This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft File: KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft (raw, json) Hash identifier: FGhxX1uU8W/Xbn0j/f/HZBfy7to/OQ7jpKOjZBTbfXg= Subject key identifier: 10:8E:AB:D6:4F:96:41:3A:E2:1E:4B:BA:57:D1:F5:36:E1:5C:AC:06 Authority key identifier: 28:58:D2:F1:31:71:5C:BA:F3:CD:D9:20:64:59:24:F5:35:08:E0:67 Certificate issuer: /CN=2858d2f131715cbaf3cdd920645924f53508e067 Certificate serial: 019C4435069C3E57D1F0611A3CF4ADFF3873 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft Manifest number: 0CB0 Signing time: Mon 09 Feb 2026 21:00:51 +0000 Manifest this update: Mon 09 Feb 2026 21:00:51 +0000 Manifest next update: Tue 10 Feb 2026 21:00:51 +0000 Files and hashes: 1: 1-dlVSJ7JEEPisJQ9EP0HveRpK-4.roa (hash: RiIz/j+OmLa7FEdZbMFlKrhGfrujyA65C/HnMjy7A3s=) 2: KFjS8TFxXLrzzdkgZFkk9TUI4Gc.crl (hash: KGk3SXt1QIuD84Qb+TCe5L2RuNS7L0OZS8esioaEgcw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.crl rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft rsync://rpki.ripe.net/repository/DEFAULT/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:35:06:9c:3e:57:d1:f0:61:1a:3c:f4:ad:ff:38:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2858d2f131715cbaf3cdd920645924f53508e067 Validity Not Before: Feb 9 21:00:51 2026 GMT Not After : Feb 10 21:00:51 2026 GMT Subject: CN=108eabd64f96413ae21e4bba57d1f536e15cac06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:2b:33:cd:b8:53:26:1a:dd:cf:20:4d:59:41: fd:17:17:61:63:c7:05:1b:ae:7d:02:4d:94:c5:4d: 06:c9:75:b6:36:dc:46:46:6a:8c:a7:95:72:d5:c2: 80:f9:19:d8:8f:38:d2:16:a8:62:d0:8a:6b:58:26: 09:30:72:66:ff:65:e2:bf:6b:31:66:c7:4f:07:4b: ed:bb:01:d6:08:ed:17:78:24:4f:e5:a1:36:9b:5e: d6:c7:f2:4a:39:a9:24:0d:64:d4:67:9a:bf:59:37: 7a:02:dd:ed:ae:4e:b7:06:4d:d2:ea:1c:0e:43:ee: 52:7b:f7:42:9c:cb:1b:c6:de:26:d4:08:52:a0:d2: ce:a8:53:84:f3:47:fe:2f:fe:2b:39:cd:b1:5d:89: a6:ae:2a:49:29:8b:63:8a:3f:2d:c2:85:8b:63:98: 8c:58:c7:a2:07:6c:a1:1a:8f:f7:3f:68:4d:1e:65: 50:e7:57:55:0a:18:45:58:a6:2b:41:19:1c:9c:12: 80:e6:f7:92:99:09:98:21:7d:c7:49:42:b4:3c:c1: 87:cb:c5:5b:c2:3c:e4:0d:f5:43:10:04:ff:27:f8: ee:d2:bc:ed:e2:06:e9:75:7b:49:6d:e4:e9:0a:50: e4:23:22:7f:be:41:1e:1d:eb:a1:6f:85:d8:1c:a3: 51:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:8E:AB:D6:4F:96:41:3A:E2:1E:4B:BA:57:D1:F5:36:E1:5C:AC:06 X509v3 Authority Key Identifier: keyid:28:58:D2:F1:31:71:5C:BA:F3:CD:D9:20:64:59:24:F5:35:08:E0:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:57:fe:7c:16:72:77:30:ca:e8:7d:0b:ed:67:a9:77:54:aa: 