This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.mft File: FLklHG89i7aaegPOrN0q58LIzjc.mft (raw, json) Hash identifier: LSO7RXdv9Brt/opRauAXfAuB7QUtD2sgNG72JAt/CNI= Subject key identifier: 62:2C:51:55:ED:C8:4A:2D:26:59:79:5B:F8:79:B3:EF:99:93:91:B7 Authority key identifier: 14:B9:25:1C:6F:3D:8B:B6:9A:7A:03:CE:AC:DD:2A:E7:C2:C8:CE:37 Certificate issuer: /CN=14b9251c6f3d8bb69a7a03ceacdd2ae7c2c8ce37 Certificate serial: 019C4322CD9EEA1443F77C9BDD2C3EE3578F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FLklHG89i7aaegPOrN0q58LIzjc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.mft Manifest number: 037A Signing time: Mon 09 Feb 2026 16:01:20 +0000 Manifest this update: Mon 09 Feb 2026 16:01:20 +0000 Manifest next update: Tue 10 Feb 2026 16:01:20 +0000 Files and hashes: 1: FLklHG89i7aaegPOrN0q58LIzjc.crl (hash: 5EdyI/Oh628ybe9Qyk4bYTyQh5T3yWowP9+sDpmzFVs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.mft rsync://rpki.ripe.net/repository/DEFAULT/FLklHG89i7aaegPOrN0q58LIzjc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:cd:9e:ea:14:43:f7:7c:9b:dd:2c:3e:e3:57:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14b9251c6f3d8bb69a7a03ceacdd2ae7c2c8ce37 Validity Not Before: Feb 9 16:01:20 2026 GMT Not After : Feb 10 16:01:20 2026 GMT Subject: CN=622c5155edc84a2d2659795bf879b3ef999391b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e3:77:4e:e4:be:02:e0:17:6e:b4:a2:d7:4a: 6f:24:89:c4:39:66:85:89:73:61:12:ee:8f:45:48: 66:a9:c6:3c:c4:ef:31:ee:f2:43:65:da:ab:b2:94: c5:47:ed:3a:61:74:52:17:88:ea:1a:ab:51:96:75: c5:24:9c:2e:30:10:8e:c5:0c:8a:ec:fe:10:51:ec: 82:55:60:61:a1:a9:4f:cb:92:98:e1:20:da:e9:57: 5a:7a:99:51:0a:14:e3:d1:e3:42:de:88:86:4b:a5: ef:84:0e:19:f8:49:46:25:f8:db:f9:b2:a3:74:ff: 88:4d:8b:ad:83:6c:f7:2b:e0:d0:0f:d8:f3:64:0a: db:f7:c0:bf:61:2c:59:ac:61:11:11:78:6b:08:11: de:15:0b:88:eb:62:71:1f:e6:16:7f:17:e1:63:64: 10:3c:d5:fe:05:e6:14:24:81:94:2a:99:c1:84:a2: 29:dd:c7:fe:3f:78:cb:9c:09:0f:b3:cc:34:15:64: fb:f2:7c:da:d1:3b:e7:f1:62:cd:6b:4c:c4:f0:1a: eb:5f:ed:e2:61:cb:d2:0a:89:78:fe:42:f7:c2:0f: 22:d3:55:3b:11:9b:e3:68:81:71:7b:d1:cb:45:93: 7a:3c:3f:d7:90:7c:47:be:04:ea:7f:04:06:3b:e0: 51:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:2C:51:55:ED:C8:4A:2D:26:59:79:5B:F8:79:B3:EF:99:93:91:B7 X509v3 Authority Key Identifier: keyid:14:B9:25:1C:6F:3D:8B:B6:9A:7A:03:CE:AC:DD:2A:E7:C2:C8:CE:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FLklHG89i7aaegPOrN0q58LIzjc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:a7:c2:3f:b7:fe:d2:85:b1:92:81:6a:6c:01:2c:73:58:50: a1:9b:c4:ae:72:e0:75:26:34:93:3c:e7:96:43:8e:35:fd:e3: 28:ae:91:8a:cf:20:59:db:d7:14:03:98:45:b8:c2:e0:7d:b2: b6:09:0c:61:44:79:1f:04:4a:08:76:63:38:ff:ef:63:cf:27: 85:50:01:5a:4c:a8:c8:14:2f:01:89:67:7a:4c:94:51:c1:23: a2:5a:20:d3:2e:1c:5f:c7:d1:e0:3f:7b:49:8f:10:c7:44:23: 25:46:1f:4f:e2:a0:bd:c5:95:e7:7a:cd:69:08:97:f1:20:a8: 5b:29:a4:6e:f8:0b:6a:7e:81:e0:6b:09:93:46:aa:e3:41:60: 3f:e2:d1:b7:1a:1e:d6:1a:fe:ec:94:c0:5d:ef:58:ac:cc:1a: ed:4d:46:d5:ae:6a:35:6c:f0:44:09:99:23:e2:0e:f1:9c:80: 5b:0b:02:41:33:69:34:cd:53:37:e7:d5:19:4d:e4:3a:1e:91: 43:f0:5c:59:b9:6a:92:15:bb:09:9a:71:e8:da:04:b6:42:70: d7:6b:f1:d9:18:df:a4:50:0e:bd:f9:e0:69:33:dc:b2:a5:ad: dd:f5:43:f2:8e:74:f5:f5:02:fa:7b:ed:c3:1e:63:9f:b0:11: e1:26:b8:be -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIs2e6hRD93yb3Sw+41ePMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE0YjkyNTFjNmYzZDhiYjY5YTdhMDNjZWFjZGQyYWU3YzJj OGNlMzcwHhcNMjYwMjA5MTYwMTIwWhcNMjYwMjEwMTYwMTIwWjAzMTEwLwYDVQQD Eyg2MjJjNTE1NWVkYzg0YTJkMjY1OTc5NWJmODc5YjNlZjk5OTM5MWI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAseN3TuS+AuAXbrSi10pvJInEOWaF iXNhEu6PRUhmqcY8xO8x7vJDZdqrspTFR+06YXRSF4jqGqtRlnXFJJwuMBCOxQyK 7P4QUeyCVWBhoalPy5KY4SDa6VdaeplRChTj0eNC3oiGS6XvhA4Z+ElGJfjb+bKj dP+ITYutg2z3K+DQD9jzZArb98C/YSxZrGEREXhrCBHeFQuI62JxH+YWfxfhY2QQ PNX+BeYUJIGUKpnBhKIp3cf+P3jLnAkPs8w0FWT78nza0Tvn8WLNa0zE8BrrX+3i YcvSCol4/kL3wg8i01U7EZvjaIFxe9HLRZN6PD/XkHxHvgTqfwQGO+BRtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGIsUVXtyEotJll5W/h5s++Zk5G3MB8GA1UdIwQY MBaAFBS5JRxvPYu2mnoDzqzdKufCyM43MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRkxrbEhHODlpN2FhZWdQT3JOMHE1OExJempjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9iMzBkNjYtOGZiMC00ZTlkLTk4ZWMt YzJkOGE1OWIwMGQzLzEvRkxrbEhHODlpN2FhZWdQT3JOMHE1OExJempjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC9iMzBkNjYtOGZiMC00ZTlkLTk4ZWMtYzJkOGE1OWIwMGQz LzEvRkxrbEhHODlpN2FhZWdQT3JOMHE1OExJempjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb6fCP7f+ 0oWxkoFqbAEsc1hQoZvErnLgdSY0kzznlkOONf3jKK6Ris8gWdvXFAOYRbjC4H2y tgkMYUR5HwRKCHZjOP/vY88nhVABWkyoyBQvAYlnekyUUcEjolog0y4cX8fR4D97 SY8Qx0QjJUYfT+KgvcWV53rNaQiX8SCoWymkbvgLan6B4GsJk0aq40FgP+LRtxoe 1hr+7JTAXe9YrMwa7U1G1a5qNWzwRAmZI+IO8ZyAWwsCQTNpNM1TN+fVGU3kOh6R Q/BcWblqkhW7CZpx6NoEtkJw12vx2RjfpFAOvfngaTPcsqWt3fVD8o509fUC+nvt wx5jn7AR4Sa4vg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:39:34 2026 by rpki-client