This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft File: kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft (raw, json) Hash identifier: FJ89pzdIz1OLsxtUIe6PbIZTSR6YwQc1PYHzqAD8jH0= Subject key identifier: 72:76:BF:09:0F:15:88:DC:EC:B3:4B:7D:4A:7F:A0:2E:2F:00:96:4C Authority key identifier: 92:02:03:6A:43:DA:D0:6B:6C:2C:C6:4B:DE:76:78:70:67:6F:87:B3 Certificate issuer: /CN=9202036a43dad06b6c2cc64bde767870676f87b3 Certificate serial: 019C4322EA9AAF3396BA340EE166732B1B4F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft Manifest number: 10AD Signing time: Mon 09 Feb 2026 16:01:27 +0000 Manifest this update: Mon 09 Feb 2026 16:01:27 +0000 Manifest next update: Tue 10 Feb 2026 16:01:27 +0000 Files and hashes: 1: T9aoETtBOnAVOsZczCvbKoC8bLo.roa (hash: VbBc2wBHX0IMIYgXxrNNTjAei7gPUDMqr5TSGjCiTRo=) 2: kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl (hash: 7dTmX8G6sIc2xglVQwgOg6aCisSes2nCee5QPVx1XGE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:ea:9a:af:33:96:ba:34:0e:e1:66:73:2b:1b:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9202036a43dad06b6c2cc64bde767870676f87b3 Validity Not Before: Feb 9 16:01:27 2026 GMT Not After : Feb 10 16:01:27 2026 GMT Subject: CN=7276bf090f1588dcecb34b7d4a7fa02e2f00964c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:00:91:09:0a:00:69:8e:b4:5a:cd:27:c0:34: 9a:7b:b7:1a:5c:be:e6:01:32:5b:38:02:02:12:66: 85:7b:b3:57:60:d5:fe:d5:52:d7:2f:50:bd:07:ff: b3:ce:9b:aa:59:fc:ff:c7:e0:dd:28:22:3e:e5:2c: ea:cd:8f:e0:b8:d3:49:ff:91:f2:f4:c2:9d:c5:27: 8e:e0:ea:d3:87:3f:f4:57:5e:fd:46:f9:d4:2c:ef: 6c:57:36:47:d0:44:35:f7:91:cd:a6:3d:3c:6e:f0: fc:e9:8a:ca:7f:dc:96:cd:a0:66:fb:0e:35:21:77: 13:ed:6b:8d:e9:24:f1:70:ef:cb:0e:99:74:07:06: 52:6a:90:27:d8:1e:29:d3:a0:51:99:af:e7:65:46: c8:7d:b1:e1:d9:21:3a:7b:87:9a:df:64:a1:23:32: 25:3c:e9:0e:3e:1a:1a:40:a5:0e:08:f7:55:27:83: 89:94:e7:50:fa:a7:e6:9f:7f:80:a3:b3:2b:f0:f3: b3:a3:f8:bd:ad:45:e5:0a:b0:98:ad:b2:c4:00:63: 0f:4d:1d:40:58:05:83:85:19:f0:03:9c:e9:1e:83: 45:b5:0e:32:b6:4a:df:39:17:e8:a2:07:1b:24:38: 01:91:ae:a2:23:ba:7d:ef:68:e0:18:92:02:70:a7: 9e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:76:BF:09:0F:15:88:DC:EC:B3:4B:7D:4A:7F:A0:2E:2F:00:96:4C X509v3 Authority Key Identifier: keyid:92:02:03:6A:43:DA:D0:6B:6C:2C:C6:4B:DE:76:78:70:67:6F:87:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:38:3f:06:90:a4:59:91:49:cc:a3:93:a1:cd:69:a0:65:d9: be:54:53:b1:ec:e1:9e:ee:d3:51:e8:af:9b:fb:1c:dc:eb:d2: 04:a0:62:6a:9f:de:0d:d0:05:29:ba:3a:ab:dc:a6:ec:5e:91: b7:93:18:ef:bb:26:ad:3e:f6:ec:08:85:12:d1:c3:84:0b:fd: 1a:05:c1:a2:4b:0a:49:b1:6d:d8:c4:85:65:41:70:12:00:fc: 80:84:4c:db:6c:d8:12:55:4f:aa:2d:da:9e:62:6e:f1:cb:23: 01:7c:a6:99:f0:94:df:80:7b:55:33:6b:00:48:0d:69:c1:a0: d9:e1:81:df:e4:6d:4f:90:01:e8:57:a1:e9:1b:aa:19:e0:30: 46:15:89:5f:a0:b3:a7:5d:55:24:8c:c2:8e:89:25:e8:1e:90: b0:11:83:a2:34:fe:2a:52:d2:25:01:ca:bb:28:a9:f4:fb:26: 09:98:2b:36:07:60:4c:54:89:00:e5:31:f2:2d:b7:0d:15:04: 58:84:56:01:9e:ad:c4:4b:46:5c:f4:9a:17:8a:de:48:c7:6e: a1:55:2d:ec:98:e1:8f:54:28:91:43:94:fa:75:2c:c7:a6:58: 9b:7b:a1:05:5a:d8:ae:99:db:d6:e0:ed:3a:97:2d:5a:67:79: 6d:b2:9f:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIuqarzOWujQO4WZzKxtPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMDIwMzZhNDNkYWQwNmI2YzJjYzY0YmRlNzY3ODcwNjc2 Zjg3YjMwHhcNMjYwMjA5MTYwMTI3WhcNMjYwMjEwMTYwMTI3WjAzMTEwLwYDVQQD Eyg3Mjc2YmYwOTBmMTU4OGRjZWNiMzRiN2Q0YTdmYTAyZTJmMDA5NjRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsQCRCQoAaY60Ws0nwDSae7caXL7m ATJbOAICEmaFe7NXYNX+1VLXL1C9B/+zzpuqWfz/x+DdKCI+5SzqzY/guNNJ/5Hy 9MKdxSeO4OrThz/0V179RvnULO9sVzZH0EQ195HNpj08bvD86YrKf9yWzaBm+w41 IXcT7WuN6STxcO/LDpl0BwZSapAn2B4p06BRma/nZUbIfbHh2SE6e4ea32ShIzIl POkOPhoaQKUOCPdVJ4OJlOdQ+qfmn3+Ao7Mr8POzo/i9rUXlCrCYrbLEAGMPTR1A WAWDhRnwA5zpHoNFtQ4ytkrfORfoogcbJDgBka6iI7p972jgGJICcKeeEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHJ2vwkPFYjc7LNLfUp/oC4vAJZMMB8GA1UdIwQY MBaAFJICA2pD2tBrbCzGS952eHBnb4ezMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2dJRGFrUGEwR3RzTE1aTDNuWjRjR2R2aDdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy8wMjc2ODgtZDM5Yy00ODRhLWE0NTAt NzNkY2VkMzk3MDdmLzEva2dJRGFrUGEwR3RzTE1aTDNuWjRjR2R2aDdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy8wMjc2ODgtZDM5Yy00ODRhLWE0NTAtNzNkY2VkMzk3MDdm LzEva2dJRGFrUGEwR3RzTE1aTDNuWjRjR2R2aDdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADzg/BpCk WZFJzKOToc1poGXZvlRTsezhnu7TUeivm/sc3OvSBKBiap/eDdAFKbo6q9ym7F6R t5MY77smrT727AiFEtHDhAv9GgXBoksKSbFt2MSFZUFwEgD8gIRM22zYElVPqi3a nmJu8csjAXymmfCU34B7VTNrAEgNacGg2eGB3+RtT5AB6Feh6RuqGeAwRhWJX6Cz p11VJIzCjokl6B6QsBGDojT+KlLSJQHKuyip9PsmCZgrNgdgTFSJAOUx8i23DRUE WIRWAZ6txEtGXPSaF4reSMduoVUt7Jjhj1QokUOU+nUsx6ZYm3uhBVrYrpnb1uDt OpctWmd5bbKf5A== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:49 2026 by rpki-client