This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft File: giKx_lqaAWNQKFrAeI08yrPrORk.mft (raw, json) Hash identifier: VA0XecgVy7uVzSFTextwngVIa9fyH1e+1zl7bADco1M= Subject key identifier: F6:CA:48:22:B2:04:0D:28:76:9E:4D:EC:07:67:91:B7:2D:D1:2B:EA Authority key identifier: 82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19 Certificate issuer: /CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919 Certificate serial: 019C43593F7358D1063739A9668E41EB53F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft Manifest number: 0958 Signing time: Mon 09 Feb 2026 17:00:48 +0000 Manifest this update: Mon 09 Feb 2026 17:00:48 +0000 Manifest next update: Tue 10 Feb 2026 17:00:48 +0000 Files and hashes: 1: giKx_lqaAWNQKFrAeI08yrPrORk.crl (hash: F8SIv8nazs5kyp3dMdzSbDAqFHMPRi4qEYY3zmX80E4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:3f:73:58:d1:06:37:39:a9:66:8e:41:eb:53:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8222b1fe5a9a016350285ac0788d3ccab3eb3919 Validity Not Before: Feb 9 17:00:48 2026 GMT Not After : Feb 10 17:00:48 2026 GMT Subject: CN=f6ca4822b2040d28769e4dec076791b72dd12bea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:aa:24:da:38:26:eb:10:de:2a:1d:58:fc:01: 77:20:50:c8:89:eb:ac:27:49:62:7c:2f:d9:f9:d6: 85:f9:ea:09:24:e5:af:3b:9e:14:6d:c1:c6:4f:12: 4e:cb:94:3e:e5:c3:ee:e1:5c:d0:40:1f:c1:3e:ed: b8:80:3b:ca:be:11:d6:d1:45:9b:c0:da:b6:42:2a: 81:fc:a2:b9:74:57:57:32:f5:b4:8d:c3:9c:ab:9b: 9f:be:a8:98:43:df:f8:91:2d:2a:f5:f9:8a:b6:40: 9a:ee:80:e8:14:64:5d:03:63:b7:ce:7d:4f:d6:c2: 8e:9e:2b:fc:47:f5:12:57:ec:50:e5:86:c4:97:dc: 46:33:12:d5:4e:f2:ef:52:fe:67:2c:30:ea:3a:cb: c3:d9:48:d6:65:ac:ef:57:6a:a7:73:83:3e:b0:3d: be:e4:42:7d:ec:0f:0e:fa:ea:98:cc:60:b4:7f:18: ce:7b:23:e9:e0:aa:09:7f:1e:75:ae:4a:c4:58:a7: 40:2d:6c:8a:a2:af:dd:b4:4a:b7:30:a4:39:c4:0f: df:d9:75:77:fb:5d:3c:11:ba:3a:41:14:d8:82:c8: 58:4d:b9:93:7e:ea:70:54:4e:94:48:91:c3:d6:3c: d2:ae:14:7d:0b:89:ea:bd:fa:db:0b:7c:46:65:e8: 50:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:CA:48:22:B2:04:0D:28:76:9E:4D:EC:07:67:91:B7:2D:D1:2B:EA X509v3 Authority Key Identifier: keyid:82:22:B1:FE:5A:9A:01:63:50:28:5A:C0:78:8D:3C:CA:B3:EB:39:19 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giKx_lqaAWNQKFrAeI08yrPrORk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/220cae-8459-4870-a6a2-30a16485f5c4/1/giKx_lqaAWNQKFrAeI08yrPrORk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ce:9d:00:af:72:e1:52:85:14:52:a4:84:27:10:15:81:67:0d: 