This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.mft File: VKFL5hl1Xu7rkf4vYqHU7geGFJY.mft (raw, json) Hash identifier: /sESwJIaHC+chUVfY3nvkbySfWGvjcBlLY7YQIv2Gcc= Subject key identifier: 25:F5:AF:61:DD:82:98:FC:17:E0:3E:28:E2:F7:C5:DD:3F:53:7D:E8 Authority key identifier: 54:A1:4B:E6:19:75:5E:EE:EB:91:FE:2F:62:A1:D4:EE:07:86:14:96 Certificate issuer: /CN=54a14be619755eeeeb91fe2f62a1d4ee07861496 Certificate serial: 019C42EBC113B94583E0188A58C63A0BBAE2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKFL5hl1Xu7rkf4vYqHU7geGFJY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.mft Manifest number: 0F09 Signing time: Mon 09 Feb 2026 15:01:12 +0000 Manifest this update: Mon 09 Feb 2026 15:01:12 +0000 Manifest next update: Tue 10 Feb 2026 15:01:12 +0000 Files and hashes: 1: 3BS1Vk6oY_4Q-IA4IkoRCzuBzcM.roa (hash: gfB5bbDDulAvXz0n1M7KzaA+1p0+Euw0D8YsIhe2tHw=) 2: VKFL5hl1Xu7rkf4vYqHU7geGFJY.crl (hash: onXrKKEkMbFmpb/SKoYmKzmCKEk4lGdZS3ESV0Ex8wU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.mft rsync://rpki.ripe.net/repository/DEFAULT/VKFL5hl1Xu7rkf4vYqHU7geGFJY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:c1:13:b9:45:83:e0:18:8a:58:c6:3a:0b:ba:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54a14be619755eeeeb91fe2f62a1d4ee07861496 Validity Not Before: Feb 9 15:01:12 2026 GMT Not After : Feb 10 15:01:12 2026 GMT Subject: CN=25f5af61dd8298fc17e03e28e2f7c5dd3f537de8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b0:6a:45:38:92:44:17:a4:79:e3:b3:41:5c: c5:cc:b7:6b:04:1c:a3:d6:45:22:7c:b1:14:ff:d1: 0b:12:a1:94:8d:e8:04:df:3c:7a:46:52:80:2c:3a: 8b:8c:0e:9a:80:d3:3d:08:5c:fc:fa:e2:12:2c:09: d0:39:a3:bc:b1:62:42:1e:d2:de:0a:91:18:e4:c0: 35:69:19:6e:9f:d8:f5:cc:73:d9:8d:07:04:aa:cf: 96:32:6d:ab:00:0a:56:47:c3:9b:0e:85:5b:a5:73: 79:6a:0e:4a:73:16:9e:25:66:7b:70:01:41:26:77: fc:fb:a6:a9:08:d1:01:6a:f6:cc:60:b5:ac:a3:75: dd:2f:42:b1:1f:b8:5b:70:37:ea:c8:27:45:6b:01: 61:4d:95:5f:9f:d1:e5:29:07:de:77:f6:ca:12:58: 80:58:91:bc:5a:a8:54:d1:9d:e1:83:fe:be:a1:4c: 72:0d:52:ae:da:ee:74:7e:2d:07:3a:71:57:a4:81: af:85:9b:58:ae:2a:81:56:bf:ba:c3:00:e7:53:62: f8:c0:de:c0:8a:48:ee:35:c3:82:4b:e6:86:d1:38: 4e:69:79:0a:d8:57:6e:d6:f1:c0:46:00:2b:60:1c: 95:53:db:ba:5d:a3:53:1d:19:72:72:dc:63:92:1b: f4:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:F5:AF:61:DD:82:98:FC:17:E0:3E:28:E2:F7:C5:DD:3F:53:7D:E8 X509v3 Authority Key Identifier: keyid:54:A1:4B:E6:19:75:5E:EE:EB:91:FE:2F:62:A1:D4:EE:07:86:14:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKFL5hl1Xu7rkf4vYqHU7geGFJY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bf:47:33:e5:e8:1b:b3:84:29:03:18:91:4e:bf:b2:52:f6:7b: 