This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft File: 0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft (raw, json) Hash identifier: lmagQ34EjvCGpT+XFJ4B18FtASsW6fQf1XprbdUJWGs= Subject key identifier: 73:B7:33:73:8D:1E:57:4D:7A:30:47:DB:8F:59:FC:B2:DB:18:66:06 Authority key identifier: D2:43:22:B2:D0:A7:94:FD:07:6B:85:E8:DC:57:8A:BB:0D:03:EC:40 Certificate issuer: /CN=d24322b2d0a794fd076b85e8dc578abb0d03ec40 Certificate serial: 019C42466EA4C44B56620CF340FBF89F5981 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft Manifest number: 07A5 Signing time: Mon 09 Feb 2026 12:00:37 +0000 Manifest this update: Mon 09 Feb 2026 12:00:37 +0000 Manifest next update: Tue 10 Feb 2026 12:00:37 +0000 Files and hashes: 1: 0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl (hash: oftpih3PtyULfSLuPaFUFh4k+7t/TrsoLzqA5xidlwU=) 2: 5pjm21HKetM46w6qM9uy-i6WybY.roa (hash: 3eNVlKLJuRP0y0hZciHBdm9TPYgKCSF9C2o8FyAPzb8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:6e:a4:c4:4b:56:62:0c:f3:40:fb:f8:9f:59:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d24322b2d0a794fd076b85e8dc578abb0d03ec40 Validity Not Before: Feb 9 12:00:37 2026 GMT Not After : Feb 10 12:00:37 2026 GMT Subject: CN=73b733738d1e574d7a3047db8f59fcb2db186606 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:7c:f7:6d:1c:ec:3e:ab:84:02:b3:55:af:c7: 9a:18:e6:68:5b:ee:f4:c5:f2:96:5a:76:f5:22:d2: 89:33:87:47:a5:b7:c6:e9:f0:ca:a5:a4:f4:a3:52: 0b:1f:81:30:01:09:0e:5f:5a:b1:8b:9e:2e:c1:f0: 94:5c:b5:3c:e4:ab:b5:97:a8:e9:ed:98:1a:4d:d0: d9:a7:42:df:96:c7:93:76:5b:98:fb:fd:65:82:84: cb:81:fa:2a:9a:21:b1:d8:42:c3:80:d9:8f:20:21: 81:a7:e1:c1:07:a1:6e:2c:95:bc:2e:cb:50:97:5b: 7a:14:37:b0:3a:68:2f:44:33:b9:be:82:dd:7d:87: d0:63:85:7b:08:60:0e:f1:df:23:d9:39:4c:e3:33: de:6c:46:5b:99:66:91:91:68:d6:19:4f:e5:fe:91: 34:1f:41:f2:02:b6:87:57:3a:05:cc:06:f5:d7:72: ec:3e:97:21:6e:6e:70:be:e6:ee:95:21:4a:cb:1d: bd:9b:22:d0:6b:c4:f3:79:07:73:e2:61:7c:f9:cc: cc:20:d2:16:69:51:11:db:9b:57:1f:7e:25:d7:fb: b5:1d:84:1f:ad:25:6f:a2:e3:18:07:2d:8e:2b:b3: d1:f7:cf:33:e4:c7:91:9a:0e:e9:61:b9:0e:39:dd: fa:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:B7:33:73:8D:1E:57:4D:7A:30:47:DB:8F:59:FC:B2:DB:18:66:06 X509v3 Authority Key Identifier: keyid:D2:43:22:B2:D0:A7:94:FD:07:6B:85:E8:DC:57:8A:BB:0D:03:EC:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:53:47:55:5e:fb:89:c7:fa:7b:ee:6d:32:e5:ac:d8:77:3b: 