This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft File: KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft (raw, json) Hash identifier: 03/1IaD/frSaKUMWCvB0ifML17ktfBnDOwS6SsAcgpA= Subject key identifier: B8:20:21:BE:06:2B:B2:79:EF:F6:9E:92:16:BC:A3:5B:B1:53:9F:57 Authority key identifier: 28:36:24:00:7F:44:DC:AF:56:8C:37:0E:7F:71:F9:50:CB:19:40:EF Certificate issuer: /CN=283624007f44dcaf568c370e7f71f950cb1940ef Certificate serial: 019C41A1B3F46C731D11E2E94E66525EF900 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft Manifest number: 098B Signing time: Mon 09 Feb 2026 09:00:42 +0000 Manifest this update: Mon 09 Feb 2026 09:00:42 +0000 Manifest next update: Tue 10 Feb 2026 09:00:42 +0000 Files and hashes: 1: KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl (hash: 9a8kd2tGHlQxbicJPaFjXXPfziEr0dR9oplupT7pVJg=) 2: wyIJp-MtwD9wUV37AIQAnQ5KD5g.roa (hash: 27rqphnZqec6wo9U62eKve93o5VP/+kmAfxs2ybJPtU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:b3:f4:6c:73:1d:11:e2:e9:4e:66:52:5e:f9:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=283624007f44dcaf568c370e7f71f950cb1940ef Validity Not Before: Feb 9 09:00:42 2026 GMT Not After : Feb 10 09:00:42 2026 GMT Subject: CN=b82021be062bb279eff69e9216bca35bb1539f57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9c:2c:ed:36:96:55:a1:56:d9:06:34:48:64: 5d:a2:a8:01:e4:9b:26:a6:07:30:a4:e7:b6:be:ad: 5b:a6:fa:4f:ae:87:c8:ac:b4:3b:14:b3:4d:02:3c: 29:e3:81:50:c8:27:89:d7:58:6a:ee:8c:5f:fa:94: 83:3b:23:56:f5:99:77:7a:2a:d5:bd:5c:7e:62:70: 3f:dc:14:fc:86:b1:72:6f:ab:6a:60:bc:13:47:37: 76:c5:a0:2a:70:c3:57:b1:3c:a6:aa:7b:bf:6d:72: 03:fb:2a:83:ba:b4:c6:0d:93:dc:57:2b:06:10:90: 07:f4:1a:36:81:17:8d:56:a9:43:4a:b5:e9:1a:d0: 9e:5e:1c:74:43:28:91:f5:f9:a6:7e:79:db:0a:9b: 52:30:34:2b:01:df:67:b0:cb:bc:fe:5d:b6:d3:b7: be:67:1d:0b:44:ee:00:1c:6f:93:03:fe:f4:a8:08: fb:ac:56:90:f3:49:10:2c:ed:0d:ff:a7:ea:a2:46: b6:3f:1a:60:aa:48:c5:53:fb:8c:52:ba:df:5b:9e: b2:80:f1:41:fe:d8:fa:e3:f9:5d:83:dd:27:31:14: 5a:ec:0e:5d:db:94:c0:c4:a3:c1:af:93:00:48:61: 9f:64:3a:6a:ce:fc:8b:7a:c6:8c:99:73:13:52:70: 05:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:20:21:BE:06:2B:B2:79:EF:F6:9E:92:16:BC:A3:5B:B1:53:9F:57 X509v3 Authority Key Identifier: keyid:28:36:24:00:7F:44:DC:AF:56:8C:37:0E:7F:71:F9:50:CB:19:40:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bc:0f:6b:c6:30:9c:86:45:ad:14:0c:ca:1d:7c:c2:3b:b2:43: fb:18:0b:aa:e9:d6:5c:0d:a7:9a:7c:9e:f1:5a:f3:e4:b9:a5: db:5b:a2:ca:d9:cc:b0:bf:82:c0:0d:c2:d4:25:40:d4:73:7b: cd:bc:9e:34:d0:46:92:fa:39:4e:e8:53:8d:83:6f:ba:fb:1f: 38:9f:53:5b:d0:65:8b:98:34:d5:ab:a4:5f:96:28:00:9f:1b: 0a:03:c5:a8:ec:dd:8f:c6:e7:58:f0:07:3c:59:ca:b6:39:bd: 22:48:89:40:0c:1c:8f:2c:88:55:49:f9:60:aa:7e:ac:00:93: 54:6e:43:f2:a4:4e:46:f8:22:58:ac:83:4d:2b:bc:a9:e4:f3: 9f:04:ba:ec:b1:d4:d0:ee:18:29:b6:94:e2:54:50:21:cb:60: 87:9a:8f:c1:b7:fb:18:5c:d2:41:12:0b:0f:8e:f4:2a:0b:34: ba:45:52:25:eb:cc:3c:0b:93:eb:ac:ea:7e:7f:b6:fd:a2:23: a0:d8:62:48:d9:23:a5:a8:ae:df:bc:40:2d:21:b2:13:80:de: 6a:e0:d9:de:b7:7e:aa:4d:2d:32:3f:d6:10:ea:07:fa:4a:6f: 3b:e7:c0:02:91:c0:29:ef:4f:82:cc:75:c9:34:b1:e7:39:ac: 9c:57:5b:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBobP0bHMdEeLpTmZSXvkAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4MzYyNDAwN2Y0NGRjYWY1NjhjMzcwZTdmNzFmOTUwY2Ix OTQwZWYwHhcNMjYwMjA5MDkwMDQyWhcNMjYwMjEwMDkwMDQyWjAzMTEwLwYDVQQD EyhiODIwMjFiZTA2MmJiMjc5ZWZmNjllOTIxNmJjYTM1YmIxNTM5ZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwpws7TaWVaFW2QY0SGRdoqgB5Jsm pgcwpOe2vq1bpvpProfIrLQ7FLNNAjwp44FQyCeJ11hq7oxf+pSDOyNW9Zl3eirV vVx+YnA/3BT8hrFyb6tqYLwTRzd2xaAqcMNXsTymqnu/bXID+yqDurTGDZPcVysG EJAH9Bo2gReNVqlDSrXpGtCeXhx0QyiR9fmmfnnbCptSMDQrAd9nsMu8/l2207e+ Zx0LRO4AHG+TA/70qAj7rFaQ80kQLO0N/6fqoka2PxpgqkjFU/uMUrrfW56ygPFB /tj64/ldg90nMRRa7A5d25TAxKPBr5MASGGfZDpqzvyLesaMmXMTUnAFcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLggIb4GK7J57/aekha8o1uxU59XMB8GA1UdIwQY MBaAFCg2JAB/RNyvVow3Dn9x+VDLGUDvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0RZa0FIOUUzSzlXakRjT2YzSDVVTXNaUU84LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS82MGM3MjQtYTAwNS00NmQ3LTg0NTIt MTZjZTMzOTAxNmEwLzEvS0RZa0FIOUUzSzlXakRjT2YzSDVVTXNaUU84Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS82MGM3MjQtYTAwNS00NmQ3LTg0NTItMTZjZTMzOTAxNmEw LzEvS0RZa0FIOUUzSzlXakRjT2YzSDVVTXNaUU84LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvA9rxjCc hkWtFAzKHXzCO7JD+xgLqunWXA2nmnye8Vrz5Lml21uiytnMsL+CwA3C1CVA1HN7 zbyeNNBGkvo5TuhTjYNvuvsfOJ9TW9Bli5g01aukX5YoAJ8bCgPFqOzdj8bnWPAH PFnKtjm9IkiJQAwcjyyIVUn5YKp+rACTVG5D8qRORvgiWKyDTSu8qeTznwS67LHU 0O4YKbaU4lRQIctgh5qPwbf7GFzSQRILD470Kgs0ukVSJevMPAuT66zqfn+2/aIj oNhiSNkjpaiu37xALSGyE4DeauDZ3rd+qk0tMj/WEOoH+kpvO+fAApHAKe9Pgsx1 yTSx5zmsnFdbTA== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:37 2026 by rpki-client