This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft File: VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft (raw, json) Hash identifier: l+XCQxnz1/eoILrbZms6X+fFmj4z3Mm5K9obW0RP/OM= Subject key identifier: 30:7E:35:C1:BA:26:FB:5C:ED:85:7F:04:89:07:37:50:A2:A9:1A:9D Authority key identifier: 54:A6:C4:6D:7D:90:FE:B4:A7:28:AF:0F:8A:E1:1B:FA:0D:4F:8C:B1 Certificate issuer: /CN=54a6c46d7d90feb4a728af0f8ae11bfa0d4f8cb1 Certificate serial: 019C41A18746EFA756DEA44287FAFABC1B92 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft Manifest number: 0B5E Signing time: Mon 09 Feb 2026 09:00:30 +0000 Manifest this update: Mon 09 Feb 2026 09:00:30 +0000 Manifest next update: Tue 10 Feb 2026 09:00:30 +0000 Files and hashes: 1: GrwS7z5skQLr1kWHFgshe5BTW1o.roa (hash: y+YqbBQOH20V6aaG8Rd/FbsV1PT5JFszmedwpyqgIUM=) 2: VKbEbX2Q_rSnKK8PiuEb-g1PjLE.crl (hash: EuSi/m06BoJdiUXsFZxYhXz0Ifwt+KjdYsqXFPrXPaY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft rsync://rpki.ripe.net/repository/DEFAULT/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:87:46:ef:a7:56:de:a4:42:87:fa:fa:bc:1b:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54a6c46d7d90feb4a728af0f8ae11bfa0d4f8cb1 Validity Not Before: Feb 9 09:00:30 2026 GMT Not After : Feb 10 09:00:30 2026 GMT Subject: CN=307e35c1ba26fb5ced857f0489073750a2a91a9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:25:3d:5c:d5:52:d1:2a:c0:76:d0:08:5a:d9: 20:1d:34:d6:e8:c5:64:3d:8a:f6:94:a9:41:f5:e8: 86:bd:ee:ec:2f:9f:28:f3:a4:87:9a:b7:61:a4:e0: 86:74:c0:56:01:79:9f:65:44:3c:49:be:c7:27:86: a5:9c:85:8d:95:44:18:62:da:23:7f:93:09:22:7c: df:6a:fd:2c:22:aa:b5:b3:0e:cf:0f:a0:9c:40:fa: cb:57:4b:e6:eb:d3:f6:9a:d9:ad:40:16:25:c2:59: 1d:ac:3d:3f:57:0e:3a:d3:f4:9d:16:b3:7c:e8:47: 32:48:31:43:ed:82:2c:5a:28:ae:04:8a:c7:ff:9d: 57:1d:29:9a:0d:e0:c9:7f:1d:76:c5:4f:7f:c7:83: dc:3f:43:89:21:07:e9:c5:0b:a2:9d:bc:ac:a3:69: 93:1f:24:cd:32:b4:64:67:7c:dc:56:9d:71:44:da: 64:f5:fe:61:76:2e:d9:4f:62:c5:85:ae:96:6e:bf: 59:57:f1:82:7c:a6:bd:f5:f5:15:60:33:2b:2b:53: b9:7b:3a:73:12:d6:30:bb:6e:28:72:36:d9:07:c3: 70:43:0e:3a:3e:09:69:fd:62:46:12:28:b6:a8:02: d1:45:ad:b5:d0:5d:28:ad:14:ba:6c:a3:90:cb:b8: f1:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:7E:35:C1:BA:26:FB:5C:ED:85:7F:04:89:07:37:50:A2:A9:1A:9D X509v3 Authority Key Identifier: keyid:54:A6:C4:6D:7D:90:FE:B4:A7:28:AF:0F:8A:E1:1B:FA:0D:4F:8C:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:0e:0c:53:04:0a:50:a4:ec:f5:8f:69:ab:92:f2:cf:ea:bc: 