This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft File: KgGcraFj42jMM2J2PyBrPerE0yA.mft (raw, json) Hash identifier: a3gWl5LHQImFCF7h3fp5Kbmgw2AV5eSkfQ9EiIMmuuM= Subject key identifier: 96:90:1A:6B:3B:C7:FC:66:4C:AF:96:19:F5:39:74:7C:8A:A4:F0:1A Authority key identifier: 2A:01:9C:AD:A1:63:E3:68:CC:33:62:76:3F:20:6B:3D:EA:C4:D3:20 Certificate issuer: /CN=2a019cada163e368cc3362763f206b3deac4d320 Certificate serial: 019C41D8F999AE346B1D80B5E85FC8142E0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft Manifest number: 0D7E Signing time: Mon 09 Feb 2026 10:01:04 +0000 Manifest this update: Mon 09 Feb 2026 10:01:04 +0000 Manifest next update: Tue 10 Feb 2026 10:01:04 +0000 Files and hashes: 1: KgGcraFj42jMM2J2PyBrPerE0yA.crl (hash: kalAROI2JG8PNmkgKAMj9+mg5o8bwVc6RYFpmZUvY04=) 2: jY0MoOJ3PtdveQuCsZ0fuBIhTjY.roa (hash: vqPVQAGkx6I5WnNS9zEmXw+PjdH2vmfPnggrjPunD0I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:f9:99:ae:34:6b:1d:80:b5:e8:5f:c8:14:2e:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a019cada163e368cc3362763f206b3deac4d320 Validity Not Before: Feb 9 10:01:04 2026 GMT Not After : Feb 10 10:01:04 2026 GMT Subject: CN=96901a6b3bc7fc664caf9619f539747c8aa4f01a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:87:ba:e3:c6:60:aa:f4:47:8f:f0:53:cf:b8: d7:b7:9c:94:41:3e:a2:93:94:a0:6b:d4:c4:ae:f7: b9:91:a1:4a:71:3f:98:da:a8:c8:3b:1b:d5:b2:93: 83:61:08:c3:59:c2:a0:ae:47:db:67:86:95:18:a7: 87:f2:e1:e9:f5:59:48:29:d2:1e:86:ca:27:a1:0a: b4:31:05:56:da:2b:91:45:f5:cb:4d:5e:08:22:fd: a2:9f:98:e8:5f:b1:a3:da:68:61:46:b2:d2:7a:cf: 1c:82:ba:6d:82:a7:ec:87:4c:ce:64:3e:96:8a:06: 14:56:a2:94:11:8f:ff:d7:e2:ba:80:fb:ca:1d:c6: 23:02:97:d4:97:6f:52:e4:77:a0:59:01:67:00:a5: 0d:b4:ee:5c:6e:ef:75:51:ea:63:08:28:7e:c7:6b: 40:1c:58:71:39:f9:23:70:3b:98:29:08:b0:7d:59: d3:19:2b:24:83:0b:97:1b:2a:5b:4b:3d:8d:4c:1c: 77:d2:b5:d6:c6:18:33:66:6e:64:98:4f:55:c9:65: 34:88:19:a4:54:5d:33:53:81:d3:5c:77:56:e3:03: 85:53:d4:67:ab:f1:64:2f:d0:01:8a:ec:72:fd:8f: 65:3a:8c:5f:e7:30:90:44:66:47:e8:0d:70:f9:2c: 9e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:90:1A:6B:3B:C7:FC:66:4C:AF:96:19:F5:39:74:7C:8A:A4:F0:1A X509v3 Authority Key Identifier: keyid:2A:01:9C:AD:A1:63:E3:68:CC:33:62:76:3F:20:6B:3D:EA:C4:D3:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:d8:00:a0:52:c3:33:0f:5b:1b:5a:a2:cc:ff:41:62:bf:a3: 