This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/70669e-5744-4477-86ba-795c3a612e8b/1/KfQ0DfcXYFdICDAMsU_Bdg-uzPk.mft File: KfQ0DfcXYFdICDAMsU_Bdg-uzPk.mft (raw, json) Hash identifier: Bs/q9sKf4cFmAu2Zy8CqIwej3FGD/qB0cI2ULP+5/oM= Subject key identifier: 12:D6:C3:8C:73:12:9F:FF:46:63:A2:7D:31:DB:45:E2:89:2B:49:88 Authority key identifier: 29:F4:34:0D:F7:17:60:57:48:08:30:0C:B1:4F:C1:76:0F:AE:CC:F9 Certificate issuer: /CN=29f4340df71760574808300cb14fc1760faeccf9 Certificate serial: 019C4322639FF2F0AFDF316975CC5327E507 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfQ0DfcXYFdICDAMsU_Bdg-uzPk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/70669e-5744-4477-86ba-795c3a612e8b/1/KfQ0DfcXYFdICDAMsU_Bdg-uzPk.mft Manifest number: 02C4 Signing time: Mon 09 Feb 2026 16:00:53 +0000 Manifest this update: Mon 09 Feb 2026 16:00:53 +0000 Manifest next update: Tue 10 Feb 2026 16:00:53 +0000 Files and hashes: 1: KfQ0DfcXYFdICDAMsU_Bdg-uzPk.crl (hash: iW/H7XBKfHYwnzf4VR+vll9ih7217CfLBnevcFAmTd0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/70669e-5744-4477-86ba-795c3a612e8b/1/KfQ0DfcXYFdICDAMsU_Bdg-uzPk.crl rsync://rpki.ripe.net/repository/DEFAULT/40/70669e-5744-4477-86ba-795c3a612e8b/1/KfQ0DfcXYFdICDAMsU_Bdg-uzPk.mft rsync://rpki.ripe.net/repository/DEFAULT/KfQ0DfcXYFdICDAMsU_Bdg-uzPk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:63:9f:f2:f0:af:df:31:69:75:cc:53:27:e5:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29f4340df71760574808300cb14fc1760faeccf9 Validity Not Before: Feb 9 16:00:53 2026 GMT Not After : Feb 10 16:00:53 2026 GMT Subject: CN=12d6c38c73129fff4663a27d31db45e2892b4988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:cd:fb:3b:10:37:a4:86:b2:23:fe:10:69:8f: c5:5c:5c:5a:b1:19:92:09:46:f4:2b:68:1d:17:63: 1f:39:e1:f9:7c:81:30:93:ee:68:b9:f2:f7:2d:68: df:dd:f6:e4:e0:88:d8:0b:6a:fe:ba:54:93:e3:40: 3e:28:77:0a:19:28:b0:74:71:b9:e7:73:44:b9:8c: e8:39:f6:e4:7e:20:2c:af:14:93:09:93:bb:0d:72: d1:6a:b7:6c:1d:ed:2b:cf:a7:7e:2f:7f:e3:a0:81: 3f:19:a8:c7:28:fb:71:7e:3f:17:cc:9d:f5:69:a8: bd:b9:c8:3b:3b:33:df:77:5a:8a:7c:de:0d:a3:b1: c4:6a:7a:24:91:2c:a3:66:de:82:7f:f1:0e:38:22: 19:71:a2:ba:29:00:90:40:9d:d2:09:12:c9:0d:96: a3:7c:d5:a8:82:4e:9b:0d:d4:f3:a0:fd:29:6f:db: 0a:63:a8:35:9e:22:b5:e5:f1:29:7b:6a:52:01:39: 73:cf:b1:f1:b1:22:52:d9:03:83:e5:28:84:93:35: e8:9c:a5:76:6b:ed:82:1a:a8:48:34:3c:03:e6:6a: fb:aa:69:cb:6e:77:ff:82:0f:4a:f1:01:29:e3:c2: a6:ad:0e:fb:b0:f7:64:0d:73:a3:d5:aa:06:14:03: 16:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:D6:C3:8C:73:12:9F:FF:46:63:A2:7D:31:DB:45:E2:89:2B:49:88 X509v3 Authority Key Identifier: keyid:29:F4:34:0D:F7:17:60:57:48:08:30:0C:B1:4F:C1:76:0F:AE:CC:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfQ0DfcXYFdICDAMsU_Bdg-uzPk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/70669e-5744-4477-86ba-795c3a612e8b/1/KfQ0DfcXYFdICDAMsU_Bdg-uzPk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/70669e-5744-4477-86ba-795c3a612e8b/1/KfQ0DfcXYFdICDAMsU_Bdg-uzPk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:f4:14:d5:c9:fa:ed:b1:83:0f:f9:48:d1:e5:54:31:bc:6f: d3:f5:49:ec:04:37:06:50:fa:da:f4:10:e0:e5:6b:ec:ba:99: 66:38:32:50:af:24:2a:f5:6f:00:ff:5e:d3:2e:e5:cb:d4:18: a2:8d:67:eb:ae:40:19:46:b4:6d:de:41:ca:ae:3c:c3:78:97: 3f:75:eb:b5:d7:3e:e0:5f:b5:49:2f:72:97:b8:37:0e:ff:b5: bd:85:c3:76:a2:73:9b:1c:69:ce:8b:57:07:8f:ff:bf:46:82: c6:5a:c6:0b:af:04:47:ff:22:bc:45:69:eb:4f:a6:f9:c3:36: b5:92:ff:b2:42:d5:1e:00:f1:38:b5:33:3e:8c:38:3d:71:84: 0a:20:a9:fe:9b:da:2b:05:9d:e3:17:79:92:49:b8:08:34:79: 90:26:ac:9f:f0:a9:b4:6a:a0:27:72:96:bb:ee:d1:b8:b1:07: 0f:02:6a:0a:85:b9:50:ca:07:d4:4e:83:f3:29:b9:1b:02:45: 15:c1:02:7c:12:88:9a:73:21:41:c3:f8:df:87:c8:5d:70:10: 45:71:56:4d:2e:7d:a8:11:cb:4d:6c:55:11:37:f0:01:66:d6: 43:e2:c0:9f:1e:25:4c:cc:be:d0:10:d6:ac:7a:e6:95:6d:63: a0:6e:cd:71 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDImOf8vCv3zFpdcxTJ+UHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZjQzNDBkZjcxNzYwNTc0ODA4MzAwY2IxNGZjMTc2MGZh ZWNjZjkwHhcNMjYwMjA5MTYwMDUzWhcNMjYwMjEwMTYwMDUzWjAzMTEwLwYDVQQD EygxMmQ2YzM4YzczMTI5ZmZmNDY2M2EyN2QzMWRiNDVlMjg5MmI0OTg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8M37OxA3pIayI/4QaY/FXFxasRmS CUb0K2gdF2MfOeH5fIEwk+5oufL3LWjf3fbk4IjYC2r+ulST40A+KHcKGSiwdHG5 53NEuYzoOfbkfiAsrxSTCZO7DXLRardsHe0rz6d+L3/joIE/GajHKPtxfj8XzJ31 aai9ucg7OzPfd1qKfN4No7HEanokkSyjZt6Cf/EOOCIZcaK6KQCQQJ3SCRLJDZaj fNWogk6bDdTzoP0pb9sKY6g1niK15fEpe2pSATlzz7HxsSJS2QOD5SiEkzXonKV2 a+2CGqhINDwD5mr7qmnLbnf/gg9K8QEp48KmrQ77sPdkDXOj1aoGFAMWlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBLWw4xzEp//RmOifTHbReKJK0mIMB8GA1UdIwQY MBaAFCn0NA33F2BXSAgwDLFPwXYPrsz5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2ZRMERmY1hZRmRJQ0RBTXNVX0JkZy11elBrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC83MDY2OWUtNTc0NC00NDc3LTg2YmEt Nzk1YzNhNjEyZThiLzEvS2ZRMERmY1hZRmRJQ0RBTXNVX0JkZy11elBrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC83MDY2OWUtNTc0NC00NDc3LTg2YmEtNzk1YzNhNjEyZThi LzEvS2ZRMERmY1hZRmRJQ0RBTXNVX0JkZy11elBrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm/QU1cn6 7bGDD/lI0eVUMbxv0/VJ7AQ3BlD62vQQ4OVr7LqZZjgyUK8kKvVvAP9e0y7ly9QY oo1n665AGUa0bd5Byq48w3iXP3Xrtdc+4F+1SS9yl7g3Dv+1vYXDdqJzmxxpzotX B4//v0aCxlrGC68ER/8ivEVp60+m+cM2tZL/skLVHgDxOLUzPow4PXGECiCp/pva KwWd4xd5kkm4CDR5kCasn/CptGqgJ3KWu+7RuLEHDwJqCoW5UMoH1E6D8ym5GwJF FcECfBKImnMhQcP434fIXXAQRXFWTS59qBHLTWxVETfwAWbWQ+LAnx4lTMy+0BDW rHrmlW1joG7NcQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:28 2026 by rpki-client