This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft File: kfWJGibPpDaiPn4f-XZki-5573c.mft (raw, json) Hash identifier: s8NFekiohppj8+YsjH8WvVJEoxsdtGWH9K6XVNm337s= Subject key identifier: 5D:D6:A2:8E:C9:41:0A:6D:F5:3E:BA:D7:97:D0:B3:B1:C9:E9:24:73 Authority key identifier: 91:F5:89:1A:26:CF:A4:36:A2:3E:7E:1F:F9:76:64:8B:EE:79:EF:77 Certificate issuer: /CN=91f5891a26cfa436a23e7e1ff976648bee79ef77 Certificate serial: 019C1F1625B71E28FA7041D0B834DE9741AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft Manifest number: 166D Signing time: Mon 02 Feb 2026 16:01:10 +0000 Manifest this update: Mon 02 Feb 2026 16:01:10 +0000 Manifest next update: Tue 03 Feb 2026 16:01:10 +0000 Files and hashes: 1: 13pODHcx3eQP7xOkMHNEefG7IIQ.roa (hash: qlJleMO2jwSLSXtFMrN9K1iB2b/o+2MJHkGDE9iSiW4=) 2: kfWJGibPpDaiPn4f-XZki-5573c.crl (hash: 2UjrsWnmXsfmWAyzrTCLTtj99vHl+ypOPhtUYez5Dbc=) 3: n4Dsi3C82jo2ZtBfzJElgZJ-w5k.roa (hash: 3luKXeODer9xKHZYN0At3nnyayOvshr2VqXrwUa+RzY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.crl rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 16:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1f:16:25:b7:1e:28:fa:70:41:d0:b8:34:de:97:41:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91f5891a26cfa436a23e7e1ff976648bee79ef77 Validity Not Before: Feb 2 16:01:10 2026 GMT Not After : Feb 3 16:01:10 2026 GMT Subject: CN=5dd6a28ec9410a6df53ebad797d0b3b1c9e92473 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ab:82:c6:3a:d3:e0:6c:64:85:d6:39:40:97: 9b:34:82:cb:1c:09:c3:17:cc:59:2e:b9:a0:2f:e3: a0:03:38:15:26:ef:7c:5d:f1:b8:79:93:a6:c4:b0: 79:d6:db:cf:c4:54:4f:c1:f3:ec:cf:66:84:f9:2f: fc:73:25:35:2b:04:f3:64:13:2c:d5:07:00:51:00: 59:6f:bf:57:c5:6f:94:d5:9b:c5:09:2d:e9:30:86: 24:c1:b0:ec:ef:b3:ef:6b:24:87:aa:13:d9:ff:38: 10:06:e6:06:eb:5d:66:32:a1:d8:d3:38:6e:d5:88: 85:5b:ed:3f:21:dd:ea:00:d5:10:6b:29:4c:fd:f2: 73:cd:71:5d:e1:75:79:1c:3b:f6:d9:e7:08:e6:e2: 73:11:ef:eb:36:e7:a7:38:36:c7:8d:06:c2:fa:44: 4b:8f:2d:42:1e:64:96:12:d2:a7:ed:72:00:a3:73: 72:0b:60:55:ad:e2:e5:fb:86:83:9d:a1:f7:29:05: 1f:f8:b6:bc:cf:44:ce:3a:60:bf:6e:bf:69:e5:d4: d0:d2:df:5c:e7:0d:c1:d5:31:14:4c:da:b7:da:05: 81:13:1b:e8:11:ad:9b:fb:3c:90:33:a7:f1:26:9e: ea:4f:7f:83:5c:12:0a:e6:30:21:27:73:3b:74:02: a0:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:D6:A2:8E:C9:41:0A:6D:F5:3E:BA:D7:97:D0:B3:B1:C9:E9:24:73 X509v3 Authority Key Identifier: keyid:91:F5:89:1A:26:CF:A4:36:A2:3E:7E:1F:F9:76:64:8B:EE:79:EF:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:04:90:3b:32:3f:00:18:a3:fb:c4:05:a3:c7:5c:04:33:3d: bb:42:75:98:19:2b:ea:15:40:9b:7e:dd:82:3c:b4:83:d2:22: 3d:4a:71:20:69:06:05:04:fe:e9:91:ea:03:27:73:65:f5:15: 02:e6:27:7d:69:28:97:81:3c:f5:ba:bb:a0:5a:ef:95:ed:f8: b9:da:4d:b6:53:ef:ab:cf:aa:39:0e:28:d6:d5:2f:08:9a:fc: f7:27:de:23:1f:12:43:f5:8b:9e:8f:c7:2c:cf:04:5f:7b:40: 0d:29:c3:89:99:d3:05:1f:a0:fa:c0:92:59:c8:ea:87:00:8c: 96:9f:aa:75:66:37:00:40:7a:30:66:72:8e:71:db:12:be:16: bb:91:27:b3:46:1d:7d:6f:ec:51:0b:9d:2b:55:b9:04:5a:3d: 0b:1e:28:1a:69:0d:fe:0a:31:6a:15:d1:32:0f:92:9e:9a:bb: 66:3d:0f:13:2d:b1:d9:00:ad:2e:46:d0:dc:fc:ba:4f:31:c2: 9a:11:bf:0d:b7:dc:33:bd:2b:4a:ba:c2:9b:c6:5d:aa:9a:59: a7:73:9e:14:b5:04:7e:7a:ee:ab:bf:04:b2:ab:4f:dc:37:a9: 7c:52:cf:cb:79:1d:b7:46:47:88:2a:d7:e0:7f:e1:28:44:49: b8:35:d0:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwfFiW3Hij6cEHQuDTel0GvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxZjU4OTFhMjZjZmE0MzZhMjNlN2UxZmY5NzY2NDhiZWU3 OWVmNzcwHhcNMjYwMjAyMTYwMTEwWhcNMjYwMjAzMTYwMTEwWjAzMTEwLwYDVQQD Eyg1ZGQ2YTI4ZWM5NDEwYTZkZjUzZWJhZDc5N2QwYjNiMWM5ZTkyNDczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0KuCxjrT4GxkhdY5QJebNILLHAnD F8xZLrmgL+OgAzgVJu98XfG4eZOmxLB51tvPxFRPwfPsz2aE+S/8cyU1KwTzZBMs 1QcAUQBZb79XxW+U1ZvFCS3pMIYkwbDs77PvaySHqhPZ/zgQBuYG611mMqHY0zhu 1YiFW+0/Id3qANUQaylM/fJzzXFd4XV5HDv22ecI5uJzEe/rNuenODbHjQbC+kRL jy1CHmSWEtKn7XIAo3NyC2BVreLl+4aDnaH3KQUf+La8z0TOOmC/br9p5dTQ0t9c 5w3B1TEUTNq32gWBExvoEa2b+zyQM6fxJp7qT3+DXBIK5jAhJ3M7dAKgywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF3Woo7JQQpt9T6615fQs7HJ6SRzMB8GA1UdIwQY MBaAFJH1iRomz6Q2oj5+H/l2ZIvuee93MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2ZXSkdpYlBwRGFpUG40Zi1YWmtpLTU1NzNjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy83ZjFiNzQtYzhkNy00YTBkLThhMzkt ZGFhNzM5MGI1YmE3LzEva2ZXSkdpYlBwRGFpUG40Zi1YWmtpLTU1NzNjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy83ZjFiNzQtYzhkNy00YTBkLThhMzktZGFhNzM5MGI1YmE3 LzEva2ZXSkdpYlBwRGFpUG40Zi1YWmtpLTU1NzNjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiASQOzI/ ABij+8QFo8dcBDM9u0J1mBkr6hVAm37dgjy0g9IiPUpxIGkGBQT+6ZHqAydzZfUV AuYnfWkol4E89bq7oFrvle34udpNtlPvq8+qOQ4o1tUvCJr89yfeIx8SQ/WLno/H LM8EX3tADSnDiZnTBR+g+sCSWcjqhwCMlp+qdWY3AEB6MGZyjnHbEr4Wu5Ens0Yd fW/sUQudK1W5BFo9Cx4oGmkN/goxahXRMg+Snpq7Zj0PEy2x2QCtLkbQ3Py6TzHC mhG/DbfcM70rSrrCm8ZdqppZp3OeFLUEfnruq78EsqtP3DepfFLPy3kdt0ZHiCrX 4H/hKERJuDXQoQ== -----END CERTIFICATE-----Generated at Tue Feb 3 01:52:46 2026 by rpki-client