This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft File: r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft (raw, json) Hash identifier: RJQnkuT9pN2wol5nn+kQlbatj5fqXtDx98Af9chSN3U= Subject key identifier: 54:3C:1E:C9:5C:60:DD:BE:D1:3B:8E:52:40:AD:68:2B:1A:D4:C9:BB Authority key identifier: AF:82:A0:97:A2:8A:6B:6A:69:9D:8D:6A:BE:4D:CB:95:BB:19:83:30 Certificate issuer: /CN=af82a097a28a6b6a699d8d6abe4dcb95bb198330 Certificate serial: 019C432294911D1CE651753C123CB9E78975 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft Manifest number: 10A5 Signing time: Mon 09 Feb 2026 16:01:05 +0000 Manifest this update: Mon 09 Feb 2026 16:01:05 +0000 Manifest next update: Tue 10 Feb 2026 16:01:05 +0000 Files and hashes: 1: r4Kgl6KKa2ppnY1qvk3LlbsZgzA.crl (hash: 9yY9VIZmNHPFOQzMJyCzhab6EFNLUeyTEBFTDMPRzdI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft rsync://rpki.ripe.net/repository/DEFAULT/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:94:91:1d:1c:e6:51:75:3c:12:3c:b9:e7:89:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af82a097a28a6b6a699d8d6abe4dcb95bb198330 Validity Not Before: Feb 9 16:01:05 2026 GMT Not After : Feb 10 16:01:05 2026 GMT Subject: CN=543c1ec95c60ddbed13b8e5240ad682b1ad4c9bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:da:3e:1a:5e:18:41:89:ec:38:7f:9b:01:ae: 5e:c3:f5:f0:45:d6:bc:6d:bd:c9:4d:6d:78:20:a3: 06:7e:24:6c:15:54:e5:88:ce:77:95:b5:df:bb:ca: d2:9c:b6:de:13:0b:8b:8b:ba:fc:5f:97:c7:71:b6: a8:ff:40:a7:f3:b6:76:2d:4c:40:60:5d:63:2c:57: 5e:be:c2:05:3e:1c:45:ee:92:f4:a8:17:ef:ca:1f: e7:1e:85:77:0f:36:66:87:75:b0:38:b9:05:9a:59: 68:2a:15:69:be:f5:84:f9:47:19:c6:db:fd:48:c3: 22:b6:67:60:dc:f6:a7:a3:ac:27:f5:33:9b:81:fc: 94:7c:24:1b:e6:9e:99:63:ce:01:ab:8c:25:f9:8c: 98:b3:1e:3d:4d:2e:8a:73:df:a5:97:10:38:60:c2: 0f:7e:79:8a:22:ce:f3:a4:78:63:9f:10:92:ff:50: 41:3f:ea:70:e9:49:53:bf:e3:ea:12:24:8f:98:ed: 44:ab:a3:c8:a7:a8:db:af:aa:88:94:f5:55:fc:39: 0c:0a:98:7a:4b:ae:9d:5a:fa:09:47:42:4a:b4:36: 4f:4d:89:8c:23:8e:a2:b6:99:69:be:c5:59:cb:1d: fb:fa:96:d3:68:22:22:fd:ca:07:14:bd:70:4c:d1: d4:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:3C:1E:C9:5C:60:DD:BE:D1:3B:8E:52:40:AD:68:2B:1A:D4:C9:BB X509v3 Authority Key Identifier: keyid:AF:82:A0:97:A2:8A:6B:6A:69:9D:8D:6A:BE:4D:CB:95:BB:19:83:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:21:58:50:df:61:01:ae:25:c9:d8:ac:f4:90:cd:8e:0d:42: af:78:be:94:2d:34:72:36:57:8f:2e:36:6f:91:54:79:84:a2: 95:d8:63:7e:e2:e7:e7:a2:1d:7c:6d:2b:9c:f2:4d:86:28:e5: b2:00:29:b7:87:2d:0d:00:62:4e:c8:04:4d:cc:4a:11:74:5c: 22:08:6a:b9:dd:3d:05:ac:c3:46:f3:6d:de:fe:ce:9c:20:2d: ac:6d:7e:46:ad:18:b1:d3:b4:14:5b:02:ca:bc:84:69:1a:21: 8d:ab:a0:83:2e:65:98:a1:11:e1:4d:3d:03:dc:63:9b:2d:22: 92:1b:0d:57:35:0c:bf:ed:89:12:8d:89:e4:ad:e8:d0:c7:db: c2:f1:6b:77:0c:e5:66:4d:6e:c9:4c:18:1a:56:10:01:3d:03: bf:37:cd:41:de:16:5f:28:c4:9f:7a:2d:d9:b1:0a:f8:2f:bc: 2c:52:e1:f1:ea:58:ed:3a:06:79:f4:9f:b8:c9:2a:6e:bd:20: e3:a6:bf:3b:1b:97:e2:48:ca:e2:aa:7f:d6:6e:a9:a8:87:7e: 83:cd:85:67:9d:34:7f:e0:ba:42:ce:2e:ba:f6:96:b6:e4:49: 3c:17:aa:d7:4f:be:9f:6b:3a:21:d6:ed:d1:8e:04:16:06:6c: 9c:02:be:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIpSRHRzmUXU8Ejy554l1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmODJhMDk3YTI4YTZiNmE2OTlkOGQ2YWJlNGRjYjk1YmIx OTgzMzAwHhcNMjYwMjA5MTYwMTA1WhcNMjYwMjEwMTYwMTA1WjAzMTEwLwYDVQQD Eyg1NDNjMWVjOTVjNjBkZGJlZDEzYjhlNTI0MGFkNjgyYjFhZDRjOWJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzNo+Gl4YQYnsOH+bAa5ew/XwRda8 bb3JTW14IKMGfiRsFVTliM53lbXfu8rSnLbeEwuLi7r8X5fHcbao/0Cn87Z2LUxA YF1jLFdevsIFPhxF7pL0qBfvyh/nHoV3DzZmh3WwOLkFmlloKhVpvvWE+UcZxtv9 SMMitmdg3Pano6wn9TObgfyUfCQb5p6ZY84Bq4wl+YyYsx49TS6Kc9+llxA4YMIP fnmKIs7zpHhjnxCS/1BBP+pw6UlTv+PqEiSPmO1Eq6PIp6jbr6qIlPVV/DkMCph6 S66dWvoJR0JKtDZPTYmMI46itplpvsVZyx37+pbTaCIi/coHFL1wTNHUgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFQ8HslcYN2+0TuOUkCtaCsa1Mm7MB8GA1UdIwQY MBaAFK+CoJeiimtqaZ2Nar5Ny5W7GYMwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjRLZ2w2S0thMnBwblkxcXZrM0xsYnNaZ3pBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi83NWM1N2ItMjc4Ni00N2I5LTk4MWMt ZmFhOGI3MThiNmNiLzEvcjRLZ2w2S0thMnBwblkxcXZrM0xsYnNaZ3pBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi83NWM1N2ItMjc4Ni00N2I5LTk4MWMtZmFhOGI3MThiNmNi LzEvcjRLZ2w2S0thMnBwblkxcXZrM0xsYnNaZ3pBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOiFYUN9h Aa4lydis9JDNjg1Cr3i+lC00cjZXjy42b5FUeYSildhjfuLn56IdfG0rnPJNhijl sgApt4ctDQBiTsgETcxKEXRcIghqud09BazDRvNt3v7OnCAtrG1+Rq0YsdO0FFsC yryEaRohjauggy5lmKER4U09A9xjmy0ikhsNVzUMv+2JEo2J5K3o0MfbwvFrdwzl Zk1uyUwYGlYQAT0DvzfNQd4WXyjEn3ot2bEK+C+8LFLh8epY7ToGefSfuMkqbr0g 46a/OxuX4kjK4qp/1m6pqId+g82FZ500f+C6Qs4uuvaWtuRJPBeq10++n2s6Idbt 0Y4EFgZsnAK+lg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:00:58 2026 by rpki-client