This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.mft File: ckWEKSHz0CDU2AReUrsQ_PV-r28.mft (raw, json) Hash identifier: XWqlBADhJC2BwlVBzGQL9e4qsmsFeG3MNdD0/CJ+DTA= Subject key identifier: E5:BB:CC:ED:CD:C8:5B:9B:24:95:E6:47:53:05:91:D9:DD:1B:FB:61 Authority key identifier: 72:45:84:29:21:F3:D0:20:D4:D8:04:5E:52:BB:10:FC:F5:7E:AF:6F Certificate issuer: /CN=7245842921f3d020d4d8045e52bb10fcf57eaf6f Certificate serial: 019C4390558BE2AD7679C8AAB5D26F51D87C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckWEKSHz0CDU2AReUrsQ_PV-r28.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.mft Manifest number: 118C Signing time: Mon 09 Feb 2026 18:00:58 +0000 Manifest this update: Mon 09 Feb 2026 18:00:58 +0000 Manifest next update: Tue 10 Feb 2026 18:00:58 +0000 Files and hashes: 1: ckWEKSHz0CDU2AReUrsQ_PV-r28.crl (hash: bzWGXTQGfLmKMgVui0jZkfGCrFbEbUqxDKg0bUbGED0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.crl rsync://rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.mft rsync://rpki.ripe.net/repository/DEFAULT/ckWEKSHz0CDU2AReUrsQ_PV-r28.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:55:8b:e2:ad:76:79:c8:aa:b5:d2:6f:51:d8:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7245842921f3d020d4d8045e52bb10fcf57eaf6f Validity Not Before: Feb 9 18:00:58 2026 GMT Not After : Feb 10 18:00:58 2026 GMT Subject: CN=e5bbccedcdc85b9b2495e647530591d9dd1bfb61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:9a:0e:35:19:49:79:7e:a7:74:7d:bf:8a:a5: bb:e0:a5:03:0f:54:bc:73:32:e6:c2:cf:89:e7:c3: c3:49:96:96:d9:2b:43:dc:74:cd:92:ae:f7:a3:07: 50:1f:c0:02:36:e0:d2:31:88:1d:af:3d:6d:2d:93: 44:ff:5d:74:17:3d:fd:8a:d5:22:36:cf:0d:02:a5: 25:25:fe:4b:6e:a4:2e:0f:82:eb:6f:73:11:d9:b7: 58:69:a3:df:30:a6:6b:c9:f5:95:6c:71:91:f9:83: f0:0f:5e:62:c5:fc:68:1f:88:a1:84:7b:38:d5:42: 64:de:43:a0:77:23:ac:fc:7f:3d:8e:30:e4:64:27: 9c:67:c6:38:73:ef:ef:26:c0:46:3a:4f:e1:6b:88: 49:2d:d0:f0:38:b1:f7:7c:36:c9:c5:9b:49:62:6c: 80:a8:68:08:6f:04:8b:47:06:cb:df:44:cc:15:2e: 1a:9f:b9:70:44:ad:9f:29:84:44:92:e7:e1:e7:6c: 06:49:f2:de:ef:74:d2:6b:4b:58:7e:62:83:c5:b2: 95:98:e0:5f:7a:bf:9d:06:e6:ba:67:0f:81:72:e5: cc:50:f8:04:6a:25:24:22:a4:13:4a:97:13:11:95: 23:6d:45:a6:af:62:df:aa:f0:53:3b:4f:12:4c:cd: 37:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:BB:CC:ED:CD:C8:5B:9B:24:95:E6:47:53:05:91:D9:DD:1B:FB:61 X509v3 Authority Key Identifier: keyid:72:45:84:29:21:F3:D0:20:D4:D8:04:5E:52:BB:10:FC:F5:7E:AF:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckWEKSHz0CDU2AReUrsQ_PV-r28.