This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.mft File: KqFL_4NIDRDND767gLLLUJH8-C8.mft (raw, json) Hash identifier: 4a4/md6A2f28kIvD6cQb5PAxWREhcUjgZCpgCRwO2o0= Subject key identifier: 26:6A:22:12:D2:EB:21:78:2E:7E:55:37:A0:3C:C6:7F:DF:45:1E:00 Authority key identifier: 2A:A1:4B:FF:83:48:0D:10:CD:0F:BE:BB:80:B2:CB:50:91:FC:F8:2F Certificate issuer: /CN=2aa14bff83480d10cd0fbebb80b2cb5091fcf82f Certificate serial: 019C42B4324A50E1EC0B366B1727D1EABB2F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqFL_4NIDRDND767gLLLUJH8-C8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.mft Manifest number: 180F Signing time: Mon 09 Feb 2026 14:00:31 +0000 Manifest this update: Mon 09 Feb 2026 14:00:31 +0000 Manifest next update: Tue 10 Feb 2026 14:00:31 +0000 Files and hashes: 1: H4vZZgy8L-83loBlfJ2Z1eRuVjI.roa (hash: n3TtZKW8jTF8quOeFDtPkhw+ZhgsE56xwHQyTvZ/ifg=) 2: KqFL_4NIDRDND767gLLLUJH8-C8.crl (hash: lxPC2CH6kOHfPMG1zFYGwNWDDfmhu6dvIJ2mjCRtG8k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.crl rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.mft rsync://rpki.ripe.net/repository/DEFAULT/KqFL_4NIDRDND767gLLLUJH8-C8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:32:4a:50:e1:ec:0b:36:6b:17:27:d1:ea:bb:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2aa14bff83480d10cd0fbebb80b2cb5091fcf82f Validity Not Before: Feb 9 14:00:31 2026 GMT Not After : Feb 10 14:00:31 2026 GMT Subject: CN=266a2212d2eb21782e7e5537a03cc67fdf451e00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:69:de:75:69:2a:fc:68:98:b8:eb:7d:34:3c: 34:21:32:9d:f3:7f:46:41:50:39:d6:1f:6d:45:7c: 28:00:d5:2a:39:0e:56:34:e4:82:e5:91:1c:e6:9f: 5e:b5:c2:e1:4d:2e:e8:ff:ba:de:b3:a5:d9:a3:04: a0:08:89:7f:d8:5c:39:45:20:5a:68:1f:13:99:72: 6e:03:9c:4b:f7:bf:4a:85:ff:56:90:63:58:bb:e0: 6f:e7:7b:e3:86:2a:aa:39:32:1d:57:30:9a:ad:50: 96:89:f2:3d:32:75:11:c1:d9:b2:5a:d4:d1:e9:71: ea:ae:bd:82:e4:cf:34:63:05:29:2d:e9:37:2c:0a: 55:d2:0d:85:de:76:0d:ca:f2:c6:43:e8:4f:10:72: 46:9e:90:84:6e:79:42:bb:bf:8f:40:57:99:f8:25: 59:c2:e5:8c:2a:9a:4d:8a:62:9a:54:08:12:0e:77: ec:7e:69:0b:65:51:89:e2:62:44:eb:c0:e1:35:67: a8:1c:74:f8:1d:f9:7e:5f:5f:2e:8d:7e:6a:92:09: 54:4e:b6:ea:1c:0a:8c:65:a4:1e:76:32:19:66:38: f1:bb:12:88:44:ff:b8:36:39:90:cb:33:7d:e0:7f: 1f:0d:98:f5:fc:f5:98:c6:68:50:ab:ba:b4:9b:b6: 2c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:6A:22:12:D2:EB:21:78:2E:7E:55:37:A0:3C:C6:7F:DF:45:1E:00 X509v3 Authority Key Identifier: