This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.mft File: kFLex7dhf-OchVDuIMOCIBq5ryo.mft (raw, json) Hash identifier: FCnLUZa4aMkn9IxFU/diWeDaZOyQQord+1PtbgsLP/4= Subject key identifier: 95:2D:2D:7D:40:7D:F7:90:F7:05:A2:03:0E:91:33:D8:8D:EF:6F:F9 Authority key identifier: 90:52:DE:C7:B7:61:7F:E3:9C:85:50:EE:20:C3:82:20:1A:B9:AF:2A Certificate issuer: /CN=9052dec7b7617fe39c8550ee20c382201ab9af2a Certificate serial: 019C41D85D73311946316C68A952B04828A8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kFLex7dhf-OchVDuIMOCIBq5ryo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.mft Manifest number: 1298 Signing time: Mon 09 Feb 2026 10:00:24 +0000 Manifest this update: Mon 09 Feb 2026 10:00:24 +0000 Manifest next update: Tue 10 Feb 2026 10:00:24 +0000 Files and hashes: 1: VRiS5ofRQHVuC_lAcxdhVPzJ5ys.roa (hash: djTEy2SpZpwfwHAY9CNLF5jemLo53ls13ygOIxPg5rI=) 2: kFLex7dhf-OchVDuIMOCIBq5ryo.crl (hash: NIUHrN3yGNL/nWXhvDjwvFiYgI6Xo4fYG+v065Gdnt4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.crl rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.mft rsync://rpki.ripe.net/repository/DEFAULT/kFLex7dhf-OchVDuIMOCIBq5ryo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:5d:73:31:19:46:31:6c:68:a9:52:b0:48:28:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9052dec7b7617fe39c8550ee20c382201ab9af2a Validity Not Before: Feb 9 10:00:24 2026 GMT Not After : Feb 10 10:00:24 2026 GMT Subject: CN=952d2d7d407df790f705a2030e9133d88def6ff9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:bf:08:39:0b:19:f3:43:b4:34:30:e3:1c:46: 2c:00:25:a8:b5:82:97:3c:3a:04:11:d8:ec:2b:74: fb:94:fb:27:8c:84:58:7a:ef:6d:f3:51:8f:ed:eb: e0:c1:c6:4f:21:7c:49:04:cb:30:55:38:54:4e:6d: 4f:85:42:cf:7c:10:d3:d8:d7:10:f8:34:12:8e:51: 9a:28:1f:bc:cf:c7:d0:7a:78:3e:bb:93:61:64:50: 04:7f:f3:1d:a2:a2:01:49:3c:b1:e7:22:24:b5:85: a3:e6:86:e1:8d:86:4f:72:c1:f7:68:98:5b:50:cc: 4c:3f:05:af:aa:ba:94:eb:65:16:8a:12:cd:2c:ce: 07:b2:56:ae:3c:75:87:30:75:8a:9c:db:4d:24:a5: 84:73:20:61:2a:3f:9b:ce:5d:d8:66:f2:38:0c:7c: 93:bd:c8:27:a3:9b:51:a9:7c:94:49:15:09:1c:05: 5c:45:4e:eb:36:07:89:d5:9f:96:da:f3:cf:ab:2c: f1:de:e5:44:e5:b6:a9:c0:87:19:be:f9:09:90:49: 36:23:b4:24:8c:32:8a:57:52:b2:57:b0:ea:6d:df: 21:1e:a1:e3:56:c4:6a:12:1d:10:98:8c:53:20:a9: d4:22:50:2d:20:e2:0e:b3:7a:0f:78:5f:7a:33:1b: e2:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:2D:2D:7D:40:7D:F7:90:F7:05:A2:03:0E:91:33:D8:8D:EF:6F:F9 X509v3 Authority Key Identifier: keyid:90:52:DE:C7:B7:61:7F:E3:9C:85:50:EE:20:C3:82:20:1A:B9:AF:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kFLex7dhf-OchVDuIMOCIBq5ryo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:74:00:53:a3:81:c5:d9:f7:2b:36:95:77:b4:50:e0:43:3a: a0:b8:6c:90:01:a0:96:07:f1:5c:16:f0:0b:c9:46:7d:9f:fa: 64:9e:43:89:c1:25:02:2f:df:d1:74:7c:88:c4:7f:30:8a:4d: 84:95:6a:81:63:b5:81:30:93:48:da:d0:9d:a5:e4:0f:5b:e3: 48:df:e2:2e:fb:af:04:e3:d9:82:40:31:68:f1:bc:38:24:8c: a6:e5:b0:cd:a3:01:89:4a:0b:f1:b4:18:40:2d:93:c4:45:11: f4:a8:cc:c8:8c:88:f3:c1:2f:d8:25:7c:e9:27:bf:bc:34:9e: ee:31:65:4f:34:61:56:56:f1:ec:49:28:0c:cf:b4:b9:13:26: e0:b2:84:08:78:cf:32:82:65:2e:ea:02:f1:4c:88:53:94:9d: fa:50:2c:16:50:ae:bc:23:89:a8:75:84:ac:57:e8:98:1d:53: de:af:de:b9:c6:68:5a:b0:a6:88:7f:a0:b5:b0:71:86:75:e5: 04:29:80:c2:0b:2e:36:74:13:49:9f:9b:67:ae:c5:3e:25:d1: 51:9f:c6:21:bf:58:84:ed:55:48:15:91:d3:c0:e9:53:1c:ac: 22:a6:4e:e7:1b:7c:ce:c2:fc:b4:9c:3a:c7:88:ea:77:bd:96: db:a1:95:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2F1zMRlGMWxoqVKwSCioMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwNTJkZWM3Yjc2MTdmZTM5Yzg1NTBlZTIwYzM4MjIwMWFi OWFmMmEwHhcNMjYwMjA5MTAwMDI0WhcNMjYwMjEwMTAwMDI0WjAzMTEwLwYDVQQD Eyg5NTJkMmQ3ZDQwN2RmNzkwZjcwNWEyMDMwZTkxMzNkODhkZWY2ZmY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4L8IOQsZ80O0NDDjHEYsACWotYKX PDoEEdjsK3T7lPsnjIRYeu9t81GP7evgwcZPIXxJBMswVThUTm1PhULPfBDT2NcQ +DQSjlGaKB+8z8fQeng+u5NhZFAEf/MdoqIBSTyx5yIktYWj5obhjYZPcsH3aJhb UMxMPwWvqrqU62UWihLNLM4HslauPHWHMHWKnNtNJKWEcyBhKj+bzl3YZvI4DHyT vcgno5tRqXyUSRUJHAVcRU7rNgeJ1Z+W2vPPqyzx3uVE5bapwIcZvvkJkEk2I7Qk jDKKV1KyV7Dqbd8hHqHjVsRqEh0QmIxTIKnUIlAtIOIOs3oPeF96Mxvi2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJUtLX1AffeQ9wWiAw6RM9iN72/5MB8GA1UdIwQY MBaAFJBS3se3YX/jnIVQ7iDDgiAaua8qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva0ZMZXg3ZGhmLU9jaFZEdUlNT0NJQnE1cnlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9lOWE3YTEtZTlmZS00N2Q0LWFlMzIt ZGYwYTQ0ODAwYWE1LzEva0ZMZXg3ZGhmLU9jaFZEdUlNT0NJQnE1cnlvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZC9lOWE3YTEtZTlmZS00N2Q0LWFlMzItZGYwYTQ0ODAwYWE1 LzEva0ZMZXg3ZGhmLU9jaFZEdUlNT0NJQnE1cnlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFHQAU6OB xdn3KzaVd7RQ4EM6oLhskAGglgfxXBbwC8lGfZ/6ZJ5DicElAi/f0XR8iMR/MIpN hJVqgWO1gTCTSNrQnaXkD1vjSN/iLvuvBOPZgkAxaPG8OCSMpuWwzaMBiUoL8bQY QC2TxEUR9KjMyIyI88Ev2CV86Se/vDSe7jFlTzRhVlbx7EkoDM+0uRMm4LKECHjP MoJlLuoC8UyIU5Sd+lAsFlCuvCOJqHWErFfomB1T3q/eucZoWrCmiH+gtbBxhnXl BCmAwgsuNnQTSZ+bZ67FPiXRUZ/GIb9YhO1VSBWR08DpUxysIqZO5xt8zsL8tJw6 x4jqd72W26GVmw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:56:05 2026 by rpki-client