16:d8:42:8a:af:da:35:35:c2:04:6f:70:27:8f:7c:2e:0b:2a: d4:19:a3:12:64:0e:5e:b6:8f:2f:18:18:2f:a6:ad:a9:9e:3b: e2:f8:6c:aa:ae:5b:66:43:0d:b0:99:e6:0f:57:cf:62:7d:9c: 9d:08:ff:62:8c:64:ae:7c:ed:ea:d8:b2:2f:a3:25:d3:16:db: 57:4c:07:4d:4d:ae:b9:a3:44:86:99:46:19:33:96:5d:26:0d: 51:bc:e7:55:db:94:ea:8c:39:36:7d:ff:c6:e1:15:a2:e2:7a: 50:97:16:7f:92:6f:fc:16:c8:81:c2:aa:1f:52:a7:52:eb:10: e2:4a:23:d9:ab:b6:72:a5:2f:db:3d:e6:f6:f0:10:02:5d:49: 33:8a:92:c7:a3:0b:ee:4d:cc:28:54:45:5f:95:2e:db:84:e2: 8b:20:24:f6:75:04:e0:64:dd:06:0b:4d:bd:e0:36:f6:10:51: ef:53:31:20:73:a6:f8:0a:c0:f6:27:61:5b:4d:92:85:5b:06: c0:67:85:a0:c9:6e:aa:b9:d4:fc:fc:e3:be:52:e7:b4:6b:5f: 1e:ed:1c:31:41:aa:d1:f9:4b:2b:19:eb:9a:95:f2:b7:1b:24: c7:dd:f1:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWT9zWNEGNzmpZo5B61PwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMjJiMWZlNWE5YTAxNjM1MDI4NWFjMDc4OGQzY2NhYjNl YjM5MTkwHhcNMjYwMjA5MTcwMDQ4WhcNMjYwMjEwMTcwMDQ4WjAzMTEwLwYDVQQD EyhmNmNhNDgyMmIyMDQwZDI4NzY5ZTRkZWMwNzY3OTFiNzJkZDEyYmVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv6ok2jgm6xDeKh1Y/AF3IFDIieus J0lifC/Z+daF+eoJJOWvO54UbcHGTxJOy5Q+5cPu4VzQQB/BPu24gDvKvhHW0UWb wNq2QiqB/KK5dFdXMvW0jcOcq5ufvqiYQ9/4kS0q9fmKtkCa7oDoFGRdA2O3zn1P 1sKOniv8R/USV+xQ5YbEl9xGMxLVTvLvUv5nLDDqOsvD2UjWZazvV2qnc4M+sD2+ 5EJ97A8O+uqYzGC0fxjOeyPp4KoJfx51rkrEWKdALWyKoq/dtEq3MKQ5xA/f2XV3 +108Ebo6QRTYgshYTbmTfupwVE6USJHD1jzSrhR9C4nqvfrbC3xGZehQ/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPbKSCKyBA0odp5N7Adnkbct0SvqMB8GA1UdIwQY MBaAFIIisf5amgFjUChawHiNPMqz6zkZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2lLeF9scWFBV05RS0ZyQWVJMDh5clByT1JrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS8yMjBjYWUtODQ1OS00ODcwLWE2YTIt MzBhMTY0ODVmNWM0LzEvZ2lLeF9scWFBV05RS0ZyQWVJMDh5clByT1JrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS8yMjBjYWUtODQ1OS00ODcwLWE2YTItMzBhMTY0ODVmNWM0 LzEvZ2lLeF9scWFBV05RS0ZyQWVJMDh5clByT1JrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzp0Ar3Lh UoUUUqSEJxAVgWcNFthCiq/aNTXCBG9wJ498Lgsq1BmjEmQOXraPLxgYL6atqZ47 4vhsqq5bZkMNsJnmD1fPYn2cnQj/Yoxkrnzt6tiyL6Ml0xbbV0wHTU2uuaNEhplG GTOWXSYNUbznVduU6ow5Nn3/xuEVouJ6UJcWf5Jv/BbIgcKqH1KnUusQ4koj2au2 cqUv2z3m9vAQAl1JM4qSx6ML7k3MKFRFX5Uu24TiiyAk9nUE4GTdBgtNveA29hBR 71MxIHOm+ArA9idhW02ShVsGwGeFoMluqrnU/PzjvlLntGtfHu0cMUGq0flLKxnr mpXytxskx93xCw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:43:44 2026 by rpki-client