This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft File: KdlQvBhFV79QTPK3yUp9zsCHbWY.mft (raw, json) Hash identifier: 6ppFakmSQo244VNAE21ggeM2sCKEvgMi8opLR/EnRaw= Subject key identifier: 87:14:C3:C1:36:21:1B:D9:A7:85:53:84:BC:AE:76:C5:8D:86:95:F5 Authority key identifier: 29:D9:50:BC:18:45:57:BF:50:4C:F2:B7:C9:4A:7D:CE:C0:87:6D:66 Certificate issuer: /CN=29d950bc184557bf504cf2b7c94a7dcec0876d66 Certificate serial: 019C427DA28EBB688C5ABEA9AC3E256CBAF4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdlQvBhFV79QTPK3yUp9zsCHbWY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft Manifest number: 180F Signing time: Mon 09 Feb 2026 13:00:55 +0000 Manifest this update: Mon 09 Feb 2026 13:00:55 +0000 Manifest next update: Tue 10 Feb 2026 13:00:55 +0000 Files and hashes: 1: KdlQvBhFV79QTPK3yUp9zsCHbWY.crl (hash: sVxiAIY0crpGBnpHV+YSRsIJ80BHzqBJ9jCnOJVaDZw=) 2: bXOv_CUuxonwS19Bf5bYfNwVcEw.roa (hash: pgxwkEVra6Le7zeKVNiooLUsbulw8SiiT7aDE/ZBWEo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft rsync://rpki.ripe.net/repository/DEFAULT/KdlQvBhFV79QTPK3yUp9zsCHbWY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:a2:8e:bb:68:8c:5a:be:a9:ac:3e:25:6c:ba:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29d950bc184557bf504cf2b7c94a7dcec0876d66 Validity Not Before: Feb 9 13:00:55 2026 GMT Not After : Feb 10 13:00:55 2026 GMT Subject: CN=8714c3c136211bd9a7855384bcae76c58d8695f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:21:55:82:05:89:fc:d7:d3:ff:19:75:75:aa: ac:09:cd:85:16:10:03:45:86:85:25:44:ce:bc:9e: 5c:95:d2:9e:8e:b1:5c:91:62:de:f1:16:52:a7:18: ae:a2:19:a6:ff:88:42:68:77:2c:63:3f:fe:80:40: 1e:a5:db:94:83:e0:0c:89:a6:5a:82:72:07:01:28: 07:46:4d:96:4a:f8:6c:e5:b0:08:5c:a0:c1:9f:5e: ff:bf:a4:d2:32:3d:cd:bb:81:36:86:d1:c9:28:34: 57:e0:62:90:73:3d:ae:31:4d:24:0a:b1:a7:d8:b2: c0:2b:a1:2b:06:18:02:c4:b5:30:52:a2:57:ee:af: 87:b2:69:e7:5e:61:3f:ff:f1:9e:51:e1:67:61:b2: 4e:a8:b6:3e:2f:2e:ce:d3:74:a8:e5:a0:54:6b:28: 15:a0:84:43:96:53:70:2b:28:fb:58:82:25:ec:0d: 40:5c:b8:88:9e:20:f8:dd:6b:cd:2b:62:00:48:9f: 32:1d:06:07:cd:51:34:1e:f9:22:bd:d9:12:2d:da: 51:ba:46:61:bc:91:68:bb:09:3e:9b:26:25:03:e7: e1:7f:83:53:9d:66:6c:36:40:27:d5:73:cf:af:84: 2f:72:ca:2d:cf:d7:a6:b4:bc:60:24:5a:f3:38:4d: a5:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:14:C3:C1:36:21:1B:D9:A7:85:53:84:BC:AE:76:C5:8D:86:95:F5 X509v3 Authority Key Identifier: keyid:29:D9:50:BC:18:45:57:BF:50:4C:F2:B7:C9:4A:7D:CE:C0:87:6D:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdlQvBhFV79QTPK3yUp9zsCHbWY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:87:22:e3:1c:5c:17:f4:04:9f:01:76:42:ee:9f:40:1f:82: 