44:9f:8f:67:61:a6:25:f5:55:b4:e1:4f:4f:1a:80:23:d8:59: c9:95:8c:f4:dc:c8:3e:91:88:a0:35:f2:cb:15:1c:87:6a:f3: cd:fc:e1:27:d6:d5:21:57:b1:e3:8a:71:71:c4:0a:b2:22:3a: b2:5f:58:55:17:72:08:ea:7b:3f:b8:10:f8:58:66:4e:95:04: 96:85:a6:70:0c:b6:05:2f:bc:32:b5:83:af:3d:62:4b:00:fd: cb:f4:8e:05:75:66:ac:2c:d7:54:18:4e:ca:29:9a:c0:63:d1: 2a:bd:b3:70:9d:d8:04:6c:29:1e:bf:f5:35:86:0d:94:75:e1: 1e:6f:93:08:0c:f5:ad:7b:ec:37:4c:de:d5:71:45:4e:b7:96: 94:1d:90:55:7e:7f:b7:0e:67:ef:7f:ee:37:a6:f3:38:72:e1: 07:7e:97:ea:6d:a6:74:fb:c8:8f:50:1a:0d:ea:47:f5:e4:41: ec:07:d9:8a:96:a4:bb:0d:7a:f9:9e:66:85:b7:81:f2:d6:44: 39:39:8b:38:c7:cd:d7:5c:76:d1:83:70:c0:b1:84:2d:68:ed: d2:20:1d:62:a6:2a:56:8e:d2:53:01:2c:b5:f4:58:f8:04:ce: 85:17:f4:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxENQacPlfR8GEaPPSt/zhzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4NThkMmYxMzE3MTVjYmFmM2NkZDkyMDY0NTkyNGY1MzUw OGUwNjcwHhcNMjYwMjA5MjEwMDUxWhcNMjYwMjEwMjEwMDUxWjAzMTEwLwYDVQQD EygxMDhlYWJkNjRmOTY0MTNhZTIxZTRiYmE1N2QxZjUzNmUxNWNhYzA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhSszzbhTJhrdzyBNWUH9FxdhY8cF G659Ak2UxU0GyXW2NtxGRmqMp5Vy1cKA+RnYjzjSFqhi0IprWCYJMHJm/2Xiv2sx ZsdPB0vtuwHWCO0XeCRP5aE2m17Wx/JKOakkDWTUZ5q/WTd6At3trk63Bk3S6hwO Q+5Se/dCnMsbxt4m1AhSoNLOqFOE80f+L/4rOc2xXYmmripJKYtjij8twoWLY5iM WMeiB2yhGo/3P2hNHmVQ51dVChhFWKYrQRkcnBKA5veSmQmYIX3HSUK0PMGHy8Vb wjzkDfVDEAT/J/ju0rzt4gbpdXtJbeTpClDkIyJ/vkEeHeuhb4XYHKNRjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBCOq9ZPlkE64h5LulfR9TbhXKwGMB8GA1UdIwQY MBaAFChY0vExcVy6883ZIGRZJPU1COBnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0ZqUzhURnhYTHJ6emRrZ1pGa2s5VFVJNEdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi83NWRiYzQtYWUyMi00OTcxLTllZjUt YTNmMzU1YmVlZWRkLzEvS0ZqUzhURnhYTHJ6emRrZ1pGa2s5VFVJNEdjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi83NWRiYzQtYWUyMi00OTcxLTllZjUtYTNmMzU1YmVlZWRk LzEvS0ZqUzhURnhYTHJ6emRrZ1pGa2s5VFVJNEdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHlf+fBZy dzDK6H0L7Wepd1SqRJ+PZ2GmJfVVtOFPTxqAI9hZyZWM9NzIPpGIoDXyyxUch2rz zfzhJ9bVIVex44pxccQKsiI6sl9YVRdyCOp7P7gQ+FhmTpUEloWmcAy2BS+8MrWD rz1iSwD9y/SOBXVmrCzXVBhOyimawGPRKr2zcJ3YBGwpHr/1NYYNlHXhHm+TCAz1 rXvsN0ze1XFFTreWlB2QVX5/tw5n73/uN6bzOHLhB36X6m2mdPvIj1AaDepH9eRB 7AfZipakuw16+Z5mhbeB8tZEOTmLOMfN11x20YNwwLGELWjt0iAdYqYqVo7SUwEs tfRY+ATOhRf0xw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:45:40 2026 by rpki-client