This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft File: KfFNQRwg7PxJYhX82w9D2EchkJY.mft (raw, json) Hash identifier: uQV81NatR+0r/yBEg19dNY5EUb/SdbkqkowGTZzk9IY= Subject key identifier: 9D:C5:65:D1:23:AB:FC:92:2F:C1:97:35:7B:C6:02:BB:63:F1:47:25 Authority key identifier: 29:F1:4D:41:1C:20:EC:FC:49:62:15:FC:DB:0F:43:D8:47:21:90:96 Certificate issuer: /CN=29f14d411c20ecfc496215fcdb0f43d847219096 Certificate serial: 019C41D83C5007C54DCFF144C8CB90B1CA0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft Manifest number: 14A3 Signing time: Mon 09 Feb 2026 10:00:15 +0000 Manifest this update: Mon 09 Feb 2026 10:00:15 +0000 Manifest next update: Tue 10 Feb 2026 10:00:15 +0000 Files and hashes: 1: KfFNQRwg7PxJYhX82w9D2EchkJY.crl (hash: UNsZar7eseOYEM+UbzkQOQVzAZmCADknofYscfH+/ZE=) 2: iu7FFkG2QJaHmPA7RGTX_kUyXKI.roa (hash: QTLspgP39MYk5PSZszpGPAjQcEqECucB1FhWpPvxaIM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.crl rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:3c:50:07:c5:4d:cf:f1:44:c8:cb:90:b1:ca:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29f14d411c20ecfc496215fcdb0f43d847219096 Validity Not Before: Feb 9 10:00:15 2026 GMT Not After : Feb 10 10:00:15 2026 GMT Subject: CN=9dc565d123abfc922fc197357bc602bb63f14725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:4d:9a:93:c3:0d:a7:ec:b4:b1:79:ed:c8:0c: 04:c7:72:ee:b2:9a:fb:94:1b:15:be:0f:84:d9:23: 1c:76:27:a8:57:fc:5d:6a:2c:3d:09:1b:24:42:8a: 9c:dc:52:ee:43:c9:64:54:8b:68:3c:9e:43:50:07: 08:60:9a:95:09:53:be:59:1d:5b:05:16:5b:b3:b7: f1:8a:0d:8a:82:af:3c:4c:65:f2:be:75:92:bd:f5: d9:0e:95:1f:ad:df:e8:47:8f:5d:fb:eb:0e:c1:9e: bb:7e:68:85:f9:b8:e2:01:0d:1d:90:65:8a:1d:fb: 61:69:db:66:a5:02:e4:5f:c6:0e:db:92:03:10:20: 83:36:e1:22:b1:75:e9:df:5a:a5:b4:3a:24:9a:48: 5f:12:08:3e:7e:84:3b:88:44:5d:b2:c1:5d:ee:20: 2b:46:67:dc:cb:75:02:53:a5:d0:28:4a:78:62:15: e5:01:af:50:30:0a:5c:2b:de:40:63:53:fe:48:84: b0:af:cc:0b:4f:f7:ed:8d:29:98:4b:fb:ca:be:fc: 45:25:c6:52:25:b5:70:4f:24:fe:14:6d:f1:4e:76: 5e:41:b0:e9:32:cc:e8:15:76:18:b7:25:ea:8f:8f: 33:4b:b5:06:99:d5:02:3d:20:26:fd:e2:46:b2:0a: 80:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:C5:65:D1:23:AB:FC:92:2F:C1:97:35:7B:C6:02:BB:63:F1:47:25 X509v3 Authority Key Identifier: keyid:29:F1:4D:41:1C:20:EC:FC:49:62:15:FC:DB:0F:43:D8:47:21:90:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:f4:0f:ca:65:57:2c:54:e1:2a:ef:94:d6:55:92:61:76:df: 