This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/5a81a9-2d4d-4b26-91d1-ea17da2284ff/1/kWV5napb3fL1Nt2BtybPrtDmCFs.mft File: kWV5napb3fL1Nt2BtybPrtDmCFs.mft (raw, json) Hash identifier: 7YUld5TEiSXYdGNDrj6UYOZYI/qjRSO1UDAXuwHqKgo= Subject key identifier: C2:6B:96:D9:67:A2:DA:37:A2:01:B1:6B:98:53:73:EE:CD:13:A9:0A Authority key identifier: 91:65:79:9D:AA:5B:DD:F2:F5:36:DD:81:B7:26:CF:AE:D0:E6:08:5B Certificate issuer: /CN=9165799daa5bddf2f536dd81b726cfaed0e6085b Certificate serial: 019C43221AECC90B3E60AEBD00BF4C83E625 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kWV5napb3fL1Nt2BtybPrtDmCFs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/5a81a9-2d4d-4b26-91d1-ea17da2284ff/1/kWV5napb3fL1Nt2BtybPrtDmCFs.mft Manifest number: 0289 Signing time: Mon 09 Feb 2026 16:00:34 +0000 Manifest this update: Mon 09 Feb 2026 16:00:34 +0000 Manifest next update: Tue 10 Feb 2026 16:00:34 +0000 Files and hashes: 1: kWV5napb3fL1Nt2BtybPrtDmCFs.crl (hash: bnBPiilzYpFhJMT1mdZVahpZ96GhseNEle5Ie+a9WtY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/5a81a9-2d4d-4b26-91d1-ea17da2284ff/1/kWV5napb3fL1Nt2BtybPrtDmCFs.crl rsync://rpki.ripe.net/repository/DEFAULT/af/5a81a9-2d4d-4b26-91d1-ea17da2284ff/1/kWV5napb3fL1Nt2BtybPrtDmCFs.mft rsync://rpki.ripe.net/repository/DEFAULT/kWV5napb3fL1Nt2BtybPrtDmCFs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:1a:ec:c9:0b:3e:60:ae:bd:00:bf:4c:83:e6:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9165799daa5bddf2f536dd81b726cfaed0e6085b Validity Not Before: Feb 9 16:00:34 2026 GMT Not After : Feb 10 16:00:34 2026 GMT Subject: CN=c26b96d967a2da37a201b16b985373eecd13a90a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:73:0c:ee:d2:79:62:bf:c0:f0:ae:82:fa:25: c7:73:79:94:55:49:f1:19:0f:77:1e:d7:0a:97:e3: cf:88:fc:7f:00:14:7e:d4:a7:c9:5f:6e:c1:60:99: 2e:cd:95:fd:a0:86:3a:88:f9:fc:bd:90:a4:4c:9f: d0:b4:b6:8d:4f:88:4c:6e:e4:cf:33:41:95:26:f4: e9:45:8c:b3:6b:fe:14:1f:d7:dd:6b:85:30:63:a0: 02:22:0a:df:f6:a1:0f:f5:90:dc:7e:14:5a:03:ab: 10:36:e3:bd:64:10:c1:85:81:f1:fb:ce:ad:b2:59: be:2c:f2:1c:50:af:3e:a9:35:cb:7b:5f:d1:4b:ea: 31:a5:6a:70:7b:7d:a4:d3:41:e0:3f:53:4a:09:8a: aa:f3:b6:d4:7f:e8:d5:82:04:de:11:ec:ab:00:9a: 62:24:8a:e9:d3:0c:82:c0:5b:71:f6:37:2e:be:ff: 77:15:32:9e:28:9e:34:43:86:61:9c:e0:2e:e4:c5: 20:6f:1a:9a:c1:57:60:f0:4b:ea:b2:a3:c9:af:40: b4:86:75:82:38:9a:17:cf:bc:8c:5d:e8:ed:76:38: 46:4b:5c:40:1a:b1:ca:bc:14:47:6c:f0:b9:58:8b: 21:48:65:dd:d2:81:78:f0:0e:3a:11:c1:d5:d2:82: 8a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:6B:96:D9:67:A2:DA:37:A2:01:B1:6B:98:53:73:EE:CD:13:A9:0A X509v3 Authority Key Identifier: