This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft File: WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft (raw, json) Hash identifier: zW61K9kfN8z+Tfbb4wv9IhP16UXGTq9OPVEaua1Gx3M= Subject key identifier: 07:97:D5:3D:08:85:CF:E8:17:97:77:E4:7B:49:D0:E4:FC:6C:93:73 Authority key identifier: 58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0 Certificate issuer: /CN=58a763f0c467abaa701d968c3749c6dad03489b0 Certificate serial: 019C42EB3F520944D5768FAE3AB33858C66C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft Manifest number: 0D5F Signing time: Mon 09 Feb 2026 15:00:39 +0000 Manifest this update: Mon 09 Feb 2026 15:00:39 +0000 Manifest next update: Tue 10 Feb 2026 15:00:39 +0000 Files and hashes: 1: 24BGrstatddE0NyJ9qN4s0D1NFI.roa (hash: EPL27sc3ORpLwbEuXhoxlqkF4dPOLK+8gemHJMTBg/w=) 2: WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl (hash: k0MxIgOdDGGVUmMzAkufN10vDGFOJYLH8CAM9JuIV6E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:3f:52:09:44:d5:76:8f:ae:3a:b3:38:58:c6:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58a763f0c467abaa701d968c3749c6dad03489b0 Validity Not Before: Feb 9 15:00:39 2026 GMT Not After : Feb 10 15:00:39 2026 GMT Subject: CN=0797d53d0885cfe8179777e47b49d0e4fc6c9373 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e4:16:30:39:e6:d4:74:d1:80:44:60:e2:12: b6:ef:a1:06:c2:21:16:fa:1e:3f:7f:69:15:18:c1: bd:23:08:1d:04:9a:e1:f9:78:17:8c:b6:b2:a2:8d: a5:b9:fd:e2:2e:71:b5:c9:21:6c:58:d7:90:83:d9: 29:90:67:b1:3f:d7:e9:eb:88:db:a1:db:1c:22:01: 3b:03:92:4d:8c:f0:a5:9f:22:a4:ba:ae:cb:49:55: 93:94:01:41:03:42:53:a1:73:ca:95:85:5f:f9:53: dd:96:f9:78:8e:96:25:11:04:15:b7:f8:f5:58:9e: 4d:ff:79:ce:1e:52:07:94:b1:3f:71:8a:48:19:6f: 9f:df:63:81:75:ba:6f:a4:fe:51:cf:15:28:15:51: 16:87:4d:f9:4a:61:b0:64:1a:1a:35:36:3d:99:2e: 17:ad:22:58:cf:24:2e:12:d9:65:15:80:a5:ec:5f: 09:d5:0c:d7:fd:23:5e:f3:01:87:51:a9:92:9a:45: b4:72:6b:51:d7:72:21:3c:8c:3e:fb:ee:3b:ed:b7: 8a:7c:35:d8:b0:78:4e:98:fc:94:b1:51:0d:e4:91: 21:8d:19:fe:8e:6b:3b:a2:14:3f:f4:69:55:6e:74: 5c:b6:86:32:50:c6:0e:8a:40:4a:03:c0:39:8a:b7: c7:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:97:D5:3D:08:85:CF:E8:17:97:77:E4:7B:49:D0:E4:FC:6C:93:73 X509v3 Authority Key Identifier: keyid:58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:32:9a:1d:44:f2:58:17:63:6a:d6:6b:43:36:f5:15:e3:30: 