This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft File: KbOnF2ZaETfpncj60i4-f5jbiXM.mft (raw, json) Hash identifier: Y8CV8LSRae7yRB87dxWBpiRVNbU7ztokwDalthuB+dg= Subject key identifier: A8:59:95:04:65:84:17:03:4C:49:D6:4B:2F:D6:2B:F0:B5:3D:89:F5 Authority key identifier: 29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73 Certificate issuer: /CN=29b3a717665a1137e99dc8fad22e3e7f98db8973 Certificate serial: 019C43FDD03D473461F1BCC4BBFEF23E50DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft Manifest number: 1816 Signing time: Mon 09 Feb 2026 20:00:33 +0000 Manifest this update: Mon 09 Feb 2026 20:00:33 +0000 Manifest next update: Tue 10 Feb 2026 20:00:33 +0000 Files and hashes: 1: KbOnF2ZaETfpncj60i4-f5jbiXM.crl (hash: x7kV5HUTPDHkQqrfU1CEydTTU1UGdPhdHW7zQ41QB2c=) 2: Ty9RnsnK3EDnysBvDikYp04oggo.roa (hash: oWmmAPgiMnRBuVQF4Wy8CU51nd17TmIJOxZ3k8HDTIo=) 3: VmNdh6laZxyVCC_g82mHnoN0sjg.roa (hash: fCIZoEHtubiL+1CEYbmHMAzOgcDhgRWMLUT6hfUtnUM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:d0:3d:47:34:61:f1:bc:c4:bb:fe:f2:3e:50:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29b3a717665a1137e99dc8fad22e3e7f98db8973 Validity Not Before: Feb 9 20:00:33 2026 GMT Not After : Feb 10 20:00:33 2026 GMT Subject: CN=a8599504658417034c49d64b2fd62bf0b53d89f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:aa:0f:19:c5:ad:af:02:8f:a2:2c:17:48:93: 08:a2:5b:30:7b:98:05:a0:03:a9:03:e0:a2:3f:7e: 5f:02:2c:d5:4d:88:df:dd:09:04:06:7e:a3:90:22: 6f:7b:fe:80:b2:20:e9:d8:06:55:2f:11:9f:85:ea: ba:43:f8:f5:63:c4:c6:88:af:4b:d4:c4:3a:b5:40: d3:84:d7:9f:f0:da:37:60:bd:63:b0:29:d9:52:5b: 0b:a2:e5:97:29:c9:be:b0:ac:32:b8:68:2c:94:b0: 40:8c:91:44:75:e2:cb:3e:d9:57:e6:0c:9a:b9:d3: eb:79:e2:89:7e:f6:de:1e:07:b5:82:b6:34:4b:47: ff:b2:3b:2e:9b:df:3a:fb:de:2f:fb:9c:be:cd:4f: ed:eb:c7:9c:69:08:6f:94:f4:de:3f:68:93:f4:15: f6:66:49:b5:da:a4:3d:e1:62:bf:6e:42:7a:eb:ee: 9c:f6:d9:60:cd:c6:a4:03:e1:ae:c5:f8:d7:3a:29: e2:b0:68:e5:3d:6e:28:7f:4b:da:56:94:ba:ee:1e: 00:51:46:fd:dc:04:e6:b4:ce:02:f9:17:71:b4:c2: 7b:f7:4f:bf:02:5b:bf:54:d7:ca:fa:d3:af:44:73: 27:a1:b8:b4:a3:98:85:2e:20:21:60:21:d2:f7:c7: c0:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:59:95:04:65:84:17:03:4C:49:D6:4B:2F:D6:2B:F0:B5:3D:89:F5 X509v3 Authority Key Identifier: keyid:29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:b1:6a:88:7a:43:05:b4:31:cb:e4:f1:4e:57:4a:c5:fe:55: