This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/86ceb8-4188-4b6c-8bd8-c2b81ce98c6d/1/1KAH7S_gjUM-DwoC9DynrLJvWg4.mft File: 1KAH7S_gjUM-DwoC9DynrLJvWg4.mft (raw, json) Hash identifier: fBMvXWTVlPd4ygzUm7ouI7PMks5HmgnHScapz9YKBwI= Subject key identifier: 18:B5:BE:6A:7C:9A:0A:FB:A2:7A:A3:CF:DE:B8:AF:D3:FF:0A:31:7E Authority key identifier: D4:A0:07:ED:2F:E0:8D:43:3E:0F:0A:02:F4:3C:A7:AC:B2:6F:5A:0E Certificate issuer: /CN=d4a007ed2fe08d433e0f0a02f43ca7acb26f5a0e Certificate serial: 019C4359482765D60C790607A5B14DB00B29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1KAH7S_gjUM-DwoC9DynrLJvWg4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/86ceb8-4188-4b6c-8bd8-c2b81ce98c6d/1/1KAH7S_gjUM-DwoC9DynrLJvWg4.mft Manifest number: 0654 Signing time: Mon 09 Feb 2026 17:00:50 +0000 Manifest this update: Mon 09 Feb 2026 17:00:50 +0000 Manifest next update: Tue 10 Feb 2026 17:00:50 +0000 Files and hashes: 1: 1KAH7S_gjUM-DwoC9DynrLJvWg4.crl (hash: 3hA7Y1GCFmx3VDWNdqjSwoE/YuShc+Qlm3jcfkUSRig=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/86ceb8-4188-4b6c-8bd8-c2b81ce98c6d/1/1KAH7S_gjUM-DwoC9DynrLJvWg4.crl rsync://rpki.ripe.net/repository/DEFAULT/e6/86ceb8-4188-4b6c-8bd8-c2b81ce98c6d/1/1KAH7S_gjUM-DwoC9DynrLJvWg4.mft rsync://rpki.ripe.net/repository/DEFAULT/1KAH7S_gjUM-DwoC9DynrLJvWg4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:48:27:65:d6:0c:79:06:07:a5:b1:4d:b0:0b:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d4a007ed2fe08d433e0f0a02f43ca7acb26f5a0e Validity Not Before: Feb 9 17:00:50 2026 GMT Not After : Feb 10 17:00:50 2026 GMT Subject: CN=18b5be6a7c9a0afba27aa3cfdeb8afd3ff0a317e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:84:f9:55:b5:ff:79:89:07:8e:36:2e:1d:67: a4:2f:47:89:5e:07:1f:0f:29:b5:f4:4d:41:ca:ab: 2a:6f:25:fa:03:4a:88:77:ff:21:51:57:0d:89:e6: 43:5a:42:bd:45:0f:b1:80:9d:58:97:eb:56:80:e3: 88:f2:4d:84:7f:86:0c:31:e3:5c:3e:11:d0:1f:2d: 8b:ba:64:2c:6f:7f:46:24:ba:2f:b2:27:ff:b5:cf: ab:e5:a7:10:b5:be:4e:74:bd:a4:f8:70:df:13:26: 55:9f:d7:8d:0c:7e:57:84:4d:bd:28:69:69:39:1d: 93:90:c7:e9:1b:fd:a3:d1:e9:ff:c3:af:46:54:86: e6:6d:4a:3d:86:3f:f2:8d:df:0c:ef:ef:3c:10:3e: f4:ae:f4:e4:f3:6f:89:80:2f:46:35:db:69:27:52: f2:1b:b5:70:cf:0e:ff:ad:b0:d7:64:f0:7c:42:88: b6:81:f6:ec:ae:d7:2e:cd:1c:cf:4e:79:63:4b:ce: b8:a3:60:a3:45:16:1f:2a:f8:21:ed:9e:d0:cb:2f: 77:f6:1c:1c:f6:21:ad:9d:5e:65:d8:c5:ad:60:ae: cd:2b:f0:56:a5:c9:16:ed:c3:be:2a:64:24:08:32: 5f:b3:d4:42:d2:ad:97:0e:63:fb:ac:63:0c:37:a2: 4d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:B5:BE:6A:7C:9A:0A:FB:A2:7A:A3:CF:DE:B8:AF:D3:FF:0A:31:7E X509v3 Authority Key Identifier: keyid:D4:A0:07:ED:2F:E0:8D:43:3E:0F:0A:02:F4:3C:A7:AC:B2:6F:5A:0E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1KAH7S_gjUM-DwoC9DynrLJvWg4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/86ceb8-4188-4b6c-8bd8-c2b81ce98c6d/1/1KAH7S_gjUM-DwoC9DynrLJvWg4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/86ceb8-4188-4b6c-8bd8-c2b81ce98c6d/1/1KAH7S_gjUM-DwoC9DynrLJvWg4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:2b:c9:fa:62:ac:0b:5d:65:24:51:2b:68:f8:a6:8e:d6:c7: 6d:ed:f8:b6:70:ac:89:fa:49:47:ad:5d:f3:bf:2c:94:11:6c: 7b:a9:ef:34:81:2b:9a:0a:3e:87:0a:9f:b9:62:c3:e2:9e:90: 17:2a:14:df:06:56:94:05:89:8b:4e:dd:db:13:1d:d6:3f:81: e8:a7:e1:6e:d8:d8:e6:7d:27:14:15:8f:b2:d7:b7:e9:f1:26: 80:3e:fe:0d:d5:5d:9f:23:83:04:87:8a:50:45:74:8d:a4:c5: 6a:55:79:17:e3:18:29:f1:af:57:af:fe:be:5e:d7:f9:5e:34: 92:9d:f1:a7:9f:5a:76:c7:26:cd:89:b2:3d:67:46:5f:fb:70: 53:93:8a:6c:4b:5f:f1:87:8f:d6:7a:4e:bf:e7:b9:b4:5a:12: 32:4c:1e:23:19:f2:83:62:98:7b:4f:d8:89:6d:13:0a:1b:5b: d2:44:03:04:5e:70:ac:11:06:e2:02:9b:4d:8c:d6:c4:67:7d: f6:6d:c7:d4:2c:07:24:bf:3a:04:ca:db:35:0b:7a:55:32:56: e0:13:59:d4:80:f1:f2:3a:52:6d:df:e6:e9:97:6a:3b:9c:3a: 99:c2:84:1b:eb:61:54:ca:46:42:f4:8b:a0:33:e6:2b:2b:62: fd:a0:2d:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWUgnZdYMeQYHpbFNsAspMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0YTAwN2VkMmZlMDhkNDMzZTBmMGEwMmY0M2NhN2FjYjI2 ZjVhMGUwHhcNMjYwMjA5MTcwMDUwWhcNMjYwMjEwMTcwMDUwWjAzMTEwLwYDVQQD EygxOGI1YmU2YTdjOWEwYWZiYTI3YWEzY2ZkZWI4YWZkM2ZmMGEzMTdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6IT5VbX/eYkHjjYuHWekL0eJXgcf Dym19E1ByqsqbyX6A0qId/8hUVcNieZDWkK9RQ+xgJ1Yl+tWgOOI8k2Ef4YMMeNc PhHQHy2LumQsb39GJLovsif/tc+r5acQtb5OdL2k+HDfEyZVn9eNDH5XhE29KGlp OR2TkMfpG/2j0en/w69GVIbmbUo9hj/yjd8M7+88ED70rvTk82+JgC9GNdtpJ1Ly G7Vwzw7/rbDXZPB8Qoi2gfbsrtcuzRzPTnljS864o2CjRRYfKvgh7Z7Qyy939hwc 9iGtnV5l2MWtYK7NK/BWpckW7cO+KmQkCDJfs9RC0q2XDmP7rGMMN6JNAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBi1vmp8mgr7onqjz964r9P/CjF+MB8GA1UdIwQY MBaAFNSgB+0v4I1DPg8KAvQ8p6yyb1oOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUtBSDdTX2dqVU0tRHdvQzlEeW5yTEp2V2c0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi84NmNlYjgtNDE4OC00YjZjLThiZDgt YzJiODFjZTk4YzZkLzEvMUtBSDdTX2dqVU0tRHdvQzlEeW5yTEp2V2c0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNi84NmNlYjgtNDE4OC00YjZjLThiZDgtYzJiODFjZTk4YzZk LzEvMUtBSDdTX2dqVU0tRHdvQzlEeW5yTEp2V2c0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnSvJ+mKs C11lJFEraPimjtbHbe34tnCsifpJR61d878slBFse6nvNIErmgo+hwqfuWLD4p6Q FyoU3wZWlAWJi07d2xMd1j+B6KfhbtjY5n0nFBWPste36fEmgD7+DdVdnyODBIeK UEV0jaTFalV5F+MYKfGvV6/+vl7X+V40kp3xp59adscmzYmyPWdGX/twU5OKbEtf 8YeP1npOv+e5tFoSMkweIxnyg2KYe0/YiW0TChtb0kQDBF5wrBEG4gKbTYzWxGd9 9m3H1CwHJL86BMrbNQt6VTJW4BNZ1IDx8jpSbd/m6ZdqO5w6mcKEG+thVMpGQvSL oDPmKyti/aAtKg== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:19 2026 by rpki-client