This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft File: KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft (raw, json) Hash identifier: mdH8GRJzhTb64JgPAgmzTXuXk8QbJKQPWcw7CwDld1Y= Subject key identifier: 4D:07:3B:CF:23:B4:81:9F:29:A2:47:87:6E:F7:B6:F8:96:B4:05:A2 Authority key identifier: 2A:21:B1:AB:E7:87:E2:54:64:39:1F:AD:61:D0:0E:3F:37:6B:98:CF Certificate issuer: /CN=2a21b1abe787e25464391fad61d00e3f376b98cf Certificate serial: 019C43592C2787472136EB3D1ADA89AC880D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KiGxq-eH4lRkOR-tYdAOPzdrmM8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft Manifest number: 0D2C Signing time: Mon 09 Feb 2026 17:00:43 +0000 Manifest this update: Mon 09 Feb 2026 17:00:43 +0000 Manifest next update: Tue 10 Feb 2026 17:00:43 +0000 Files and hashes: 1: CR089RdV9vYVGf4mZ93SrR3FOhs.roa (hash: 568v/GpPM88p9MXGvKjGe+TkORQEJQjb2NVPN9PNx0U=) 2: KiGxq-eH4lRkOR-tYdAOPzdrmM8.crl (hash: cKGG1b3lM3VxzyqML9D3Kn6Ul8UplGmzJJ8BAnawOLo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.crl rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft rsync://rpki.ripe.net/repository/DEFAULT/KiGxq-eH4lRkOR-tYdAOPzdrmM8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:2c:27:87:47:21:36:eb:3d:1a:da:89:ac:88:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a21b1abe787e25464391fad61d00e3f376b98cf Validity Not Before: Feb 9 17:00:43 2026 GMT Not After : Feb 10 17:00:43 2026 GMT Subject: CN=4d073bcf23b4819f29a247876ef7b6f896b405a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:80:6a:e8:f6:47:05:6d:90:05:e1:73:5b:8d: 1f:8b:e8:0c:31:d6:6e:83:8b:00:69:72:c9:4b:13: fd:11:42:21:86:86:67:5a:51:93:42:43:cd:f6:16: 12:48:00:13:4a:46:1c:03:3e:33:c5:e2:83:29:4a: b9:17:1e:b3:2c:c5:23:bc:31:9b:0a:d0:65:34:c3: a8:00:00:84:b6:eb:c1:21:cb:e1:bb:ed:cf:e7:c6: 43:a0:ff:5a:55:4b:06:3e:81:1e:47:a8:98:75:36: 33:d3:db:fc:1b:a7:14:ac:3e:24:d1:c1:e8:60:3d: 8c:1d:04:78:13:b3:95:13:b1:03:4e:fe:3a:54:13: d4:58:3b:1f:cc:15:01:8a:43:df:ab:fd:2d:dc:f2: 57:7c:54:b3:b5:bd:6c:1d:a5:97:27:01:0f:b2:a4: 48:a3:ee:f9:47:a5:87:e8:3c:d7:83:e5:b4:7a:3d: 58:56:c9:d3:c5:06:36:a1:c7:d8:ca:a1:a7:25:7a: 3f:b3:97:df:81:c4:8d:30:00:54:89:3d:71:71:9d: 36:e3:4a:a8:3b:b8:61:bb:dc:51:ee:8d:2d:58:1c: 57:56:0a:bd:98:c6:92:7a:f0:09:a9:3d:e2:39:f4: de:d3:59:27:3c:36:14:f3:d1:36:7e:7b:6c:9c:2c: e3:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:07:3B:CF:23:B4:81:9F:29:A2:47:87:6E:F7:B6:F8:96:B4:05:A2 X509v3 Authority Key Identifier: keyid:2A:21:B1:AB:E7:87:E2:54:64:39:1F:AD:61:D0:0E:3F:37:6B:98:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KiGxq-eH4lRkOR-tYdAOPzdrmM8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:36:dc:9b:f8:7d:4b:2d:aa:49:77:7e:1b:19:ca:74:8c:d2: 50:04:df:7f:7f:d5:a7:88:c7:46:d5:cd:70:82:0c:62:ae:de: 06:52:8d:84:0f:e4:d9:15:ec:a3:50:14:0a:da:84:75:be:5b: c4:e8:77:17:29:5f:a3:41:42:3c:5b:82:41:91:05:38:c8:ee: e5:59:14:d0:02:4e:c8:a5:0b:f2:00:6e:35:ae:61:13:f8:d5: 0e:ee:05:ee:03:e5:18:3f:d2:d2:c0:92:e2:77:10:35:d5:22: 17:15:e6:43:ca:3c:e2:43:85:fb:92:b3:5d:cf:e1:e0:f3:01: 35:37:9f:ef:72:4e:e6:5f:50:f4:e9:d1:97:9b:75:c2:6d:da: 61:0d:c5:1d:93:16:e5:03:b7:75:b0:01:8c:4e:c4:b6:27:de: fb:9e:3a:11:df:76:30:ba:42:38:fe:84:ae:62:78:3e:25:0a: e8:08:25:99:2d:9a:84:00:4a:d3:76:b2:c0:ee:97:9b:89:4f: 75:db:f4:11:cc:2a:72:49:b4:45:00:84:b5:43:d0:41:20:31: 07:03:12:6f:f2:1e:37:d3:8c:c5:48:e7:78:4b:ce:cc:97:5f: 52:fa:ce:14:90:dc:42:83:27:61:1b:a2:70:a2:5f:e3:2a:5b: eb:96:cf:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWSwnh0chNus9GtqJrIgNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhMjFiMWFiZTc4N2UyNTQ2NDM5MWZhZDYxZDAwZTNmMzc2 Yjk4Y2YwHhcNMjYwMjA5MTcwMDQzWhcNMjYwMjEwMTcwMDQzWjAzMTEwLwYDVQQD Eyg0ZDA3M2JjZjIzYjQ4MTlmMjlhMjQ3ODc2ZWY3YjZmODk2YjQwNWEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtIBq6PZHBW2QBeFzW40fi+gMMdZu g4sAaXLJSxP9EUIhhoZnWlGTQkPN9hYSSAATSkYcAz4zxeKDKUq5Fx6zLMUjvDGb CtBlNMOoAACEtuvBIcvhu+3P58ZDoP9aVUsGPoEeR6iYdTYz09v8G6cUrD4k0cHo YD2MHQR4E7OVE7EDTv46VBPUWDsfzBUBikPfq/0t3PJXfFSztb1sHaWXJwEPsqRI o+75R6WH6DzXg+W0ej1YVsnTxQY2ocfYyqGnJXo/s5ffgcSNMABUiT1xcZ0240qo O7hhu9xR7o0tWBxXVgq9mMaSevAJqT3iOfTe01knPDYU89E2fntsnCzj9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE0HO88jtIGfKaJHh273tviWtAWiMB8GA1UdIwQY MBaAFCohsavnh+JUZDkfrWHQDj83a5jPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2lHeHEtZUg0bFJrT1ItdFlkQU9QemRybU04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZDA2NTQtNzI0Yy00ZTkwLTgxZmYt OTlmNWNiN2EzY2E1LzEvS2lHeHEtZUg0bFJrT1ItdFlkQU9QemRybU04Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZDA2NTQtNzI0Yy00ZTkwLTgxZmYtOTlmNWNiN2EzY2E1 LzEvS2lHeHEtZUg0bFJrT1ItdFlkQU9QemRybU04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcTbcm/h9 Sy2qSXd+GxnKdIzSUATff3/Vp4jHRtXNcIIMYq7eBlKNhA/k2RXso1AUCtqEdb5b xOh3Fylfo0FCPFuCQZEFOMju5VkU0AJOyKUL8gBuNa5hE/jVDu4F7gPlGD/S0sCS 4ncQNdUiFxXmQ8o84kOF+5KzXc/h4PMBNTef73JO5l9Q9OnRl5t1wm3aYQ3FHZMW 5QO3dbABjE7Etife+546Ed92MLpCOP6ErmJ4PiUK6AglmS2ahABK03aywO6Xm4lP ddv0Ecwqckm0RQCEtUPQQSAxBwMSb/IeN9OMxUjneEvOzJdfUvrOFJDcQoMnYRui cKJf4ypb65bPuA== -----END CERTIFICATE-----Generated at Mon Feb 9 20:54:15 2026 by rpki-client