keyid:91:65:79:9D:AA:5B:DD:F2:F5:36:DD:81:B7:26:CF:AE:D0:E6:08:5B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kWV5napb3fL1Nt2BtybPrtDmCFs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/5a81a9-2d4d-4b26-91d1-ea17da2284ff/1/kWV5napb3fL1Nt2BtybPrtDmCFs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/5a81a9-2d4d-4b26-91d1-ea17da2284ff/1/kWV5napb3fL1Nt2BtybPrtDmCFs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:bd:ca:33:8f:06:17:05:64:95:99:88:6d:08:43:6e:36:8d: 5c:2c:d7:fb:9c:f8:92:88:42:0b:01:71:ef:13:b3:7e:8a:2a: 2a:b2:99:7b:bd:7e:06:18:ad:ad:a5:db:87:46:84:de:57:5b: 6a:a5:45:b2:42:f2:06:32:83:c2:cd:25:ae:00:33:42:34:00: 03:04:89:8d:24:a2:72:8a:be:fa:d9:44:3b:2a:47:44:1f:76: 57:89:35:9b:f9:1b:17:36:c6:59:5b:bb:a8:d2:14:b4:4d:74: 28:62:6b:14:68:f0:49:1f:e3:1f:31:f7:35:34:22:7f:ba:42: de:46:83:b9:c7:9b:f4:21:e9:c1:46:47:98:de:a8:74:a8:e0: 8e:95:d6:41:f8:33:96:52:6b:0d:2b:33:a4:d2:b0:bd:de:3d: c3:c9:13:e0:e9:4a:c4:ff:e0:54:7f:73:8b:c1:e9:36:2b:d2: 8b:05:83:d0:a3:5a:23:f6:e6:7c:08:af:48:2e:01:8f:a8:47: f8:f1:70:94:7f:0f:13:58:69:40:a6:1b:cf:ff:c0:ef:d4:59: a0:19:8f:f4:6d:d8:4e:96:ae:ff:9c:23:7c:ba:f2:ba:a4:d7: f9:72:51:ce:61:d2:50:7a:9d:98:c8:3b:f4:78:79:90:2c:1c: c3:d9:ea:d3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIhrsyQs+YK69AL9Mg+YlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxNjU3OTlkYWE1YmRkZjJmNTM2ZGQ4MWI3MjZjZmFlZDBl NjA4NWIwHhcNMjYwMjA5MTYwMDM0WhcNMjYwMjEwMTYwMDM0WjAzMTEwLwYDVQQD EyhjMjZiOTZkOTY3YTJkYTM3YTIwMWIxNmI5ODUzNzNlZWNkMTNhOTBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkXMM7tJ5Yr/A8K6C+iXHc3mUVUnx GQ93HtcKl+PPiPx/ABR+1KfJX27BYJkuzZX9oIY6iPn8vZCkTJ/QtLaNT4hMbuTP M0GVJvTpRYyza/4UH9fda4UwY6ACIgrf9qEP9ZDcfhRaA6sQNuO9ZBDBhYHx+86t slm+LPIcUK8+qTXLe1/RS+oxpWpwe32k00HgP1NKCYqq87bUf+jVggTeEeyrAJpi JIrp0wyCwFtx9jcuvv93FTKeKJ40Q4ZhnOAu5MUgbxqawVdg8EvqsqPJr0C0hnWC OJoXz7yMXejtdjhGS1xAGrHKvBRHbPC5WIshSGXd0oF48A46EcHV0oKKjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMJrltlnoto3ogGxa5hTc+7NE6kKMB8GA1UdIwQY MBaAFJFleZ2qW93y9Tbdgbcmz67Q5ghbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1dWNW5hcGIzZkwxTnQyQnR5YlBydERtQ0ZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi81YTgxYTktMmQ0ZC00YjI2LTkxZDEt ZWExN2RhMjI4NGZmLzEva1dWNW5hcGIzZkwxTnQyQnR5YlBydERtQ0ZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi81YTgxYTktMmQ0ZC00YjI2LTkxZDEtZWExN2RhMjI4NGZm LzEva1dWNW5hcGIzZkwxTnQyQnR5YlBydERtQ0ZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGL3KM48G FwVklZmIbQhDbjaNXCzX+5z4kohCCwFx7xOzfooqKrKZe71+BhitraXbh0aE3ldb aqVFskLyBjKDws0lrgAzQjQAAwSJjSSicoq++tlEOypHRB92V4k1m/kbFzbGWVu7 qNIUtE10KGJrFGjwSR/jHzH3NTQif7pC3kaDuceb9CHpwUZHmN6odKjgjpXWQfgz llJrDSszpNKwvd49w8kT4OlKxP/gVH9zi8HpNivSiwWD0KNaI/bmfAivSC4Bj6hH +PFwlH8PE1hpQKYbz//A79RZoBmP9G3YTpau/5wjfLryuqTX+XJRzmHSUHqdmMg7 9Hh5kCwcw9nq0w== -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:51 2026 by rpki-client