This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/ecfafc-9115-4ec2-ae11-07f1259feb13/1/kwk3JGTFmj3Y7NYyFbAYGXBlWKY.mft File: kwk3JGTFmj3Y7NYyFbAYGXBlWKY.mft (raw, json) Hash identifier: 0sbtyacT3AbK65zyl9w5IC4y50jlYBaLED+8hADDDeI= Subject key identifier: A5:C8:40:6C:62:A9:9C:F9:F6:7E:01:D2:D3:69:F6:84:DE:60:73:D9 Authority key identifier: 93:09:37:24:64:C5:9A:3D:D8:EC:D6:32:15:B0:18:19:70:65:58:A6 Certificate issuer: /CN=9309372464c59a3dd8ecd63215b01819706558a6 Certificate serial: 019C43907D6487752C3F94520BCDF0EA5049 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kwk3JGTFmj3Y7NYyFbAYGXBlWKY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/ecfafc-9115-4ec2-ae11-07f1259feb13/1/kwk3JGTFmj3Y7NYyFbAYGXBlWKY.mft Manifest number: 083A Signing time: Mon 09 Feb 2026 18:01:08 +0000 Manifest this update: Mon 09 Feb 2026 18:01:08 +0000 Manifest next update: Tue 10 Feb 2026 18:01:08 +0000 Files and hashes: 1: kwk3JGTFmj3Y7NYyFbAYGXBlWKY.crl (hash: 3jBROJ5i1pq3u1d8R8qbI9S1tsG+1A9G68MDFivaNto=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/ecfafc-9115-4ec2-ae11-07f1259feb13/1/kwk3JGTFmj3Y7NYyFbAYGXBlWKY.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/ecfafc-9115-4ec2-ae11-07f1259feb13/1/kwk3JGTFmj3Y7NYyFbAYGXBlWKY.mft rsync://rpki.ripe.net/repository/DEFAULT/kwk3JGTFmj3Y7NYyFbAYGXBlWKY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:7d:64:87:75:2c:3f:94:52:0b:cd:f0:ea:50:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9309372464c59a3dd8ecd63215b01819706558a6 Validity Not Before: Feb 9 18:01:08 2026 GMT Not After : Feb 10 18:01:08 2026 GMT Subject: CN=a5c8406c62a99cf9f67e01d2d369f684de6073d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:a4:4c:14:f5:eb:5f:2b:7c:0d:ab:06:de:45: f9:62:10:3e:91:1b:de:b2:22:18:a5:fe:06:e6:0c: a3:10:a3:86:d4:4e:84:99:a6:be:2b:c3:44:a4:4f: d7:90:4c:0f:51:1b:ad:52:ff:34:bb:4a:dd:c7:a1: ec:5e:b1:41:2f:4f:8f:5c:ff:4d:f6:f5:06:ae:5f: 11:d0:e8:5d:b5:d8:a5:24:5d:2f:c7:b6:61:b2:fd: e0:df:d4:52:ad:16:cf:70:32:c9:df:17:67:a2:15: 0f:05:4c:88:de:c5:c0:8a:59:ac:97:d1:c8:97:48: 62:59:8b:e6:7b:c5:c8:4c:13:ea:53:0b:48:c5:53: 61:f2:d6:4c:4a:8b:e3:fd:16:dd:de:11:d4:23:fd: b0:fe:9f:03:00:a4:c0:2d:3d:59:22:3d:5c:11:4d: 41:66:79:05:6a:1d:fa:bd:6c:92:a5:bd:b4:b7:96: 3f:e5:c1:06:b8:2a:c1:c2:0b:53:f3:e2:1c:23:2d: bb:02:7b:85:f2:d0:db:8e:cd:bd:72:dd:8e:b6:71: ae:d8:26:dc:36:75:62:d6:e1:d5:32:cc:01:93:6b: 5f:37:a4:37:27:38:3f:eb:2f:59:a5:5b:21:f4:c9: 7a:b9:d6:72:6c:9d:8b:47:41:74:bf:0f:de:ed:49: 25:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:C8:40:6C:62:A9:9C:F9:F6:7E:01:D2:D3:69:F6:84:DE:60:73:D9 X509v3 Authority Key Identifier: keyid:93:09:37:24:64:C5:9A:3D:D8:EC:D6:32:15:B0:18:19:70:65:58:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwk3JGTFmj3Y7NYyFbAYGXBlWKY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/ecfafc-9115-4ec2-ae11-07f1259feb13/1/kwk3JGTFmj3Y7NYyFbAYGXBlWKY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/ecfafc-9115-4ec2-ae11-07f1259feb13/1/kwk3JGTFmj3Y7NYyFbAYGXBlWKY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:cd:d8:d7:e8:d5:c2:64:47:e5:11:8c:71:a6:90:75:46:24: 83:b4:14:4a:19:08:11:77:63:71:84:21:39:5c:de:85:0a:20: d9:d6:ec:6a:a5:df:3e:02:56:d0:1a:72:80:c7:21:47:6a:f2: da:97:33:72:df:16:c3:c6:b9:26:cc:19:48:79:cd:d0:7e:15: 5b:3a:1a:b6:1c:61:9b:64:c0:9e:4f:d3:ba:f2:e6:73:f8:ad: c4:3e:22:6f:50:de:eb:d0:32:2b:a0:43:88:af:ad:1e:c6:9f: 4d:f8:a9:54:87:e4:cc:ee:31:77:29:04:66:f9:ef:ea:6d:0a: eb:e5:7a:59:21:70:45:a9:c6:fc:25:06:2a:4d:d6:62:16:71: a0:90:89:f3:60:10:7d:59:f9:8e:82:2b:6e:30:3c:c9:ec:7f: ee:0f:c6:72:37:2e:7f:0b:f2:64:32:4f:18:8e:4a:c6:36:e4: 83:a7:f6:24:ce:19:48:7d:91:32:82:c7:a0:3d:25:ff:dd:33: 34:13:4e:3e:44:02:67:4f:55:a0:7a:95:6d:f7:a8:59:30:a3: 85:ce:2f:1c:73:76:48:f6:04:ae:37:48:37:84:58:e4:fc:ec: f9:d9:50:83:7b:22:b6:77:b8:09:6b:a8:7c:21:52:11:09:1c: 1f:10:a1:98 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkH1kh3UsP5RSC83w6lBJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzMDkzNzI0NjRjNTlhM2RkOGVjZDYzMjE1YjAxODE5NzA2 NTU4YTYwHhcNMjYwMjA5MTgwMTA4WhcNMjYwMjEwMTgwMTA4WjAzMTEwLwYDVQQD EyhhNWM4NDA2YzYyYTk5Y2Y5ZjY3ZTAxZDJkMzY5ZjY4NGRlNjA3M2Q5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA66RMFPXrXyt8DasG3kX5YhA+kRve siIYpf4G5gyjEKOG1E6Emaa+K8NEpE/XkEwPURutUv80u0rdx6HsXrFBL0+PXP9N 9vUGrl8R0OhdtdilJF0vx7Zhsv3g39RSrRbPcDLJ3xdnohUPBUyI3sXAilmsl9HI l0hiWYvme8XITBPqUwtIxVNh8tZMSovj/Rbd3hHUI/2w/p8DAKTALT1ZIj1cEU1B ZnkFah36vWySpb20t5Y/5cEGuCrBwgtT8+IcIy27AnuF8tDbjs29ct2OtnGu2Cbc NnVi1uHVMswBk2tfN6Q3Jzg/6y9ZpVsh9Ml6udZybJ2LR0F0vw/e7UklnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKXIQGxiqZz59n4B0tNp9oTeYHPZMB8GA1UdIwQY MBaAFJMJNyRkxZo92OzWMhWwGBlwZVimMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3drM0pHVEZtajNZN05ZeUZiQVlHWEJsV0tZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9lY2ZhZmMtOTExNS00ZWMyLWFlMTEt MDdmMTI1OWZlYjEzLzEva3drM0pHVEZtajNZN05ZeUZiQVlHWEJsV0tZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy9lY2ZhZmMtOTExNS00ZWMyLWFlMTEtMDdmMTI1OWZlYjEz LzEva3drM0pHVEZtajNZN05ZeUZiQVlHWEJsV0tZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbs3Y1+jV wmRH5RGMcaaQdUYkg7QUShkIEXdjcYQhOVzehQog2dbsaqXfPgJW0BpygMchR2ry 2pczct8Ww8a5JswZSHnN0H4VWzoathxhm2TAnk/TuvLmc/itxD4ib1De69AyK6BD iK+tHsafTfipVIfkzO4xdykEZvnv6m0K6+V6WSFwRanG/CUGKk3WYhZxoJCJ82AQ fVn5joIrbjA8yex/7g/GcjcufwvyZDJPGI5Kxjbkg6f2JM4ZSH2RMoLHoD0l/90z NBNOPkQCZ09VoHqVbfeoWTCjhc4vHHN2SPYErjdIN4RY5Pzs+dlQg3sitne4CWuo fCFSEQkcHxChmA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:07 2026 by rpki-client