM0LzEvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy9hN2U5YjktNmJhYy00NTM4LWE5ZTYtZmE4ODA2YTAyNGM0 LzEvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaCiWTPDI q9gQy7ZGzpUD6SwwNVFY5QXzEAT+qx3zuqS+ec/7B6pPA+r4cVxML7xsLc9nnYZd OBk2jpr9K4z2utqboE+FiBVF+Uv2hTpVTtMwOTBDEv87nCmcjWZUoq/JuA50bcz2 w78/3Qo5hxXGe2nfa2ruNfrprrqlRjspp1pAftqEDNWTLfAYWchHmCR7XFtKvcAD 6fOHwtddXV35mEoHerGlKQ2eWteMdQHzZJuiUcs17ooGl4mvF3HO/pS+cuqEbNiL /ypvGJkwHeBACYMqUzRA/ewVxDELT3L+gOZIx4tA1O4c0inCE1cGlCRIxrFEc6+4 W9gY4ajNsBQgqQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:08 2026 by rpki-client