bb:c1:c3:63:bb:8d:9b:7c:e2:04:3d:5a:47:31:29:bf:84:64: 96:8f:26:f9:6c:e1:d5:e5:fb:d4:54:c2:77:63:b9:92:6e:eb: ed:11:09:57:77:4c:7b:23:28:bb:8c:c8:84:8b:f2:2e:c5:85: 5b:9c:78:8c:54:1f:e0:3c:53:da:89:a6:ca:b9:d2:16:20:73: 9b:9f:3f:49:0c:80:ff:68:6d:7e:14:64:c2:03:b7:29:fe:5a: 19:53:f3:18:f7:03:48:d9:f7:26:fc:92:35:bd:e1:4a:b7:bc: 1f:59:b9:f8:28:fd:3b:fe:47:da:7a:35:8d:3e:57:fc:5a:ec: fc:fc:20:1b:ca:b7:56:9d:a1:37:de:4b:71:14:9a:f6:2d:52: 3d:07:b3:8d:bd:46:72:8f:9d:40:e7:58:74:7e:c1:71:2d:b4: 08:07:a2:6c:36:f2:66:fa:36:36:f4:7b:77:e2:81:21:53:2b: 95:7c:3a:26:a7:5c:c7:5b:a6:7d:9e:75:ee:18:2e:5b:ad:e6: 86:bd:c4:82:50:a4:3c:f8:ee:17:27:36:5e:f4:31:fe:cc:e6: dd:ff:98:47:dd:ca:85:a3:14:db:a1:52:d8:bf:69:1a:7f:6c: c8:77:00:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/dA9RzRh8bzEu/7yPlDcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5YjNhNzE3NjY1YTExMzdlOTlkYzhmYWQyMmUzZTdmOThk Yjg5NzMwHhcNMjYwMjA5MjAwMDMzWhcNMjYwMjEwMjAwMDMzWjAzMTEwLwYDVQQD EyhhODU5OTUwNDY1ODQxNzAzNGM0OWQ2NGIyZmQ2MmJmMGI1M2Q4OWY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvqoPGcWtrwKPoiwXSJMIolswe5gF oAOpA+CiP35fAizVTYjf3QkEBn6jkCJve/6AsiDp2AZVLxGfheq6Q/j1Y8TGiK9L 1MQ6tUDThNef8No3YL1jsCnZUlsLouWXKcm+sKwyuGgslLBAjJFEdeLLPtlX5gya udPreeKJfvbeHge1grY0S0f/sjsum986+94v+5y+zU/t68ecaQhvlPTeP2iT9BX2 Zkm12qQ94WK/bkJ66+6c9tlgzcakA+GuxfjXOinisGjlPW4of0vaVpS67h4AUUb9 3ATmtM4C+RdxtMJ790+/Alu/VNfK+tOvRHMnobi0o5iFLiAhYCHS98fAbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKhZlQRlhBcDTEnWSy/WK/C1PYn1MB8GA1UdIwQY MBaAFCmzpxdmWhE36Z3I+tIuPn+Y24lzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2JPbkYyWmFFVGZwbmNqNjBpNC1mNWpiaVhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hY2QyOGUtNTJhZS00YWM5LWIwMjgt NjY5ZjdhNzYxNjMxLzEvS2JPbkYyWmFFVGZwbmNqNjBpNC1mNWpiaVhNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9hY2QyOGUtNTJhZS00YWM5LWIwMjgtNjY5ZjdhNzYxNjMx LzEvS2JPbkYyWmFFVGZwbmNqNjBpNC1mNWpiaVhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJLFqiHpD BbQxy+TxTldKxf5Vu8HDY7uNm3ziBD1aRzEpv4Rklo8m+Wzh1eX71FTCd2O5km7r 7REJV3dMeyMou4zIhIvyLsWFW5x4jFQf4DxT2ommyrnSFiBzm58/SQyA/2htfhRk wgO3Kf5aGVPzGPcDSNn3JvySNb3hSre8H1m5+Cj9O/5H2no1jT5X/Frs/PwgG8q3 Vp2hN95LcRSa9i1SPQezjb1Gco+dQOdYdH7BcS20CAeibDbyZvo2NvR7d+KBIVMr lXw6Jqdcx1umfZ517hguW63mhr3EglCkPPjuFyc2XvQx/szm3f+YR93KhaMU26FS 2L9pGn9syHcAyg== -----END CERTIFICATE-----Generated at Tue Feb 10 02:52:17 2026 by rpki-client