This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft File: KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft (raw, json) Hash identifier: YmtYX5PIx+94ykfWsdocfOJUlRUVNkILxN+se/0tCgU= Subject key identifier: A1:F9:2D:C9:D6:F6:7B:A6:D8:7E:DE:0D:63:42:C3:F7:DA:31:71:A1 Authority key identifier: 2A:D2:FE:64:66:D0:70:94:A4:25:6D:A2:CC:84:70:83:C5:00:6B:1A Certificate issuer: /CN=2ad2fe6466d07094a4256da2cc847083c5006b1a Certificate serial: 019C4358F42F45CA3566D6D3E328C06379AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KtL-ZGbQcJSkJW2izIRwg8UAaxo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft Manifest number: 151A Signing time: Mon 09 Feb 2026 17:00:28 +0000 Manifest this update: Mon 09 Feb 2026 17:00:28 +0000 Manifest next update: Tue 10 Feb 2026 17:00:28 +0000 Files and hashes: 1: KtL-ZGbQcJSkJW2izIRwg8UAaxo.crl (hash: KHltyiiYIu3MT/OL9Eo9ypXnDF1nvu2SlU2QRNOyMIo=) 2: L7FFVZjn00bwAbkg_Lv5HyPXbUw.roa (hash: DToSgYumdmGKe2TLhpTAx0H6yxJQdXcD2z0JX5cGoUQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.crl rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft rsync://rpki.ripe.net/repository/DEFAULT/KtL-ZGbQcJSkJW2izIRwg8UAaxo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:f4:2f:45:ca:35:66:d6:d3:e3:28:c0:63:79:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ad2fe6466d07094a4256da2cc847083c5006b1a Validity Not Before: Feb 9 17:00:28 2026 GMT Not After : Feb 10 17:00:28 2026 GMT Subject: CN=a1f92dc9d6f67ba6d87ede0d6342c3f7da3171a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:27:6e:75:78:81:1a:15:3e:d5:38:b0:8d:b1: c4:17:cd:22:26:8b:39:6d:81:cf:1f:cf:3b:45:51: 8f:cb:72:1e:4e:3d:80:af:e3:59:8d:58:77:88:5b: c6:9c:e3:67:2b:ac:7e:33:c5:cd:47:8b:4e:d9:ed: 5f:b5:ac:ed:3f:1d:97:f3:4b:49:a2:6f:b6:02:1f: 30:63:8b:82:11:7b:fe:2d:2b:f7:72:e3:ee:3b:d3: 52:b4:75:dc:0a:14:1a:81:54:dc:87:6c:f0:ca:c1: 0e:e9:f2:9a:9b:c0:0b:25:5e:e1:0e:45:0c:2d:67: 8f:da:dc:87:7e:31:0f:7c:eb:4e:03:97:fb:52:ac: 1c:34:93:32:92:72:7d:7b:f9:75:0b:84:ff:4a:3f: 96:c6:41:bc:12:cd:1d:f0:2e:18:3c:7c:c0:80:7e: 10:a9:a2:20:74:4f:0f:99:51:05:0a:2a:a7:38:ed: a5:d4:ed:9e:c5:75:5f:5b:df:d1:de:24:39:39:36: e2:88:4b:be:58:7c:4b:3b:66:18:fb:a8:aa:15:d7: 48:26:36:d3:15:6f:9d:c9:ff:da:99:06:6b:48:8f: 43:49:b0:c2:94:46:8a:0b:ee:3e:d7:91:12:7c:67: 97:45:29:60:ac:a4:76:15:b5:80:b6:fd:c9:44:e8: f9:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:F9:2D:C9:D6:F6:7B:A6:D8:7E:DE:0D:63:42:C3:F7:DA:31:71:A1 X509v3 Authority Key Identifier: keyid:2A:D2:FE:64:66:D0:70:94:A4:25:6D:A2:CC:84:70:83:C5:00:6B:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KtL-ZGbQcJSkJW2izIRwg8UAaxo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:27:2e:e0:64:37:fb:0d:51:89:3e:5a:e9:95:81:c2:d9:73: f2:9e:d5:84:28:20:47:66:c2:e8:2e:b3:bd:fd:ab:43:2a:58: 2a:95:fe:26:3e:b6:a2:02:69:98:c4:d3:92:e3:20:05:3a:3b: 89:1e:54:2e:14:01:9d:8d:8a:5b:58:03:90:da:a1:ce:83:6a: 61:49:f0:8e:78:da:c4:f6:22:5b:1d:e5:11:d8:62:e1:c6:c0: 4f:b7:06:41:7a:44:68:61:ea:10:a3:a3:1f:81:2a:a9:4a:36: e4:d3:64:37:d9:51:23:30:2d:28:77:4b:34:9c:97:23:d7:e5: c1:5b:8e:d5:99:70:a1:42:36:20:34:3a:42:a1:3d:72:f1:4b: e4:57:a8:27:aa:12:71:1a:04:84:34:7f:eb:b7:ca:bf:72:ff: 21:49:11:8e:3a:d8:ff:d4:4c:d8:4c:7d:41:ea:43:9c:7b:0e: c5:db:b5:f9:2b:3b:ec:6e:4f:ca:9b:44:c4:08:90:0a:cd:a5: 9c:b9:33:f3:06:2c:e7:e3:59:c7:0e:c1:fb:8d:5a:07:9f:d3: 2f:a8:92:d6:07:9e:09:bd:a3:77:67:91:80:df:c6:47:52:11: e7:86:2f:b9:ce:1e:87:e0:ec:15:64:a0:98:d8:4b:ef:ba:5a: 99:f0:95:2b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWPQvRco1ZtbT4yjAY3mtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhZDJmZTY0NjZkMDcwOTRhNDI1NmRhMmNjODQ3MDgzYzUw MDZiMWEwHhcNMjYwMjA5MTcwMDI4WhcNMjYwMjEwMTcwMDI4WjAzMTEwLwYDVQQD EyhhMWY5MmRjOWQ2ZjY3YmE2ZDg3ZWRlMGQ2MzQyYzNmN2RhMzE3MWExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwidudXiBGhU+1TiwjbHEF80iJos5 bYHPH887RVGPy3IeTj2Ar+NZjVh3iFvGnONnK6x+M8XNR4tO2e1ftaztPx2X80tJ om+2Ah8wY4uCEXv+LSv3cuPuO9NStHXcChQagVTch2zwysEO6fKam8ALJV7hDkUM LWeP2tyHfjEPfOtOA5f7UqwcNJMyknJ9e/l1C4T/Sj+WxkG8Es0d8C4YPHzAgH4Q qaIgdE8PmVEFCiqnOO2l1O2exXVfW9/R3iQ5OTbiiEu+WHxLO2YY+6iqFddIJjbT FW+dyf/amQZrSI9DSbDClEaKC+4+15ESfGeXRSlgrKR2FbWAtv3JROj5TwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKH5LcnW9num2H7eDWNCw/faMXGhMB8GA1UdIwQY MBaAFCrS/mRm0HCUpCVtosyEcIPFAGsaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3RMLVpHYlFjSlNrSlcyaXpJUndnOFVBYXhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC84YTMxZjMtN2FjZi00N2I0LWI5N2It ZmEzMWUyZGM2YWJiLzEvS3RMLVpHYlFjSlNrSlcyaXpJUndnOFVBYXhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC84YTMxZjMtN2FjZi00N2I0LWI5N2ItZmEzMWUyZGM2YWJi LzEvS3RMLVpHYlFjSlNrSlcyaXpJUndnOFVBYXhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHCcu4GQ3 +w1RiT5a6ZWBwtlz8p7VhCggR2bC6C6zvf2rQypYKpX+Jj62ogJpmMTTkuMgBTo7 iR5ULhQBnY2KW1gDkNqhzoNqYUnwjnjaxPYiWx3lEdhi4cbAT7cGQXpEaGHqEKOj H4EqqUo25NNkN9lRIzAtKHdLNJyXI9flwVuO1ZlwoUI2IDQ6QqE9cvFL5FeoJ6oS cRoEhDR/67fKv3L/IUkRjjrY/9RM2Ex9QepDnHsOxdu1+Ss77G5PyptExAiQCs2l nLkz8wYs5+NZxw7B+41aB5/TL6iS1geeCb2jd2eRgN/GR1IR54Yvuc4eh+DsFWSg mNhL77pamfCVKw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:41:23 2026 by rpki-client