This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.mft File: kdAcR_AOZPNcx1LQOzSnG3FAaz8.mft (raw, json) Hash identifier: 4T0/JCXNS4fsig9ozzpyCXqm3IMEJsiNOPpHF2VeJZ8= Subject key identifier: E5:34:38:1E:B1:0B:FE:00:24:60:E9:98:9C:85:29:60:A8:B8:D2:41 Authority key identifier: 91:D0:1C:47:F0:0E:64:F3:5C:C7:52:D0:3B:34:A7:1B:71:40:6B:3F Certificate issuer: /CN=91d01c47f00e64f35cc752d03b34a71b71406b3f Certificate serial: 019C4246365149FAE185ED36311FF1945539 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdAcR_AOZPNcx1LQOzSnG3FAaz8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.mft Manifest number: 173E Signing time: Mon 09 Feb 2026 12:00:23 +0000 Manifest this update: Mon 09 Feb 2026 12:00:23 +0000 Manifest next update: Tue 10 Feb 2026 12:00:23 +0000 Files and hashes: 1: 5QmOeOcUdY7PgR2mhomMmURmuqs.roa (hash: nAdOMEid1C3Yq0ETT9B3VCzoGTlapbIXU3Ku/VQ6Zh4=) 2: eyf8XzSbncmCJU29RuqgmWhSNro.roa (hash: mUIcsYMRdVByHfVcrIRSb1EWADuJM/ORhSKfGGlrQmI=) 3: kdAcR_AOZPNcx1LQOzSnG3FAaz8.crl (hash: SJRMLelhKm3+1ySAkQ8AuscIgeRzDX+u9Gl++kzFMf4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.mft rsync://rpki.ripe.net/repository/DEFAULT/kdAcR_AOZPNcx1LQOzSnG3FAaz8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:36:51:49:fa:e1:85:ed:36:31:1f:f1:94:55:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91d01c47f00e64f35cc752d03b34a71b71406b3f Validity Not Before: Feb 9 12:00:23 2026 GMT Not After : Feb 10 12:00:23 2026 GMT Subject: CN=e534381eb10bfe002460e9989c852960a8b8d241 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fb:eb:86:c0:9b:16:71:b0:4b:9f:17:c5:d0: 69:1a:d9:94:99:88:81:9b:5a:0d:e7:f3:68:7d:12: 78:2d:b5:6c:69:41:e7:31:98:64:5f:1f:d0:aa:b3: f5:4f:5f:0c:b2:7c:1d:ba:26:41:2e:17:65:5f:a0: 14:7d:59:3d:88:55:c9:c4:f7:b1:b4:27:42:36:c5: 65:33:24:17:ea:40:8b:e1:a2:78:f6:5c:d0:65:35: 9e:a4:fb:84:d9:db:f7:e5:dc:3b:69:cb:c3:e6:ed: 6f:3e:05:e2:6d:5c:26:e8:6c:fb:2b:43:2f:e7:84: 20:f3:d5:34:44:a1:b7:71:d0:d6:b5:c3:7b:bf:f0: cd:27:af:d6:c7:b9:4b:38:69:20:82:d8:db:34:18: 5c:ee:74:56:1b:33:36:f1:f0:21:0a:83:cf:ce:7f: c8:10:dc:02:a0:b4:0b:2e:54:09:a1:8c:69:d9:e4: 7a:eb:9e:37:8f:26:95:55:da:44:f5:bc:10:9e:c7: 3b:93:06:72:c2:2f:14:7e:e0:87:10:c2:41:f7:26: b9:ad:37:53:8b:68:37:b9:a8:7a:7c:86:a5:3f:19: 9a:93:56:20:45:73:c0:5e:bf:3f:58:b5:61:8c:e5: b4:5c:30:02:b0:57:b6:a7:85:00:a9:03:ba:74:f5: 0c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:34:38:1E:B1:0B:FE:00:24:60:E9:98:9C:85:29:60:A8:B8:D2:41 X509v3 Authority Key Identifier: keyid:91:D0:1C:47:F0:0E:64:F3:5C:C7:52:D0:3B:34:A7:1B:71:40:6B:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdAcR_AOZPNcx1LQOzSnG3FAaz8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b0fc0c-c537-40b4-9b5b-56b006ef0d3b/1/kdAcR_AOZPNcx1LQOzSnG3FAaz8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:6b:a2:7c:62:95:36:ea:58:53:2c:17:64:e0:25:4e:37:d4: 6d:1e:6f:7b:3f:52:35:1b:07:0e:a7:37:80:bf:4b:aa:b3:69: 97:61:3c:cd:fb:62:e5:53:e0:46:b1:2a:b1:82:e0:a9:14:0a: 8f:f1:b5:4e:91:b7:b6:e5:ef:fd:90:98:7b:f3:6b:7c:74:c2: a7:b2:09:69:6f:53:c0:35:70:28:b4:a4:69:a2:fd:a9:2b:35: 26:40:2b:ad:d4:2e:b5:11:f6:f7:ec:01:fd:1c:97:5f:26:bb: dc:9c:05:7b:cf:0f:4d:9b:52:d2:b4:5d:a1:a4:3f:a7:00:dd: 4f:c6:75:29:05:0d:82:e4:5e:45:85:f9:70:65:db:e3:7e:66: ae:94:32:b1:fb:54:b9:34:cb:0b:4d:3f:77:4b:dd:ff:cd:9c: 4d:bf:e1:ce:43:d7:a9:4b:76:ea:f4:f0:b7:09:2f:68:2f:bc: cb:77:90:ec:8b:e3:e4:14:5b:b5:be:ac:b9:2d:cb:01:ec:43: ab:e3:ca:5d:e4:71:96:a2:d2:df:ca:5d:53:68:3f:f8:48:9f: 04:9f:bc:69:03:43:7e:26:74:93:ca:28:cd:ce:dd:f5:c0:44: 43:ac:7e:94:34:b7:b3:5e:51:71:29:c7:12:58:0e:3a:b7:7a: 32:7c:75:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRjZRSfrhhe02MR/xlFU5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxZDAxYzQ3ZjAwZTY0ZjM1Y2M3NTJkMDNiMzRhNzFiNzE0 MDZiM2YwHhcNMjYwMjA5MTIwMDIzWhcNMjYwMjEwMTIwMDIzWjAzMTEwLwYDVQQD EyhlNTM0MzgxZWIxMGJmZTAwMjQ2MGU5OTg5Yzg1Mjk2MGE4YjhkMjQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyvvrhsCbFnGwS58XxdBpGtmUmYiB m1oN5/NofRJ4LbVsaUHnMZhkXx/QqrP1T18MsnwduiZBLhdlX6AUfVk9iFXJxPex tCdCNsVlMyQX6kCL4aJ49lzQZTWepPuE2dv35dw7acvD5u1vPgXibVwm6Gz7K0Mv 54Qg89U0RKG3cdDWtcN7v/DNJ6/Wx7lLOGkggtjbNBhc7nRWGzM28fAhCoPPzn/I ENwCoLQLLlQJoYxp2eR66543jyaVVdpE9bwQnsc7kwZywi8UfuCHEMJB9ya5rTdT i2g3uah6fIalPxmak1YgRXPAXr8/WLVhjOW0XDACsFe2p4UAqQO6dPUMLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOU0OB6xC/4AJGDpmJyFKWCouNJBMB8GA1UdIwQY MBaAFJHQHEfwDmTzXMdS0Ds0pxtxQGs/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2RBY1JfQU9aUE5jeDFMUU96U25HM0ZBYXo4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9iMGZjMGMtYzUzNy00MGI0LTliNWIt NTZiMDA2ZWYwZDNiLzEva2RBY1JfQU9aUE5jeDFMUU96U25HM0ZBYXo4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi9iMGZjMGMtYzUzNy00MGI0LTliNWItNTZiMDA2ZWYwZDNi LzEva2RBY1JfQU9aUE5jeDFMUU96U25HM0ZBYXo4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaGuifGKV NupYUywXZOAlTjfUbR5vez9SNRsHDqc3gL9LqrNpl2E8zfti5VPgRrEqsYLgqRQK j/G1TpG3tuXv/ZCYe/NrfHTCp7IJaW9TwDVwKLSkaaL9qSs1JkArrdQutRH29+wB /RyXXya73JwFe88PTZtS0rRdoaQ/pwDdT8Z1KQUNguReRYX5cGXb435mrpQysftU uTTLC00/d0vd/82cTb/hzkPXqUt26vTwtwkvaC+8y3eQ7Ivj5BRbtb6suS3LAexD q+PKXeRxlqLS38pdU2g/+EifBJ+8aQNDfiZ0k8oozc7d9cBEQ6x+lDS3s15RcSnH ElgOOrd6Mnx1WA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:30 2026 by rpki-client