This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.mft File: KPev7E0_BvgNaHKm1iRs0B5z1qY.mft (raw, json) Hash identifier: zinwayi5zScuaIKW3MeLVhcgb3C3zsv2FuAas1hzSwE= Subject key identifier: 61:C2:ED:C2:EC:C1:3A:34:6A:11:AC:C8:34:68:29:34:9D:06:F3:16 Authority key identifier: 28:F7:AF:EC:4D:3F:06:F8:0D:68:72:A6:D6:24:6C:D0:1E:73:D6:A6 Certificate issuer: /CN=28f7afec4d3f06f80d6872a6d6246cd01e73d6a6 Certificate serial: 019C40FD6079FA02010344C188B12F653144 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KPev7E0_BvgNaHKm1iRs0B5z1qY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.mft Manifest number: 180B Signing time: Mon 09 Feb 2026 06:01:12 +0000 Manifest this update: Mon 09 Feb 2026 06:01:12 +0000 Manifest next update: Tue 10 Feb 2026 06:01:12 +0000 Files and hashes: 1: KPev7E0_BvgNaHKm1iRs0B5z1qY.crl (hash: oPI+aP1YxITPcI+S3ox2k/JuhOKGDrFv48rOoEZ/rWU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.mft rsync://rpki.ripe.net/repository/DEFAULT/KPev7E0_BvgNaHKm1iRs0B5z1qY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fd:60:79:fa:02:01:03:44:c1:88:b1:2f:65:31:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28f7afec4d3f06f80d6872a6d6246cd01e73d6a6 Validity Not Before: Feb 9 06:01:12 2026 GMT Not After : Feb 10 06:01:12 2026 GMT Subject: CN=61c2edc2ecc13a346a11acc8346829349d06f316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:50:5b:8c:92:3b:01:20:b7:1a:0c:27:9c:52: 77:f0:82:36:64:ec:b0:73:53:17:62:e0:d3:fa:f8: cb:24:e9:fb:87:c5:2e:48:da:03:5d:96:38:dc:46: 75:70:8f:51:0a:90:1e:d7:50:ec:05:36:0d:fc:4e: 78:af:a3:cc:b9:c3:80:7b:0f:2f:c0:5e:5f:88:ea: a6:6c:16:83:2e:1b:7a:ba:a3:7e:14:01:86:a0:65: 35:1d:bd:43:3a:3d:3a:5e:7a:24:17:b2:f9:3f:65: 39:e4:24:73:ec:90:10:41:3d:1f:cc:5b:d7:ee:3f: 5a:ef:6e:e3:3b:8a:05:46:5c:26:52:83:ee:85:a4: 2d:13:69:a2:2a:5d:0d:3e:ac:b7:c4:ca:17:e8:9b: 5e:64:9e:9b:bd:83:b0:16:24:4f:91:5c:f1:0d:bb: b4:24:60:ce:48:01:b6:3f:cc:55:c8:9a:2e:b8:3e: 27:b0:8e:11:1e:9e:b7:43:e2:bb:50:2c:4c:4c:98: a1:f5:7a:ad:09:cf:eb:17:48:61:8a:a7:fc:4a:4b: e5:a9:8a:ca:f5:c2:f6:60:78:f7:48:2a:61:e8:d6: 86:94:9e:47:77:05:c1:5d:f4:c6:40:76:9b:75:c8: 43:fc:4c:48:a6:4d:94:b8:59:11:96:4f:ee:c5:a5: 05:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:C2:ED:C2:EC:C1:3A:34:6A:11:AC:C8:34:68:29:34:9D:06:F3:16 X509v3 Authority Key Identifier: keyid:28:F7:AF:EC:4D:3F:06:F8:0D:68:72:A6:D6:24:6C:D0:1E:73:D6:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KPev7E0_BvgNaHKm1iRs0B5z1qY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:b1:3d:f6:8b:64:85:6a:f9:1b:7a:dc:10:53:4e:65:08:1e: b3:c6:be:ea:4a:62:80:22:e3:28:74:40:33:28:52:2b:3b:f4: 03:8e:0d:37:05:14:e3:00:22:a8:cf:85:a4:2a:64:05:aa:5a: 1f:53:6b:c2:a7:c7:57:3c:74:85:fc:7c:f6:a8:1e:19:95:7a: 79:60:29:ba:f5:82:37:7e:a3:ea:c0:b3:ab:89:f6:13:c7:94: aa:e6:92:65:0e:a6:f8:31:42:01:57:12:5c:d9:02:e4:73:e4: dc:0c:df:c0:23:39:47:86:af:2d:e9:2e:9d:8a:a8:6d:77:c4: 5b:c1:93:d0:61:ab:44:9b:b3:97:50:94:9b:59:4a:29:32:8f: 27:8c:1e:87:f5:f1:97:d6:6d:21:3e:5f:af:87:e9:33:46:9e: dd:5b:0d:a1:c1:c3:18:bf:9d:17:91:ac:f8:82:7a:fe:ea:93: d9:e0:ca:e6:51:82:32:dc:f4:37:98:87:25:e6:44:4d:04:03: 6a:60:b8:15:3b:dc:1b:af:88:a1:29:1a:97:c3:31:9f:f0:d1: 14:07:39:ab:ae:8a:3a:6c:04:c5:19:e6:a9:39:36:4c:cb:f6: 67:0c:3d:40:8e:15:20:1a:85:d6:52:d0:f6:a3:d9:b0:93:6d: 89:f6:85:2f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/WB5+gIBA0TBiLEvZTFEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4ZjdhZmVjNGQzZjA2ZjgwZDY4NzJhNmQ2MjQ2Y2QwMWU3 M2Q2YTYwHhcNMjYwMjA5MDYwMTEyWhcNMjYwMjEwMDYwMTEyWjAzMTEwLwYDVQQD Eyg2MWMyZWRjMmVjYzEzYTM0NmExMWFjYzgzNDY4MjkzNDlkMDZmMzE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApVBbjJI7ASC3GgwnnFJ38II2ZOyw c1MXYuDT+vjLJOn7h8UuSNoDXZY43EZ1cI9RCpAe11DsBTYN/E54r6PMucOAew8v wF5fiOqmbBaDLht6uqN+FAGGoGU1Hb1DOj06XnokF7L5P2U55CRz7JAQQT0fzFvX 7j9a727jO4oFRlwmUoPuhaQtE2miKl0NPqy3xMoX6JteZJ6bvYOwFiRPkVzxDbu0 JGDOSAG2P8xVyJouuD4nsI4RHp63Q+K7UCxMTJih9XqtCc/rF0hhiqf8SkvlqYrK 9cL2YHj3SCph6NaGlJ5HdwXBXfTGQHabdchD/ExIpk2UuFkRlk/uxaUFgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGHC7cLswTo0ahGsyDRoKTSdBvMWMB8GA1UdIwQY MBaAFCj3r+xNPwb4DWhyptYkbNAec9amMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1BldjdFMF9CdmdOYUhLbTFpUnMwQjV6MXFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8yMTdhMzAtOGVlMS00OTEzLWExMjct NTc2ZDQwM2M5MThmLzEvS1BldjdFMF9CdmdOYUhLbTFpUnMwQjV6MXFZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS8yMTdhMzAtOGVlMS00OTEzLWExMjctNTc2ZDQwM2M5MThm LzEvS1BldjdFMF9CdmdOYUhLbTFpUnMwQjV6MXFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANrE99otk hWr5G3rcEFNOZQges8a+6kpigCLjKHRAMyhSKzv0A44NNwUU4wAiqM+FpCpkBapa H1NrwqfHVzx0hfx89qgeGZV6eWApuvWCN36j6sCzq4n2E8eUquaSZQ6m+DFCAVcS XNkC5HPk3AzfwCM5R4avLekunYqobXfEW8GT0GGrRJuzl1CUm1lKKTKPJ4weh/Xx l9ZtIT5fr4fpM0ae3VsNocHDGL+dF5Gs+IJ6/uqT2eDK5lGCMtz0N5iHJeZETQQD amC4FTvcG6+IoSkal8Mxn/DRFAc5q66KOmwExRnmqTk2TMv2Zww9QI4VIBqF1lLQ 9qPZsJNtifaFLw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:37 2026 by rpki-client