This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft File: KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft (raw, json) Hash identifier: 7vUyr70m5YcKA6N4ykpTuluawiyLGP4vFRIxcThmTXA= Subject key identifier: EA:91:B1:8E:1B:67:BD:20:2F:2F:6D:25:41:96:DC:3E:F2:12:28:3B Authority key identifier: 2A:71:48:C4:61:F5:E7:7E:10:7A:F7:35:66:A2:7E:34:35:61:DC:1D Certificate issuer: /CN=2a7148c461f5e77e107af73566a27e343561dc1d Certificate serial: 019C435925826A6D00367A9D6A594D2A9744 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KnFIxGH1534Qevc1ZqJ-NDVh3B0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 17:00:41 +0000 Manifest this update: Mon 09 Feb 2026 17:00:41 +0000 Manifest next update: Tue 10 Feb 2026 17:00:41 +0000 Files and hashes: 1: KnFIxGH1534Qevc1ZqJ-NDVh3B0.crl (hash: cublMIJt3CxVCLB3wYWNQ3JU1jIkrZZhk/UAzgurKg0=) 2: UEd4i0yJoTMMf_ouShVkmXg-2aA.roa (hash: 4zGbYGb6JFtW5tegW+z/MuiLQzGa6F+tvz4cx0GU1lo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.crl rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft rsync://rpki.ripe.net/repository/DEFAULT/KnFIxGH1534Qevc1ZqJ-NDVh3B0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:25:82:6a:6d:00:36:7a:9d:6a:59:4d:2a:97:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a7148c461f5e77e107af73566a27e343561dc1d Validity Not Before: Feb 9 17:00:41 2026 GMT Not After : Feb 10 17:00:41 2026 GMT Subject: CN=ea91b18e1b67bd202f2f6d254196dc3ef212283b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:64:a1:c5:d8:ff:d9:9f:f0:b9:f1:82:33:22: 59:fd:ca:53:78:0e:d2:c9:17:0f:7f:77:66:81:44: 22:fd:75:de:13:2e:0b:29:5c:37:f3:3b:f4:25:77: 0f:db:46:81:3a:16:72:36:b5:bf:05:b7:5c:4e:a6: e3:ed:3a:32:75:c1:36:ad:b8:2b:c0:4c:1e:da:26: 06:c2:d2:5c:5f:63:2a:73:8b:d4:13:c2:e4:49:b1: c3:6a:26:56:cb:83:64:4b:3a:34:7e:23:a9:23:3b: e0:44:7a:32:4b:6e:67:f1:f5:72:48:d7:2d:69:2b: 0e:33:85:03:93:24:e9:62:44:b1:19:95:c3:19:b1: 07:f2:03:6c:19:30:b0:75:e2:d7:03:35:b0:c3:aa: 71:d1:39:ac:1b:b4:36:27:93:87:95:31:3f:f7:49: bd:65:68:55:a9:2b:a0:78:e4:ca:6f:d8:c7:3c:5d: 3b:08:08:0a:a8:c1:11:16:73:ec:b5:f2:c1:7b:62: 8f:3e:82:04:ac:4b:70:11:f6:ef:76:e3:b3:67:3d: f6:42:cd:93:3a:0b:65:d3:8d:96:27:b1:85:83:35: 48:d2:fe:7b:54:c4:f4:d4:ea:ea:de:a5:78:60:98: f7:33:4f:5e:a5:16:8f:49:a6:06:a4:56:36:e6:2d: 71:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:91:B1:8E:1B:67:BD:20:2F:2F:6D:25:41:96:DC:3E:F2:12:28:3B X509v3 Authority Key Identifier: keyid:2A:71:48:C4:61:F5:E7:7E:10:7A:F7:35:66:A2:7E:34:35:61:DC:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KnFIxGH1534Qevc1ZqJ-NDVh3B0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:60:ec:0f:3d:9e:2f:1b:d1:1e:2b:5f:76:b2:96:76:6d:4b: 3b:5f:33:69:cc:af:4f:4c:2d:44:48:04:49:63:fb:6a:f5:8a: 44:b2:c7:42:11:73:7d:85:60:2a:01:71:24:d9:2d:73:fc:a7: 8e:56:e7:75:85:ea:ad:d3:7b:88:d9:86:a6:62:9e:da:f4:eb: b8:8f:22:8a:03:9e:22:34:0f:e6:5a:ef:b4:44:b4:21:5b:08: 8c:4c:3e:16:29:5a:fe:64:7e:54:1d:6e:c9:f8:73:d2:46:88: c7:e7:44:88:91:15:49:57:25:31:75:6c:3f:52:c4:fa:e8:2d: 5b:4b:03:27:ef:9d:0b:be:92:1e:4d:9e:44:e5:f4:f1:52:32: a9:e5:7f:bc:ea:15:b5:67:10:dd:ca:83:fc:8e:44:c0:89:c3: 77:18:8b:33:c1:4b:e4:82:b2:29:be:c4:9e:fc:db:a2:ec:bb: d6:af:78:35:50:ce:c6:9a:ef:f9:d5:91:c7:44:e1:52:09:1d: a7:21:0b:8e:11:93:8b:80:15:6f:0c:0a:61:19:79:7c:c9:2f: bf:d9:95:21:e0:bc:08:0f:12:00:22:46:97:b0:92:84:ae:f1: c7:36:8a:12:18:0f:80:f3:43:09:ef:e2:ca:22:e4:af:ca:19: 60:c7:8e:7c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWSWCam0ANnqdallNKpdEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhNzE0OGM0NjFmNWU3N2UxMDdhZjczNTY2YTI3ZTM0MzU2 MWRjMWQwHhcNMjYwMjA5MTcwMDQxWhcNMjYwMjEwMTcwMDQxWjAzMTEwLwYDVQQD EyhlYTkxYjE4ZTFiNjdiZDIwMmYyZjZkMjU0MTk2ZGMzZWYyMTIyODNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmShxdj/2Z/wufGCMyJZ/cpTeA7S yRcPf3dmgUQi/XXeEy4LKVw38zv0JXcP20aBOhZyNrW/BbdcTqbj7ToydcE2rbgr wEwe2iYGwtJcX2Mqc4vUE8LkSbHDaiZWy4NkSzo0fiOpIzvgRHoyS25n8fVySNct aSsOM4UDkyTpYkSxGZXDGbEH8gNsGTCwdeLXAzWww6px0TmsG7Q2J5OHlTE/90m9 ZWhVqSugeOTKb9jHPF07CAgKqMERFnPstfLBe2KPPoIErEtwEfbvduOzZz32Qs2T Ogtl042WJ7GFgzVI0v57VMT01Orq3qV4YJj3M09epRaPSaYGpFY25i1x6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOqRsY4bZ70gLy9tJUGW3D7yEig7MB8GA1UdIwQY MBaAFCpxSMRh9ed+EHr3NWaifjQ1YdwdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS25GSXhHSDE1MzRRZXZjMVpxSi1ORFZoM0IwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS85YWZhZjUtZTY5Ni00ODNlLTgzNjUt MzRlZmQ1YjllOWNkLzEvS25GSXhHSDE1MzRRZXZjMVpxSi1ORFZoM0IwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS85YWZhZjUtZTY5Ni00ODNlLTgzNjUtMzRlZmQ1YjllOWNk LzEvS25GSXhHSDE1MzRRZXZjMVpxSi1ORFZoM0IwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQmDsDz2e LxvRHitfdrKWdm1LO18zacyvT0wtREgESWP7avWKRLLHQhFzfYVgKgFxJNktc/yn jlbndYXqrdN7iNmGpmKe2vTruI8iigOeIjQP5lrvtES0IVsIjEw+Fila/mR+VB1u yfhz0kaIx+dEiJEVSVclMXVsP1LE+ugtW0sDJ++dC76SHk2eROX08VIyqeV/vOoV tWcQ3cqD/I5EwInDdxiLM8FL5IKyKb7Envzbouy71q94NVDOxprv+dWRx0ThUgkd pyELjhGTi4AVbwwKYRl5fMkvv9mVIeC8CA8SACJGl7CShK7xxzaKEhgPgPNDCe/i yiLkr8oZYMeOfA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:47:31 2026 by rpki-client