This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft File: KwFArTlBTE6rAqxVQitEFj7TSw8.mft (raw, json) Hash identifier: ELR66KLORYkq1dvRkJF5MUID9XcpiQpTVDL11bF0tLY= Subject key identifier: 3B:C7:F7:44:EC:18:E1:14:F2:61:31:49:E5:AB:B5:5C:F9:9F:DB:D2 Authority key identifier: 2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F Certificate issuer: /CN=2b0140ad39414c4eab02ac55422b44163ed34b0f Certificate serial: 019C42B49E49FB300FFEB871E624F7CFB11C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft Manifest number: 0567 Signing time: Mon 09 Feb 2026 14:00:59 +0000 Manifest this update: Mon 09 Feb 2026 14:00:59 +0000 Manifest next update: Tue 10 Feb 2026 14:00:59 +0000 Files and hashes: 1: KwFArTlBTE6rAqxVQitEFj7TSw8.crl (hash: 2yvcwtwik0f3J9V4b0T95Wv3aelxDZo5dZWE7qlspRA=) 2: ir9SuLduq8J9bIwWBVKAyAFiwvk.roa (hash: LeNR5QQthmrMSFvWNxLjb0RXrLTd6w9z7OeC3M8gneo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:9e:49:fb:30:0f:fe:b8:71:e6:24:f7:cf:b1:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2b0140ad39414c4eab02ac55422b44163ed34b0f Validity Not Before: Feb 9 14:00:59 2026 GMT Not After : Feb 10 14:00:59 2026 GMT Subject: CN=3bc7f744ec18e114f2613149e5abb55cf99fdbd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:33:79:a8:fd:6b:48:84:11:92:8d:14:8f:b2: 2d:99:a7:9e:df:3f:e2:43:25:e1:3b:40:78:cf:78: b8:eb:20:ed:a8:9a:99:5a:6d:16:48:ee:30:49:35: bd:b0:7f:f4:33:88:e7:88:49:5c:c0:75:57:50:87: 2d:5d:da:18:44:14:1f:a8:1d:2e:40:74:a9:4a:20: 5d:59:96:cc:97:80:fc:a7:6c:d8:56:82:97:33:83: 8f:bb:d9:a4:c2:e9:d6:4b:5b:91:f2:51:78:28:17: 2a:ca:4c:8d:88:e4:99:e5:26:97:45:c8:aa:a7:8e: 0f:b0:ef:6a:e7:52:a2:95:3a:25:c9:06:20:b6:16: 42:eb:c3:58:86:c9:19:cb:36:4f:e2:f4:14:43:6f: 3c:48:c8:36:a7:24:90:8f:dc:58:2e:ae:d7:67:c0: 6d:f9:9f:52:8a:d6:77:82:13:4f:5e:38:a9:42:5e: fe:bd:5f:b9:ac:ad:58:0b:9f:e6:af:15:b6:ee:6d: 79:6e:80:6e:d0:a1:08:5c:11:af:4e:75:0f:02:d5: 63:c5:e7:55:e8:40:1a:19:4d:82:2a:eb:40:a0:59: 86:34:1e:e6:b8:76:16:a6:9a:58:d4:ca:f4:8b:6a: 65:19:d6:02:a5:94:9d:3d:67:80:07:37:91:30:8a: 38:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:C7:F7:44:EC:18:E1:14:F2:61:31:49:E5:AB:B5:5C:F9:9F:DB:D2 X509v3 Authority Key Identifier: keyid:2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:b0:04:93:57:b3:ea:5c:57:9d:d1:15:c7:68:25:a9:b6:24: f9:ac:ec:ae:ac:6e:7c:c5:93:6d:96:14:7c:e5:56:81:34:50: 