This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft File: 1kgpREOu0W0GuGrxT1pfClCDd0o.mft (raw, json) Hash identifier: lopfvimupekAFZUa7ldBot82xSDOTJidzPAgIfMI0cg= Subject key identifier: F0:EB:E1:15:4C:D3:A0:A6:29:0B:16:47:25:E1:74:15:59:77:D0:2A Authority key identifier: D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A Certificate issuer: /CN=d648294443aed16d06b86af14f5a5f0a5083774a Certificate serial: 019C427DFB09A7756DB0B56E58483104BE47 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft Manifest number: 180F Signing time: Mon 09 Feb 2026 13:01:18 +0000 Manifest this update: Mon 09 Feb 2026 13:01:18 +0000 Manifest next update: Tue 10 Feb 2026 13:01:18 +0000 Files and hashes: 1: 1kgpREOu0W0GuGrxT1pfClCDd0o.crl (hash: Dkr6/95eShEAZV9Tfgcs+QDsV9emG7WonWZ9AcY2xBY=) 2: dMl0CEajkrxcgLNcfpnLA8OuL7A.roa (hash: CYX2WX+QfrhOpGiBFy1DWZkIM2JKpSw/oiXkQ7UpKFU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:fb:09:a7:75:6d:b0:b5:6e:58:48:31:04:be:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d648294443aed16d06b86af14f5a5f0a5083774a Validity Not Before: Feb 9 13:01:18 2026 GMT Not After : Feb 10 13:01:18 2026 GMT Subject: CN=f0ebe1154cd3a0a6290b164725e174155977d02a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:10:d7:ef:f9:c2:5c:ca:cc:76:b4:e6:65:0d: 1a:4d:32:95:75:6e:2d:04:e4:8d:fd:9a:86:1d:9f: d8:20:6f:6f:08:62:d4:6f:85:98:a8:3c:20:1b:84: 28:11:e7:fa:a3:e3:04:50:e3:76:a4:4f:48:16:cf: bd:51:50:ec:6f:d9:33:fc:4c:6a:e9:dd:ab:00:26: 38:59:69:8d:f6:b1:e4:c6:9d:94:8c:7d:f0:83:be: 0c:ca:e5:ae:8d:88:62:55:a8:cb:b4:00:41:e9:31: 9d:f9:c4:c8:97:a1:42:33:85:1e:e7:5b:a9:80:74: ea:81:7b:c2:68:b4:99:e5:8b:66:ae:6a:06:86:75: f0:88:7e:bb:79:03:69:45:6e:47:de:3b:5e:e8:70: e4:b3:02:94:a5:c9:32:d1:ae:26:94:11:8b:20:c8: c0:53:8b:fe:b0:68:fc:72:8b:e5:7a:96:e0:0a:a9: 75:09:2d:20:b0:40:ab:ca:a8:6c:23:b1:d0:be:ff: 6a:01:11:b6:b0:81:61:4d:f7:c6:2c:a6:0c:61:93: 2b:ed:e3:2c:17:a1:89:2c:3c:11:4c:4e:4d:74:fd: 60:2b:d3:98:3a:6b:9c:08:ff:a7:24:c9:8a:9a:8d: b1:19:a5:03:46:c0:fe:a5:fb:02:ad:16:d3:66:88: 26:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:EB:E1:15:4C:D3:A0:A6:29:0B:16:47:25:E1:74:15:59:77:D0:2A X509v3 Authority Key Identifier: keyid:D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:51:8a:90:c3:ec:12:ff:9f:51:1f:91:35:59:8a:1a:4b:74: d6:b1:51:ce:a5:b9:6a:94:da:e4:32:bd:e5:f5:77:39:1b:68: 