This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/0ced58-5b1d-42e3-8da6-3db7fe8f6783/1/kiGxuiPNnBINnmfHS16SkKcq3SA.mft File: kiGxuiPNnBINnmfHS16SkKcq3SA.mft (raw, json) Hash identifier: T5wkQD4L2ilFW9qfb6G9D1aTasPzyiGJJN8B4dimk9Q= Subject key identifier: A6:BB:33:00:75:A3:21:35:0F:F7:3B:62:85:3E:33:88:56:43:5B:C0 Authority key identifier: 92:21:B1:BA:23:CD:9C:12:0D:9E:67:C7:4B:5E:92:90:A7:2A:DD:20 Certificate issuer: /CN=9221b1ba23cd9c120d9e67c74b5e9290a72add20 Certificate serial: 019C4434FFC51DCE105776AB7A869C43AFE9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiGxuiPNnBINnmfHS16SkKcq3SA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/0ced58-5b1d-42e3-8da6-3db7fe8f6783/1/kiGxuiPNnBINnmfHS16SkKcq3SA.mft Manifest number: 01EB Signing time: Mon 09 Feb 2026 21:00:49 +0000 Manifest this update: Mon 09 Feb 2026 21:00:49 +0000 Manifest next update: Tue 10 Feb 2026 21:00:49 +0000 Files and hashes: 1: kiGxuiPNnBINnmfHS16SkKcq3SA.crl (hash: ZlGi0QOPRX8GCoWpLQ5TbOLHvzSe4GjpgaLZKFJr7pg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/0ced58-5b1d-42e3-8da6-3db7fe8f6783/1/kiGxuiPNnBINnmfHS16SkKcq3SA.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/0ced58-5b1d-42e3-8da6-3db7fe8f6783/1/kiGxuiPNnBINnmfHS16SkKcq3SA.mft rsync://rpki.ripe.net/repository/DEFAULT/kiGxuiPNnBINnmfHS16SkKcq3SA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:34:ff:c5:1d:ce:10:57:76:ab:7a:86:9c:43:af:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9221b1ba23cd9c120d9e67c74b5e9290a72add20 Validity Not Before: Feb 9 21:00:49 2026 GMT Not After : Feb 10 21:00:49 2026 GMT Subject: CN=a6bb330075a321350ff73b62853e338856435bc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:de:88:ce:16:f8:0e:0c:80:5e:7c:bf:d9:c5: 45:82:8e:0a:43:b0:8b:c0:3b:ee:0e:ba:f6:29:4b: f9:d2:4b:2c:04:ed:c7:cc:41:e0:ca:5c:fa:72:a1: 8d:98:91:d6:d2:79:18:11:3e:69:ae:6c:99:98:2d: dd:22:25:0c:22:2b:b9:ae:1e:8f:6a:b0:1f:a1:04: b7:90:2f:8d:c0:a7:2d:07:34:ad:64:b7:e7:e5:3d: f6:36:27:a1:0d:68:61:a5:3c:59:fa:f4:e6:74:1d: 32:54:3b:33:6d:60:88:66:8d:5f:39:5f:bc:0b:b5: f3:d8:74:1c:f9:3b:4a:d2:88:35:1d:d9:9d:e1:b3: 11:38:89:78:73:4b:e3:18:46:8b:39:12:3c:e3:cd: ef:71:8e:c0:64:22:cb:ff:aa:91:82:16:7d:cb:a0: 0f:0d:cc:69:83:d3:7d:ec:0a:b3:75:6c:a1:76:bb: 31:be:fb:9d:26:02:08:77:00:73:37:0b:da:22:aa: ad:67:40:b2:7b:39:56:b9:1f:cd:a1:14:07:7e:fe: 54:4a:01:e2:79:05:e6:16:b4:e5:a8:3f:98:75:51: 70:8a:60:19:85:d4:b7:7a:45:8d:67:82:3a:82:2f: 07:98:63:9e:db:c1:f1:31:3f:c3:b8:0f:ec:2d:2a: 19:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:BB:33:00:75:A3:21:35:0F:F7:3B:62:85:3E:33:88:56:43:5B:C0 X509v3 Authority Key Identifier: keyid:92:21:B1:BA:23:CD:9C:12:0D:9E:67:C7:4B:5E:92:90:A7:2A:DD:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiGxuiPNnBINnmfHS16SkKcq3SA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/0ced58-5b1d-42e3-8da6-3db7fe8f6783/1/kiGxuiPNnBINnmfHS16SkKcq3SA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/0ced58-5b1d-42e3-8da6-3db7fe8f6783/1/kiGxuiPNnBINnmfHS16SkKcq3SA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:42:98:e6:0b:5d:42:7f:79:31:82:9f:51:6f:62:62:46:7e: 51:27:27:08:fc:a4:65:af:dc:cf:10:0f:5c:73:09:c2:85:4a: 59:ad:6d:ed:5d:0f:ae:7b:10:99:2a:43:6e:a1:57:05:46:67: a3:c8:f7:4b:e2:f7:7f:e7:df:21:d6:37:e9:b7:86:2a:75:20: 5c:17:e6:03:c9:f6:1a:10:3b:dd:46:79:6c:30:93:80:bc:be: 1a:0f:8c:45:68:00:48:86:f3:23:3a:af:ea:9b:f8:e2:af:6d: cc:3d:55:a0:7f:df:05:78:69:98:67:df:12:58:0c:dd:67:e0: 3f:d9:f4:ed:c0:4e:d4:92:64:92:d2:ba:a1:fb:65:a3:cf:8a: 0f:2c:32:b2:cc:c7:62:46:7c:0a:e7:a0:fd:6f:9c:4c:3a:4c: 41:ae:e2:9f:2c:ef:9e:c2:36:f4:e7:06:6c:13:5a:f9:7b:2b: cb:b6:f8:d6:50:a3:8b:1a:44:80:74:06:14:0f:a4:ba:c9:9d: 1c:a9:41:55:0d:5c:a0:2d:08:3a:34:3f:dc:a3:72:c3:c4:90: b0:d7:da:01:96:64:65:88:78:e3:dd:14:84:a3:cd:1e:ad:9e: 11:45:56:a2:3d:62:72:6e:f9:32:f0:59:2d:f2:3e:9d:09:ad: 3d:78:49:68 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxENP/FHc4QV3areoacQ6/pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMjFiMWJhMjNjZDljMTIwZDllNjdjNzRiNWU5MjkwYTcy YWRkMjAwHhcNMjYwMjA5MjEwMDQ5WhcNMjYwMjEwMjEwMDQ5WjAzMTEwLwYDVQQD EyhhNmJiMzMwMDc1YTMyMTM1MGZmNzNiNjI4NTNlMzM4ODU2NDM1YmMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkt6Izhb4DgyAXny/2cVFgo4KQ7CL wDvuDrr2KUv50kssBO3HzEHgylz6cqGNmJHW0nkYET5prmyZmC3dIiUMIiu5rh6P arAfoQS3kC+NwKctBzStZLfn5T32NiehDWhhpTxZ+vTmdB0yVDszbWCIZo1fOV+8 C7Xz2HQc+TtK0og1Hdmd4bMROIl4c0vjGEaLORI8483vcY7AZCLL/6qRghZ9y6AP Dcxpg9N97AqzdWyhdrsxvvudJgIIdwBzNwvaIqqtZ0CyezlWuR/NoRQHfv5USgHi eQXmFrTlqD+YdVFwimAZhdS3ekWNZ4I6gi8HmGOe28HxMT/DuA/sLSoZ2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKa7MwB1oyE1D/c7YoU+M4hWQ1vAMB8GA1UdIwQY MBaAFJIhsbojzZwSDZ5nx0tekpCnKt0gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2lHeHVpUE5uQklObm1mSFMxNlNrS2NxM1NBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS8wY2VkNTgtNWIxZC00MmUzLThkYTYt M2RiN2ZlOGY2NzgzLzEva2lHeHVpUE5uQklObm1mSFMxNlNrS2NxM1NBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS8wY2VkNTgtNWIxZC00MmUzLThkYTYtM2RiN2ZlOGY2Nzgz LzEva2lHeHVpUE5uQklObm1mSFMxNlNrS2NxM1NBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGEKY5gtd Qn95MYKfUW9iYkZ+UScnCPykZa/czxAPXHMJwoVKWa1t7V0PrnsQmSpDbqFXBUZn o8j3S+L3f+ffIdY36beGKnUgXBfmA8n2GhA73UZ5bDCTgLy+Gg+MRWgASIbzIzqv 6pv44q9tzD1VoH/fBXhpmGffElgM3WfgP9n07cBO1JJkktK6oftlo8+KDywysszH YkZ8Cueg/W+cTDpMQa7inyzvnsI29OcGbBNa+Xsry7b41lCjixpEgHQGFA+kusmd HKlBVQ1coC0IOjQ/3KNyw8SQsNfaAZZkZYh4490UhKPNHq2eEUVWoj1icm75MvBZ LfI+nQmtPXhJaA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:46:56 2026 by rpki-client