This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.mft File: KY60_lwZ8pLyiSTL8VVaj1do2CY.mft (raw, json) Hash identifier: 3hO2wDh2vTfMtWPvYDxJJJ130Ny58nw2bz5d9Sz9EMM= Subject key identifier: BB:24:80:CB:01:DE:F0:66:4D:B5:A8:34:E1:74:0E:B3:6F:1C:BE:78 Authority key identifier: 29:8E:B4:FE:5C:19:F2:92:F2:89:24:CB:F1:55:5A:8F:57:68:D8:26 Certificate issuer: /CN=298eb4fe5c19f292f28924cbf1555a8f5768d826 Certificate serial: 019C4321D909F4ACF8878025C7D5635E995A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KY60_lwZ8pLyiSTL8VVaj1do2CY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 16:00:17 +0000 Manifest this update: Mon 09 Feb 2026 16:00:17 +0000 Manifest next update: Tue 10 Feb 2026 16:00:17 +0000 Files and hashes: 1: KY60_lwZ8pLyiSTL8VVaj1do2CY.crl (hash: EYBddJRsorlJsnYSS7eFpFDBugYt5gFzOdxX43WjxUY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.crl rsync://rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.mft rsync://rpki.ripe.net/repository/DEFAULT/KY60_lwZ8pLyiSTL8VVaj1do2CY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:d9:09:f4:ac:f8:87:80:25:c7:d5:63:5e:99:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=298eb4fe5c19f292f28924cbf1555a8f5768d826 Validity Not Before: Feb 9 16:00:17 2026 GMT Not After : Feb 10 16:00:17 2026 GMT Subject: CN=bb2480cb01def0664db5a834e1740eb36f1cbe78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:cf:55:d9:21:a4:cd:bc:cd:45:26:10:fb:d7: 5d:26:62:78:c1:47:4f:cb:ea:f9:06:d4:28:50:ec: dd:3c:3c:17:cd:de:a4:dd:da:67:46:90:35:14:b5: 08:3c:a7:43:ab:85:ac:d8:0e:3f:1d:7a:83:cd:dd: 76:da:2a:b8:7c:61:98:14:2a:91:76:20:88:4e:b7: 78:67:2d:24:84:59:6e:c3:40:31:dd:29:b3:6e:0d: a6:79:29:b6:e9:de:9c:26:50:1f:c5:ce:4a:85:26: 89:30:03:99:17:5b:a6:f2:c3:97:0d:9d:16:e7:cf: 7a:7d:77:8d:5c:0f:a4:0b:28:f9:d4:ad:c8:19:69: 50:f3:86:cf:1c:bc:0b:89:ec:a7:6d:d6:26:5f:3b: fb:24:0e:d2:97:bd:71:73:2c:55:48:5a:7e:f9:12: 4b:0c:83:bd:58:af:a1:04:03:70:4c:3e:5b:eb:3c: 62:92:70:d8:76:e7:33:cd:64:c5:ee:f8:84:36:19: 3b:f4:34:c5:be:17:31:cd:29:f6:ad:2f:6d:60:a6: a7:42:aa:5c:66:57:9d:69:1e:42:74:40:e4:9a:15: cc:04:6f:f0:83:ac:68:07:98:54:79:8f:e3:d6:d2: 61:42:e5:31:cf:02:61:b1:1b:ff:b6:46:77:78:66: 04:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:24:80:CB:01:DE:F0:66:4D:B5:A8:34:E1:74:0E:B3:6F:1C:BE:78 X509v3 Authority Key Identifier: keyid:29:8E:B4:FE:5C:19:F2:92:F2:89:24:CB:F1:55:5A:8F:57:68:D8:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KY60_lwZ8pLyiSTL8VVaj1do2CY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:c7:cd:75:eb:6f:ac:a5:f3:2d:3e:9a:a2:32:bb:95:85:bb: 