31:e6:8e:43:f9:73:bb:4b:32:8a:4f:71:3c:10:81:bb:5c:e8: b1:95:3f:b8:d2:10:33:1d:24:0a:97:7d:55:41:e2:67:49:48: 8d:a0:22:28:20:2a:f5:f3:f4:6b:c8:68:ff:42:9d:e7:a6:ce: 66:0e:41:0c:0a:1f:7c:79:b4:2e:9e:28:be:46:97:14:96:13: 6d:55:97:9f:69:fd:3b:4a:46:1a:84:51:ba:fd:6c:f6:e7:20: 96:c8:95:36:e7:1c:2f:e4:d8:87:e6:fa:b2:c6:b8:0c:95:56: f9:96:2d:1e:8f:9a:f0:79:16:8a:c8:17:01:b2:d9:38:15:29: cf:60:11:c7:7d:72:58:e7:54:b2:c5:54:b9:93:ec:2c:1b:be: 01:2a:b4:7b:b2:38:2b:51:0d:55:9f:26:17:f5:19:64:82:07: 6b:ba:19:bf:67:70:8b:b6:2c:3b:e7:34:d6:0f:0d:48:db:cd: 54:fe:de:be:42:40:24:a3:8d:93:44:da:5a:d8:fc:f0:0b:a6: 64:77:05:ae:3b:98:27:16:29:57:12:ca:e4:bf:b5:31:c5:69: f1:49:8f:d5:3c:28:99:ae:6c:8f:7a:ca:62:66:96:8e:53:6a: 52:40:08:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC68ETuUWD4BiKWMY6C7riMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0YTE0YmU2MTk3NTVlZWVlYjkxZmUyZjYyYTFkNGVlMDc4 NjE0OTYwHhcNMjYwMjA5MTUwMTEyWhcNMjYwMjEwMTUwMTEyWjAzMTEwLwYDVQQD EygyNWY1YWY2MWRkODI5OGZjMTdlMDNlMjhlMmY3YzVkZDNmNTM3ZGU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvbBqRTiSRBekeeOzQVzFzLdrBByj 1kUifLEU/9ELEqGUjegE3zx6RlKALDqLjA6agNM9CFz8+uISLAnQOaO8sWJCHtLe CpEY5MA1aRlun9j1zHPZjQcEqs+WMm2rAApWR8ObDoVbpXN5ag5KcxaeJWZ7cAFB Jnf8+6apCNEBavbMYLWso3XdL0KxH7hbcDfqyCdFawFhTZVfn9HlKQfed/bKEliA WJG8WqhU0Z3hg/6+oUxyDVKu2u50fi0HOnFXpIGvhZtYriqBVr+6wwDnU2L4wN7A ikjuNcOCS+aG0ThOaXkK2Fdu1vHARgArYByVU9u6XaNTHRlyctxjkhv0pQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCX1r2Hdgpj8F+A+KOL3xd0/U33oMB8GA1UdIwQY MBaAFFShS+YZdV7u65H+L2Kh1O4HhhSWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVktGTDVobDFYdTdya2Y0dllxSFU3Z2VHRkpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9iOGE5ZTctOTQ1MC00MzZjLWJmOTAt OGU5MDQ2NmJhZDM4LzEvVktGTDVobDFYdTdya2Y0dllxSFU3Z2VHRkpZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy9iOGE5ZTctOTQ1MC00MzZjLWJmOTAtOGU5MDQ2NmJhZDM4 LzEvVktGTDVobDFYdTdya2Y0dllxSFU3Z2VHRkpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAv0cz5egb s4QpAxiRTr+yUvZ7MeaOQ/lzu0syik9xPBCBu1zosZU/uNIQMx0kCpd9VUHiZ0lI jaAiKCAq9fP0a8ho/0Kd56bOZg5BDAoffHm0Lp4ovkaXFJYTbVWXn2n9O0pGGoRR uv1s9ucglsiVNuccL+TYh+b6ssa4DJVW+ZYtHo+a8HkWisgXAbLZOBUpz2ARx31y WOdUssVUuZPsLBu+ASq0e7I4K1ENVZ8mF/UZZIIHa7oZv2dwi7YsO+c01g8NSNvN VP7evkJAJKONk0TaWtj88AumZHcFrjuYJxYpVxLK5L+1McVp8UmP1Twoma5sj3rK YmaWjlNqUkAIwA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:47:08 2026 by rpki-client