4c:19:bd:fb:85:3e:70:ea:8f:ff:07:9d:56:b8:c0:e5:5e:70: 06:d1:c1:1b:4f:ad:9e:5d:cd:a5:e7:db:e0:22:52:df:ce:b7: 76:c3:f0:f6:df:c9:76:bd:b6:9c:07:79:eb:78:87:4f:06:1d: 71:08:80:a4:15:16:fe:68:32:d1:2c:c1:a8:11:9d:12:5b:16: 02:cc:8d:2a:4d:16:01:84:1d:a3:64:49:26:57:83:a2:07:be: 4c:e5:09:ab:9d:fb:50:0a:60:b5:aa:f5:87:4b:ab:37:77:18: e1:22:fb:5d:2e:e4:44:d5:08:6d:95:40:98:04:10:a7:13:d4: 4a:4f:78:44:b2:67:3a:09:09:90:5d:78:b8:21:2f:70:75:0b: 31:c8:72:39:02:da:d2:08:bf:c0:94:dc:19:9b:19:b4:c0:d2: 26:d4:7f:93:8f:f3:35:82:68:cd:0e:37:b0:ac:a9:8b:bc:3c: 25:7c:d3:ec:19:9f:9f:12:00:49:29:e5:4e:98:d7:5b:64:37: 23:78:3f:b6:35:c2:06:eb:9c:70:f5:6d:10:be:90:0c:cc:e7: 3f:09:98:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtJ5J+zAP/rhx5iT3z7EcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiMDE0MGFkMzk0MTRjNGVhYjAyYWM1NTQyMmI0NDE2M2Vk MzRiMGYwHhcNMjYwMjA5MTQwMDU5WhcNMjYwMjEwMTQwMDU5WjAzMTEwLwYDVQQD EygzYmM3Zjc0NGVjMThlMTE0ZjI2MTMxNDllNWFiYjU1Y2Y5OWZkYmQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxDN5qP1rSIQRko0Uj7Itmaee3z/i QyXhO0B4z3i46yDtqJqZWm0WSO4wSTW9sH/0M4jniElcwHVXUIctXdoYRBQfqB0u QHSpSiBdWZbMl4D8p2zYVoKXM4OPu9mkwunWS1uR8lF4KBcqykyNiOSZ5SaXRciq p44PsO9q51KilTolyQYgthZC68NYhskZyzZP4vQUQ288SMg2pySQj9xYLq7XZ8Bt +Z9SitZ3ghNPXjipQl7+vV+5rK1YC5/mrxW27m15boBu0KEIXBGvTnUPAtVjxedV 6EAaGU2CKutAoFmGNB7muHYWpppY1Mr0i2plGdYCpZSdPWeABzeRMIo4aQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDvH90TsGOEU8mExSeWrtVz5n9vSMB8GA1UdIwQY MBaAFCsBQK05QUxOqwKsVUIrRBY+00sPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3dGQXJUbEJURTZyQXF4VlFpdEVGajdUU3c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy84OWMzZTQtYjYxMy00OWVjLWFlMjUt MmU3NTIyOGY5MjYxLzEvS3dGQXJUbEJURTZyQXF4VlFpdEVGajdUU3c4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy84OWMzZTQtYjYxMy00OWVjLWFlMjUtMmU3NTIyOGY5MjYx LzEvS3dGQXJUbEJURTZyQXF4VlFpdEVGajdUU3c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfLAEk1ez 6lxXndEVx2glqbYk+azsrqxufMWTbZYUfOVWgTRQTBm9+4U+cOqP/wedVrjA5V5w BtHBG0+tnl3Npefb4CJS3863dsPw9t/Jdr22nAd563iHTwYdcQiApBUW/mgy0SzB qBGdElsWAsyNKk0WAYQdo2RJJleDoge+TOUJq537UApgtar1h0urN3cY4SL7XS7k RNUIbZVAmAQQpxPUSk94RLJnOgkJkF14uCEvcHULMchyOQLa0gi/wJTcGZsZtMDS JtR/k4/zNYJozQ43sKypi7w8JXzT7BmfnxIASSnlTpjXW2Q3I3g/tjXCBuuccPVt EL6QDMznPwmY3A== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:38 2026 by rpki-client