This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft File: rKcX8QfgYizkyz71KwFU-n-baS0.mft (raw, json) Hash identifier: 7a73y+yPUmGRuULlI1Fx1YqizmzA3nLHVr3R/pDlXHE= Subject key identifier: 5A:3D:B9:81:C1:D8:A0:ED:34:61:80:19:E6:01:C1:A4:D7:88:B8:0C Authority key identifier: AC:A7:17:F1:07:E0:62:2C:E4:CB:3E:F5:2B:01:54:FA:7F:9B:69:2D Certificate issuer: /CN=aca717f107e0622ce4cb3ef52b0154fa7f9b692d Certificate serial: 019C41347CEE93101BEBBEB8C381677E7414 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKcX8QfgYizkyz71KwFU-n-baS0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft Manifest number: 138D Signing time: Mon 09 Feb 2026 07:01:24 +0000 Manifest this update: Mon 09 Feb 2026 07:01:24 +0000 Manifest next update: Tue 10 Feb 2026 07:01:24 +0000 Files and hashes: 1: rKcX8QfgYizkyz71KwFU-n-baS0.crl (hash: wplK+ln+njDgDt8azhZF/a75cc5onLWbQaslXFFwUYk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.crl rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft rsync://rpki.ripe.net/repository/DEFAULT/rKcX8QfgYizkyz71KwFU-n-baS0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:7c:ee:93:10:1b:eb:be:b8:c3:81:67:7e:74:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aca717f107e0622ce4cb3ef52b0154fa7f9b692d Validity Not Before: Feb 9 07:01:24 2026 GMT Not After : Feb 10 07:01:24 2026 GMT Subject: CN=5a3db981c1d8a0ed34618019e601c1a4d788b80c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b3:95:ba:e0:1f:9b:07:8e:cf:2e:86:13:ce: 8f:b3:17:cf:47:70:fa:4c:aa:26:fb:51:13:c3:ea: 39:b3:56:d8:f3:9d:31:2a:b2:cd:39:2e:59:c4:05: 60:6c:8f:01:e4:25:f7:a3:a6:24:89:f8:0d:8e:cc: 0a:34:69:96:ff:df:20:b0:3b:7f:67:33:8b:eb:9e: 22:6d:e8:15:43:16:99:94:7c:29:84:5d:31:35:0d: a3:b1:71:b3:88:11:ce:de:1c:ee:8f:c7:26:70:ca: 0e:e4:55:b8:1b:3b:2b:83:93:c0:a0:be:bb:16:2b: 65:32:8a:15:bd:ba:dc:54:de:bd:a4:8c:77:12:73: de:e3:99:ec:5d:a7:c2:ef:a8:f2:3e:3c:44:54:00: 10:07:ec:88:b0:29:21:fe:30:73:77:93:4a:4a:06: 55:2c:0f:6d:cb:0b:a8:f3:56:f3:d4:05:84:67:60: d2:4a:5e:8d:e6:85:0a:85:eb:c0:62:0e:c5:35:82: 00:5d:26:28:6a:d7:95:1c:8a:13:06:fc:44:c9:58: 78:01:35:19:af:65:6f:0e:02:2a:4d:32:e8:52:0f: e6:1c:7c:44:90:9f:0e:8f:31:fd:92:c5:f8:5e:f5: d4:91:26:79:52:aa:94:d2:55:80:3c:fe:1c:de:ea: 16:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:3D:B9:81:C1:D8:A0:ED:34:61:80:19:E6:01:C1:A4:D7:88:B8:0C X509v3 Authority Key Identifier: keyid:AC:A7:17:F1:07:E0:62:2C:E4:CB:3E:F5:2B:01:54:FA:7F:9B:69:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKcX8QfgYizkyz71KwFU-n-baS0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:51:9f:5d:2d:b9:c5:a1:73:f1:6d:26:3a:da:8a:4f:ab:c9: 