This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft File: kRAQDzzHh9YxUwPLf8iNniXlbqg.mft (raw, json) Hash identifier: MbBFhR1YAq35x35jnyluHAOPzoXTcq1bPG0qmpJgXAw= Subject key identifier: 1D:A8:81:84:57:1B:2F:C1:EA:EB:D0:54:95:7E:A3:5E:F2:3F:83:DB Authority key identifier: 91:10:10:0F:3C:C7:87:D6:31:53:03:CB:7F:C8:8D:9E:25:E5:6E:A8 Certificate issuer: /CN=9110100f3cc787d6315303cb7fc88d9e25e56ea8 Certificate serial: 019C42469026A05D566A520F0652E55CE59F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kRAQDzzHh9YxUwPLf8iNniXlbqg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft Manifest number: 0C24 Signing time: Mon 09 Feb 2026 12:00:46 +0000 Manifest this update: Mon 09 Feb 2026 12:00:46 +0000 Manifest next update: Tue 10 Feb 2026 12:00:46 +0000 Files and hashes: 1: P_Lt8AY8fM5LppruerzO34vRqLY.roa (hash: zp6zmtIN8JWsWA0pcCGjGihKqrwJVCtW0jabbQoyYms=) 2: kRAQDzzHh9YxUwPLf8iNniXlbqg.crl (hash: TguW/Ezxkma6LZsIruy3NitEPCH4eGi4zOedKAOOE88=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft rsync://rpki.ripe.net/repository/DEFAULT/kRAQDzzHh9YxUwPLf8iNniXlbqg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:90:26:a0:5d:56:6a:52:0f:06:52:e5:5c:e5:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9110100f3cc787d6315303cb7fc88d9e25e56ea8 Validity Not Before: Feb 9 12:00:46 2026 GMT Not After : Feb 10 12:00:46 2026 GMT Subject: CN=1da88184571b2fc1eaebd054957ea35ef23f83db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:68:f6:14:64:0d:d4:ef:42:67:96:b7:60:54: 40:29:f6:d5:cd:3e:60:2c:08:bb:fa:48:5f:93:c3: 0e:b7:85:b8:bd:0c:d0:38:84:e8:ca:7d:ae:ef:d3: 29:06:c8:5b:49:a3:0a:4f:a2:ae:e3:b5:3c:84:5a: 77:f8:66:99:70:38:67:1b:01:35:ef:66:63:b5:26: 12:fd:df:23:c1:38:74:af:b1:74:58:ee:79:89:c6: 87:7b:82:00:13:01:e1:00:23:d8:48:a1:10:ff:0c: 83:8c:7c:2a:10:cb:37:8c:85:64:f8:b2:33:8f:a8: af:77:09:a1:82:62:e1:2e:27:d7:1c:69:bb:0b:9d: d1:4c:5f:7d:e6:7e:5a:7e:f6:bc:43:ad:3c:e1:48: 95:ce:94:17:02:00:38:cc:d7:28:85:e4:60:32:f9: b1:5f:ba:6d:5c:95:81:a6:7e:34:6c:e4:1a:d5:80: dd:9a:d4:66:26:4e:7e:33:5a:24:b8:8c:bd:5a:0c: 35:06:ef:8a:31:4b:91:de:de:1d:3b:3f:68:51:22: f6:43:6c:7e:f0:c6:95:9a:9b:1d:ec:bd:36:f7:47: b9:ca:57:da:20:e1:6f:9b:04:25:76:a7:25:4e:f3: df:5d:e5:aa:e1:06:53:5d:c2:e8:8d:14:5b:57:b5: 52:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:A8:81:84:57:1B:2F:C1:EA:EB:D0:54:95:7E:A3:5E:F2:3F:83:DB X509v3 Authority Key Identifier: