This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/a94c18-15ca-4b9e-8380-2afc98afdcc7/1/kc04OOdPhNIERp3vJ7j-ehQAFLo.mft File: kc04OOdPhNIERp3vJ7j-ehQAFLo.mft (raw, json) Hash identifier: zGWUOpFO1szSw0eWJGh4dU3cJr9QbtRrFi4WvMjzDfw= Subject key identifier: 11:5B:09:BA:16:00:6E:9F:3B:E4:25:D2:76:11:C8:72:44:89:50:13 Authority key identifier: 91:CD:38:38:E7:4F:84:D2:04:46:9D:EF:27:B8:FE:7A:14:00:14:BA Certificate issuer: /CN=91cd3838e74f84d204469def27b8fe7a140014ba Certificate serial: 019C427DDD5B28E46D46290F93446C699692 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kc04OOdPhNIERp3vJ7j-ehQAFLo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/a94c18-15ca-4b9e-8380-2afc98afdcc7/1/kc04OOdPhNIERp3vJ7j-ehQAFLo.mft Manifest number: 0189 Signing time: Mon 09 Feb 2026 13:01:10 +0000 Manifest this update: Mon 09 Feb 2026 13:01:10 +0000 Manifest next update: Tue 10 Feb 2026 13:01:10 +0000 Files and hashes: 1: kc04OOdPhNIERp3vJ7j-ehQAFLo.crl (hash: bcRoCx25xdIwnyOf/tvqWw1lrFyHpp+UfzjxiEF3bjI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/a94c18-15ca-4b9e-8380-2afc98afdcc7/1/kc04OOdPhNIERp3vJ7j-ehQAFLo.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/a94c18-15ca-4b9e-8380-2afc98afdcc7/1/kc04OOdPhNIERp3vJ7j-ehQAFLo.mft rsync://rpki.ripe.net/repository/DEFAULT/kc04OOdPhNIERp3vJ7j-ehQAFLo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:dd:5b:28:e4:6d:46:29:0f:93:44:6c:69:96:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91cd3838e74f84d204469def27b8fe7a140014ba Validity Not Before: Feb 9 13:01:10 2026 GMT Not After : Feb 10 13:01:10 2026 GMT Subject: CN=115b09ba16006e9f3be425d27611c87244895013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:22:2c:a8:67:5c:fa:00:95:2e:6f:4e:7e:85: 7b:a2:57:ef:ce:7e:fd:3f:bf:d3:a4:7e:de:78:8e: e2:19:f7:54:4f:22:81:e4:e4:ba:7d:6d:1c:9d:af: 4c:8f:65:96:4c:38:28:e2:02:1e:34:d8:dd:e0:37: ca:83:96:5c:1f:32:b2:29:be:ac:98:2f:13:3a:4b: a0:32:a8:aa:f4:cd:fe:6f:f3:fe:57:07:44:68:f9: 5a:99:d6:8a:b8:ad:c4:bf:50:7a:1b:f4:38:60:26: ae:5e:7d:90:3b:71:ea:64:56:5d:f7:13:fc:72:7e: 2e:76:ab:2c:2d:66:92:15:48:18:4b:c4:10:cd:50: 96:bd:99:63:b9:19:f3:8e:d9:e2:4f:cb:ad:64:e6: 29:c0:57:e4:b8:90:08:00:a0:3d:d3:aa:14:37:bf: 78:5e:0b:fd:70:63:86:5d:43:e1:f8:44:ca:35:f5: b9:2a:5e:51:fa:56:15:3b:10:7b:c8:bf:c6:25:f7: 68:3b:58:e8:54:76:4d:ee:23:6a:2c:4e:70:f5:00: 4e:c0:b4:50:33:8a:d5:d9:19:98:41:d2:b7:80:26: 64:cc:2e:3a:55:ef:06:50:e1:15:39:39:cd:ee:cf: cd:71:13:72:6d:dc:8b:dd:df:c4:48:7d:1b:0d:38: a5:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:5B:09:BA:16:00:6E:9F:3B:E4:25:D2:76:11:C8:72:44:89:50:13 X509v3 Authority Key Identifier: keyid:91:CD:38:38:E7:4F:84:D2:04:46:9D:EF:27:B8:FE:7A:14:00:14:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kc04OOdPhNIERp3vJ7j-ehQAFLo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a94c18-15ca-4b9e-8380-2afc98afdcc7/1/kc04OOdPhNIERp3vJ7j-ehQAFLo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a94c18-15ca-4b9e-8380-2afc98afdcc7/1/kc04OOdPhNIERp3vJ7j-ehQAFLo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d3:e6:9d:cc:25:79:bd:a4:8d:02:81:18:9a:62:e1:2e:15:33: 71:b8:20:10:79:a9:97:7a:0d:f1:dc:b4:86:cc:c0:92:f2:dd: 16:9e:76:5c:7a:3e:aa:a6:1a:2e:f3:f5:ce:bb:0b:0c:36:94: 1e:d3:3f:a0:99:32:4d:cd:dc:0f:71:a8:bc:25:40:c4:9f:0d: 75:60:84:16:c5:7e:2c:5b:04:42:56:a2:5c:fd:e6:25:5f:94: 83:4c:e0:5b:90:0b:41:ab:e4:43:53:6b:0d:cc:4b:9c:90:fc: 72:43:4d:bb:64:29:3d:53:20:0d:58:77:8e:65:88:bf:a4:ed: 44:ab:05:40:c2:f9:39:fb:ca:a0:2e:72:8b:d9:43:cb:c3:4c: 34:73:74:bd:b5:f9:5e:f0:46:17:35:95:82:fe:c5:fa:41:92: b3:b3:f3:e2:be:72:9e:37:92:bf:6f:f9:a0:40:7d:e5:b5:47: 0c:e5:50:6b:3e:c2:db:2c:d5:43:ee:d4:75:fc:20:79:7e:44: 00:84:13:0a:61:c0:a5:fb:0b:0c:40:3f:9a:fb:e9:5d:c1:f3: 0c:a4:52:e0:b7:22:a1:7d:36:74:ac:b4:cb:a1:3d:26:3d:32: 25:9e:19:ce:1f:e4:9c:71:8f:a1:ac:99:ea:a6:29:f4:6b:65: 73:ae:4b:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfd1bKORtRikPk0RsaZaSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxY2QzODM4ZTc0Zjg0ZDIwNDQ2OWRlZjI3YjhmZTdhMTQw MDE0YmEwHhcNMjYwMjA5MTMwMTEwWhcNMjYwMjEwMTMwMTEwWjAzMTEwLwYDVQQD EygxMTViMDliYTE2MDA2ZTlmM2JlNDI1ZDI3NjExYzg3MjQ0ODk1MDEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6yIsqGdc+gCVLm9OfoV7olfvzn79 P7/TpH7eeI7iGfdUTyKB5OS6fW0cna9Mj2WWTDgo4gIeNNjd4DfKg5ZcHzKyKb6s mC8TOkugMqiq9M3+b/P+VwdEaPlamdaKuK3Ev1B6G/Q4YCauXn2QO3HqZFZd9xP8 cn4udqssLWaSFUgYS8QQzVCWvZljuRnzjtniT8utZOYpwFfkuJAIAKA906oUN794 Xgv9cGOGXUPh+ETKNfW5Kl5R+lYVOxB7yL/GJfdoO1joVHZN7iNqLE5w9QBOwLRQ M4rV2RmYQdK3gCZkzC46Ve8GUOEVOTnN7s/NcRNybdyL3d/ESH0bDTilYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBFbCboWAG6fO+Ql0nYRyHJEiVATMB8GA1UdIwQY MBaAFJHNODjnT4TSBEad7ye4/noUABS6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2MwNE9PZFBoTklFUnAzdko3ai1laFFBRkxvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9hOTRjMTgtMTVjYS00YjllLTgzODAt MmFmYzk4YWZkY2M3LzEva2MwNE9PZFBoTklFUnAzdko3ai1laFFBRkxvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC9hOTRjMTgtMTVjYS00YjllLTgzODAtMmFmYzk4YWZkY2M3 LzEva2MwNE9PZFBoTklFUnAzdko3ai1laFFBRkxvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0+adzCV5 vaSNAoEYmmLhLhUzcbggEHmpl3oN8dy0hszAkvLdFp52XHo+qqYaLvP1zrsLDDaU HtM/oJkyTc3cD3GovCVAxJ8NdWCEFsV+LFsEQlaiXP3mJV+Ug0zgW5ALQavkQ1Nr DcxLnJD8ckNNu2QpPVMgDVh3jmWIv6TtRKsFQML5OfvKoC5yi9lDy8NMNHN0vbX5 XvBGFzWVgv7F+kGSs7Pz4r5ynjeSv2/5oEB95bVHDOVQaz7C2yzVQ+7UdfwgeX5E AIQTCmHApfsLDEA/mvvpXcHzDKRS4LcioX02dKy0y6E9Jj0yJZ4Zzh/knHGPoayZ 6qYp9Gtlc65Lxw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:54 2026 by rpki-client