This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft File: ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft (raw, json) Hash identifier: u5gCwQF12XI+b1Gl0ig+/nLNSUfTyRv3/Ny8iH1H4z0= Subject key identifier: 17:B5:33:EC:5B:19:A7:21:08:C6:81:6B:DD:2F:F1:74:AD:99:B9:E3 Authority key identifier: 72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5 Certificate issuer: /CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5 Certificate serial: 019C44D9C31B0F28179608835EC88099F920 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft Manifest number: 1812 Signing time: Tue 10 Feb 2026 00:00:47 +0000 Manifest this update: Tue 10 Feb 2026 00:00:47 +0000 Manifest next update: Wed 11 Feb 2026 00:00:47 +0000 Files and hashes: 1: T6aVPmNcqE5HPe1U1bzT5Q4XHzY.roa (hash: 8+A3ZIl9Wsa+nE0z7P+iEM6IdzJ3gW89vJMfXzNpKrc=) 2: ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl (hash: rXaqvIAs5Euf8n74tyyZtbU++vmqWsR0V+V1ozDR6Js=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:d9:c3:1b:0f:28:17:96:08:83:5e:c8:80:99:f9:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5 Validity Not Before: Feb 10 00:00:47 2026 GMT Not After : Feb 11 00:00:47 2026 GMT Subject: CN=17b533ec5b19a72108c6816bdd2ff174ad99b9e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c1:2b:e8:52:9d:99:f2:30:c8:af:32:dd:fa: ba:74:95:d8:1c:69:0e:58:bd:2f:f9:be:c1:49:b9: aa:8e:28:fa:50:a8:a0:2b:a8:ea:6a:9a:1d:e9:c8: 83:54:b8:48:26:31:89:ea:4f:d5:9a:71:b4:0f:20: 27:fa:f5:ba:af:90:16:81:93:f1:19:8b:db:b5:fe: 33:42:4d:a0:73:31:66:6b:9a:c3:86:85:74:3c:74: b6:23:35:23:0d:6a:e5:4d:75:a0:25:d6:5f:e8:4e: 21:e0:2d:30:66:e8:a9:da:5f:ab:be:2d:9e:9e:74: 93:23:09:00:88:20:cf:e9:74:5b:20:9b:0e:0a:95: f7:60:2e:7a:2e:15:db:44:df:42:02:9f:ad:fb:aa: 76:20:2e:51:14:6c:6d:f4:47:5b:90:a4:f9:b6:23: 02:af:14:20:bd:1a:76:93:58:58:15:b4:2c:e7:b1: 9e:65:9d:33:b2:76:f8:f1:dd:4e:80:87:c1:38:d4: cc:66:21:a2:8e:3d:07:b8:1b:84:68:65:e1:58:a1: 8f:c0:c0:8d:16:5f:14:be:74:16:13:a6:cd:54:fe: 92:79:53:af:ae:31:e4:ac:44:07:3e:3b:9f:4b:d3: 99:ee:d3:1e:91:90:35:67:4a:a9:a5:c5:42:b0:7e: a1:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:B5:33:EC:5B:19:A7:21:08:C6:81:6B:DD:2F:F1:74:AD:99:B9:E3 X509v3 Authority Key Identifier: keyid:72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:d4:a3:20:fc:75:4f:53:0c:2e:f4:75:4e:75:6b:61:a4:e0: 40:de:fa:e1:91:88:93:f8:65:90:e2:a8:23:9f:8b:4e:7c:00: a4:fd:65:03:61:e3:cb:b7:38:fc:7b:91:67:98:8a:d9:cb:25: 40:02:01:da:28:71:3c:30:5b:c5:73:b5:a6:9a:1f:dc:8f:45: 17:0b:1b:ca:5e:78:19:ac:dd:91:d1:aa:23:85:19:30:e1:58: 82:0e:f0:6d:53:9c:c3:20:cf:10:d8:b9:f6:79:11:f7:4d:b2: 43:c0:20:66:ff:12:ce:ec:46:e3:0d:6c:aa:ac:70:4d:76:fb: f0:8b:59:f8:a7:55:0c:ce:83:28:fa:2b:fd:c3:32:07:32:6f: a2:33:10:ec:cd:7c:20:78:71:74:79:e0:ee:3a:6a:10:30:c6: d7:63:a3:42:ec:4f:87:ff:6f:a4:02:df:b0:da:68:e2:92:6a: 8f:25:02:61:f8:21:ce:ca:8d:8f:33:d5:05:5d:91:ad:2f:a8: 89:d4:49:87:40:56:eb:fd:6e:bd:0c:2b:cb:8a:53:b2:da:8e: 68:9b:06:f7:30:60:6d:d9:ca:56:e6:0e:e6:03:45:e4:db:ec: 21:fa:2c:f7:92:4d:6c:50:09:bc:06:dc:4d:bd:a8:6f:6c:d0: cd:41:9f:7c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxE2cMbDygXlgiDXsiAmfkgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyNDJhMTM3MTVmYzU1NzhjZGMwNWFhYWE2OGM2YTQxM2Nk YmM5ZjUwHhcNMjYwMjEwMDAwMDQ3WhcNMjYwMjExMDAwMDQ3WjAzMTEwLwYDVQQD EygxN2I1MzNlYzViMTlhNzIxMDhjNjgxNmJkZDJmZjE3NGFkOTliOWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAscEr6FKdmfIwyK8y3fq6dJXYHGkO WL0v+b7BSbmqjij6UKigK6jqapod6ciDVLhIJjGJ6k/VmnG0DyAn+vW6r5AWgZPx GYvbtf4zQk2gczFma5rDhoV0PHS2IzUjDWrlTXWgJdZf6E4h4C0wZuip2l+rvi2e nnSTIwkAiCDP6XRbIJsOCpX3YC56LhXbRN9CAp+t+6p2IC5RFGxt9EdbkKT5tiMC rxQgvRp2k1hYFbQs57GeZZ0zsnb48d1OgIfBONTMZiGijj0HuBuEaGXhWKGPwMCN Fl8UvnQWE6bNVP6SeVOvrjHkrEQHPjufS9OZ7tMekZA1Z0qppcVCsH6hQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBe1M+xbGachCMaBa90v8XStmbnjMB8GA1UdIwQY MBaAFHJCoTcV/FV4zcBaqqaMakE828n1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2tLaE54WDhWWGpOd0ZxcXBveHFRVHpieWZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi85MGFhMWUtMDA5OC00ZmRhLTk4Mjkt YTE1Y2NmNWI0MTNlLzEvY2tLaE54WDhWWGpOd0ZxcXBveHFRVHpieWZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi85MGFhMWUtMDA5OC00ZmRhLTk4MjktYTE1Y2NmNWI0MTNl LzEvY2tLaE54WDhWWGpOd0ZxcXBveHFRVHpieWZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASdSjIPx1 T1MMLvR1TnVrYaTgQN764ZGIk/hlkOKoI5+LTnwApP1lA2Hjy7c4/HuRZ5iK2csl QAIB2ihxPDBbxXO1ppof3I9FFwsbyl54GazdkdGqI4UZMOFYgg7wbVOcwyDPENi5 9nkR902yQ8AgZv8SzuxG4w1sqqxwTXb78ItZ+KdVDM6DKPor/cMyBzJvojMQ7M18 IHhxdHng7jpqEDDG12OjQuxPh/9vpALfsNpo4pJqjyUCYfghzsqNjzPVBV2RrS+o idRJh0BW6/1uvQwry4pTstqOaJsG9zBgbdnKVuYO5gNF5NvsIfos95JNbFAJvAbc Tb2ob2zQzUGffA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:47:45 2026 by rpki-client