keyid:91:10:10:0F:3C:C7:87:D6:31:53:03:CB:7F:C8:8D:9E:25:E5:6E:A8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kRAQDzzHh9YxUwPLf8iNniXlbqg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:53:25:fc:8c:e1:2d:b6:30:e9:44:a3:79:bd:c6:7a:c1:af: e9:71:33:0c:6e:4e:08:a6:80:88:08:77:af:60:3a:4b:41:bf: 90:a0:4b:e1:fc:8e:b9:7c:ba:70:27:35:43:9b:d3:32:cf:0a: f5:90:b9:6d:49:5c:83:38:f5:02:a7:3c:4f:85:51:19:ba:c3: 2d:17:ae:e3:a4:02:64:2e:9e:66:dc:73:84:a8:af:ca:ff:fb: ae:28:1e:80:a8:6e:a7:71:2f:a7:83:2e:44:c7:f8:4f:65:97: b4:34:61:eb:ef:69:d8:90:c2:c6:3e:87:ed:32:06:00:00:23: b2:89:71:c6:8e:0a:85:44:b7:74:cd:30:f9:de:0e:3b:b3:1d: 7c:66:98:99:50:dd:a6:05:d2:70:fb:db:ec:ad:6a:8f:ed:aa: c3:0e:53:31:b7:9d:6c:b8:d1:71:e4:05:09:47:e9:04:80:7f: 7f:e1:2a:0c:ef:d1:88:34:78:0c:8c:f8:7b:4a:e5:a1:32:e9: 03:f4:eb:68:3d:b7:96:b3:35:a2:a0:8b:5f:d1:83:f4:10:b9: b0:d2:69:e9:3d:01:5f:e4:d2:64:35:c0:b9:2d:ab:15:e8:47: 87:98:8b:04:42:13:83:0a:57:f8:d0:7e:6e:da:17:bf:de:32: 99:48:a6:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRpAmoF1WalIPBlLlXOWfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxMTAxMDBmM2NjNzg3ZDYzMTUzMDNjYjdmYzg4ZDllMjVl NTZlYTgwHhcNMjYwMjA5MTIwMDQ2WhcNMjYwMjEwMTIwMDQ2WjAzMTEwLwYDVQQD EygxZGE4ODE4NDU3MWIyZmMxZWFlYmQwNTQ5NTdlYTM1ZWYyM2Y4M2RiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Wj2FGQN1O9CZ5a3YFRAKfbVzT5g LAi7+khfk8MOt4W4vQzQOIToyn2u79MpBshbSaMKT6Ku47U8hFp3+GaZcDhnGwE1 72ZjtSYS/d8jwTh0r7F0WO55icaHe4IAEwHhACPYSKEQ/wyDjHwqEMs3jIVk+LIz j6ivdwmhgmLhLifXHGm7C53RTF995n5afva8Q6084UiVzpQXAgA4zNcoheRgMvmx X7ptXJWBpn40bOQa1YDdmtRmJk5+M1okuIy9Wgw1Bu+KMUuR3t4dOz9oUSL2Q2x+ 8MaVmpsd7L0290e5ylfaIOFvmwQldqclTvPfXeWq4QZTXcLojRRbV7VSawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB2ogYRXGy/B6uvQVJV+o17yP4PbMB8GA1UdIwQY MBaAFJEQEA88x4fWMVMDy3/IjZ4l5W6oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1JBUUR6ekhoOVl4VXdQTGY4aU5uaVhsYnFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9kOTAwYjMtNTQ2Mi00ZWI0LTljOTAt MGUwMzc3ZDRlNmQ2LzEva1JBUUR6ekhoOVl4VXdQTGY4aU5uaVhsYnFnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy9kOTAwYjMtNTQ2Mi00ZWI0LTljOTAtMGUwMzc3ZDRlNmQ2 LzEva1JBUUR6ekhoOVl4VXdQTGY4aU5uaVhsYnFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW1Ml/Izh LbYw6USjeb3GesGv6XEzDG5OCKaAiAh3r2A6S0G/kKBL4fyOuXy6cCc1Q5vTMs8K 9ZC5bUlcgzj1Aqc8T4VRGbrDLReu46QCZC6eZtxzhKivyv/7rigegKhup3Evp4Mu RMf4T2WXtDRh6+9p2JDCxj6H7TIGAAAjsolxxo4KhUS3dM0w+d4OO7MdfGaYmVDd pgXScPvb7K1qj+2qww5TMbedbLjRceQFCUfpBIB/f+EqDO/RiDR4DIz4e0rloTLp A/TraD23lrM1oqCLX9GD9BC5sNJp6T0BX+TSZDXAuS2rFehHh5iLBEITgwpX+NB+ btoXv94ymUimRQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:12 2026 by rpki-client