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:2d:a7:bb:47:41:ce:90:43:f6:f1:eb:1a:2f:aa:35:0e:69: 7d:aa:b4:59:b8:2f:60:e8:9c:3e:5c:3d:7a:96:25:2a:3c:26: 2e:74:6b:4a:19:3d:2d:50:9c:5c:d8:d9:a7:c6:89:72:87:9b: eb:3f:b6:31:d5:61:b1:ff:bc:6d:28:16:8c:03:1b:e3:d5:1d: 51:5a:af:fa:40:26:15:fa:87:b9:b8:11:a7:12:0b:fc:b9:83: 50:e8:85:91:3d:4a:fd:0d:32:ce:08:99:07:ff:76:88:23:bd: c4:80:50:b0:02:9b:9a:76:77:70:4b:47:56:54:77:6b:8b:fa: 1b:d8:60:42:26:a8:cb:2b:ba:8b:20:6f:49:84:f5:68:36:0a: fd:a8:b0:e7:d2:04:60:fe:e6:a7:df:4b:c2:1e:06:c5:ad:89: 82:45:37:5d:ce:ea:4c:dd:7d:3e:57:18:19:bf:48:ed:a3:b9: bd:6d:c3:a2:b1:92:b6:52:ca:3e:b0:6f:6a:57:ca:34:f5:f4: d6:3b:d7:9d:79:e7:c8:62:6a:70:a0:5e:68:a1:41:8d:83:5f: e4:54:14:47:12:34:d3:80:02:a4:39:2e:60:d5:3e:27:04:24: 12:c9:8b:93:bd:57:c6:2b:77:25:87:89:3b:51:df:12:ef:98: d1:d5:42:1a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkFWL4q12eciqtdJvUdh8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyNDU4NDI5MjFmM2QwMjBkNGQ4MDQ1ZTUyYmIxMGZjZjU3 ZWFmNmYwHhcNMjYwMjA5MTgwMDU4WhcNMjYwMjEwMTgwMDU4WjAzMTEwLwYDVQQD EyhlNWJiY2NlZGNkYzg1YjliMjQ5NWU2NDc1MzA1OTFkOWRkMWJmYjYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo5oONRlJeX6ndH2/iqW74KUDD1S8 czLmws+J58PDSZaW2StD3HTNkq73owdQH8ACNuDSMYgdrz1tLZNE/110Fz39itUi Ns8NAqUlJf5LbqQuD4Lrb3MR2bdYaaPfMKZryfWVbHGR+YPwD15ixfxoH4ihhHs4 1UJk3kOgdyOs/H89jjDkZCecZ8Y4c+/vJsBGOk/ha4hJLdDwOLH3fDbJxZtJYmyA qGgIbwSLRwbL30TMFS4an7lwRK2fKYREkufh52wGSfLe73TSa0tYfmKDxbKVmOBf er+dBua6Zw+BcuXMUPgEaiUkIqQTSpcTEZUjbUWmr2LfqvBTO08STM03UQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOW7zO3NyFubJJXmR1MFkdndG/thMB8GA1UdIwQY MBaAFHJFhCkh89Ag1NgEXlK7EPz1fq9vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2tXRUtTSHowQ0RVMkFSZVVyc1FfUFYtcjI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS83MWY0MjItZTA5Mi00MTg5LThkM2Mt OGUyNThlZmVkZmZhLzEvY2tXRUtTSHowQ0RVMkFSZVVyc1FfUFYtcjI4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS83MWY0MjItZTA5Mi00MTg5LThkM2MtOGUyNThlZmVkZmZh LzEvY2tXRUtTSHowQ0RVMkFSZVVyc1FfUFYtcjI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANS2nu0dB zpBD9vHrGi+qNQ5pfaq0WbgvYOicPlw9epYlKjwmLnRrShk9LVCcXNjZp8aJcoeb 6z+2MdVhsf+8bSgWjAMb49UdUVqv+kAmFfqHubgRpxIL/LmDUOiFkT1K/Q0yzgiZ B/92iCO9xIBQsAKbmnZ3cEtHVlR3a4v6G9hgQiaoyyu6iyBvSYT1aDYK/aiw59IE YP7mp99Lwh4Gxa2JgkU3Xc7qTN19PlcYGb9I7aO5vW3DorGStlLKPrBvalfKNPX0 1jvXnXnnyGJqcKBeaKFBjYNf5FQURxI004ACpDkuYNU+JwQkEsmLk71Xxit3JYeJ O1HfEu+Y0dVCGg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:56:41 2026 by rpki-client