This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/81d8dd-4cd3-4378-b067-7cd472864bf8/1/fkL5qpHFODs-cnVy67GVWRqHYM4.mft File: fkL5qpHFODs-cnVy67GVWRqHYM4.mft (raw, json) Hash identifier: PRmtXtW2NdleVINkKOjBNP8m8Igzq3Q/LAmGq/lSl3c= Subject key identifier: 58:85:DD:AD:26:3E:96:65:60:24:48:EC:D3:5E:F9:FB:BC:25:EF:25 Authority key identifier: 7E:42:F9:AA:91:C5:38:3B:3E:72:75:72:EB:B1:95:59:1A:87:60:CE Certificate issuer: /CN=7e42f9aa91c5383b3e727572ebb195591a8760ce Certificate serial: 019C4322505803D95B6838E61F3723910889 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fkL5qpHFODs-cnVy67GVWRqHYM4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/81d8dd-4cd3-4378-b067-7cd472864bf8/1/fkL5qpHFODs-cnVy67GVWRqHYM4.mft Manifest number: 08A7 Signing time: Mon 09 Feb 2026 16:00:48 +0000 Manifest this update: Mon 09 Feb 2026 16:00:48 +0000 Manifest next update: Tue 10 Feb 2026 16:00:48 +0000 Files and hashes: 1: fkL5qpHFODs-cnVy67GVWRqHYM4.crl (hash: rAm1qgPox0a3GL1RY2HwQzkF5sWwFgjMXmEkOdptf2s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/81d8dd-4cd3-4378-b067-7cd472864bf8/1/fkL5qpHFODs-cnVy67GVWRqHYM4.crl rsync://rpki.ripe.net/repository/DEFAULT/20/81d8dd-4cd3-4378-b067-7cd472864bf8/1/fkL5qpHFODs-cnVy67GVWRqHYM4.mft rsync://rpki.ripe.net/repository/DEFAULT/fkL5qpHFODs-cnVy67GVWRqHYM4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:50:58:03:d9:5b:68:38:e6:1f:37:23:91:08:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7e42f9aa91c5383b3e727572ebb195591a8760ce Validity Not Before: Feb 9 16:00:48 2026 GMT Not After : Feb 10 16:00:48 2026 GMT Subject: CN=5885ddad263e9665602448ecd35ef9fbbc25ef25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f6:a3:f5:96:76:5c:84:32:50:90:a1:d0:23: 7e:ae:b1:0e:e5:bc:19:14:48:8e:ef:76:2e:cf:7b: 4f:37:68:68:f7:f9:82:42:fa:3a:1e:fc:5f:16:48: 37:e8:83:5c:ba:02:9e:a6:26:3e:4b:1c:a5:11:64: 04:2b:d1:b9:59:94:93:5f:24:7c:f4:0f:67:db:1e: 44:92:5b:a2:0d:63:72:30:9e:91:d0:da:20:2c:c9: 7c:0e:51:5e:7f:a0:c9:8a:f3:b5:1a:58:15:ff:49: dd:c5:c5:e8:ff:3e:f6:1d:bc:5f:8e:0d:45:13:e3: 7d:b2:52:36:24:39:01:6c:5a:cd:45:d7:05:3e:57: 45:19:a1:3d:52:d4:8f:65:7a:1d:23:38:30:33:8a: 9e:fb:27:37:d7:c2:7d:6f:39:32:73:74:e6:c5:d8: ef:fd:92:62:93:9a:70:7f:38:3d:b0:9c:c0:1e:01: 69:a0:d9:2c:e9:e1:b4:89:47:9d:ad:51:20:d4:80: 7a:7c:05:bf:bb:16:53:0e:60:52:b2:22:9e:90:ef: 38:fc:de:b6:e8:b8:bc:84:27:b5:dc:d9:5d:da:5c: 65:49:e9:a4:95:92:d4:30:cb:32:b7:90:79:f9:4c: 8c:93:c2:c4:97:6a:a4:63:9c:a7:ef:d7:98:37:13: 53:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:85:DD:AD:26:3E:96:65:60:24:48:EC:D3:5E:F9:FB:BC:25:EF:25 X509v3 Authority Key Identifier: keyid:7E:42:F9:AA:91:C5:38:3B:3E:72:75:72:EB:B1:95:59:1A:87:60:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fkL5qpHFODs-cnVy67GVWRqHYM4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/81d8dd-4cd3-4378-b067-7cd472864bf8/1/fkL5qpHFODs-cnVy67GVWRqHYM4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/81d8dd-4cd3-4378-b067-7cd472864bf8/1/fkL5qpHFODs-cnVy67GVWRqHYM4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:b3:3d:10:58:4c:94:6c:59:38:cf:21:8a:b8:c2:91:42:97: e7:4c:70:48:f9:dd:98:34:d9:b2:10:fb:a0:14:91:28:a9:de: e3:62:16:78:08:f0:64:33:db:f3:30:f8:de:c8:6c:44:12:e0: 2e:8a:80:58:87:0c:03:29:35:be:fa:96:3a:5e:9c:a2:96:51: e4:90:b3:72:4e:fb:7f:de:0a:5d:80:94:b9:03:be:c3:c4:02: 3f:dd:aa:65:b0:79:02:00:33:2b:6e:33:9a:0e:5f:cb:45:35: f3:87:88:67:1f:e6:be:56:38:0c:6a:47:6f:fe:d3:e9:b6:fd: 66:4c:13:dc:d0:f1:b4:d6:1e:2f:b0:5e:3e:81:42:7c:c1:0b: 65:ce:ff:c8:f3:0f:bb:02:d3:76:af:5e:e6:92:6e:f0:6e:81: 27:11:a2:df:c0:b4:68:52:1b:c0:3d:da:df:9a:d1:89:22:3f: 28:f5:ef:99:11:1c:36:a5:f3:b6:d3:92:a5:33:07:5c:40:23: 92:43:c8:d7:49:76:04:2b:0b:ae:21:a9:f6:93:fb:b8:83:bd: f3:02:39:9a:66:67:af:2e:d6:f6:37:48:e4:37:93:ca:1f:4d: b4:c9:6a:cb:2e:3d:62:e3:92:5c:65:14:15:3b:3d:c5:7d:d7: bc:40:f7:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIlBYA9lbaDjmHzcjkQiJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdlNDJmOWFhOTFjNTM4M2IzZTcyNzU3MmViYjE5NTU5MWE4 NzYwY2UwHhcNMjYwMjA5MTYwMDQ4WhcNMjYwMjEwMTYwMDQ4WjAzMTEwLwYDVQQD Eyg1ODg1ZGRhZDI2M2U5NjY1NjAyNDQ4ZWNkMzVlZjlmYmJjMjVlZjI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnvaj9ZZ2XIQyUJCh0CN+rrEO5bwZ FEiO73Yuz3tPN2ho9/mCQvo6HvxfFkg36INcugKepiY+SxylEWQEK9G5WZSTXyR8 9A9n2x5EkluiDWNyMJ6R0NogLMl8DlFef6DJivO1GlgV/0ndxcXo/z72Hbxfjg1F E+N9slI2JDkBbFrNRdcFPldFGaE9UtSPZXodIzgwM4qe+yc318J9bzkyc3Tmxdjv /ZJik5pwfzg9sJzAHgFpoNks6eG0iUedrVEg1IB6fAW/uxZTDmBSsiKekO84/N62 6Li8hCe13Nld2lxlSemklZLUMMsyt5B5+UyMk8LEl2qkY5yn79eYNxNT0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFiF3a0mPpZlYCRI7NNe+fu8Je8lMB8GA1UdIwQY MBaAFH5C+aqRxTg7PnJ1cuuxlVkah2DOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmtMNXFwSEZPRHMtY25WeTY3R1ZXUnFIWU00LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC84MWQ4ZGQtNGNkMy00Mzc4LWIwNjct N2NkNDcyODY0YmY4LzEvZmtMNXFwSEZPRHMtY25WeTY3R1ZXUnFIWU00Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC84MWQ4ZGQtNGNkMy00Mzc4LWIwNjctN2NkNDcyODY0YmY4 LzEvZmtMNXFwSEZPRHMtY25WeTY3R1ZXUnFIWU00LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp7M9EFhM lGxZOM8hirjCkUKX50xwSPndmDTZshD7oBSRKKne42IWeAjwZDPb8zD43shsRBLg LoqAWIcMAyk1vvqWOl6copZR5JCzck77f94KXYCUuQO+w8QCP92qZbB5AgAzK24z mg5fy0U184eIZx/mvlY4DGpHb/7T6bb9ZkwT3NDxtNYeL7BePoFCfMELZc7/yPMP uwLTdq9e5pJu8G6BJxGi38C0aFIbwD3a35rRiSI/KPXvmREcNqXzttOSpTMHXEAj kkPI10l2BCsLriGp9pP7uIO98wI5mmZnry7W9jdI5DeTyh9NtMlqyy49YuOSXGUU FTs9xX3XvED3Kg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:32 2026 by rpki-client