46:9f:5e:5c:31:5d:d1:6f:46:aa:45:18:37:9a:d4:1d:99:9d: ea:62:16:51:55:c7:30:a5:d6:5e:ae:b2:fd:02:02:8c:02:ab: 63:39:d8:2c:53:f4:7e:f6:d0:ce:85:c3:09:93:17:ed:46:56: 99:ef:3d:ca:ae:f5:f2:ad:0f:86:5b:63:71:a4:6a:cf:f3:37: 21:98:93:88:71:49:46:8b:51:9b:73:83:0b:4f:5b:1b:51:a5: 87:06:be:99:b5:8c:e4:d3:2a:c2:ae:90:63:f0:40:d5:e6:b4: 56:4b:b0:7a:e7:03:8b:c1:8a:e4:75:2a:da:dd:98:10:a7:a9: 60:9d:17:66:87:34:42:2b:7a:17:42:d2:e3:09:23:b3:c8:a2: 60:22:a6:12:e6:5f:f5:48:05:2d:89:aa:ac:23:32:4f:b5:6b: 62:4b:2a:c3:50:5b:53:d1:43:a6:32:d2:b2:89:b6:f7:f0:a4: 30:bb:4b:e2:2f:bd:f6:60:ec:25:d1:e7:cc:c8:fd:b0:99:13: 16:a4:53:8c:37:ac:f3:bf:d3:47:cd:ce:44:df:6b:47:5a:d2: 3c:7e:8c:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCffsJp3VtsLVuWEgxBL5HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2NDgyOTQ0NDNhZWQxNmQwNmI4NmFmMTRmNWE1ZjBhNTA4 Mzc3NGEwHhcNMjYwMjA5MTMwMTE4WhcNMjYwMjEwMTMwMTE4WjAzMTEwLwYDVQQD EyhmMGViZTExNTRjZDNhMGE2MjkwYjE2NDcyNWUxNzQxNTU5NzdkMDJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqBDX7/nCXMrMdrTmZQ0aTTKVdW4t BOSN/ZqGHZ/YIG9vCGLUb4WYqDwgG4QoEef6o+MEUON2pE9IFs+9UVDsb9kz/Exq 6d2rACY4WWmN9rHkxp2UjH3wg74MyuWujYhiVajLtABB6TGd+cTIl6FCM4Ue51up gHTqgXvCaLSZ5YtmrmoGhnXwiH67eQNpRW5H3jte6HDkswKUpcky0a4mlBGLIMjA U4v+sGj8covlepbgCql1CS0gsECryqhsI7HQvv9qARG2sIFhTffGLKYMYZMr7eMs F6GJLDwRTE5NdP1gK9OYOmucCP+nJMmKmo2xGaUDRsD+pfsCrRbTZogm7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPDr4RVM06CmKQsWRyXhdBVZd9AqMB8GA1UdIwQY MBaAFNZIKURDrtFtBrhq8U9aXwpQg3dKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMWtncFJFT3UwVzBHdUdyeFQxcGZDbENEZDBvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9iNTg3ZTktMzNhOS00YTg2LThjZDkt ZTU3Y2M4MWY1MjMzLzEvMWtncFJFT3UwVzBHdUdyeFQxcGZDbENEZDBvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC9iNTg3ZTktMzNhOS00YTg2LThjZDktZTU3Y2M4MWY1MjMz LzEvMWtncFJFT3UwVzBHdUdyeFQxcGZDbENEZDBvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHFGKkMPs Ev+fUR+RNVmKGkt01rFRzqW5apTa5DK95fV3ORtoRp9eXDFd0W9GqkUYN5rUHZmd 6mIWUVXHMKXWXq6y/QICjAKrYznYLFP0fvbQzoXDCZMX7UZWme89yq718q0Phltj caRqz/M3IZiTiHFJRotRm3ODC09bG1Glhwa+mbWM5NMqwq6QY/BA1ea0VkuweucD i8GK5HUq2t2YEKepYJ0XZoc0Qit6F0LS4wkjs8iiYCKmEuZf9UgFLYmqrCMyT7Vr Yksqw1BbU9FDpjLSsom29/CkMLtL4i+99mDsJdHnzMj9sJkTFqRTjDes87/TR83O RN9rR1rSPH6M4A== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:22 2026 by rpki-client