This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/75c964-354e-46a3-b39e-ed82379cfa32/1/kbDB4HajRpZoEluN05XzBN-i55Q.mft File: kbDB4HajRpZoEluN05XzBN-i55Q.mft (raw, json) Hash identifier: J552H/digOPqtU9yCMWtgEfh4s423Ax416ZxrppcuXU= Subject key identifier: B3:CE:42:73:BB:48:F5:63:DB:46:9F:29:26:22:C3:C5:A1:79:AF:2B Authority key identifier: 91:B0:C1:E0:76:A3:46:96:68:12:5B:8D:D3:95:F3:04:DF:A2:E7:94 Certificate issuer: /CN=91b0c1e076a3469668125b8dd395f304dfa2e794 Certificate serial: 019C4322B992B4AEC044DB9C82FC37836040 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kbDB4HajRpZoEluN05XzBN-i55Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/75c964-354e-46a3-b39e-ed82379cfa32/1/kbDB4HajRpZoEluN05XzBN-i55Q.mft Manifest number: 020C Signing time: Mon 09 Feb 2026 16:01:14 +0000 Manifest this update: Mon 09 Feb 2026 16:01:14 +0000 Manifest next update: Tue 10 Feb 2026 16:01:14 +0000 Files and hashes: 1: kbDB4HajRpZoEluN05XzBN-i55Q.crl (hash: 1FBBAC/ypVdCa6t8tGEwRzD1YCqbDKgZw0jCAT/vJaM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/75c964-354e-46a3-b39e-ed82379cfa32/1/kbDB4HajRpZoEluN05XzBN-i55Q.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/75c964-354e-46a3-b39e-ed82379cfa32/1/kbDB4HajRpZoEluN05XzBN-i55Q.mft rsync://rpki.ripe.net/repository/DEFAULT/kbDB4HajRpZoEluN05XzBN-i55Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:b9:92:b4:ae:c0:44:db:9c:82:fc:37:83:60:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91b0c1e076a3469668125b8dd395f304dfa2e794 Validity Not Before: Feb 9 16:01:14 2026 GMT Not After : Feb 10 16:01:14 2026 GMT Subject: CN=b3ce4273bb48f563db469f292622c3c5a179af2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:c5:10:7e:d7:fd:24:f6:18:90:8a:ad:87:76: f4:b4:1c:56:30:4b:3a:68:a7:48:7f:f7:53:9a:4f: a1:ca:ea:03:87:c4:1e:52:fa:ea:73:6f:3a:88:8c: a4:7b:59:71:72:c0:e3:56:b3:39:ad:3c:4e:ee:61: 21:03:b8:00:f9:17:7b:84:a0:96:d7:0a:fa:9f:b7: 7b:8d:32:9d:6f:74:c4:8f:4e:63:22:91:42:e7:8e: be:71:a2:4a:b9:1f:47:60:99:d4:f4:15:20:b2:cd: 1d:d7:c6:da:89:34:56:56:2e:4f:85:4a:18:36:47: 55:b0:4a:3f:f0:f1:3b:ad:50:c8:44:92:b8:3c:ad: a6:9e:60:fd:21:31:1f:e6:05:63:ed:02:7f:bf:0d: 99:06:f7:13:1d:71:6d:f6:08:56:f0:2b:6c:c7:d0: 49:1d:a2:e5:e4:34:20:d7:00:70:9b:d0:ea:ac:67: 0a:07:e6:9a:36:46:51:0e:9d:5b:fc:f5:2f:ea:a0: e5:72:46:2a:d5:13:8e:14:41:d2:15:41:13:7a:d0: 8b:a0:c0:cc:ab:6b:0d:49:a8:bb:23:b4:6c:e4:c9: 58:98:ea:5e:6c:7f:0c:82:57:6f:f8:71:5b:2e:c6: bd:92:f4:c7:1c:7c:64:30:33:ff:f1:b1:7c:57:08: 6a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:CE:42:73:BB:48:F5:63:DB:46:9F:29:26:22:C3:C5:A1:79:AF:2B X509v3 Authority Key Identifier: keyid:91:B0:C1:E0:76:A3:46:96:68:12:5B:8D:D3:95:F3:04:DF:A2:E7:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kbDB4HajRpZoEluN05XzBN-i55Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/75c964-354e-46a3-b39e-ed82379cfa32/1/kbDB4HajRpZoEluN05XzBN-i55Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/75c964-354e-46a3-b39e-ed82379cfa32/1/kbDB4HajRpZoEluN05XzBN-i55Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:a6:cd:27:18:be:65:a6:1e:76:13:8b:b8:b2:0c:61:c9:c8: 8f:0c:5a:9a:12:81:d9:b7:33:66:f0:ab:ab:67:83:a5:64:b1: 98:57:b2:f5:bb:e5:73:3b:2b:97:b2:fe:bc:02:6e:2d:e5:41: 75:21:90:11:57:55:5a:6f:e1:1e:5d:42:8e:02:4a:42:87:d3: f9:6e:30:72:32:df:37:ea:cb:04:57:8f:61:39:07:1c:cd:76: 05:aa:43:3d:2b:79:c8:62:99:73:d6:92:73:fc:06:cd:b0:14: 2c:04:79:26:fc:e8:64:bb:79:eb:40:c4:96:ee:80:e4:fe:94: 7e:a6:8e:b5:5e:f3:59:54:25:30:9e:e3:7a:4c:a2:a5:6c:46: 4e:f6:0f:fb:2e:6e:a8:ba:48:cb:64:47:38:e6:e0:d0:0b:99: c1:e3:84:9a:b5:ac:01:65:fe:ca:d7:a3:02:31:2b:a4:83:bc: 3f:75:32:7c:72:ef:3b:5d:41:9e:58:7e:a2:dd:b2:8e:7c:f1: 36:45:79:45:c9:3a:44:5c:04:8b:5d:95:23:c4:cf:c0:f9:3a: 5a:d0:f8:e6:a6:4b:de:fb:56:5f:13:0f:41:68:c9:e9:e0:9a: b6:81:9f:1f:a7:59:43:8f:48:26:b3:08:0f:a1:e9:26:ee:43: 10:d2:77:de -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIrmStK7ARNucgvw3g2BAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxYjBjMWUwNzZhMzQ2OTY2ODEyNWI4ZGQzOTVmMzA0ZGZh MmU3OTQwHhcNMjYwMjA5MTYwMTE0WhcNMjYwMjEwMTYwMTE0WjAzMTEwLwYDVQQD EyhiM2NlNDI3M2JiNDhmNTYzZGI0NjlmMjkyNjIyYzNjNWExNzlhZjJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5MUQftf9JPYYkIqth3b0tBxWMEs6 aKdIf/dTmk+hyuoDh8QeUvrqc286iIyke1lxcsDjVrM5rTxO7mEhA7gA+Rd7hKCW 1wr6n7d7jTKdb3TEj05jIpFC546+caJKuR9HYJnU9BUgss0d18baiTRWVi5PhUoY NkdVsEo/8PE7rVDIRJK4PK2mnmD9ITEf5gVj7QJ/vw2ZBvcTHXFt9ghW8Ctsx9BJ HaLl5DQg1wBwm9DqrGcKB+aaNkZRDp1b/PUv6qDlckYq1ROOFEHSFUETetCLoMDM q2sNSai7I7Rs5MlYmOpebH8Mgldv+HFbLsa9kvTHHHxkMDP/8bF8Vwhq8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLPOQnO7SPVj20afKSYiw8Whea8rMB8GA1UdIwQY MBaAFJGwweB2o0aWaBJbjdOV8wTfoueUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2JEQjRIYWpScFpvRWx1TjA1WHpCTi1pNTVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC83NWM5NjQtMzU0ZS00NmEzLWIzOWUt ZWQ4MjM3OWNmYTMyLzEva2JEQjRIYWpScFpvRWx1TjA1WHpCTi1pNTVRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC83NWM5NjQtMzU0ZS00NmEzLWIzOWUtZWQ4MjM3OWNmYTMy LzEva2JEQjRIYWpScFpvRWx1TjA1WHpCTi1pNTVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARKbNJxi+ ZaYedhOLuLIMYcnIjwxamhKB2bczZvCrq2eDpWSxmFey9bvlczsrl7L+vAJuLeVB dSGQEVdVWm/hHl1CjgJKQofT+W4wcjLfN+rLBFePYTkHHM12BapDPSt5yGKZc9aS c/wGzbAULAR5JvzoZLt560DElu6A5P6UfqaOtV7zWVQlMJ7jekyipWxGTvYP+y5u qLpIy2RHOObg0AuZweOEmrWsAWX+ytejAjErpIO8P3UyfHLvO11Bnlh+ot2yjnzx NkV5Rck6RFwEi12VI8TPwPk6WtD45qZL3vtWXxMPQWjJ6eCatoGfH6dZQ49IJrMI D6HpJu5DENJ33g== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:42 2026 by rpki-client