This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.mft File: ksrhHed02u8FJ0JGPOlU9SHG0nI.mft (raw, json) Hash identifier: m9wkdfBEybTvgGc3X6+1hBICOO8LwDn+NZ2+ENfiwpA= Subject key identifier: 03:73:E9:BB:83:B9:6C:FB:7B:A4:62:A3:79:DF:95:7D:6E:B1:17:C4 Authority key identifier: 92:CA:E1:1D:E7:74:DA:EF:05:27:42:46:3C:E9:54:F5:21:C6:D2:72 Certificate issuer: /CN=92cae11de774daef052742463ce954f521c6d272 Certificate serial: 019C4321DCE62A0EDBA22FDC14536E2AD30C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ksrhHed02u8FJ0JGPOlU9SHG0nI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.mft Manifest number: 1208 Signing time: Mon 09 Feb 2026 16:00:18 +0000 Manifest this update: Mon 09 Feb 2026 16:00:18 +0000 Manifest next update: Tue 10 Feb 2026 16:00:18 +0000 Files and hashes: 1: ksrhHed02u8FJ0JGPOlU9SHG0nI.crl (hash: Jtloc2EnVUjWXTg8tgbJoG5GI2Elz6tb+qNvguRhvdQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.mft rsync://rpki.ripe.net/repository/DEFAULT/ksrhHed02u8FJ0JGPOlU9SHG0nI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:dc:e6:2a:0e:db:a2:2f:dc:14:53:6e:2a:d3:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92cae11de774daef052742463ce954f521c6d272 Validity Not Before: Feb 9 16:00:18 2026 GMT Not After : Feb 10 16:00:18 2026 GMT Subject: CN=0373e9bb83b96cfb7ba462a379df957d6eb117c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:56:35:62:b0:06:78:0b:70:9c:38:4c:37:08: cd:4d:c1:c3:00:39:ef:25:a8:9b:cc:c8:1f:85:34: 4f:90:77:87:bb:76:31:f7:b9:c4:78:9d:10:6c:93: a7:09:a7:92:cb:03:87:b2:4f:d7:bc:5f:b3:74:8f: 79:84:b6:cb:18:e7:5c:cd:89:ce:35:7e:61:51:03: 23:a1:b4:bb:f3:27:7a:4e:9a:ed:c0:62:33:69:55: b1:3c:b3:94:55:f5:9c:ca:38:ae:d2:65:25:01:3a: 3f:fe:d0:cc:7c:e1:9e:b2:71:b6:4d:9b:12:5f:26: 40:12:09:4e:3c:e3:b3:a7:aa:ce:d3:e7:fc:e3:5a: 42:f1:41:29:20:df:d3:1e:97:fe:6b:96:92:83:b7: 53:9c:04:84:2b:13:5a:dd:06:97:07:4c:d8:3b:09: a9:4d:1b:ad:3b:19:b2:38:87:7a:d4:d1:d2:0e:92: 3c:7b:3a:6f:fb:c0:ce:61:9d:d1:90:2a:4d:cb:60: 8c:a0:a3:79:9a:0f:1d:ed:73:56:7b:72:96:1f:34: b6:a9:6b:e4:f2:7e:17:01:06:d0:00:ad:85:ed:9f: 3a:40:09:5f:bf:43:50:bd:d8:c5:fc:ab:62:4f:16: cc:12:3e:b4:36:66:9d:c4:a6:e8:39:fd:c4:dc:0b: bc:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:73:E9:BB:83:B9:6C:FB:7B:A4:62:A3:79:DF:95:7D:6E:B1:17:C4 X509v3 Authority Key Identifier: keyid:92:CA:E1:1D:E7:74:DA:EF:05:27:42:46:3C:E9:54:F5:21:C6:D2:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ksrhHed02u8FJ0JGPOlU9SHG0nI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:f3:6f:b8:54:82:23:97:0a:32:54:d1:60:4e:fa:9d:62:ea: 