This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.mft File: g-k154ofll0QiRUhXQ8Et2tzPlg.mft (raw, json) Hash identifier: fuKDtPp96KTzKfuMWpvZzxR0GMMOqAlwbEdkZV60epI= Subject key identifier: 20:42:35:CE:B8:44:CC:89:6A:32:BC:C0:29:C4:0D:13:66:2B:5A:7F Authority key identifier: 83:E9:35:E7:8A:1F:96:5D:10:89:15:21:5D:0F:04:B7:6B:73:3E:58 Certificate issuer: /CN=83e935e78a1f965d108915215d0f04b76b733e58 Certificate serial: 019C4133CC10A758FCFC471ECFC3CB7DE151 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g-k154ofll0QiRUhXQ8Et2tzPlg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 07:00:39 +0000 Manifest this update: Mon 09 Feb 2026 07:00:39 +0000 Manifest next update: Tue 10 Feb 2026 07:00:39 +0000 Files and hashes: 1: g-k154ofll0QiRUhXQ8Et2tzPlg.crl (hash: 4Ag41v+3Gv6awJinK+9DGB8DPCNrUVMt6otTELVtAzM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.mft rsync://rpki.ripe.net/repository/DEFAULT/g-k154ofll0QiRUhXQ8Et2tzPlg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:cc:10:a7:58:fc:fc:47:1e:cf:c3:cb:7d:e1:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83e935e78a1f965d108915215d0f04b76b733e58 Validity Not Before: Feb 9 07:00:39 2026 GMT Not After : Feb 10 07:00:39 2026 GMT Subject: CN=204235ceb844cc896a32bcc029c40d13662b5a7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6f:1d:97:ef:ae:99:37:56:f7:e4:ae:5f:c3: c4:60:59:69:8a:d1:35:1a:16:a0:20:25:15:68:86: f3:7b:8e:d7:2e:2e:2e:25:cd:35:61:56:30:3a:5c: 70:9d:ee:aa:91:ea:90:06:c9:eb:94:fe:00:1b:11: ee:ae:87:3f:a9:0e:91:0d:eb:ff:67:bc:7d:26:39: 22:66:31:b1:5f:2e:91:68:88:b6:0a:5c:43:ce:3a: 15:83:63:f4:0c:4b:3e:1a:bd:45:1a:78:49:6c:b6: 9a:33:2a:0c:b3:2a:ed:3d:5a:7f:06:ac:a6:7a:c2: e2:d8:3b:9d:37:18:7a:32:40:a2:c0:24:f2:d6:c7: 98:4c:68:75:9f:c5:73:d9:05:b8:11:21:6d:8a:c8: 9d:10:ab:39:f7:7b:d5:70:26:38:9b:58:d5:e2:cd: 31:09:50:d0:1d:f7:10:fe:ea:05:85:cf:7a:8d:d6: 3d:aa:da:a8:81:6f:af:f4:bc:64:65:43:24:d5:1a: e7:2a:ec:91:c4:e5:9c:e4:e6:27:d9:79:cf:f3:b3: ec:7f:d3:53:7e:ed:14:b9:c2:ce:62:7c:45:7b:db: 6e:b0:89:3c:10:df:f5:c1:17:8b:d3:41:61:90:5d: 52:81:57:8b:c9:4a:cd:de:25:f9:da:c6:b6:a3:8a: 96:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:42:35:CE:B8:44:CC:89:6A:32:BC:C0:29:C4:0D:13:66:2B:5A:7F X509v3 Authority Key Identifier: keyid:83:E9:35:E7:8A:1F:96:5D:10:89:15:21:5D:0F:04:B7:6B:73:3E:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g-k154ofll0QiRUhXQ8Et2tzPlg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:9e:ae:8c:6f:d9:c8:18:41:f5:06:7f:08:48:ed:8f:13:cf: 