56:a5:22:a5:b7:c2:1a:ec:da:9e:23:61:ec:71:ac:d8:30:b6: b3:69:bb:f9:d4:47:78:6e:ca:8c:3a:a8:43:a7:33:e8:c7:e9: 79:b7:6b:d8:1b:07:c3:1d:8d:db:74:26:3b:3c:34:ee:a2:d2: 41:29:a0:77:57:c6:5f:e0:75:ae:85:73:75:a1:b3:65:9b:58: d1:b9:e3:7e:a6:cb:05:dd:e4:15:07:06:e3:dc:6d:fb:8a:bd: d1:ef:97:84:01:4b:f4:6b:07:f6:fa:6d:65:c4:13:4a:d2:f4: bd:a7:72:ea:53:27:57:be:1a:18:02:c1:10:15:4b:43:13:ee: d1:7b:03:df:2a:f4:21:e6:b9:fc:a7:c0:d3:67:c4:ac:db:32: cc:16:db:69:00:f8:78:ac:ea:9b:3f:71:19:5f:13:1d:e0:1e: 60:8b:77:c0:2f:df:89:24:d6:b8:e9:71:45:dd:ae:c7:62:10: 57:0b:c8:8d:3c:e0:d7:0a:72:3b:c6:1d:59:8a:01:1a:e0:4b: 00:9a:a0:df:59:aa:8f:49:91:25:ae:8c:8a:53:da:e9:ef:22: 26:29:fa:95:ff:18:2d:14:44:a1:69:c3:34:b4:c6:10:0d:9d: 95:89:0c:66 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2PmZrjRrHYC16F/IFC4MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhMDE5Y2FkYTE2M2UzNjhjYzMzNjI3NjNmMjA2YjNkZWFj NGQzMjAwHhcNMjYwMjA5MTAwMTA0WhcNMjYwMjEwMTAwMTA0WjAzMTEwLwYDVQQD Eyg5NjkwMWE2YjNiYzdmYzY2NGNhZjk2MTlmNTM5NzQ3YzhhYTRmMDFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzoe648ZgqvRHj/BTz7jXt5yUQT6i k5Sga9TErve5kaFKcT+Y2qjIOxvVspODYQjDWcKgrkfbZ4aVGKeH8uHp9VlIKdIe hsonoQq0MQVW2iuRRfXLTV4IIv2in5joX7Gj2mhhRrLSes8cgrptgqfsh0zOZD6W igYUVqKUEY//1+K6gPvKHcYjApfUl29S5HegWQFnAKUNtO5cbu91UepjCCh+x2tA HFhxOfkjcDuYKQiwfVnTGSskgwuXGypbSz2NTBx30rXWxhgzZm5kmE9VyWU0iBmk VF0zU4HTXHdW4wOFU9Rnq/FkL9ABiuxy/Y9lOoxf5zCQRGZH6A1w+SyeuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJaQGms7x/xmTK+WGfU5dHyKpPAaMB8GA1UdIwQY MBaAFCoBnK2hY+NozDNidj8gaz3qxNMgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2dHY3JhRmo0MmpNTTJKMlB5QnJQZXJFMHlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi80M2E2NzItZDE1MS00YzRlLTk4MDkt MTQ5ZjYzNjVmZmRhLzEvS2dHY3JhRmo0MmpNTTJKMlB5QnJQZXJFMHlBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi80M2E2NzItZDE1MS00YzRlLTk4MDktMTQ5ZjYzNjVmZmRh LzEvS2dHY3JhRmo0MmpNTTJKMlB5QnJQZXJFMHlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJNgAoFLD Mw9bG1qizP9BYr+jVqUipbfCGuzaniNh7HGs2DC2s2m7+dRHeG7KjDqoQ6cz6Mfp ebdr2BsHwx2N23QmOzw07qLSQSmgd1fGX+B1roVzdaGzZZtY0bnjfqbLBd3kFQcG 49xt+4q90e+XhAFL9GsH9vptZcQTStL0vady6lMnV74aGALBEBVLQxPu0XsD3yr0 Iea5/KfA02fErNsyzBbbaQD4eKzqmz9xGV8THeAeYIt3wC/fiSTWuOlxRd2ux2IQ VwvIjTzg1wpyO8YdWYoBGuBLAJqg31mqj0mRJa6MilPa6e8iJin6lf8YLRREoWnD NLTGEA2dlYkMZg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:47:30 2026 by rpki-client