4a:bc:65:10:98:eb:c6:ee:4b:b2:ae:33:8f:9c:dc:4c:48:6f: f8:1c:d0:9f:d4:0e:65:61:42:a1:0e:ba:1d:26:7a:e7:99:4e: ed:b7:92:b6:21:3c:3b:21:20:a7:bc:29:ea:8d:8c:08:87:f1: 8f:b6:ff:2c:84:bd:a9:4e:8d:b5:c5:55:3a:04:37:73:2c:07: c0:08:80:d6:60:50:e2:6c:9d:42:ee:e6:73:43:25:0e:29:f3: b4:47:5d:9f:3b:86:4d:68:ce:9a:7a:19:5a:49:7d:d5:8a:8e: 1c:70:6c:ec:05:a7:26:f5:1f:76:12:79:8e:90:26:92:17:80: d2:2a:e8:67:56:ff:80:37:ec:eb:42:45:7e:69:8d:d9:b4:a3: b2:4f:47:f9:00:6d:cc:d3:1b:65:fe:02:72:72:88:b5:97:8b: b6:ed:17:1e:c5:b3:78:6a:db:3c:ad:35:5d:da:e8:e5:40:5e: 8d:6f:a0:96:71:14:9b:6a:77:26:7d:ec:e9:c7:79:9d:39:fd: 01:be:ce:0b:58:ff:23:0a:31:97:97:13:41:b7:85:5d:c0:8e: 10:12:0e:19:14:00:18:7c:d1:6a:df:8f:7b:67:21:3f:b9:19: 6b:6b:ef:b3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNHzukxAb6764w4FnfnQUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjYTcxN2YxMDdlMDYyMmNlNGNiM2VmNTJiMDE1NGZhN2Y5 YjY5MmQwHhcNMjYwMjA5MDcwMTI0WhcNMjYwMjEwMDcwMTI0WjAzMTEwLwYDVQQD Eyg1YTNkYjk4MWMxZDhhMGVkMzQ2MTgwMTllNjAxYzFhNGQ3ODhiODBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtrOVuuAfmweOzy6GE86PsxfPR3D6 TKom+1ETw+o5s1bY850xKrLNOS5ZxAVgbI8B5CX3o6YkifgNjswKNGmW/98gsDt/ ZzOL654ibegVQxaZlHwphF0xNQ2jsXGziBHO3hzuj8cmcMoO5FW4Gzsrg5PAoL67 FitlMooVvbrcVN69pIx3EnPe45nsXafC76jyPjxEVAAQB+yIsCkh/jBzd5NKSgZV LA9tywuo81bz1AWEZ2DSSl6N5oUKhevAYg7FNYIAXSYoateVHIoTBvxEyVh4ATUZ r2VvDgIqTTLoUg/mHHxEkJ8OjzH9ksX4XvXUkSZ5UqqU0lWAPP4c3uoWmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFo9uYHB2KDtNGGAGeYBwaTXiLgMMB8GA1UdIwQY MBaAFKynF/EH4GIs5Ms+9SsBVPp/m2ktMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcktjWDhRZmdZaXpreXo3MUt3RlUtbi1iYVMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS8wOTQyZWMtMmU5Zi00MTcyLThjNTMt YzQ5NDZiOGU2MzBkLzEvcktjWDhRZmdZaXpreXo3MUt3RlUtbi1iYVMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNS8wOTQyZWMtMmU5Zi00MTcyLThjNTMtYzQ5NDZiOGU2MzBk LzEvcktjWDhRZmdZaXpreXo3MUt3RlUtbi1iYVMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqlGfXS25 xaFz8W0mOtqKT6vJSrxlEJjrxu5Lsq4zj5zcTEhv+BzQn9QOZWFCoQ66HSZ655lO 7beStiE8OyEgp7wp6o2MCIfxj7b/LIS9qU6NtcVVOgQ3cywHwAiA1mBQ4mydQu7m c0MlDinztEddnzuGTWjOmnoZWkl91YqOHHBs7AWnJvUfdhJ5jpAmkheA0iroZ1b/ gDfs60JFfmmN2bSjsk9H+QBtzNMbZf4CcnKItZeLtu0XHsWzeGrbPK01Xdro5UBe jW+glnEUm2p3Jn3s6cd5nTn9Ab7OC1j/Iwoxl5cTQbeFXcCOEBIOGRQAGHzRat+P e2chP7kZa2vvsw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:07 2026 by rpki-client