This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft File: 0krezYS7F0i9NbmezqRncuAeyTU.mft (raw, json) Hash identifier: 8nQdb/cf8+Wymf3syEEdgH4fAEjFedXe1VrVsd6o8tU= Subject key identifier: 86:59:9D:37:87:C3:2A:BA:E1:0B:69:B1:F3:3F:3C:18:E9:B6:71:A2 Authority key identifier: D2:4A:DE:CD:84:BB:17:48:BD:35:B9:9E:CE:A4:67:72:E0:1E:C9:35 Certificate issuer: /CN=d24adecd84bb1748bd35b99ecea46772e01ec935 Certificate serial: 019C446C01E94E29F030C80416E5FAF59BAF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft Manifest number: 1814 Signing time: Mon 09 Feb 2026 22:00:54 +0000 Manifest this update: Mon 09 Feb 2026 22:00:54 +0000 Manifest next update: Tue 10 Feb 2026 22:00:54 +0000 Files and hashes: 1: 0krezYS7F0i9NbmezqRncuAeyTU.crl (hash: TjrvUF/MA42RgPWJnysF/smcedFJRi0oU1peziKz6/8=) 2: THoFRGj7we5B4orPSAEMrZc2v9I.roa (hash: nx8ZhN2tRi/Vu5vUK7/jsnnIAjWNN0LM5ZVA5cvmy60=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6c:01:e9:4e:29:f0:30:c8:04:16:e5:fa:f5:9b:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d24adecd84bb1748bd35b99ecea46772e01ec935 Validity Not Before: Feb 9 22:00:54 2026 GMT Not After : Feb 10 22:00:54 2026 GMT Subject: CN=86599d3787c32abae10b69b1f33f3c18e9b671a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:fb:c6:13:da:3f:86:c2:a4:12:87:1f:d8:0f: 66:8f:28:0b:56:ec:5f:01:4a:2b:5a:18:2b:dd:cf: 6f:55:a0:41:39:b2:7e:07:b8:a9:d7:f2:93:02:58: 8d:da:44:ad:03:b4:e1:09:af:eb:13:51:03:00:a4: 2a:f0:25:6f:e0:b3:e4:3f:d9:20:7c:73:7f:72:8b: 63:ff:5b:3b:de:69:0e:2a:ca:3f:b6:f0:5c:61:7f: 72:e5:82:31:b7:5f:4a:d5:02:d4:45:a1:11:19:2f: bf:94:b0:f2:21:ff:51:22:69:07:73:4d:b0:00:33: 48:d8:67:ca:82:ea:85:ba:9d:d5:cb:c6:7a:82:d5: 5d:48:4c:c4:aa:75:c7:c3:5e:91:0f:cd:e4:fb:9c: 3b:4d:a3:30:a0:29:13:b5:cd:3d:1e:f8:fc:15:2b: 3c:b4:9b:86:7a:2e:d6:03:a7:e5:5e:6f:59:06:7d: 9e:30:09:f8:1c:4f:57:74:91:b7:f6:fe:b3:16:81: 5f:fd:7b:8b:51:25:ce:b9:40:b9:d4:e6:f9:01:9b: cc:f0:b6:57:4f:11:1e:2c:12:de:35:14:6e:dd:1f: 9f:1c:7e:67:c1:fd:d5:50:42:a0:b7:09:05:8f:8d: 8d:9c:ac:9f:d5:2a:13:de:32:5b:ae:dd:5f:16:f3: 0a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:59:9D:37:87:C3:2A:BA:E1:0B:69:B1:F3:3F:3C:18:E9:B6:71:A2 X509v3 Authority Key Identifier: keyid:D2:4A:DE:CD:84:BB:17:48:BD:35:B9:9E:CE:A4:67:72:E0:1E:C9:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:55:6d:3f:7e:6e:b2:ce:c4:47:1a:a1:f6:3a:7a:1b:38:1d: dd:a3:b2:95:03:d5:1e:90:4e:79:d3:1b:df:c5:22:44:46:65: 7e:26:e9:fe:eb:58:fc:f1:8c:b7:13:dd:b9:65:fe:67:10:82: c1:e8:0a:cf:76:ff:12:5a:96:46:6e:be:1e:ea:fc:b7:4f:bb: 3a:5a:ee:4d:e7:69:23:97:37:e9:2b:0e:3a:6b:a5:c0:5d:80: 7f:84:c1:50:73:5c:a3:ec:5f:af:5e:e7:4a:b0:bb:bd:c4:da: d1:91:e4:4d:c4:9a:10:3d:f8:e9:71:10:02:1b:83:b3:c6:02: 17:4f:33:ff:73:92:90:bc:e2:58:a7:2b:76:89:d2:04:6c:75: f2:a3:c7:d6:1e:95:10:3c:84:19:66:f8:7d:af:a1:bb:ed:de: 4a:57:cb:95:47:8f:04:ac:01:c3:b9:83:0b:87:d4:91:ac:76: 6d:a0:99:28:9b:80:d6:a8:64:fc:d0:36:32:37:b9:9c:55:85: 12:0a:90:39:a5:76:ab:50:cc:88:c5:05:b2:7d:db:ae:19:46: 18:ea:c9:58:13:58:aa:fc:89:30:cb:73:ec:3c:73:98:67:cd: 37:03:2f:05:e1:02:60:10:6c:34:4e:36:46:29:5f:a2:17:c3: 59:8f:1d:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEbAHpTinwMMgEFuX69ZuvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyNGFkZWNkODRiYjE3NDhiZDM1Yjk5ZWNlYTQ2NzcyZTAx ZWM5MzUwHhcNMjYwMjA5MjIwMDU0WhcNMjYwMjEwMjIwMDU0WjAzMTEwLwYDVQQD Eyg4NjU5OWQzNzg3YzMyYWJhZTEwYjY5YjFmMzNmM2MxOGU5YjY3MWEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhfvGE9o/hsKkEocf2A9mjygLVuxf AUorWhgr3c9vVaBBObJ+B7ip1/KTAliN2kStA7ThCa/rE1EDAKQq8CVv4LPkP9kg fHN/cotj/1s73mkOKso/tvBcYX9y5YIxt19K1QLURaERGS+/lLDyIf9RImkHc02w ADNI2GfKguqFup3Vy8Z6gtVdSEzEqnXHw16RD83k+5w7TaMwoCkTtc09Hvj8FSs8 tJuGei7WA6flXm9ZBn2eMAn4HE9XdJG39v6zFoFf/XuLUSXOuUC51Ob5AZvM8LZX TxEeLBLeNRRu3R+fHH5nwf3VUEKgtwkFj42NnKyf1SoT3jJbrt1fFvMKzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIZZnTeHwyq64QtpsfM/PBjptnGiMB8GA1UdIwQY MBaAFNJK3s2EuxdIvTW5ns6kZ3LgHsk1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGtyZXpZUzdGMGk5TmJtZXpxUm5jdUFleVRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS82M2E4NDUtOGMwOS00ZDY5LWE3NzEt NDhhNjA3YmJlMjVlLzEvMGtyZXpZUzdGMGk5TmJtZXpxUm5jdUFleVRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS82M2E4NDUtOGMwOS00ZDY5LWE3NzEtNDhhNjA3YmJlMjVl LzEvMGtyZXpZUzdGMGk5TmJtZXpxUm5jdUFleVRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVFVtP35u ss7ERxqh9jp6Gzgd3aOylQPVHpBOedMb38UiREZlfibp/utY/PGMtxPduWX+ZxCC wegKz3b/ElqWRm6+Hur8t0+7OlruTedpI5c36SsOOmulwF2Af4TBUHNco+xfr17n SrC7vcTa0ZHkTcSaED346XEQAhuDs8YCF08z/3OSkLziWKcrdonSBGx18qPH1h6V EDyEGWb4fa+hu+3eSlfLlUePBKwBw7mDC4fUkax2baCZKJuA1qhk/NA2Mje5nFWF EgqQOaV2q1DMiMUFsn3brhlGGOrJWBNYqvyJMMtz7DxzmGfNNwMvBeECYBBsNE42 RilfohfDWY8dsg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:35:11 2026 by rpki-client