This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/4bc47e-3987-4a34-92bc-8901e8813aac/1/VHbgkAHDGGUmGQ0fNdKluZ_KonA.mft File: VHbgkAHDGGUmGQ0fNdKluZ_KonA.mft (raw, json) Hash identifier: pCLYSpD4EFC3nErJlBzftfCNvJh0BWoJQvwC4UbJszY= Subject key identifier: 3F:2D:28:CF:38:D1:55:4C:F7:A0:75:2D:00:F4:D5:DF:07:0B:C2:5D Authority key identifier: 54:76:E0:90:01:C3:18:65:26:19:0D:1F:35:D2:A5:B9:9F:CA:A2:70 Certificate issuer: /CN=5476e09001c3186526190d1f35d2a5b99fcaa270 Certificate serial: 019C41348B2A3123CC730EE59A27AFEC30FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VHbgkAHDGGUmGQ0fNdKluZ_KonA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/4bc47e-3987-4a34-92bc-8901e8813aac/1/VHbgkAHDGGUmGQ0fNdKluZ_KonA.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 07:01:28 +0000 Manifest this update: Mon 09 Feb 2026 07:01:28 +0000 Manifest next update: Tue 10 Feb 2026 07:01:28 +0000 Files and hashes: 1: VHbgkAHDGGUmGQ0fNdKluZ_KonA.crl (hash: NDEXXeZYiWujJR4tC4OI7vfgCkYdt42DUZzbX+IQGrs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/4bc47e-3987-4a34-92bc-8901e8813aac/1/VHbgkAHDGGUmGQ0fNdKluZ_KonA.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/4bc47e-3987-4a34-92bc-8901e8813aac/1/VHbgkAHDGGUmGQ0fNdKluZ_KonA.mft rsync://rpki.ripe.net/repository/DEFAULT/VHbgkAHDGGUmGQ0fNdKluZ_KonA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:8b:2a:31:23:cc:73:0e:e5:9a:27:af:ec:30:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5476e09001c3186526190d1f35d2a5b99fcaa270 Validity Not Before: Feb 9 07:01:28 2026 GMT Not After : Feb 10 07:01:28 2026 GMT Subject: CN=3f2d28cf38d1554cf7a0752d00f4d5df070bc25d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:df:fc:7e:b8:a9:68:23:8a:ef:d2:dd:6a:c1: 7f:33:5a:10:81:e9:1a:d0:93:64:c6:44:b1:17:03: 78:4e:84:92:40:e0:73:ec:03:31:c7:e9:28:64:58: 60:45:ef:1e:92:3e:0e:6f:a5:25:43:dd:77:69:ad: 18:35:ad:b7:7d:1b:91:59:bf:86:28:72:05:b7:b1: df:50:00:2e:e5:b9:b4:1f:e4:be:43:2e:0b:fd:b8: 0d:4d:28:d0:6d:ff:7f:01:79:3a:ad:45:f3:f1:e3: 31:12:2f:2b:f2:3f:60:1b:14:60:81:83:e4:d3:7e: 08:4b:03:6b:c8:6b:84:0d:31:63:b8:c3:dd:08:1e: 33:a7:a9:ab:45:57:8c:6c:0c:a6:25:98:b9:9c:98: 7a:a7:1b:bb:d0:52:61:a1:6d:6f:3e:01:d6:44:f7: dc:fc:2f:c1:56:1f:5d:1d:c0:36:d9:c9:16:ff:1d: 3a:95:ef:41:20:1c:22:0d:3f:06:67:42:1f:91:06: 37:81:52:79:c4:3b:c6:bc:62:bb:de:ea:16:17:87: f5:0b:f4:a1:35:0d:9c:41:de:ff:2c:59:e9:b9:74: 90:8d:f3:37:ed:7f:2d:1d:ad:e5:6f:ff:aa:9d:8d: 3e:7a:f1:ed:8e:92:ee:51:0c:4c:73:20:d6:2c:dc: c5:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:2D:28:CF:38:D1:55:4C:F7:A0:75:2D:00:F4:D5:DF:07:0B:C2:5D X509v3 Authority Key Identifier: keyid:54:76:E0:90:01:C3:18:65:26:19:0D:1F:35:D2:A5:B9:9F:CA:A2:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VHbgkAHDGGUmGQ0fNdKluZ_KonA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/4bc47e-3987-4a34-92bc-8901e8813aac/1/VHbgkAHDGGUmGQ0fNdKluZ_KonA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/4bc47e-3987-4a34-92bc-8901e8813aac/1/VHbgkAHDGGUmGQ0fNdKluZ_KonA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:36:30:98:46:6c:69:4e:b8:39:a9:51:da:a0:7e:c3:76:88: 8b:6d:41:9b:10:aa:7a:dc:56:89:ca:66:82:bf:6d:2f:73:b3: 8d:72:f4:e2:23:83:60:b5:fb:00:fc:14:4d:8e:0c:4d:c2:db: e0:46:e5:03:1f:d5:2d:43:06:0b:14:00:ba:d4:06:06:cb:b0: 18:de:94:44:c8:31:ce:1c:2b:d0:c2:db:48:31:a9:04:1a:f4: b4:a7:ff:74:35:11:bd:db:38:16:81:be:d3:05:1d:cd:ba:bb: bc:31:67:65:c0:74:40:f3:de:4f:2d:26:f3:83:d0:e2:bc:21: cd:d1:7f:38:90:c1:f6:04:23:4a:92:a7:ed:e1:7c:22:3d:20: 80:75:4a:16:1b:45:c6:09:af:30:8c:46:04:e7:d4:42:5a:62: 28:4c:36:69:69:ec:68:fb:fb:00:a4:af:34:ca:3b:df:f3:f7: 52:77:9f:a3:18:0f:24:b4:a7:91:d1:91:ba:32:fb:a2:8c:01: e4:04:83:2d:4c:0b:af:1c:db:14:49:01:cb:fc:20:e0:11:a1: f6:0b:55:c3:ba:79:65:b3:c0:ab:bb:83:f6:4f:39:55:64:42: 76:49:86:2f:3a:39:b1:e6:2b:dc:b7:62:b6:91:e9:88:50:ba: 94:6a:ed:f6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNIsqMSPMcw7lmiev7DD9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0NzZlMDkwMDFjMzE4NjUyNjE5MGQxZjM1ZDJhNWI5OWZj YWEyNzAwHhcNMjYwMjA5MDcwMTI4WhcNMjYwMjEwMDcwMTI4WjAzMTEwLwYDVQQD EygzZjJkMjhjZjM4ZDE1NTRjZjdhMDc1MmQwMGY0ZDVkZjA3MGJjMjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs9/8fripaCOK79LdasF/M1oQgeka 0JNkxkSxFwN4ToSSQOBz7AMxx+koZFhgRe8ekj4Ob6UlQ913aa0YNa23fRuRWb+G KHIFt7HfUAAu5bm0H+S+Qy4L/bgNTSjQbf9/AXk6rUXz8eMxEi8r8j9gGxRggYPk 034ISwNryGuEDTFjuMPdCB4zp6mrRVeMbAymJZi5nJh6pxu70FJhoW1vPgHWRPfc /C/BVh9dHcA22ckW/x06le9BIBwiDT8GZ0IfkQY3gVJ5xDvGvGK73uoWF4f1C/Sh NQ2cQd7/LFnpuXSQjfM37X8tHa3lb/+qnY0+evHtjpLuUQxMcyDWLNzFGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD8tKM840VVM96B1LQD01d8HC8JdMB8GA1UdIwQY MBaAFFR24JABwxhlJhkNHzXSpbmfyqJwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVkhiZ2tBSERHR1VtR1EwZk5kS2x1Wl9Lb25BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC80YmM0N2UtMzk4Ny00YTM0LTkyYmMt ODkwMWU4ODEzYWFjLzEvVkhiZ2tBSERHR1VtR1EwZk5kS2x1Wl9Lb25BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC80YmM0N2UtMzk4Ny00YTM0LTkyYmMtODkwMWU4ODEzYWFj LzEvVkhiZ2tBSERHR1VtR1EwZk5kS2x1Wl9Lb25BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdzYwmEZs aU64OalR2qB+w3aIi21BmxCqetxWicpmgr9tL3OzjXL04iODYLX7APwUTY4MTcLb 4EblAx/VLUMGCxQAutQGBsuwGN6URMgxzhwr0MLbSDGpBBr0tKf/dDURvds4FoG+ 0wUdzbq7vDFnZcB0QPPeTy0m84PQ4rwhzdF/OJDB9gQjSpKn7eF8Ij0ggHVKFhtF xgmvMIxGBOfUQlpiKEw2aWnsaPv7AKSvNMo73/P3UnefoxgPJLSnkdGRujL7oowB 5ASDLUwLrxzbFEkBy/wg4BGh9gtVw7p5ZbPAq7uD9k85VWRCdkmGLzo5seYr3Ldi tpHpiFC6lGrt9g== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:25 2026 by rpki-client