56:eb:82:17:0b:d3:ac:a3:24:35:df:95:d2:35:52:71:bd:76: 71:7d:40:d6:44:18:64:66:a3:00:6b:42:e3:95:40:0c:0c:3d: 36:7d:fc:00:81:d0:0f:32:b7:a0:ad:42:4d:80:e9:97:0d:3a: 12:a3:36:88:46:57:13:9c:6a:cc:15:a9:a3:be:7f:ce:41:10: c7:bb:5f:88:1b:a2:8c:e4:77:c8:2a:8c:f2:fb:a8:35:98:68: dd:f6:6a:5d:9d:30:04:dd:9f:a7:52:ab:7f:bf:48:2f:49:59: 6e:1f:db:5e:4e:2e:3f:90:53:de:f6:8d:c9:a0:bb:c8:60:3e: 54:64:bc:eb:40:de:b1:cf:82:c4:20:75:74:ac:4e:82:69:d4: 6f:0f:5f:73:2d:81:92:a0:94:88:26:37:28:8d:9f:a1:a7:91: 6c:68:9c:ca:80:70:db:ea:89:e7:ac:9e:a2:1c:83:06:77:a9: 8a:58:37:4c:f7:7a:ec:d1:fa:3d:53:ba:b2:5d:b5:86:bd:dc: f7:4f:3a:0e:0c:9a:eb:4f:93:b8:48:0a:c5:4f:9f:b0:92:68: 22:3e:4e:4f:25:70:63:04:2e:f5:cb:70:02:d4:e5:4e:99:2a: 16:24:49:16 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfaKOu2iMWr6prD4lbLr0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZDk1MGJjMTg0NTU3YmY1MDRjZjJiN2M5NGE3ZGNlYzA4 NzZkNjYwHhcNMjYwMjA5MTMwMDU1WhcNMjYwMjEwMTMwMDU1WjAzMTEwLwYDVQQD Eyg4NzE0YzNjMTM2MjExYmQ5YTc4NTUzODRiY2FlNzZjNThkODY5NWY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApSFVggWJ/NfT/xl1daqsCc2FFhAD RYaFJUTOvJ5cldKejrFckWLe8RZSpxiuohmm/4hCaHcsYz/+gEAepduUg+AMiaZa gnIHASgHRk2WSvhs5bAIXKDBn17/v6TSMj3Nu4E2htHJKDRX4GKQcz2uMU0kCrGn 2LLAK6ErBhgCxLUwUqJX7q+HsmnnXmE///GeUeFnYbJOqLY+Ly7O03So5aBUaygV oIRDllNwKyj7WIIl7A1AXLiIniD43WvNK2IASJ8yHQYHzVE0HvkivdkSLdpRukZh vJFouwk+myYlA+fhf4NTnWZsNkAn1XPPr4Qvcsotz9emtLxgJFrzOE2lIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIcUw8E2IRvZp4VThLyudsWNhpX1MB8GA1UdIwQY MBaAFCnZULwYRVe/UEzyt8lKfc7Ah21mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2RsUXZCaEZWNzlRVFBLM3lVcDl6c0NIYldZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi83NzJmZWEtNDcxNS00MDEwLThjMWUt ZGVlNjZhMzU1MDZjLzEvS2RsUXZCaEZWNzlRVFBLM3lVcDl6c0NIYldZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi83NzJmZWEtNDcxNS00MDEwLThjMWUtZGVlNjZhMzU1MDZj LzEvS2RsUXZCaEZWNzlRVFBLM3lVcDl6c0NIYldZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZoci4xxc F/QEnwF2Qu6fQB+CVuuCFwvTrKMkNd+V0jVScb12cX1A1kQYZGajAGtC45VADAw9 Nn38AIHQDzK3oK1CTYDplw06EqM2iEZXE5xqzBWpo75/zkEQx7tfiBuijOR3yCqM 8vuoNZho3fZqXZ0wBN2fp1Krf79IL0lZbh/bXk4uP5BT3vaNyaC7yGA+VGS860De sc+CxCB1dKxOgmnUbw9fcy2BkqCUiCY3KI2foaeRbGicyoBw2+qJ56yeohyDBnep ilg3TPd67NH6PVO6sl21hr3c9086Dgya60+TuEgKxU+fsJJoIj5OTyVwYwQu9ctw AtTlTpkqFiRJFg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:19 2026 by rpki-client