6f:e9:02:76:6d:1f:f0:57:5c:47:36:14:aa:30:e2:3b:97:67: 24:1d:da:7c:cd:6e:d0:93:23:23:8b:f2:30:b7:09:e4:e4:be: cb:05:7d:0a:a8:1b:e3:33:d7:17:4c:2e:f2:59:ca:de:24:29: 91:7a:5e:c0:28:ba:6b:6e:10:61:aa:a3:e0:f2:be:da:0b:f0: 03:46:64:5a:00:b1:45:6d:7c:d4:74:d1:e4:7f:fd:b6:33:53: 74:23:95:51:46:77:df:23:76:21:f5:a9:ef:d6:ce:54:ca:32: 51:35:a5:0c:b5:3a:0f:a6:46:99:f5:ad:d2:dc:87:10:13:5c: d8:35:c7:84:ab:56:b8:bf:81:0a:c4:64:20:ff:87:c6:52:e0: 4c:4c:3f:7b:e2:bc:a5:e8:79:d2:7a:af:a7:d9:9f:ae:75:33: 29:a5:cf:26:aa:03:97:64:00:c5:e9:e6:8d:72:89:28:da:b0: c9:48:b7:d4:c7:5f:68:1c:93:f4:5e:7f:37:6e:dc:17:41:42: e9:3c:36:0c:f2:3b:68:d1:fc:43:9a:3c:fe:18:cb:66:64:76: 2e:24:0a:6c:e9:51:76:3a:90:a5:ff:0d:07:d2:b4:2f:e1:d5: 5b:11:8d:97 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIdzmKg7boi/cFFNuKtMMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyY2FlMTFkZTc3NGRhZWYwNTI3NDI0NjNjZTk1NGY1MjFj NmQyNzIwHhcNMjYwMjA5MTYwMDE4WhcNMjYwMjEwMTYwMDE4WjAzMTEwLwYDVQQD EygwMzczZTliYjgzYjk2Y2ZiN2JhNDYyYTM3OWRmOTU3ZDZlYjExN2M0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA01Y1YrAGeAtwnDhMNwjNTcHDADnv JaibzMgfhTRPkHeHu3Yx97nEeJ0QbJOnCaeSywOHsk/XvF+zdI95hLbLGOdczYnO NX5hUQMjobS78yd6TprtwGIzaVWxPLOUVfWcyjiu0mUlATo//tDMfOGesnG2TZsS XyZAEglOPOOzp6rO0+f841pC8UEpIN/THpf+a5aSg7dTnASEKxNa3QaXB0zYOwmp TRutOxmyOId61NHSDpI8ezpv+8DOYZ3RkCpNy2CMoKN5mg8d7XNWe3KWHzS2qWvk 8n4XAQbQAK2F7Z86QAlfv0NQvdjF/KtiTxbMEj60NmadxKboOf3E3Au8nQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFANz6buDuWz7e6Rio3nflX1usRfEMB8GA1UdIwQY MBaAFJLK4R3ndNrvBSdCRjzpVPUhxtJyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3NyaEhlZDAydThGSjBKR1BPbFU5U0hHMG5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9lZGY0MzUtMWFiZi00NzBlLWJhNmQt ZWZmNmZkN2QzYjI4LzEva3NyaEhlZDAydThGSjBKR1BPbFU5U0hHMG5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS9lZGY0MzUtMWFiZi00NzBlLWJhNmQtZWZmNmZkN2QzYjI4 LzEva3NyaEhlZDAydThGSjBKR1BPbFU5U0hHMG5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfPNvuFSC I5cKMlTRYE76nWLqb+kCdm0f8FdcRzYUqjDiO5dnJB3afM1u0JMjI4vyMLcJ5OS+ ywV9Cqgb4zPXF0wu8lnK3iQpkXpewCi6a24QYaqj4PK+2gvwA0ZkWgCxRW181HTR 5H/9tjNTdCOVUUZ33yN2IfWp79bOVMoyUTWlDLU6D6ZGmfWt0tyHEBNc2DXHhKtW uL+BCsRkIP+HxlLgTEw/e+K8peh50nqvp9mfrnUzKaXPJqoDl2QAxenmjXKJKNqw yUi31MdfaByT9F5/N27cF0FC6Tw2DPI7aNH8Q5o8/hjLZmR2LiQKbOlRdjqQpf8N B9K0L+HVWxGNlw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:40:39 2026 by rpki-client