This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft File: KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft (raw, json) Hash identifier: 0A2gK0guI7gz8ubC/zhbIGEqv8SSsAZfZtbL7vglDSw= Subject key identifier: 14:1F:F9:80:8F:9E:0A:6C:61:E0:52:DA:41:0B:7C:F7:78:2B:D3:F4 Authority key identifier: 28:FA:45:6D:1C:23:67:86:21:95:4F:FB:F4:93:A3:23:DE:2C:44:84 Certificate issuer: /CN=28fa456d1c23678621954ffbf493a323de2c4484 Certificate serial: 019C43222D04583E8B5047834C43041FFA2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KPpFbRwjZ4YhlU_79JOjI94sRIQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft Manifest number: 0D4B Signing time: Mon 09 Feb 2026 16:00:39 +0000 Manifest this update: Mon 09 Feb 2026 16:00:39 +0000 Manifest next update: Tue 10 Feb 2026 16:00:39 +0000 Files and hashes: 1: KPpFbRwjZ4YhlU_79JOjI94sRIQ.crl (hash: kDN8BN85xS0MibakQXOCaN180Puy69h++MfGyzCevQw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft rsync://rpki.ripe.net/repository/DEFAULT/KPpFbRwjZ4YhlU_79JOjI94sRIQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:2d:04:58:3e:8b:50:47:83:4c:43:04:1f:fa:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28fa456d1c23678621954ffbf493a323de2c4484 Validity Not Before: Feb 9 16:00:39 2026 GMT Not After : Feb 10 16:00:39 2026 GMT Subject: CN=141ff9808f9e0a6c61e052da410b7cf7782bd3f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ec:1a:ad:b4:58:d9:80:cf:98:a5:50:2e:a9: 25:91:9f:f7:8e:db:c0:ba:41:e8:c3:09:dc:e8:76: 93:8d:26:8d:35:91:a0:e3:43:c0:e8:70:0a:79:dc: 4f:60:78:ae:ab:5b:5b:2d:2d:14:e5:c9:e5:33:dd: 94:c2:36:1c:65:68:aa:a5:9c:51:62:de:d6:80:60: 11:69:d3:7f:c0:5a:d7:4f:85:5f:ea:ac:5b:bc:b7: d5:2c:a0:37:d9:b1:78:c5:5f:00:11:39:10:97:ea: 05:07:d7:58:29:a4:e9:d5:b1:f6:15:ab:89:d6:1c: 36:c7:54:1b:4b:b1:91:c2:ff:7f:a5:e0:05:b8:d7: b6:5a:a7:f8:d6:1c:33:55:68:06:09:ac:0e:27:ff: 47:f5:da:89:c9:51:3a:0e:f1:47:4d:01:5c:fe:30: a7:69:51:09:2c:2c:b4:49:2d:34:3a:b2:48:85:28: 44:52:c5:7d:6f:5e:6e:a8:b6:41:60:96:c6:7f:d5: 54:0b:f6:49:02:3f:e7:c9:8b:28:ab:3c:6e:b7:df: 75:35:4e:1a:7b:d3:e8:da:9d:02:4b:b7:63:41:33: 78:e4:f0:f2:7d:a0:5a:44:52:1a:48:5c:15:d7:3c: 81:95:92:d5:0a:db:27:11:8b:83:3a:80:c1:b2:0f: 19:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:1F:F9:80:8F:9E:0A:6C:61:E0:52:DA:41:0B:7C:F7:78:2B:D3:F4 X509v3 Authority Key Identifier: keyid:28:FA:45:6D:1C:23:67:86:21:95:4F:FB:F4:93:A3:23:DE:2C:44:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KPpFbRwjZ4YhlU_79JOjI94sRIQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:a5:fe:37:cc:94:14:58:be:ff:2d:1a:55:39:ee:c1:fd:3e: 