50:a7:93:ae:5f:de:f7:50:69:39:27:35:9d:f9:87:2a:1b:84: 9c:b8:75:7d:f1:2c:74:7e:11:ac:62:55:f5:9a:46:24:4f:4b: 75:ed:01:6d:fc:d2:b5:31:c7:67:2c:75:90:af:b8:d8:8c:61: 20:7d:8c:9a:02:d8:1c:f0:c2:ed:c1:81:dc:5f:98:c6:9a:5e: c7:77:4e:52:55:ce:be:93:a6:38:cb:17:de:fe:e9:3e:10:6d: 94:ac:c9:2e:da:21:5f:9b:97:75:c9:0d:22:39:b3:4b:16:ce: 88:78:23:01:5a:33:c5:17:06:13:03:9d:1e:52:2a:ea:ce:cd: b0:f5:65:45:58:4d:86:70:16:97:62:95:df:e6:7c:2e:be:0d: a7:33:86:37:7b:d8:33:dc:41:e4:ad:54:a1:d3:64:39:22:a7: a9:ed:ea:08:63:a5:ef:b8:7e:d7:fe:6b:a7:1e:a0:da:6f:e0: 3f:7b:c3:70:d6:7c:55:34:a5:66:c0:53:51:59:46:32:c0:94: 85:3d:65:56:2b:26:69:3f:36:10:9e:20:01:08:fc:86:83:ca: 5c:e6:0e:ec:91:31:9c:71:ba:ed:ae:54:b4:8b:88:b5:60:5c: 17:61:f6:e6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoYdG76dW3qRCh/r6vBuSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0YTZjNDZkN2Q5MGZlYjRhNzI4YWYwZjhhZTExYmZhMGQ0 ZjhjYjEwHhcNMjYwMjA5MDkwMDMwWhcNMjYwMjEwMDkwMDMwWjAzMTEwLwYDVQQD EygzMDdlMzVjMWJhMjZmYjVjZWQ4NTdmMDQ4OTA3Mzc1MGEyYTkxYTlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2yU9XNVS0SrAdtAIWtkgHTTW6MVk PYr2lKlB9eiGve7sL58o86SHmrdhpOCGdMBWAXmfZUQ8Sb7HJ4alnIWNlUQYYtoj f5MJInzfav0sIqq1sw7PD6CcQPrLV0vm69P2mtmtQBYlwlkdrD0/Vw460/SdFrN8 6EcySDFD7YIsWiiuBIrH/51XHSmaDeDJfx12xU9/x4PcP0OJIQfpxQuinbyso2mT HyTNMrRkZ3zcVp1xRNpk9f5hdi7ZT2LFha6Wbr9ZV/GCfKa99fUVYDMrK1O5ezpz EtYwu24ocjbZB8NwQw46Pglp/WJGEii2qALRRa210F0orRS6bKOQy7jxlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDB+NcG6Jvtc7YV/BIkHN1CiqRqdMB8GA1UdIwQY MBaAFFSmxG19kP60pyivD4rhG/oNT4yxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVktiRWJYMlFfclNuS0s4UGl1RWItZzFQakxFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi8wODk0OWYtYzc5YS00NmNhLWI1MGIt MGZjOWJmY2Q3NGE2LzEvVktiRWJYMlFfclNuS0s4UGl1RWItZzFQakxFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi8wODk0OWYtYzc5YS00NmNhLWI1MGItMGZjOWJmY2Q3NGE2 LzEvVktiRWJYMlFfclNuS0s4UGl1RWItZzFQakxFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVg4MUwQK UKTs9Y9pq5Lyz+q8UKeTrl/e91BpOSc1nfmHKhuEnLh1ffEsdH4RrGJV9ZpGJE9L de0BbfzStTHHZyx1kK+42IxhIH2MmgLYHPDC7cGB3F+Yxppex3dOUlXOvpOmOMsX 3v7pPhBtlKzJLtohX5uXdckNIjmzSxbOiHgjAVozxRcGEwOdHlIq6s7NsPVlRVhN hnAWl2KV3+Z8Lr4NpzOGN3vYM9xB5K1UodNkOSKnqe3qCGOl77h+1/5rpx6g2m/g P3vDcNZ8VTSlZsBTUVlGMsCUhT1lVismaT82EJ4gAQj8hoPKXOYO7JExnHG67a5U tIuItWBcF2H25g== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:46 2026 by rpki-client