87:17:16:50:91:87:03:2f:f9:3b:da:de:0e:01:cb:7d:57:ad: 1a:1c:4c:b4:9d:15:d9:0e:f5:35:4b:fd:75:fa:ca:03:db:a8: c4:e0:a9:2f:dd:ba:18:00:97:92:67:8f:14:7a:37:38:49:84: 87:7f:d6:15:cd:f5:21:f2:6d:54:c5:eb:b3:92:72:38:f4:86: f6:3c:c0:b8:b9:dd:89:a2:73:f7:63:e8:d3:9a:d2:90:f7:dd: 8d:ff:29:6b:50:e6:43:1d:68:bf:9a:75:48:56:6c:79:95:99: 79:dc:4b:36:ff:37:1a:7a:0b:ac:9d:06:ad:3a:80:ca:89:fc: 37:00:56:be:5d:a8:6b:83:25:93:b2:70:3d:2f:ec:5c:74:26: fa:e6:f6:7a:d7:64:3f:f6:15:cf:34:cb:c0:00:12:f9:e7:67: e4:b5:76:c3:6c:da:2c:01:dc:37:dc:f7:cf:90:50:7d:a6:d8: d4:5e:08:53:19:b9:05:a4:31:c0:82:db:95:80:d7:07:1b:95: 7b:18:88:0c:d5:2f:19:25:50:7d:c4:e3:ee:9d:96:7e:65:8a: 9b:5d:56:94:8b:80:90:03:8d:e9:4a:b4:20:3b:dd:64:b7:72: 32:90:f2:0e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRm6kxEtWYgzzQPv4n1mBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyNDMyMmIyZDBhNzk0ZmQwNzZiODVlOGRjNTc4YWJiMGQw M2VjNDAwHhcNMjYwMjA5MTIwMDM3WhcNMjYwMjEwMTIwMDM3WjAzMTEwLwYDVQQD Eyg3M2I3MzM3MzhkMWU1NzRkN2EzMDQ3ZGI4ZjU5ZmNiMmRiMTg2NjA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Xz3bRzsPquEArNVr8eaGOZoW+70 xfKWWnb1ItKJM4dHpbfG6fDKpaT0o1ILH4EwAQkOX1qxi54uwfCUXLU85Ku1l6jp 7ZgaTdDZp0LflseTdluY+/1lgoTLgfoqmiGx2ELDgNmPICGBp+HBB6FuLJW8LstQ l1t6FDewOmgvRDO5voLdfYfQY4V7CGAO8d8j2TlM4zPebEZbmWaRkWjWGU/l/pE0 H0HyAraHVzoFzAb113LsPpchbm5wvubulSFKyx29myLQa8TzeQdz4mF8+czMINIW aVER25tXH34l1/u1HYQfrSVvouMYBy2OK7PR988z5MeRmg7pYbkOOd36ewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHO3M3ONHldNejBH249Z/LLbGGYGMB8GA1UdIwQY MBaAFNJDIrLQp5T9B2uF6NxXirsNA+xAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGtNaXN0Q25sUDBIYTRYbzNGZUt1dzBEN0VBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy85N2MzNTMtMGMzNi00MDY2LWE1NmIt MTM5YTQ5NmNkNTljLzEvMGtNaXN0Q25sUDBIYTRYbzNGZUt1dzBEN0VBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy85N2MzNTMtMGMzNi00MDY2LWE1NmItMTM5YTQ5NmNkNTlj LzEvMGtNaXN0Q25sUDBIYTRYbzNGZUt1dzBEN0VBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC1NHVV77 icf6e+5tMuWs2Hc7hxcWUJGHAy/5O9reDgHLfVetGhxMtJ0V2Q71NUv9dfrKA9uo xOCpL926GACXkmePFHo3OEmEh3/WFc31IfJtVMXrs5JyOPSG9jzAuLndiaJz92Po 05rSkPfdjf8pa1DmQx1ov5p1SFZseZWZedxLNv83GnoLrJ0GrTqAyon8NwBWvl2o a4Mlk7JwPS/sXHQm+ub2etdkP/YVzzTLwAAS+edn5LV2w2zaLAHcN9z3z5BQfabY 1F4IUxm5BaQxwILblYDXBxuVexiIDNUvGSVQfcTj7p2WfmWKm11WlIuAkAON6Uq0 IDvdZLdyMpDyDg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:46 2026 by rpki-client