86:39:bd:75:53:d5:a0:38:3b:f1:8c:00:6c:bb:18:b1:ac:00: 90:7f:1b:2c:8c:4e:46:30:9c:fc:f0:56:0b:bf:19:ac:34:fb: 0b:30:02:85:f4:3f:ad:c4:41:15:78:e3:19:fe:7f:58:b5:42: 64:52:3b:75:47:54:99:50:83:2e:b5:d4:08:e8:81:a5:d3:14: 4e:91:b7:74:b5:68:fd:ea:a2:8a:10:bf:a6:e8:60:f7:fa:18: 0f:65:de:91:38:a6:1d:ec:db:5a:09:8d:5a:57:d4:de:4e:68: 63:bd:5b:d8:3f:59:fa:f7:d0:6c:dc:12:98:12:80:f5:39:c9: ce:64:ec:dc:d5:f7:cf:28:b8:12:05:5a:86:06:67:48:15:48: 2e:c0:ec:9b:32:37:99:39:1d:c4:fc:f2:17:91:42:9f:96:a6: e8:af:41:09:58:05:0b:71:2f:33:4a:65:6d:78:9c:bb:90:20: 72:9f:1b:7c:47:e3:b4:80:8b:7c:fd:f3:e4:28:18:da:35:ca: 40:cd:21:d9:2b:f3:81:a9:b4:d5:4a:f5:8d:e9:12:70:bb:5d: 88:b1:21:93:2f:24:65:c0:98:4a:f2:19:da:57:c3:bc:f4:79: 56:44:c7:a2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIi0EWD6LUEeDTEMEH/ouMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4ZmE0NTZkMWMyMzY3ODYyMTk1NGZmYmY0OTNhMzIzZGUy YzQ0ODQwHhcNMjYwMjA5MTYwMDM5WhcNMjYwMjEwMTYwMDM5WjAzMTEwLwYDVQQD EygxNDFmZjk4MDhmOWUwYTZjNjFlMDUyZGE0MTBiN2NmNzc4MmJkM2Y0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyuwarbRY2YDPmKVQLqklkZ/3jtvA ukHowwnc6HaTjSaNNZGg40PA6HAKedxPYHiuq1tbLS0U5cnlM92UwjYcZWiqpZxR Yt7WgGARadN/wFrXT4Vf6qxbvLfVLKA32bF4xV8AETkQl+oFB9dYKaTp1bH2FauJ 1hw2x1QbS7GRwv9/peAFuNe2Wqf41hwzVWgGCawOJ/9H9dqJyVE6DvFHTQFc/jCn aVEJLCy0SS00OrJIhShEUsV9b15uqLZBYJbGf9VUC/ZJAj/nyYsoqzxut991NU4a e9Po2p0CS7djQTN45PDyfaBaRFIaSFwV1zyBlZLVCtsnEYuDOoDBsg8ZjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBQf+YCPngpsYeBS2kELfPd4K9P0MB8GA1UdIwQY MBaAFCj6RW0cI2eGIZVP+/SToyPeLESEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1BwRmJSd2paNFlobFVfNzlKT2pJOTRzUklRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9iMWFjYWItOWE4Yi00MjNlLWIwYmMt ZjQ1YTJhNjM0NzA0LzEvS1BwRmJSd2paNFlobFVfNzlKT2pJOTRzUklRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy9iMWFjYWItOWE4Yi00MjNlLWIwYmMtZjQ1YTJhNjM0NzA0 LzEvS1BwRmJSd2paNFlobFVfNzlKT2pJOTRzUklRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArKX+N8yU FFi+/y0aVTnuwf0+hjm9dVPVoDg78YwAbLsYsawAkH8bLIxORjCc/PBWC78ZrDT7 CzAChfQ/rcRBFXjjGf5/WLVCZFI7dUdUmVCDLrXUCOiBpdMUTpG3dLVo/eqiihC/ puhg9/oYD2XekTimHezbWgmNWlfU3k5oY71b2D9Z+vfQbNwSmBKA9TnJzmTs3NX3 zyi4EgVahgZnSBVILsDsmzI3mTkdxPzyF5FCn5am6K9BCVgFC3EvM0plbXicu5Ag cp8bfEfjtICLfP3z5CgY2jXKQM0h2Svzgam01Ur1jekScLtdiLEhky8kZcCYSvIZ 2lfDvPR5VkTHog== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:36 2026 by rpki-client