This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/51ecc9-5681-4b02-9db8-2e880a7a82ca/1/Kf5mFpV0HYXP7c9v-890aZlZVp8.mft File: Kf5mFpV0HYXP7c9v-890aZlZVp8.mft (raw, json) Hash identifier: HMCXQ1mlN/859pNQVshWc9si2lhDaW6g/AGTeioPbJM= Subject key identifier: 06:AB:5B:AB:F9:C2:6D:AB:D2:22:C5:E5:15:72:7E:E0:55:86:87:3A Authority key identifier: 29:FE:66:16:95:74:1D:85:CF:ED:CF:6F:FB:CF:74:69:99:59:56:9F Certificate issuer: /CN=29fe661695741d85cfedcf6ffbcf74699959569f Certificate serial: 019C40FD047E7052C7ED8ABB3229E228F19A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kf5mFpV0HYXP7c9v-890aZlZVp8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/51ecc9-5681-4b02-9db8-2e880a7a82ca/1/Kf5mFpV0HYXP7c9v-890aZlZVp8.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 06:00:49 +0000 Manifest this update: Mon 09 Feb 2026 06:00:49 +0000 Manifest next update: Tue 10 Feb 2026 06:00:49 +0000 Files and hashes: 1: Kf5mFpV0HYXP7c9v-890aZlZVp8.crl (hash: W6+7A+9DopCwLNfSXhdjB1MewdCUNCgEfD4IBpNRp8w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/51ecc9-5681-4b02-9db8-2e880a7a82ca/1/Kf5mFpV0HYXP7c9v-890aZlZVp8.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/51ecc9-5681-4b02-9db8-2e880a7a82ca/1/Kf5mFpV0HYXP7c9v-890aZlZVp8.mft rsync://rpki.ripe.net/repository/DEFAULT/Kf5mFpV0HYXP7c9v-890aZlZVp8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fd:04:7e:70:52:c7:ed:8a:bb:32:29:e2:28:f1:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29fe661695741d85cfedcf6ffbcf74699959569f Validity Not Before: Feb 9 06:00:49 2026 GMT Not After : Feb 10 06:00:49 2026 GMT Subject: CN=06ab5babf9c26dabd222c5e515727ee05586873a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:cb:6f:b0:a4:8e:fe:e5:51:61:f2:23:07:60: 48:4e:54:99:5d:c1:bc:64:4c:25:e9:36:85:c7:fc: b9:0d:13:55:ac:98:ed:73:42:2f:b5:e2:38:84:ae: 1f:09:d1:7e:b6:b3:77:9b:1f:c2:4d:4f:fd:a8:61: 8e:c0:14:75:de:b3:79:bf:e2:0e:c5:83:fd:b5:02: f6:05:f2:e9:15:67:22:85:7d:cf:e3:2f:10:3e:48: 26:0d:df:de:c8:bd:4b:73:9a:70:63:ec:d3:47:fd: 90:ac:8f:20:06:fe:78:8a:a5:ea:d9:26:1c:22:f8: d1:a0:43:e5:97:48:31:30:1e:6f:92:e5:b4:65:02: 48:2d:e8:1d:6d:b4:5a:a7:c7:0e:dc:64:65:9c:0e: 67:cb:d7:02:76:1a:54:88:b9:12:0d:e1:5d:b7:b8: d3:3c:f4:8a:3e:65:d4:34:0f:7c:4f:a9:99:ea:b0: 2d:6b:4b:93:bd:a7:24:ca:af:80:a1:e5:9d:f5:a7: c3:0c:41:1d:08:3e:6a:24:06:3f:14:c4:36:48:53: a6:67:7f:66:5c:2f:6a:3f:ea:1f:f3:98:e1:9d:58: 7b:32:09:15:d0:24:e7:9f:ca:76:d2:ea:ef:56:2a: 3a:f8:57:fc:bb:ee:0b:5d:55:10:19:d2:29:76:d6: 64:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:AB:5B:AB:F9:C2:6D:AB:D2:22:C5:E5:15:72:7E:E0:55:86:87:3A X509v3 Authority Key Identifier: keyid:29:FE:66:16:95:74:1D:85:CF:ED:CF:6F:FB:CF:74:69:99:59:56:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kf5mFpV0HYXP7c9v-890aZlZVp8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/51ecc9-5681-4b02-9db8-2e880a7a82ca/1/Kf5mFpV0HYXP7c9v-890aZlZVp8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/51ecc9-5681-4b02-9db8-2e880a7a82ca/1/Kf5mFpV0HYXP7c9v-890aZlZVp8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:dc:ba:4b:0b:4f:76:82:ec:ad:2e:78:1b:12:6c:9b:c2:14: 3c:97:22:cf:0c:a9:79:eb:e7:49:75:44:e1:63:9d:0f:6b:d6: 93:c6:55:ff:76:3b:c5:79:0b:76:76:cb:a4:2c:9c:be:e9:8a: ce:d6:6f:64:21:c2:9e:4a:ac:30:0a:9d:c1:98:91:84:f3:74: 1e:2e:a0:73:d2:8d:1d:24:ca:ad:39:f2:87:fb:d1:8b:63:25: 2a:de:c8:66:0c:90:fe:aa:a3:39:8c:e2:dd:82:88:c0:60:91: 36:b2:cc:37:99:30:72:f6:6e:cc:ea:c9:74:38:8b:07:f2:96: c1:b6:7b:86:b8:db:4f:31:b6:fd:8f:3d:a7:cf:1e:f1:ac:ee: 2c:85:65:df:5c:9e:e0:d2:8e:d2:b6:13:54:c5:ef:f1:cb:cd: e4:f4:6e:39:81:7e:80:03:63:c8:21:30:a2:90:33:61:a6:70: d3:de:71:f0:e5:6c:32:0b:8d:2a:22:3d:17:5a:9c:fe:f6:7b: 4c:77:19:86:b9:36:93:67:f8:03:81:bb:87:49:c4:5d:b7:9f: 0a:e1:43:7e:ec:53:ce:bc:22:5e:6c:a9:7b:09:60:0e:62:7e: c2:ea:a5:fa:14:94:23:ca:ad:6c:d3:78:78:10:72:8e:cc:0c: b0:13:3a:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/QR+cFLH7Yq7MiniKPGaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZmU2NjE2OTU3NDFkODVjZmVkY2Y2ZmZiY2Y3NDY5OTk1 OTU2OWYwHhcNMjYwMjA5MDYwMDQ5WhcNMjYwMjEwMDYwMDQ5WjAzMTEwLwYDVQQD EygwNmFiNWJhYmY5YzI2ZGFiZDIyMmM1ZTUxNTcyN2VlMDU1ODY4NzNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoctvsKSO/uVRYfIjB2BITlSZXcG8 ZEwl6TaFx/y5DRNVrJjtc0IvteI4hK4fCdF+trN3mx/CTU/9qGGOwBR13rN5v+IO xYP9tQL2BfLpFWcihX3P4y8QPkgmDd/eyL1Lc5pwY+zTR/2QrI8gBv54iqXq2SYc IvjRoEPll0gxMB5vkuW0ZQJILegdbbRap8cO3GRlnA5ny9cCdhpUiLkSDeFdt7jT PPSKPmXUNA98T6mZ6rAta0uTvackyq+AoeWd9afDDEEdCD5qJAY/FMQ2SFOmZ39m XC9qP+of85jhnVh7MgkV0CTnn8p20urvVio6+Ff8u+4LXVUQGdIpdtZkKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAarW6v5wm2r0iLF5RVyfuBVhoc6MB8GA1UdIwQY MBaAFCn+ZhaVdB2Fz+3Pb/vPdGmZWVafMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2Y1bUZwVjBIWVhQN2M5di04OTBhWmxaVnA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi81MWVjYzktNTY4MS00YjAyLTlkYjgt MmU4ODBhN2E4MmNhLzEvS2Y1bUZwVjBIWVhQN2M5di04OTBhWmxaVnA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi81MWVjYzktNTY4MS00YjAyLTlkYjgtMmU4ODBhN2E4MmNh LzEvS2Y1bUZwVjBIWVhQN2M5di04OTBhWmxaVnA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN9y6SwtP doLsrS54GxJsm8IUPJcizwypeevnSXVE4WOdD2vWk8ZV/3Y7xXkLdnbLpCycvumK ztZvZCHCnkqsMAqdwZiRhPN0Hi6gc9KNHSTKrTnyh/vRi2MlKt7IZgyQ/qqjOYzi 3YKIwGCRNrLMN5kwcvZuzOrJdDiLB/KWwbZ7hrjbTzG2/Y89p88e8azuLIVl31ye 4NKO0rYTVMXv8cvN5PRuOYF+gANjyCEwopAzYaZw095x8OVsMguNKiI9F1qc/vZ7 THcZhrk2k2f4A4G7h0nEXbefCuFDfuxTzrwiXmypewlgDmJ+wuql+hSUI8qtbNN4 eBByjswMsBM6Nw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:53:41 2026 by rpki-client