This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft File: kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft (raw, json) Hash identifier: YpXJOnvgh8fiaHUR84YhtAeCobnUKzzVGUVJ3ZgHCw0= Subject key identifier: 35:EE:4C:9D:7B:C3:B1:0A:1D:A3:FA:5E:FD:E4:24:1E:EF:F5:BE:54 Authority key identifier: 90:F5:92:8C:75:2A:D9:A0:8C:FE:B1:B8:8F:46:3C:3C:0D:D2:E8:5D Certificate issuer: /CN=90f5928c752ad9a08cfeb1b88f463c3c0dd2e85d Certificate serial: 019C4322C585E41350AE2ABAB83A7C99E9A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft Manifest number: 0960 Signing time: Mon 09 Feb 2026 16:01:18 +0000 Manifest this update: Mon 09 Feb 2026 16:01:18 +0000 Manifest next update: Tue 10 Feb 2026 16:01:18 +0000 Files and hashes: 1: kPWSjHUq2aCM_rG4j0Y8PA3S6F0.crl (hash: kGRKI+prvH2V24M+uRY4NjSeB2eKQMPYCbNBCLkhDDI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft rsync://rpki.ripe.net/repository/DEFAULT/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:c5:85:e4:13:50:ae:2a:ba:b8:3a:7c:99:e9:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90f5928c752ad9a08cfeb1b88f463c3c0dd2e85d Validity Not Before: Feb 9 16:01:18 2026 GMT Not After : Feb 10 16:01:18 2026 GMT Subject: CN=35ee4c9d7bc3b10a1da3fa5efde4241eeff5be54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d8:c8:99:56:1f:20:9f:97:f2:44:6c:d3:3a: 9b:23:b6:2a:d6:a3:43:6b:cb:00:b0:19:0b:ff:8f: 41:b9:30:b4:f2:05:35:9d:47:18:20:5a:d3:14:b0: 8a:3f:60:a8:25:b7:0c:cf:30:89:76:2c:20:94:1b: 5a:12:31:4e:3c:0d:e3:80:45:8a:8f:c2:03:1a:97: 5a:c0:a4:77:79:95:d0:85:1e:06:af:57:34:c9:06: db:4e:b1:12:35:96:73:53:0a:64:a3:e8:d2:3f:b3: 62:fd:3f:22:d7:84:e9:0a:55:b2:d4:fd:b5:01:ed: 3c:26:d1:7c:df:23:4a:2d:5a:66:dc:aa:79:52:1b: 9e:fe:35:61:44:ee:9b:5a:45:25:5e:ec:4e:a3:5c: 6e:19:24:85:39:35:b9:63:d1:69:3f:dd:1e:da:af: 35:a2:75:4e:fd:bb:b0:9f:89:28:fc:57:c8:99:ed: 53:91:71:6a:7e:08:b8:db:6d:80:88:5c:64:6c:48: e4:04:97:d4:10:60:fe:5d:e8:3e:6e:54:64:de:31: 09:48:03:80:47:25:97:14:1d:bc:71:a5:83:84:19: 70:3c:28:c0:0d:09:bf:26:27:41:a1:ae:52:91:64: b9:a7:b8:d1:bf:94:ec:d8:ee:52:53:df:2b:a5:94: 18:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:EE:4C:9D:7B:C3:B1:0A:1D:A3:FA:5E:FD:E4:24:1E:EF:F5:BE:54 X509v3 Authority Key Identifier: keyid:90:F5:92:8C:75:2A:D9:A0:8C:FE:B1:B8:8F:46:3C:3C:0D:D2:E8:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:24:27:a6:e8:a4:5e:f4:b4:c8:61:42:39:de:89:e1:7c:90: f1:fa:1d:ac:14:2a:49:f6:a0:ff:4a:6a:d7:b3:78:69:a5:f6: c8:45:b4:7d:84:4d:7c:1f:13:04:b1:2d:ba:a5:ba:2b:ec:ed: d3:05:f5:58:b3:32:8a:79:c3:c3:cb:2e:df:b5:88:f7:4d:11: cc:be:db:75:99:aa:82:e4:b2:48:c8:c7:a0:6a:a6:7b:30:62: 90:01:95:56:2b:b4:57:41:a7:fa:54:9d:44:0e:9d:4e:5b:f5: 90:bd:d4:7d:cd:4b:f1:ba:01:ca:cf:d3:70:cc:b5:16:63:6b: 4e:3a:9d:31:33:76:34:5c:fb:cd:bc:98:06:77:82:75:9f:63: 6b:4a:0c:b5:3f:c9:c6:0d:22:55:a9:a1:fa:82:f0:44:4d:4a: 58:bf:fc:99:f7:ef:bc:5c:00:82:48:c6:7f:b2:db:b6:29:ba: aa:ed:b4:18:0f:1d:b5:3c:7d:14:ce:89:b5:d7:3e:b9:69:ab: 57:1b:59:9f:86:7c:7b:1a:55:5e:ce:40:f5:84:8d:23:94:0d: 98:fe:83:ea:17:8b:4b:b7:67:e7:fb:24:f5:f7:d6:38:b3:23: 1a:a3:bc:f2:7e:e2:40:50:f8:01:71:f7:fa:09:20:f6:c0:7c: 4a:3a:ab:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIsWF5BNQriq6uDp8memnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwZjU5MjhjNzUyYWQ5YTA4Y2ZlYjFiODhmNDYzYzNjMGRk MmU4NWQwHhcNMjYwMjA5MTYwMTE4WhcNMjYwMjEwMTYwMTE4WjAzMTEwLwYDVQQD EygzNWVlNGM5ZDdiYzNiMTBhMWRhM2ZhNWVmZGU0MjQxZWVmZjViZTU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnNjImVYfIJ+X8kRs0zqbI7Yq1qND a8sAsBkL/49BuTC08gU1nUcYIFrTFLCKP2CoJbcMzzCJdiwglBtaEjFOPA3jgEWK j8IDGpdawKR3eZXQhR4Gr1c0yQbbTrESNZZzUwpko+jSP7Ni/T8i14TpClWy1P21 Ae08JtF83yNKLVpm3Kp5Uhue/jVhRO6bWkUlXuxOo1xuGSSFOTW5Y9FpP90e2q81 onVO/buwn4ko/FfIme1TkXFqfgi4222AiFxkbEjkBJfUEGD+Xeg+blRk3jEJSAOA RyWXFB28caWDhBlwPCjADQm/JidBoa5SkWS5p7jRv5Ts2O5SU98rpZQYswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDXuTJ17w7EKHaP6Xv3kJB7v9b5UMB8GA1UdIwQY MBaAFJD1kox1KtmgjP6xuI9GPDwN0uhdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1BXU2pIVXEyYUNNX3JHNGowWThQQTNTNkYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC8zMWEyMGEtNzdkMC00YWM4LWEwOWYt MDRhNmNkODE2YTAzLzEva1BXU2pIVXEyYUNNX3JHNGowWThQQTNTNkYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC8zMWEyMGEtNzdkMC00YWM4LWEwOWYtMDRhNmNkODE2YTAz LzEva1BXU2pIVXEyYUNNX3JHNGowWThQQTNTNkYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnCQnpuik XvS0yGFCOd6J4XyQ8fodrBQqSfag/0pq17N4aaX2yEW0fYRNfB8TBLEtuqW6K+zt 0wX1WLMyinnDw8su37WI900RzL7bdZmqguSySMjHoGqmezBikAGVViu0V0Gn+lSd RA6dTlv1kL3Ufc1L8boBys/TcMy1FmNrTjqdMTN2NFz7zbyYBneCdZ9ja0oMtT/J xg0iVamh+oLwRE1KWL/8mffvvFwAgkjGf7Lbtim6qu20GA8dtTx9FM6Jtdc+uWmr VxtZn4Z8expVXs5A9YSNI5QNmP6D6heLS7dn5/sk9ffWOLMjGqO88n7iQFD4AXH3 +gkg9sB8Sjqr2Q== -----END CERTIFICATE-----Generated at Tue Feb 10 01:07:57 2026 by rpki-client