This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft File: KfUkAji4KPFuYCKeJjNQPwSEZZk.mft (raw, json) Hash identifier: 8U8DfwdDNRAyxJappbbaRknwm0k+0SduNAsuEiUa0wo= Subject key identifier: 31:9A:B9:33:02:DE:2B:FA:54:F4:FE:C3:0E:8A:04:E0:4D:BB:DB:60 Authority key identifier: 29:F5:24:02:38:B8:28:F1:6E:60:22:9E:26:33:50:3F:04:84:65:99 Certificate issuer: /CN=29f5240238b828f16e60229e2633503f04846599 Certificate serial: 019C424699073CC40A8CE39FCE79BCC8BEB5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft Manifest number: 0501 Signing time: Mon 09 Feb 2026 12:00:48 +0000 Manifest this update: Mon 09 Feb 2026 12:00:48 +0000 Manifest next update: Tue 10 Feb 2026 12:00:48 +0000 Files and hashes: 1: 5HzcZ6a4XAtwOavRhWgPVbFXunY.roa (hash: WuFbSIBYf/9ZwaN+lOrty44DR9s11eIeBklLm/eyCus=) 2: KfUkAji4KPFuYCKeJjNQPwSEZZk.crl (hash: C/LGLnk+Oga4ZXl5+RjJYd/y9rxErGrpM94wisiRtN8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.crl rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:99:07:3c:c4:0a:8c:e3:9f:ce:79:bc:c8:be:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29f5240238b828f16e60229e2633503f04846599 Validity Not Before: Feb 9 12:00:48 2026 GMT Not After : Feb 10 12:00:48 2026 GMT Subject: CN=319ab93302de2bfa54f4fec30e8a04e04dbbdb60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:db:bb:59:d4:e1:cf:54:fa:79:be:a7:e4:85: 24:06:26:19:e7:ba:3f:da:e6:b6:9a:52:48:09:0e: 9a:18:3d:f9:ec:79:5d:b0:f5:40:da:27:23:ef:ef: db:a5:0f:42:2c:6e:e1:26:10:b0:ad:31:c0:0d:27: 68:a9:23:11:8a:2e:07:68:88:97:f9:2f:f5:93:7c: 5a:27:f4:16:b1:ae:c4:13:13:16:76:6c:d7:54:36: 3c:77:13:07:9d:59:a8:16:53:4f:92:2f:f1:58:f8: 7e:0a:20:5d:e5:94:c4:7e:c0:ba:51:9c:ba:79:96: 25:c9:45:09:23:d9:07:19:79:d4:0f:80:08:81:ea: 61:0e:1c:58:f7:96:ad:c1:9e:71:b3:f1:f1:8e:2e: 79:b3:79:e1:00:53:48:35:a1:59:7e:68:49:7c:80: 8e:09:e9:ab:c4:bc:3e:a0:41:8d:e8:e7:23:53:03: a1:00:8f:ed:66:7c:5d:62:d3:c8:3c:36:b2:89:4e: 4d:bb:a0:b6:ba:ea:97:4c:8c:50:d7:ed:73:ea:2e: a3:98:3e:08:0d:d7:d8:69:e7:c9:b4:a1:cc:4f:65: a6:b3:73:3b:b8:d0:8f:57:0c:b5:74:b6:d7:cb:ad: 74:fa:37:fa:7e:cc:a6:4b:0d:3e:0c:94:94:3d:77: 79:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:9A:B9:33:02:DE:2B:FA:54:F4:FE:C3:0E:8A:04:E0:4D:BB:DB:60 X509v3 Authority Key Identifier: keyid:29:F5:24:02:38:B8:28:F1:6E:60:22:9E:26:33:50:3F:04:84:65:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:f6:5c:7a:29:7b:ae:50:6f:6b:75:0c:0c:3e:e5:cb:00:78: c5:cd:ee:97:1b:38:85:25:66:40:19:5d:5a:2c:74:52:32:39: a8:7a:0b:7e:b0:f5:b6:5d:cb:34:97:ce:96:e0:54:ca:5d:99: be:6c:cf:70:18:6c:38:6a:c8:19:c9:64:a4:d8:92:6f:05:a2: 71:b5:f4:5a:11:66:4a:42:d3:1c:3d:2d:65:2b:36:45:31:8d: 0c:00:fd:ba:bf:d4:3c:19:1a:6e:e8:df:53:0b:5d:c5:68:9e: 14:22:03:74:dd:7a:bd:8e:b2:7d:28:4e:b9:6e:d0:c0:70:10: ec:5a:27:b9:bd:61:da:a9:d0:58:41:f3:a4:3e:27:46:1d:97: 64:d3:ab:60:c6:c2:f8:78:a1:3b:0e:1e:60:47:a0:4d:eb:06: fb:02:11:03:c9:69:82:21:ee:1f:c5:02:80:41:6e:b4:37:37: 64:a2:8d:1a:26:f0:cb:90:05:59:cb:cf:dd:b1:31:06:70:f8: 5b:db:7f:c7:68:9e:24:51:4a:37:89:1b:10:5f:51:48:4d:3a: 49:8d:f8:ec:f1:91:95:7f:c4:cd:cc:94:7e:cf:c4:e3:41:88: 75:08:6d:23:a8:1d:f3:af:f0:32:1a:d3:c0:2a:97:55:59:00: 15:8a:93:d1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRpkHPMQKjOOfznm8yL61MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZjUyNDAyMzhiODI4ZjE2ZTYwMjI5ZTI2MzM1MDNmMDQ4 NDY1OTkwHhcNMjYwMjA5MTIwMDQ4WhcNMjYwMjEwMTIwMDQ4WjAzMTEwLwYDVQQD EygzMTlhYjkzMzAyZGUyYmZhNTRmNGZlYzMwZThhMDRlMDRkYmJkYjYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0du7WdThz1T6eb6n5IUkBiYZ57o/ 2ua2mlJICQ6aGD357HldsPVA2icj7+/bpQ9CLG7hJhCwrTHADSdoqSMRii4HaIiX +S/1k3xaJ/QWsa7EExMWdmzXVDY8dxMHnVmoFlNPki/xWPh+CiBd5ZTEfsC6UZy6 eZYlyUUJI9kHGXnUD4AIgephDhxY95atwZ5xs/Hxji55s3nhAFNINaFZfmhJfICO CemrxLw+oEGN6OcjUwOhAI/tZnxdYtPIPDayiU5Nu6C2uuqXTIxQ1+1z6i6jmD4I DdfYaefJtKHMT2Wms3M7uNCPVwy1dLbXy610+jf6fsymSw0+DJSUPXd5LQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDGauTMC3iv6VPT+ww6KBOBNu9tgMB8GA1UdIwQY MBaAFCn1JAI4uCjxbmAiniYzUD8EhGWZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2ZVa0FqaTRLUEZ1WUNLZUpqTlFQd1NFWlprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8wNjE0YTYtZDAxYy00ZmYyLWE5OTMt NzI0NjQ1N2ZkMmIzLzEvS2ZVa0FqaTRLUEZ1WUNLZUpqTlFQd1NFWlprLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi8wNjE0YTYtZDAxYy00ZmYyLWE5OTMtNzI0NjQ1N2ZkMmIz LzEvS2ZVa0FqaTRLUEZ1WUNLZUpqTlFQd1NFWlprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY/Zceil7 rlBva3UMDD7lywB4xc3ulxs4hSVmQBldWix0UjI5qHoLfrD1tl3LNJfOluBUyl2Z vmzPcBhsOGrIGclkpNiSbwWicbX0WhFmSkLTHD0tZSs2RTGNDAD9ur/UPBkabujf UwtdxWieFCIDdN16vY6yfShOuW7QwHAQ7Fonub1h2qnQWEHzpD4nRh2XZNOrYMbC +HihOw4eYEegTesG+wIRA8lpgiHuH8UCgEFutDc3ZKKNGibwy5AFWcvP3bExBnD4 W9t/x2ieJFFKN4kbEF9RSE06SY347PGRlX/EzcyUfs/E40GIdQhtI6gd86/wMhrT wCqXVVkAFYqT0Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:51 2026 by rpki-client