89:2e:86:ed:32:7c:09:f3:08:76:d6:f1:db:d3:19:00:3f:24: 86:39:08:ab:13:20:2f:99:a0:0b:b6:57:c1:2b:f8:41:2f:7d: 09:db:84:c5:3f:86:05:3c:d6:ed:eb:58:42:4d:ac:e4:91:80: 6f:e8:df:40:9d:e5:3c:5d:c9:52:8f:84:74:f7:d4:c2:7a:e9: 7e:b7:48:be:b8:86:32:84:4e:dd:13:bc:85:85:b4:48:fb:dd: 9e:36:fe:a7:5d:f1:be:44:f3:50:dd:d4:05:4c:31:3d:6e:0a: a3:c4:10:99:a0:fa:09:8d:4a:4b:86:93:06:28:43:17:7d:f5: 6a:25:b3:55:03:62:b6:54:f7:5c:13:a0:18:a4:bd:57:c8:3f: ad:50:fb:10:23:dd:04:92:ba:8e:a9:07:60:ac:5d:2c:71:79: 4d:c3:6a:2e:e7:37:a5:a2:97:92:b1:f8:a5:c1:04:84:54:a9: d3:ba:04:68:3d:41:ad:c5:f4:d6:c8:79:ca:ff:f0:18:09:1e: 88:0f:69:74:d9:02:61:f2:1b:8e:64:bc:49:62:b0:f9:ac:d1: 6b:70:cc:98:2f:81:f8:af:93:95:36:78:45:4e:73:cb:46:eb: 6f:b5:aa:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6z9SCUTVdo+uOrM4WMZsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4YTc2M2YwYzQ2N2FiYWE3MDFkOTY4YzM3NDljNmRhZDAz NDg5YjAwHhcNMjYwMjA5MTUwMDM5WhcNMjYwMjEwMTUwMDM5WjAzMTEwLwYDVQQD EygwNzk3ZDUzZDA4ODVjZmU4MTc5Nzc3ZTQ3YjQ5ZDBlNGZjNmM5MzczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAteQWMDnm1HTRgERg4hK276EGwiEW +h4/f2kVGMG9IwgdBJrh+XgXjLayoo2luf3iLnG1ySFsWNeQg9kpkGexP9fp64jb odscIgE7A5JNjPClnyKkuq7LSVWTlAFBA0JToXPKlYVf+VPdlvl4jpYlEQQVt/j1 WJ5N/3nOHlIHlLE/cYpIGW+f32OBdbpvpP5RzxUoFVEWh035SmGwZBoaNTY9mS4X rSJYzyQuEtllFYCl7F8J1QzX/SNe8wGHUamSmkW0cmtR13IhPIw+++477beKfDXY sHhOmPyUsVEN5JEhjRn+jms7ohQ/9GlVbnRctoYyUMYOikBKA8A5irfHnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAeX1T0Ihc/oF5d35HtJ0OT8bJNzMB8GA1UdIwQY MBaAFFinY/DEZ6uqcB2WjDdJxtrQNImwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0tkajhNUm5xNnB3SFphTU4wbkcydEEwaWJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC81ZDY0OTEtMDhmZi00OTRkLTg0MzMt MDk4ZjdjNWZkOTc1LzEvV0tkajhNUm5xNnB3SFphTU4wbkcydEEwaWJBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC81ZDY0OTEtMDhmZi00OTRkLTg0MzMtMDk4ZjdjNWZkOTc1 LzEvV0tkajhNUm5xNnB3SFphTU4wbkcydEEwaWJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPDKaHUTy WBdjatZrQzb1FeMwiS6G7TJ8CfMIdtbx29MZAD8khjkIqxMgL5mgC7ZXwSv4QS99 CduExT+GBTzW7etYQk2s5JGAb+jfQJ3lPF3JUo+EdPfUwnrpfrdIvriGMoRO3RO8 hYW0SPvdnjb+p13xvkTzUN3UBUwxPW4Ko8QQmaD6CY1KS4aTBihDF331aiWzVQNi tlT3XBOgGKS9V8g/rVD7ECPdBJK6jqkHYKxdLHF5TcNqLuc3paKXkrH4pcEEhFSp 07oEaD1BrcX01sh5yv/wGAkeiA9pdNkCYfIbjmS8SWKw+azRa3DMmC+B+K+TlTZ4 RU5zy0brb7WqxA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:09 2026 by rpki-client