This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft File: kTOA6LhQRU2zgd3euawsyKL2JTE.mft (raw, json) Hash identifier: TnepL2VJOBMI9YJtaP4VPEh/UVl16xjyh9CviLpbvW8= Subject key identifier: 70:AC:27:5D:C4:7B:E5:8C:63:A5:7F:95:09:C6:F7:68:A0:83:DF:E7 Authority key identifier: 91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31 Certificate issuer: /CN=913380e8b850454db381dddeb9ac2cc8a2f62531 Certificate serial: 019C427DA43EB5D6BBF21315200447E08FF7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft Manifest number: 070B Signing time: Mon 09 Feb 2026 13:00:56 +0000 Manifest this update: Mon 09 Feb 2026 13:00:56 +0000 Manifest next update: Tue 10 Feb 2026 13:00:56 +0000 Files and hashes: 1: kTOA6LhQRU2zgd3euawsyKL2JTE.crl (hash: v2MstD4J7yr9Ms6SBQPJvNOxv16mDpgHA6BTVFrdPiI=) 2: oWAA3712bfUBzXFDQ4qEFnRk4-8.roa (hash: IL/tQvQ5PPq+dUr5LLZdpWR+gfGz/0GU5klPWCUecLo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:a4:3e:b5:d6:bb:f2:13:15:20:04:47:e0:8f:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=913380e8b850454db381dddeb9ac2cc8a2f62531 Validity Not Before: Feb 9 13:00:56 2026 GMT Not After : Feb 10 13:00:56 2026 GMT Subject: CN=70ac275dc47be58c63a57f9509c6f768a083dfe7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:dc:e1:10:97:8d:74:17:f1:17:49:2f:02:4b: a9:5c:a2:0d:1d:6c:96:86:6d:86:fb:49:f7:e3:17: 25:95:37:d1:78:30:1b:40:e1:3b:8f:e4:db:98:0a: aa:c0:bd:af:3f:21:19:b2:43:5e:dd:5f:2e:51:c9: a9:88:53:51:2b:83:9b:51:00:0c:ba:de:33:d7:05: 58:16:97:da:a7:81:41:45:16:6e:2c:3b:34:5e:77: 3d:86:88:02:92:95:9c:aa:89:e4:c0:b1:9c:4d:c3: be:ce:be:54:11:c5:54:9d:37:4a:c9:53:f3:17:4c: 03:5c:6c:15:01:36:cd:81:a1:6c:39:5c:63:80:54: 9d:11:b7:e0:89:e2:94:c1:4c:95:bd:78:5a:28:31: 79:4a:d5:6b:58:3e:11:a2:62:21:8e:4f:92:72:dc: 80:87:07:fa:00:8a:07:6e:c7:98:8e:53:1d:8b:c9: 4e:81:2d:a8:2a:44:29:88:ad:1a:95:f4:23:89:79: 83:16:d2:06:db:8d:a0:a6:a1:23:ed:97:da:17:ba: bc:ef:0a:94:c2:24:b9:1b:37:cb:64:d8:bc:14:53: 97:5e:70:36:20:9a:e1:28:1f:7f:38:26:98:99:32: b5:0f:5a:ff:02:c7:a4:bb:4c:cc:8c:04:09:17:13: 3c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:AC:27:5D:C4:7B:E5:8C:63:A5:7F:95:09:C6:F7:68:A0:83:DF:E7 X509v3 Authority Key Identifier: keyid:91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:dd:9e:70:92:0f:1d:f1:3a:9b:c0:b2:d7:01:dd:f3:c3:56: 47:c8:18:d7:08:ec:c1:f0:17:ad:4f:c9:29:a0:e0:b0:05:52: 20:f7:69:4b:46:ca:f0:51:32:79:47:88:37:a6:9e:71:6f:24: 1d:dc:5c:2a:68:e0:ad:69:0b:0b:96:f9:61:66:a3:66:24:80: 19:6d:30:f0:b9:75:8b:0d:f9:1a:69:ea:53:17:59:d8:c2:93: 04:a6:68:5d:da:87:8e:51:e9:03:da:f3:ce:f9:a1:98:c3:ce: 84:48:fe:ca:a0:88:c1:06:75:70:3b:09:a3:56:1a:a9:11:42: 01:33:78:72:55:fe:fb:4d:e1:7a:0c:77:bf:2c:1e:ab:e1:ca: c3:c4:1c:5f:19:07:a7:f0:e1:5d:b0:0d:41:ae:dc:72:a8:fa: ad:a5:9f:8f:99:3a:f1:42:f7:ec:f8:0c:da:91:71:48:e9:e2: f1:02:16:01:04:13:0c:f1:94:d3:61:e0:9e:5e:04:d9:65:59: b0:d8:bf:f4:7c:2e:7c:4f:de:19:37:b7:15:0e:e1:e8:d3:8d: 1a:79:8a:67:6d:39:2b:05:cb:fc:11:7b:22:ed:c3:1c:48:b7: 76:77:cc:68:62:8a:da:a9:13:40:2e:af:4b:80:4d:82:a4:12: a6:25:b6:5e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfaQ+tda78hMVIARH4I/3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxMzM4MGU4Yjg1MDQ1NGRiMzgxZGRkZWI5YWMyY2M4YTJm NjI1MzEwHhcNMjYwMjA5MTMwMDU2WhcNMjYwMjEwMTMwMDU2WjAzMTEwLwYDVQQD Eyg3MGFjMjc1ZGM0N2JlNThjNjNhNTdmOTUwOWM2Zjc2OGEwODNkZmU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAttzhEJeNdBfxF0kvAkupXKINHWyW hm2G+0n34xcllTfReDAbQOE7j+TbmAqqwL2vPyEZskNe3V8uUcmpiFNRK4ObUQAM ut4z1wVYFpfap4FBRRZuLDs0Xnc9hogCkpWcqonkwLGcTcO+zr5UEcVUnTdKyVPz F0wDXGwVATbNgaFsOVxjgFSdEbfgieKUwUyVvXhaKDF5StVrWD4RomIhjk+SctyA hwf6AIoHbseYjlMdi8lOgS2oKkQpiK0alfQjiXmDFtIG242gpqEj7ZfaF7q87wqU wiS5GzfLZNi8FFOXXnA2IJrhKB9/OCaYmTK1D1r/Aseku0zMjAQJFxM8twIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHCsJ13Ee+WMY6V/lQnG92igg9/nMB8GA1UdIwQY MBaAFJEzgOi4UEVNs4Hd3rmsLMii9iUxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi84Njk0YjktMDFkNy00OGI4LWE4ODIt OTRlNzAwYmQ1NWY1LzEva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi84Njk0YjktMDFkNy00OGI4LWE4ODItOTRlNzAwYmQ1NWY1 LzEva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAad2ecJIP HfE6m8Cy1wHd88NWR8gY1wjswfAXrU/JKaDgsAVSIPdpS0bK8FEyeUeIN6aecW8k HdxcKmjgrWkLC5b5YWajZiSAGW0w8Ll1iw35GmnqUxdZ2MKTBKZoXdqHjlHpA9rz zvmhmMPOhEj+yqCIwQZ1cDsJo1YaqRFCATN4clX++03hegx3vyweq+HKw8QcXxkH p/DhXbANQa7ccqj6raWfj5k68UL37PgM2pFxSOni8QIWAQQTDPGU02Hgnl4E2WVZ sNi/9HwufE/eGTe3FQ7h6NONGnmKZ205KwXL/BF7Iu3DHEi3dnfMaGKK2qkTQC6v S4BNgqQSpiW2Xg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:57 2026 by rpki-client