9b:54:b4:01:bd:38:3e:80:62:c2:69:79:97:3b:de:47:16:42: 6a:90:a8:1f:8e:4d:f6:d5:c5:81:dd:71:67:03:df:74:96:3b: ca:34:47:49:b7:b7:eb:f6:5d:ce:d1:16:d3:0e:68:6a:93:e7: 20:ea:6f:0a:ee:e8:4c:b3:04:bf:89:9a:88:8a:88:37:3c:d9: 39:17:b5:c9:ac:46:09:08:99:75:0f:b9:eb:0f:44:a6:b0:16: 30:59:63:0d:2c:85:ac:bd:d2:69:cf:d9:4e:46:fb:1c:42:db: 52:4f:d2:87:5c:69:fd:81:25:e1:a0:0d:1e:40:07:23:0e:89: 92:1d:3a:27:66:1a:f0:cc:86:d4:e4:ca:34:c5:58:9b:60:60: 70:7a:f2:4b:08:cf:ac:4d:fa:73:50:04:94:97:64:9a:ed:d1: d3:73:2b:76:5a:82:fd:17:bb:d0:4c:e4:f0:93:a0:62:a8:15: e0:9a:fb:85:11:7f:14:74:84:ab:79:37:47:ce:eb:8b:f8:45: d3:72:2c:e8:63:2e:d3:52:dc:2d:42:e7:f9:8c:3d:95:5a:58: d2:52:a3:2a:8b:af:45:6e:f6:3f:df:2c:ee:33:5f:e0:2f:df: 83:df:b1:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIdkJ9Kz4h4Alx9VjXplaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5OGViNGZlNWMxOWYyOTJmMjg5MjRjYmYxNTU1YThmNTc2 OGQ4MjYwHhcNMjYwMjA5MTYwMDE3WhcNMjYwMjEwMTYwMDE3WjAzMTEwLwYDVQQD EyhiYjI0ODBjYjAxZGVmMDY2NGRiNWE4MzRlMTc0MGViMzZmMWNiZTc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4s9V2SGkzbzNRSYQ+9ddJmJ4wUdP y+r5BtQoUOzdPDwXzd6k3dpnRpA1FLUIPKdDq4Ws2A4/HXqDzd122iq4fGGYFCqR diCITrd4Zy0khFluw0Ax3Smzbg2meSm26d6cJlAfxc5KhSaJMAOZF1um8sOXDZ0W 5896fXeNXA+kCyj51K3IGWlQ84bPHLwLieynbdYmXzv7JA7Sl71xcyxVSFp++RJL DIO9WK+hBANwTD5b6zxiknDYduczzWTF7viENhk79DTFvhcxzSn2rS9tYKanQqpc ZledaR5CdEDkmhXMBG/wg6xoB5hUeY/j1tJhQuUxzwJhsRv/tkZ3eGYEuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLskgMsB3vBmTbWoNOF0DrNvHL54MB8GA1UdIwQY MBaAFCmOtP5cGfKS8okky/FVWo9XaNgmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1k2MF9sd1o4cEx5aVNUTDhWVmFqMWRvMkNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi85NzExMWMtMmU2MS00MzU5LTg3NjYt NmJlZGYyZmJkY2UyLzEvS1k2MF9sd1o4cEx5aVNUTDhWVmFqMWRvMkNZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi85NzExMWMtMmU2MS00MzU5LTg3NjYtNmJlZGYyZmJkY2Uy LzEvS1k2MF9sd1o4cEx5aVNUTDhWVmFqMWRvMkNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAncfNdetv rKXzLT6aojK7lYW7m1S0Ab04PoBiwml5lzveRxZCapCoH45N9tXFgd1xZwPfdJY7 yjRHSbe36/ZdztEW0w5oapPnIOpvCu7oTLMEv4maiIqINzzZORe1yaxGCQiZdQ+5 6w9EprAWMFljDSyFrL3Sac/ZTkb7HELbUk/Sh1xp/YEl4aANHkAHIw6Jkh06J2Ya 8MyG1OTKNMVYm2BgcHrySwjPrE36c1AElJdkmu3R03MrdlqC/Re70Ezk8JOgYqgV 4Jr7hRF/FHSEq3k3R87ri/hF03Is6GMu01LcLULn+Yw9lVpY0lKjKouvRW72P98s 7jNf4C/fg9+xWQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:33 2026 by rpki-client