35:fe:f2:71:0c:9d:f6:47:f0:05:16:fb:68:ab:90:bd:14:7e: 16:1e:e1:cd:f7:5c:3b:29:42:7d:c9:7a:e3:13:ee:b3:a6:7e: 41:61:b3:06:b6:03:5c:d2:c7:7f:ef:ad:bb:90:2b:45:fb:6d: 73:2a:33:aa:0c:8d:84:fe:8f:52:1c:8f:25:2f:b4:16:b7:47: fd:31:83:e5:15:8e:db:00:43:7c:53:8a:c4:7d:90:e4:21:57: 4b:14:bc:50:6e:4f:74:b9:e3:a3:50:6a:67:2d:42:9e:91:36: 34:e7:52:69:f8:64:f8:3d:8c:e4:0b:ee:9f:57:c9:bf:35:a7: c3:28:af:98:3d:39:cd:ea:3d:68:b9:9c:d1:a1:d8:5b:1d:c7: 23:8c:f2:74:5d:b5:83:aa:9f:7e:a5:b0:56:7d:8f:b2:b8:bd: fa:8f:96:2a:bc:e4:04:ae:50:a7:59:6e:e3:5e:88:2d:48:46: 78:10:8e:a7:e9:71:31:bb:f9:f4:44:6b:6a:76:f8:39:f8:48: 1d:06:64:65:79:2a:bc:8f:11:34:fa:43:af:b9:ab:92:c1:58: 33:a0:5e:23:ee:c3:98:64:a3:c4:af:db:31:0e:28:f4:d0:61: ae:ce:57:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM8wQp1j8/Ecez8PLfeFRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzZTkzNWU3OGExZjk2NWQxMDg5MTUyMTVkMGYwNGI3NmI3 MzNlNTgwHhcNMjYwMjA5MDcwMDM5WhcNMjYwMjEwMDcwMDM5WjAzMTEwLwYDVQQD EygyMDQyMzVjZWI4NDRjYzg5NmEzMmJjYzAyOWM0MGQxMzY2MmI1YTdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq28dl++umTdW9+SuX8PEYFlpitE1 GhagICUVaIbze47XLi4uJc01YVYwOlxwne6qkeqQBsnrlP4AGxHuroc/qQ6RDev/ Z7x9JjkiZjGxXy6RaIi2ClxDzjoVg2P0DEs+Gr1FGnhJbLaaMyoMsyrtPVp/Bqym esLi2DudNxh6MkCiwCTy1seYTGh1n8Vz2QW4ESFtisidEKs593vVcCY4m1jV4s0x CVDQHfcQ/uoFhc96jdY9qtqogW+v9LxkZUMk1RrnKuyRxOWc5OYn2XnP87Psf9NT fu0UucLOYnxFe9tusIk8EN/1wReL00FhkF1SgVeLyUrN3iX52sa2o4qW2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCBCNc64RMyJajK8wCnEDRNmK1p/MB8GA1UdIwQY MBaAFIPpNeeKH5ZdEIkVIV0PBLdrcz5YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZy1rMTU0b2ZsbDBRaVJVaFhROEV0MnR6UGxnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS9hNDIzYzctZmE3ZC00OWY4LWE2ZjMt MGE2N2YwMGZkZWRlLzEvZy1rMTU0b2ZsbDBRaVJVaFhROEV0MnR6UGxnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS9hNDIzYzctZmE3ZC00OWY4LWE2ZjMtMGE2N2YwMGZkZWRl LzEvZy1rMTU0b2ZsbDBRaVJVaFhROEV0MnR6UGxnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV56ujG/Z yBhB9QZ/CEjtjxPPNf7ycQyd9kfwBRb7aKuQvRR+Fh7hzfdcOylCfcl64xPus6Z+ QWGzBrYDXNLHf++tu5ArRfttcyozqgyNhP6PUhyPJS+0FrdH/TGD5RWO2wBDfFOK xH2Q5CFXSxS8UG5PdLnjo1BqZy1CnpE2NOdSafhk+D2M5Avun1fJvzWnwyivmD05 zeo9aLmc0aHYWx3HI4zydF21g6qffqWwVn2Psri9+o+WKrzkBK5Qp1lu416ILUhG eBCOp+lxMbv59ERranb4OfhIHQZkZXkqvI8RNPpDr7mrksFYM6BeI+7DmGSjxK/b MQ4o9NBhrs5XTA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:59:35 2026 by rpki-client