This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/83226a-4291-4f03-9be3-89e39ac1ed81/1/kYaHyFQkQhcMxR71MW05Y2CXCNw.mft File: kYaHyFQkQhcMxR71MW05Y2CXCNw.mft (raw, json) Hash identifier: U+zduGUSWffJQQBFRzOMwXfpNWb1hH7BPBPnxZIJoKQ= Subject key identifier: 94:7B:75:F8:0D:4B:20:97:45:CD:71:C9:75:9F:DF:8E:10:BE:2F:06 Authority key identifier: 91:86:87:C8:54:24:42:17:0C:C5:1E:F5:31:6D:39:63:60:97:08:DC Certificate issuer: /CN=918687c8542442170cc51ef5316d3963609708dc Certificate serial: 019C43228FE098A97E9F30FFA70CE30B7890 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYaHyFQkQhcMxR71MW05Y2CXCNw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/83226a-4291-4f03-9be3-89e39ac1ed81/1/kYaHyFQkQhcMxR71MW05Y2CXCNw.mft Manifest number: 141C Signing time: Mon 09 Feb 2026 16:01:04 +0000 Manifest this update: Mon 09 Feb 2026 16:01:04 +0000 Manifest next update: Tue 10 Feb 2026 16:01:04 +0000 Files and hashes: 1: kYaHyFQkQhcMxR71MW05Y2CXCNw.crl (hash: fCpsKfmGQBTzEMwgYvLeqTbAlpkxL436o0bbk9gGRIs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/83226a-4291-4f03-9be3-89e39ac1ed81/1/kYaHyFQkQhcMxR71MW05Y2CXCNw.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/83226a-4291-4f03-9be3-89e39ac1ed81/1/kYaHyFQkQhcMxR71MW05Y2CXCNw.mft rsync://rpki.ripe.net/repository/DEFAULT/kYaHyFQkQhcMxR71MW05Y2CXCNw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:8f:e0:98:a9:7e:9f:30:ff:a7:0c:e3:0b:78:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=918687c8542442170cc51ef5316d3963609708dc Validity Not Before: Feb 9 16:01:04 2026 GMT Not After : Feb 10 16:01:04 2026 GMT Subject: CN=947b75f80d4b209745cd71c9759fdf8e10be2f06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:23:d0:64:e5:9b:9e:74:34:e5:e8:35:82:6e: ef:99:df:91:19:b7:d4:86:f1:72:7f:4f:f1:32:db: be:af:6b:5c:20:a3:79:8f:99:f2:0b:93:b2:c8:15: 5f:b1:b7:49:97:99:fc:4b:a9:84:64:9a:8c:0f:76: a7:d9:c4:67:07:a4:7f:67:55:de:61:b7:40:0e:c2: 01:48:53:2e:42:e1:26:a8:a2:30:be:c8:15:61:d6: f2:e8:39:e5:3d:a9:c3:6b:df:37:c7:e6:8e:f3:b8: a5:da:44:14:d7:59:8c:4b:f6:91:62:d4:cb:64:fd: 14:66:b8:6c:57:65:51:d1:44:f6:63:b2:46:ee:75: 63:11:aa:ee:fe:14:06:40:32:59:d7:6f:3e:7a:1b: a4:c2:a0:83:31:7c:c4:25:9a:04:d0:94:c4:c6:8d: 97:4f:3b:14:c5:4a:a8:78:11:43:e5:81:47:72:1f: 9a:a5:e6:cd:4b:c3:3b:e5:f5:83:cd:36:89:86:d1: 05:e7:14:3c:30:33:53:3d:4d:e7:b2:3f:67:1e:b2: 2f:8b:ed:c3:21:4c:20:c0:f2:43:ca:d5:52:51:9e: f7:61:a1:44:6c:ab:07:c8:70:48:52:de:90:61:50: 3c:f9:d4:70:d6:71:d3:c7:6f:26:7e:6c:b1:31:f0: 28:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:7B:75:F8:0D:4B:20:97:45:CD:71:C9:75:9F:DF:8E:10:BE:2F:06 X509v3 Authority Key Identifier: keyid:91:86:87:C8:54:24:42:17:0C:C5:1E:F5:31:6D:39:63:60:97:08:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYaHyFQkQhcMxR71MW05Y2CXCNw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/83226a-4291-4f03-9be3-89e39ac1ed81/1/kYaHyFQkQhcMxR71MW05Y2CXCNw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/83226a-4291-4f03-9be3-89e39ac1ed81/1/kYaHyFQkQhcMxR71MW05Y2CXCNw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:76:d9:16:aa:0c:b1:f7:66:8c:d3:8f:c8:31:40:c5:d0:a6: 59:54:68:ec:81:12:d6:60:bc:be:6e:88:81:73:c7:87:91:73: 13:c7:04:78:ac:ab:1b:fb:a3:d5:eb:2b:c2:92:5c:b9:5c:3d: bb:f2:5d:30:84:78:cd:4b:7e:69:8d:a2:02:da:04:70:2f:81: 47:31:5b:27:04:c6:36:b2:28:99:2e:f1:6a:58:43:a2:5e:a5: 30:fe:32:4b:e9:39:48:7c:98:1d:8b:02:29:df:94:61:94:db: 82:12:56:77:a9:75:ae:a1:3a:37:53:b5:62:26:5a:a2:d9:16: 1c:8d:c7:5b:cb:1c:fd:97:04:dd:91:29:1a:dc:32:74:a9:ea: 7e:a0:aa:92:fa:0b:27:5f:d4:77:41:b3:e1:a7:43:90:61:f8: c3:39:cf:92:df:e7:c0:0d:c3:da:21:25:ea:45:06:80:f9:c3: 8c:41:d2:4c:56:63:74:87:b5:fa:1b:e4:aa:77:ba:a7:a1:24: 1e:6f:0e:e4:73:51:68:de:c8:7d:0e:65:c5:59:6a:e1:5e:f4: 7d:25:cd:aa:e4:d4:33:fc:3a:43:4b:c1:ca:6f:7c:da:57:19: e7:20:e5:cd:93:db:df:f6:e2:4b:77:cd:16:73:5c:c8:fd:4a: 82:aa:71:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIo/gmKl+nzD/pwzjC3iQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxODY4N2M4NTQyNDQyMTcwY2M1MWVmNTMxNmQzOTYzNjA5 NzA4ZGMwHhcNMjYwMjA5MTYwMTA0WhcNMjYwMjEwMTYwMTA0WjAzMTEwLwYDVQQD Eyg5NDdiNzVmODBkNGIyMDk3NDVjZDcxYzk3NTlmZGY4ZTEwYmUyZjA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmiPQZOWbnnQ05eg1gm7vmd+RGbfU hvFyf0/xMtu+r2tcIKN5j5nyC5OyyBVfsbdJl5n8S6mEZJqMD3an2cRnB6R/Z1Xe YbdADsIBSFMuQuEmqKIwvsgVYdby6DnlPanDa983x+aO87il2kQU11mMS/aRYtTL ZP0UZrhsV2VR0UT2Y7JG7nVjEaru/hQGQDJZ128+ehukwqCDMXzEJZoE0JTExo2X TzsUxUqoeBFD5YFHch+apebNS8M75fWDzTaJhtEF5xQ8MDNTPU3nsj9nHrIvi+3D IUwgwPJDytVSUZ73YaFEbKsHyHBIUt6QYVA8+dRw1nHTx28mfmyxMfAoFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJR7dfgNSyCXRc1xyXWf344Qvi8GMB8GA1UdIwQY MBaAFJGGh8hUJEIXDMUe9TFtOWNglwjcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1lhSHlGUWtRaGNNeFI3MU1XMDVZMkNYQ053LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi84MzIyNmEtNDI5MS00ZjAzLTliZTMt ODllMzlhYzFlZDgxLzEva1lhSHlGUWtRaGNNeFI3MU1XMDVZMkNYQ053Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi84MzIyNmEtNDI5MS00ZjAzLTliZTMtODllMzlhYzFlZDgx LzEva1lhSHlGUWtRaGNNeFI3MU1XMDVZMkNYQ053LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhXbZFqoM sfdmjNOPyDFAxdCmWVRo7IES1mC8vm6IgXPHh5FzE8cEeKyrG/uj1esrwpJcuVw9 u/JdMIR4zUt+aY2iAtoEcC+BRzFbJwTGNrIomS7xalhDol6lMP4yS+k5SHyYHYsC Kd+UYZTbghJWd6l1rqE6N1O1YiZaotkWHI3HW8sc/ZcE3ZEpGtwydKnqfqCqkvoL J1/Ud0Gz4adDkGH4wznPkt/nwA3D2iEl6kUGgPnDjEHSTFZjdIe1+hvkqne6p6Ek Hm8O5HNRaN7IfQ5lxVlq4V70fSXNquTUM/w6Q0vBym982lcZ5yDlzZPb3/biS3fN FnNcyP1KgqpxGA== -----END CERTIFICATE-----Generated at Mon Feb 9 23:59:17 2026 by rpki-client