keyid:2A:A1:4B:FF:83:48:0D:10:CD:0F:BE:BB:80:B2:CB:50:91:FC:F8:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqFL_4NIDRDND767gLLLUJH8-C8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:90:12:36:07:6f:20:dd:5d:97:4a:89:d9:b3:47:d2:c6:df: 71:44:23:fb:e6:b6:7f:b1:16:5a:b4:48:69:22:9b:57:54:98: b0:ad:59:0e:b5:51:55:5f:f8:24:18:f5:72:90:f3:99:85:59: 8c:ca:87:79:d7:b2:07:b5:b9:f1:11:08:a8:1d:4c:ab:31:28: 75:fc:43:68:fd:ac:cb:3f:93:68:3d:91:0e:3a:0d:14:7f:50: 16:50:06:0a:e9:f0:44:86:da:3d:2e:e8:fe:20:08:35:d4:8a: 8f:d4:8c:09:c0:b3:9b:b8:ee:75:16:db:bb:d6:86:8d:80:18: 71:ba:52:ac:cc:13:30:e6:10:e6:6f:b8:bd:1c:c9:27:a2:e3: 6a:b0:a8:6c:d6:42:68:69:6c:bf:67:05:da:d1:f8:ef:62:e0: 08:c4:d4:ec:47:30:e5:26:c2:b9:79:b6:93:dc:9e:3c:23:b0: 4f:61:53:c4:8e:98:f5:3b:cf:c8:d7:63:0a:6e:22:68:83:5a: 56:8e:a0:72:52:bb:6e:5c:e5:c6:64:9c:86:b4:55:ac:3c:15: 03:c2:91:b1:4f:4c:4b:16:aa:75:a7:26:09:50:0b:35:d9:c4: bc:7d:7f:26:ae:c6:7c:0a:d2:cd:0d:47:a7:50:49:c6:ef:3f: 23:ce:d6:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtDJKUOHsCzZrFyfR6rsvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhYTE0YmZmODM0ODBkMTBjZDBmYmViYjgwYjJjYjUwOTFm Y2Y4MmYwHhcNMjYwMjA5MTQwMDMxWhcNMjYwMjEwMTQwMDMxWjAzMTEwLwYDVQQD EygyNjZhMjIxMmQyZWIyMTc4MmU3ZTU1MzdhMDNjYzY3ZmRmNDUxZTAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmnedWkq/GiYuOt9NDw0ITKd839G QVA51h9tRXwoANUqOQ5WNOSC5ZEc5p9etcLhTS7o/7res6XZowSgCIl/2Fw5RSBa aB8TmXJuA5xL979Khf9WkGNYu+Bv53vjhiqqOTIdVzCarVCWifI9MnURwdmyWtTR 6XHqrr2C5M80YwUpLek3LApV0g2F3nYNyvLGQ+hPEHJGnpCEbnlCu7+PQFeZ+CVZ wuWMKppNimKaVAgSDnfsfmkLZVGJ4mJE68DhNWeoHHT4Hfl+X18ujX5qkglUTrbq HAqMZaQedjIZZjjxuxKIRP+4NjmQyzN94H8fDZj1/PWYxmhQq7q0m7YshQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCZqIhLS6yF4Ln5VN6A8xn/fRR4AMB8GA1UdIwQY MBaAFCqhS/+DSA0QzQ++u4Cyy1CR/PgvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3FGTF80TklEUkRORDc2N2dMTExVSkg4LUM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9iMTk4MTEtZmEyMy00N2IwLWI1Nzct MTc2OThmODhjM2JkLzEvS3FGTF80TklEUkRORDc2N2dMTExVSkg4LUM4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9iMTk4MTEtZmEyMy00N2IwLWI1NzctMTc2OThmODhjM2Jk LzEvS3FGTF80TklEUkRORDc2N2dMTExVSkg4LUM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX5ASNgdv IN1dl0qJ2bNH0sbfcUQj++a2f7EWWrRIaSKbV1SYsK1ZDrVRVV/4JBj1cpDzmYVZ jMqHedeyB7W58REIqB1MqzEodfxDaP2syz+TaD2RDjoNFH9QFlAGCunwRIbaPS7o /iAINdSKj9SMCcCzm7judRbbu9aGjYAYcbpSrMwTMOYQ5m+4vRzJJ6LjarCobNZC aGlsv2cF2tH472LgCMTU7Ecw5SbCuXm2k9yePCOwT2FTxI6Y9TvPyNdjCm4iaINa Vo6gclK7blzlxmSchrRVrDwVA8KRsU9MSxaqdacmCVALNdnEvH1/Jq7GfArSzQ1H p1BJxu8/I87WQQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:45 2026 by rpki-client