This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/807e35-88f7-435b-84a8-d14bd3d77822/1/rK67C7Ozijz0QMgf97PhaTMqpm0.mft File: rK67C7Ozijz0QMgf97PhaTMqpm0.mft (raw, json) Hash identifier: y5qfVExir7l76G/fLAWA4dN0SYXtAkdWYLJbrfaNcXg= Subject key identifier: D9:BB:88:3F:A0:84:D1:0B:DD:D9:BA:84:3F:BA:62:3A:EC:B3:08:7A Authority key identifier: AC:AE:BB:0B:B3:B3:8A:3C:F4:40:C8:1F:F7:B3:E1:69:33:2A:A6:6D Certificate issuer: /CN=acaebb0bb3b38a3cf440c81ff7b3e169332aa66d Certificate serial: 019C43224539ADB6A9A15F3AA58C9175139C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rK67C7Ozijz0QMgf97PhaTMqpm0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/807e35-88f7-435b-84a8-d14bd3d77822/1/rK67C7Ozijz0QMgf97PhaTMqpm0.mft Manifest number: 1417 Signing time: Mon 09 Feb 2026 16:00:45 +0000 Manifest this update: Mon 09 Feb 2026 16:00:45 +0000 Manifest next update: Tue 10 Feb 2026 16:00:45 +0000 Files and hashes: 1: rK67C7Ozijz0QMgf97PhaTMqpm0.crl (hash: n7dCQiG2KS874M33l0mx33IFuQZalBwS5Yi5pAjAqsg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/807e35-88f7-435b-84a8-d14bd3d77822/1/rK67C7Ozijz0QMgf97PhaTMqpm0.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/807e35-88f7-435b-84a8-d14bd3d77822/1/rK67C7Ozijz0QMgf97PhaTMqpm0.mft rsync://rpki.ripe.net/repository/DEFAULT/rK67C7Ozijz0QMgf97PhaTMqpm0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:45:39:ad:b6:a9:a1:5f:3a:a5:8c:91:75:13:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=acaebb0bb3b38a3cf440c81ff7b3e169332aa66d Validity Not Before: Feb 9 16:00:45 2026 GMT Not After : Feb 10 16:00:45 2026 GMT Subject: CN=d9bb883fa084d10bddd9ba843fba623aecb3087a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:98:e6:87:66:b5:bd:cf:8e:9c:14:21:5f:e2: e2:5e:46:3f:17:da:a1:f6:f0:53:51:6f:c3:0d:b4: a2:02:9c:c1:29:74:c2:99:34:bf:ee:8b:96:29:dd: d7:eb:ec:db:45:44:7a:a3:9a:e0:6f:62:35:a5:32: b2:35:be:8b:0e:a3:15:96:b9:55:7c:e1:4a:0d:c3: fd:b0:c7:cf:cf:75:a9:13:1e:7e:e8:9b:7e:b7:2b: 5f:11:57:cf:15:41:25:0d:6b:55:89:a6:14:b4:87: 0f:5e:fe:9a:fd:97:a1:16:e5:c2:72:4d:be:cb:77: 5b:fb:7b:ba:5c:3d:d2:33:16:42:56:29:22:c1:e3: 86:ab:68:05:d4:2f:6a:95:87:15:06:de:ee:15:0d: 3e:93:6e:34:55:03:ed:44:bd:89:ce:6c:e0:32:59: b7:c2:40:e8:54:70:22:32:88:89:d1:8f:a3:b5:6f: d6:dc:55:ac:1b:ee:07:cd:06:9f:74:f7:c3:05:66: 4a:07:66:1c:c7:5a:5d:51:4f:48:8a:f3:f2:d5:fd: ad:12:a8:e9:4f:07:d1:ec:99:49:37:03:b2:f5:d8: 8a:12:15:99:e6:ad:84:ee:3b:85:21:7e:6a:69:77: 30:48:f8:00:f7:e5:98:8b:af:93:54:29:97:29:41: f2:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:BB:88:3F:A0:84:D1:0B:DD:D9:BA:84:3F:BA:62:3A:EC:B3:08:7A X509v3 Authority Key Identifier: keyid:AC:AE:BB:0B:B3:B3:8A:3C:F4:40:C8:1F:F7:B3:E1:69:33:2A:A6:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rK67C7Ozijz0QMgf97PhaTMqpm0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/807e35-88f7-435b-84a8-d14bd3d77822/1/rK67C7Ozijz0QMgf97PhaTMqpm0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/807e35-88f7-435b-84a8-d14bd3d77822/1/rK67C7Ozijz0QMgf97PhaTMqpm0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:1b:d6:53:68:cd:d1:de:0e:98:f8:13:2e:39:9f:9f:37:33: fb:06:dd:a7:0e:32:01:01:75:f0:34:5e:40:de:ae:30:80:9b: bd:9b:91:24:5c:42:40:e2:6f:71:9c:bf:e3:de:0d:26:36:33: 54:e1:65:42:a6:52:cc:3d:e7:93:ff:3a:5b:0f:4f:1b:9a:ab: 19:91:97:29:aa:89:77:81:88:c7:15:82:e0:fa:b1:c6:f8:58: 5f:05:0c:c1:50:13:76:80:7f:59:2d:1c:cb:04:59:5d:81:e2: 4f:48:a6:dc:c3:13:65:de:47:9e:67:de:1c:16:a9:b3:25:1e: b9:cf:24:7c:b2:91:e1:2c:0e:59:09:f2:02:69:6b:b9:53:d4: e0:17:07:b4:a0:80:1b:8a:37:c9:8f:eb:8d:d9:94:8a:bc:a1: 11:15:a2:a4:5f:dc:08:06:ca:27:26:86:95:53:c6:b1:5d:b8: da:e3:35:ac:75:59:57:d5:64:3d:16:5f:38:85:41:9b:97:26: da:1a:15:72:89:42:7e:26:62:8d:ba:db:ee:7b:44:08:bc:f1: 37:a5:77:57:c1:b8:7c:72:28:2f:0f:4a:6a:0e:d0:b4:70:7a: a8:9c:4c:91:43:8f:f0:ec:88:79:88:00:94:18:4f:68:95:b3: cb:f1:fc:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIkU5rbapoV86pYyRdROcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjYWViYjBiYjNiMzhhM2NmNDQwYzgxZmY3YjNlMTY5MzMy YWE2NmQwHhcNMjYwMjA5MTYwMDQ1WhcNMjYwMjEwMTYwMDQ1WjAzMTEwLwYDVQQD EyhkOWJiODgzZmEwODRkMTBiZGRkOWJhODQzZmJhNjIzYWVjYjMwODdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzpjmh2a1vc+OnBQhX+LiXkY/F9qh 9vBTUW/DDbSiApzBKXTCmTS/7ouWKd3X6+zbRUR6o5rgb2I1pTKyNb6LDqMVlrlV fOFKDcP9sMfPz3WpEx5+6Jt+tytfEVfPFUElDWtViaYUtIcPXv6a/ZehFuXCck2+ y3db+3u6XD3SMxZCVikiweOGq2gF1C9qlYcVBt7uFQ0+k240VQPtRL2JzmzgMlm3 wkDoVHAiMoiJ0Y+jtW/W3FWsG+4HzQafdPfDBWZKB2Ycx1pdUU9IivPy1f2tEqjp TwfR7JlJNwOy9diKEhWZ5q2E7juFIX5qaXcwSPgA9+WYi6+TVCmXKUHyCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNm7iD+ghNEL3dm6hD+6Yjrsswh6MB8GA1UdIwQY MBaAFKyuuwuzs4o89EDIH/ez4WkzKqZtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcks2N0M3T3ppanowUU1nZjk3UGhhVE1xcG0wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS84MDdlMzUtODhmNy00MzViLTg0YTgt ZDE0YmQzZDc3ODIyLzEvcks2N0M3T3ppanowUU1nZjk3UGhhVE1xcG0wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS84MDdlMzUtODhmNy00MzViLTg0YTgtZDE0YmQzZDc3ODIy LzEvcks2N0M3T3ppanowUU1nZjk3UGhhVE1xcG0wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuRvWU2jN 0d4OmPgTLjmfnzcz+wbdpw4yAQF18DReQN6uMICbvZuRJFxCQOJvcZy/494NJjYz VOFlQqZSzD3nk/86Ww9PG5qrGZGXKaqJd4GIxxWC4PqxxvhYXwUMwVATdoB/WS0c ywRZXYHiT0im3MMTZd5HnmfeHBapsyUeuc8kfLKR4SwOWQnyAmlruVPU4BcHtKCA G4o3yY/rjdmUiryhERWipF/cCAbKJyaGlVPGsV242uM1rHVZV9VkPRZfOIVBm5cm 2hoVcolCfiZijbrb7ntECLzxN6V3V8G4fHIoLw9Kag7QtHB6qJxMkUOP8OyIeYgA lBhPaJWzy/H85A== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:34 2026 by rpki-client