This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/35049e-223d-4908-9754-38bac139c844/1/KipfTZdgeKzXSVfxcoF-zRnQJQI.mft File: KipfTZdgeKzXSVfxcoF-zRnQJQI.mft (raw, json) Hash identifier: Zj3racPWUpTaxH5OKl1Vg5oplRi98NBMz89mtAKO3iI= Subject key identifier: 2E:21:56:6A:D7:85:53:CA:24:1E:09:96:54:2F:51:93:EF:E7:F3:3F Authority key identifier: 2A:2A:5F:4D:97:60:78:AC:D7:49:57:F1:72:81:7E:CD:19:D0:25:02 Certificate issuer: /CN=2a2a5f4d976078acd74957f172817ecd19d02502 Certificate serial: 019C420F30DB358E6805E2D9E6AB6F010542 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KipfTZdgeKzXSVfxcoF-zRnQJQI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/35049e-223d-4908-9754-38bac139c844/1/KipfTZdgeKzXSVfxcoF-zRnQJQI.mft Manifest number: 01A7 Signing time: Mon 09 Feb 2026 11:00:17 +0000 Manifest this update: Mon 09 Feb 2026 11:00:17 +0000 Manifest next update: Tue 10 Feb 2026 11:00:17 +0000 Files and hashes: 1: KipfTZdgeKzXSVfxcoF-zRnQJQI.crl (hash: LBAhF3JoImXUpl3tBh1TipoO56zOVFSVYcrXYDXuZ9w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/35049e-223d-4908-9754-38bac139c844/1/KipfTZdgeKzXSVfxcoF-zRnQJQI.crl rsync://rpki.ripe.net/repository/DEFAULT/65/35049e-223d-4908-9754-38bac139c844/1/KipfTZdgeKzXSVfxcoF-zRnQJQI.mft rsync://rpki.ripe.net/repository/DEFAULT/KipfTZdgeKzXSVfxcoF-zRnQJQI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:30:db:35:8e:68:05:e2:d9:e6:ab:6f:01:05:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a2a5f4d976078acd74957f172817ecd19d02502 Validity Not Before: Feb 9 11:00:17 2026 GMT Not After : Feb 10 11:00:17 2026 GMT Subject: CN=2e21566ad78553ca241e0996542f5193efe7f33f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7d:83:dc:ab:71:b5:36:20:6c:a5:91:51:8e: 1f:48:30:5e:e6:04:b7:6c:e3:8b:cd:6c:73:20:01: b4:6a:cb:20:bb:a5:e4:94:b6:f3:b5:5e:46:64:e7: ef:a4:11:09:46:ca:5a:2c:9d:c1:6b:80:c4:ca:27: a2:66:c8:3f:7f:27:4d:c6:3f:a3:c1:40:61:13:98: 31:2d:30:a8:c9:8f:63:59:5c:67:c9:f0:5b:33:f1: 92:d5:de:25:62:a8:1c:7b:b7:3c:a2:00:64:1e:d8: 0f:18:65:cf:9d:8b:46:cf:9a:29:7b:13:2d:b8:44: 34:6b:ba:f0:e8:57:f3:32:30:2f:cc:e7:a7:44:9e: 01:56:70:38:b6:c1:8b:a3:36:a0:e1:1c:4d:98:57: ae:7a:30:5e:2c:69:ee:aa:68:98:bf:b5:f8:80:76: 44:57:45:3b:92:17:4c:1a:92:19:d7:f4:21:d5:ef: 76:e5:53:a5:81:6c:1c:f3:e9:52:d6:03:0a:d3:53: cf:63:71:9c:5c:56:7a:d3:c5:30:14:c0:40:b4:68: b4:10:a1:db:ea:7b:34:64:7e:24:ef:fa:d1:95:fa: ae:1f:60:ef:9e:86:d8:21:60:e0:ed:8e:9f:f5:ee: 41:e1:58:89:7f:3d:3b:b4:e0:74:d8:7f:a1:1b:68: 31:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:21:56:6A:D7:85:53:CA:24:1E:09:96:54:2F:51:93:EF:E7:F3:3F X509v3 Authority Key Identifier: keyid:2A:2A:5F:4D:97:60:78:AC:D7:49:57:F1:72:81:7E:CD:19:D0:25:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KipfTZdgeKzXSVfxcoF-zRnQJQI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/35049e-223d-4908-9754-38bac139c844/1/KipfTZdgeKzXSVfxcoF-zRnQJQI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/35049e-223d-4908-9754-38bac139c844/1/KipfTZdgeKzXSVfxcoF-zRnQJQI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:09:00:04:fa:5f:c3:d0:5f:9a:eb:ac:25:30:55:8c:06:28: 49:22:06:c0:6c:0d:57:50:b6:a1:c7:87:d2:9a:82:94:06:4b: 8c:7e:d7:10:49:77:5a:07:a2:87:3e:26:be:bd:a7:0a:04:48: 39:7e:f8:08:a4:7a:5e:89:53:b3:9d:13:b9:92:a4:ec:4f:1f: 5b:22:3b:e7:a2:ce:20:79:4f:2b:e2:08:fe:b4:83:13:33:58: 3d:8d:41:8c:89:d8:cb:af:85:48:3b:e8:0d:8f:2e:e8:0b:32: 2b:e2:10:33:f8:2f:f3:5a:ba:37:22:7f:cd:5c:e3:de:a9:93: bd:64:dc:8c:d2:9b:76:45:04:a6:68:55:54:05:57:8c:d6:2c: f8:b5:9d:1e:53:fb:1d:52:c7:06:07:09:bf:5d:a2:6e:ce:dc: 38:6c:04:55:7a:12:f0:af:d7:5b:b4:09:21:ed:2d:74:5e:90: 91:45:42:dc:6b:f9:ba:79:e5:ee:14:c6:b1:08:79:93:9c:ae: 21:ae:60:bd:bb:4e:09:7d:28:48:91:7e:7a:2a:7e:05:f9:b3: 7c:2f:2b:86:d0:c7:d6:5e:b6:b0:f9:81:e9:9e:d6:cb:d4:44: 9c:69:ed:f0:24:3c:e2:b9:d3:20:ec:2d:e1:7e:ae:5a:6c:64: 23:dc:07:bc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCDzDbNY5oBeLZ5qtvAQVCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhMmE1ZjRkOTc2MDc4YWNkNzQ5NTdmMTcyODE3ZWNkMTlk MDI1MDIwHhcNMjYwMjA5MTEwMDE3WhcNMjYwMjEwMTEwMDE3WjAzMTEwLwYDVQQD EygyZTIxNTY2YWQ3ODU1M2NhMjQxZTA5OTY1NDJmNTE5M2VmZTdmMzNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu32D3KtxtTYgbKWRUY4fSDBe5gS3 bOOLzWxzIAG0assgu6XklLbztV5GZOfvpBEJRspaLJ3Ba4DEyieiZsg/fydNxj+j wUBhE5gxLTCoyY9jWVxnyfBbM/GS1d4lYqgce7c8ogBkHtgPGGXPnYtGz5opexMt uEQ0a7rw6FfzMjAvzOenRJ4BVnA4tsGLozag4RxNmFeuejBeLGnuqmiYv7X4gHZE V0U7khdMGpIZ1/Qh1e925VOlgWwc8+lS1gMK01PPY3GcXFZ608UwFMBAtGi0EKHb 6ns0ZH4k7/rRlfquH2DvnobYIWDg7Y6f9e5B4ViJfz07tOB02H+hG2gxWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC4hVmrXhVPKJB4JllQvUZPv5/M/MB8GA1UdIwQY MBaAFCoqX02XYHis10lX8XKBfs0Z0CUCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2lwZlRaZGdlS3pYU1ZmeGNvRi16Um5RSlFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8zNTA0OWUtMjIzZC00OTA4LTk3NTQt MzhiYWMxMzljODQ0LzEvS2lwZlRaZGdlS3pYU1ZmeGNvRi16Um5RSlFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS8zNTA0OWUtMjIzZC00OTA4LTk3NTQtMzhiYWMxMzljODQ0 LzEvS2lwZlRaZGdlS3pYU1ZmeGNvRi16Um5RSlFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAegkABPpf w9BfmuusJTBVjAYoSSIGwGwNV1C2oceH0pqClAZLjH7XEEl3Wgeihz4mvr2nCgRI OX74CKR6XolTs50TuZKk7E8fWyI756LOIHlPK+II/rSDEzNYPY1BjInYy6+FSDvo DY8u6AsyK+IQM/gv81q6NyJ/zVzj3qmTvWTcjNKbdkUEpmhVVAVXjNYs+LWdHlP7 HVLHBgcJv12ibs7cOGwEVXoS8K/XW7QJIe0tdF6QkUVC3Gv5unnl7hTGsQh5k5yu Ia5gvbtOCX0oSJF+eip+BfmzfC8rhtDH1l62sPmB6Z7Wy9REnGnt8CQ84rnTIOwt 4X6uWmxkI9wHvA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:18 2026 by rpki-client