17:85:4c:fd:cd:fb:fa:67:1f:70:62:74:e7:2f:49:75:b4:26: 3a:ab:06:31:f0:73:77:2c:27:bc:15:84:c8:e7:19:20:fa:45: 90:02:f9:91:3b:6a:79:06:1e:14:13:e6:26:a9:3e:ff:df:2e: c5:96:67:1e:41:2b:8e:a7:94:9e:c0:f5:55:79:8b:25:94:05: ba:2d:37:e3:7a:b1:57:1d:32:e9:d7:b4:2a:4b:3f:9e:c8:05: 18:aa:d9:f2:4d:23:66:1e:b3:ad:bc:ab:8f:19:f9:56:1a:df: 62:27:f0:de:11:bc:ef:c3:2b:6e:30:9b:23:8e:2d:1e:83:50: b0:0a:b6:87:1e:e9:4a:91:96:e4:b2:10:30:f2:c1:5b:b1:c8: 75:1b:3c:e3:e5:36:87:74:ce:4a:a2:57:52:fb:b7:31:a4:3f: 16:a4:3d:7c:02:97:ac:e4:be:7b:89:c9:a0:7d:92:fc:19:c5: ee:c9:3e:e0:4f:4e:dc:66:31:37:c0:43:07:44:df:e3:d4:2b: 42:63:65:55:49:02:9f:d5:3a:3b:13:e3:78:75:07:72:09:b7: 86:ef:94:ef:13:fa:1a:ac:a8:41:f8:bd:c7:3b:97:76:67:4b: 9f:35:6c:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2DxQB8VNz/FEyMuQscoMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZjE0ZDQxMWMyMGVjZmM0OTYyMTVmY2RiMGY0M2Q4NDcy MTkwOTYwHhcNMjYwMjA5MTAwMDE1WhcNMjYwMjEwMTAwMDE1WjAzMTEwLwYDVQQD Eyg5ZGM1NjVkMTIzYWJmYzkyMmZjMTk3MzU3YmM2MDJiYjYzZjE0NzI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhk2ak8MNp+y0sXntyAwEx3Luspr7 lBsVvg+E2SMcdieoV/xdaiw9CRskQoqc3FLuQ8lkVItoPJ5DUAcIYJqVCVO+WR1b BRZbs7fxig2Kgq88TGXyvnWSvfXZDpUfrd/oR49d++sOwZ67fmiF+bjiAQ0dkGWK HfthadtmpQLkX8YO25IDECCDNuEisXXp31qltDokmkhfEgg+foQ7iERdssFd7iAr Rmfcy3UCU6XQKEp4YhXlAa9QMApcK95AY1P+SISwr8wLT/ftjSmYS/vKvvxFJcZS JbVwTyT+FG3xTnZeQbDpMszoFXYYtyXqj48zS7UGmdUCPSAm/eJGsgqAXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ3FZdEjq/ySL8GXNXvGArtj8UclMB8GA1UdIwQY MBaAFCnxTUEcIOz8SWIV/NsPQ9hHIZCWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2ZGTlFSd2c3UHhKWWhYODJ3OUQyRWNoa0pZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9iY2YyNzItZDc1MS00NWJlLTk4NTYt MDE4YTM3NzBkYTc3LzEvS2ZGTlFSd2c3UHhKWWhYODJ3OUQyRWNoa0pZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC9iY2YyNzItZDc1MS00NWJlLTk4NTYtMDE4YTM3NzBkYTc3 LzEvS2ZGTlFSd2c3UHhKWWhYODJ3OUQyRWNoa0pZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABvQPymVX LFThKu+U1lWSYXbfF4VM/c37+mcfcGJ05y9JdbQmOqsGMfBzdywnvBWEyOcZIPpF kAL5kTtqeQYeFBPmJqk+/98uxZZnHkErjqeUnsD1VXmLJZQFui0343qxVx0y6de0 Kks/nsgFGKrZ8k0jZh6zrbyrjxn5VhrfYifw3hG878MrbjCbI44tHoNQsAq2hx7p SpGW5LIQMPLBW7HIdRs84+U2h3TOSqJXUvu3MaQ/FqQ9fAKXrOS+e4nJoH2S/BnF 7sk+4E9O3GYxN8BDB0Tf49QrQmNlVUkCn9U6OxPjeHUHcgm3hu+U7xP6GqyoQfi9 xzuXdmdLnzVszg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:11 2026 by rpki-client