This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft File: kjlpG6eScAY69DZNMIYxNl6QEWo.mft (raw, json) Hash identifier: El/5kT9ZGoAGZRKtImd+1tf8hYdc+G8jr2/N1InaVrI= Subject key identifier: A4:95:D7:91:67:23:17:D7:46:64:B1:06:F0:6B:08:96:BE:C9:C4:DE Authority key identifier: 92:39:69:1B:A7:92:70:06:3A:F4:36:4D:30:86:31:36:5E:90:11:6A Certificate issuer: /CN=9239691ba79270063af4364d308631365e90116a Certificate serial: 019C43FDAE84E80A763F0142A157F0D3B03A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kjlpG6eScAY69DZNMIYxNl6QEWo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft Manifest number: 0F6A Signing time: Mon 09 Feb 2026 20:00:24 +0000 Manifest this update: Mon 09 Feb 2026 20:00:24 +0000 Manifest next update: Tue 10 Feb 2026 20:00:24 +0000 Files and hashes: 1: kjlpG6eScAY69DZNMIYxNl6QEWo.crl (hash: noxjoOo3CdIBrVVY65LFNdSexphU5hlAvxp17mqnBl8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.crl rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft rsync://rpki.ripe.net/repository/DEFAULT/kjlpG6eScAY69DZNMIYxNl6QEWo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:ae:84:e8:0a:76:3f:01:42:a1:57:f0:d3:b0:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9239691ba79270063af4364d308631365e90116a Validity Not Before: Feb 9 20:00:24 2026 GMT Not After : Feb 10 20:00:24 2026 GMT Subject: CN=a495d791672317d74664b106f06b0896bec9c4de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:96:82:c6:37:c6:2d:c8:01:25:09:a1:e7:0f: cb:ff:ce:1f:17:5a:1b:c7:dd:1d:e3:be:5c:96:4c: ca:57:d3:25:3a:82:39:37:a1:16:85:44:de:06:12: 46:53:03:eb:71:33:35:e2:3c:19:79:d8:a0:16:76: e9:b1:03:17:6c:8b:17:78:27:ff:70:11:85:08:77: f1:a2:fd:c1:18:c5:8e:17:f2:02:c2:7b:a5:cb:31: bf:d6:07:ba:9a:f4:ef:aa:41:05:31:2e:bc:1b:d3: 9b:e4:0a:b0:bc:c8:f4:60:e3:de:32:22:de:78:46: 43:0f:81:52:63:98:10:0f:26:72:03:1a:37:37:59: 50:3a:a3:8f:ae:cb:6e:eb:da:1f:9a:2e:81:76:d4: 9c:7d:af:98:e7:ee:a9:e0:ad:02:f8:9d:f8:ff:b2: 60:70:13:71:e2:25:64:c1:58:f0:e0:55:61:5e:5e: a3:15:39:eb:d5:d9:49:f3:e8:df:26:09:8a:ae:f2: 4a:f5:46:52:0e:9a:c4:58:e0:44:49:ae:fd:5e:9d: cb:85:29:2f:be:1a:f0:1c:6e:9d:3b:1a:9a:6c:8f: f0:03:7d:23:21:ac:a2:b1:ec:c1:44:02:aa:85:d8: cf:a5:80:ab:f4:7b:80:95:71:12:88:7b:03:8a:7e: 86:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:95:D7:91:67:23:17:D7:46:64:B1:06:F0:6B:08:96:BE:C9:C4:DE X509v3 Authority Key Identifier: keyid:92:39:69:1B:A7:92:70:06:3A:F4:36:4D:30:86:31:36:5E:90:11:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kjlpG6eScAY69DZNMIYxNl6QEWo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:8b:ff:67:93:36:bf:81:42:b7:21:d8:8d:64:81:cf:fb:a5: b3:c6:61:23:76:bd:d4:f3:80:be:34:ce:db:c3:a1:07:b5:0c: cd:c8:71:f9:99:ea:44:aa:07:30:21:8b:9f:d6:b9:ca:1f:c2: 63:22:58:fd:9e:d8:44:e3:35:fd:16:4b:46:ff:9c:00:43:71: 9b:bd:83:13:54:65:6d:c2:94:16:0a:68:57:f1:88:01:79:68: fe:57:c9:a2:18:b1:16:77:27:02:f6:27:68:84:11:dd:e7:e5: 41:de:7c:3b:e0:3e:1b:fc:67:87:0b:c9:1a:54:bf:54:56:dc: c0:f6:9b:14:68:18:1b:4c:46:6f:29:6c:2b:53:0f:05:e3:8f: a4:9d:a9:0d:5b:f9:98:8d:28:a4:36:f4:68:33:ec:61:61:d5: ee:23:0a:21:75:8f:24:24:e1:d6:38:78:dd:52:59:5b:5b:a6: 4f:8a:77:27:22:2f:3d:2c:f0:2f:ae:86:53:4a:5e:ad:5a:40: 18:52:54:3c:32:3b:35:cb:53:34:ff:1f:89:a8:3f:3a:fd:cf: 8a:f0:61:7e:fd:c6:b3:98:ea:86:9d:2f:64:bd:7d:32:75:27: 54:5d:59:29:1e:ae:28:9e:3e:fc:e6:6d:ef:1b:12:f6:b5:1b: a6:6d:72:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/a6E6Ap2PwFCoVfw07A6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMzk2OTFiYTc5MjcwMDYzYWY0MzY0ZDMwODYzMTM2NWU5 MDExNmEwHhcNMjYwMjA5MjAwMDI0WhcNMjYwMjEwMjAwMDI0WjAzMTEwLwYDVQQD EyhhNDk1ZDc5MTY3MjMxN2Q3NDY2NGIxMDZmMDZiMDg5NmJlYzljNGRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq5aCxjfGLcgBJQmh5w/L/84fF1ob x90d475clkzKV9MlOoI5N6EWhUTeBhJGUwPrcTM14jwZedigFnbpsQMXbIsXeCf/ cBGFCHfxov3BGMWOF/ICwnulyzG/1ge6mvTvqkEFMS68G9Ob5AqwvMj0YOPeMiLe eEZDD4FSY5gQDyZyAxo3N1lQOqOPrstu69ofmi6BdtScfa+Y5+6p4K0C+J34/7Jg cBNx4iVkwVjw4FVhXl6jFTnr1dlJ8+jfJgmKrvJK9UZSDprEWOBESa79Xp3LhSkv vhrwHG6dOxqabI/wA30jIayisezBRAKqhdjPpYCr9HuAlXESiHsDin6GLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKSV15FnIxfXRmSxBvBrCJa+ycTeMB8GA1UdIwQY MBaAFJI5aRunknAGOvQ2TTCGMTZekBFqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2pscEc2ZVNjQVk2OURaTk1JWXhObDZRRVdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC84NmJkMDktMzJiMC00OTRjLTk3NTUt ZjE3OTJiZDc3YTUzLzEva2pscEc2ZVNjQVk2OURaTk1JWXhObDZRRVdvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC84NmJkMDktMzJiMC00OTRjLTk3NTUtZjE3OTJiZDc3YTUz LzEva2pscEc2ZVNjQVk2OURaTk1JWXhObDZRRVdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB4v/Z5M2 v4FCtyHYjWSBz/uls8ZhI3a91POAvjTO28OhB7UMzchx+ZnqRKoHMCGLn9a5yh/C YyJY/Z7YROM1/RZLRv+cAENxm72DE1RlbcKUFgpoV/GIAXlo/lfJohixFncnAvYn aIQR3eflQd58O+A+G/xnhwvJGlS/VFbcwPabFGgYG0xGbylsK1MPBeOPpJ2pDVv5 mI0opDb0aDPsYWHV7iMKIXWPJCTh1jh43VJZW1umT4p3JyIvPSzwL66GU0perVpA GFJUPDI7NctTNP8fiag/Ov3PivBhfv3Gs5jqhp0vZL19MnUnVF1ZKR6uKJ4+/OZt 7xsS9rUbpm1yRg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:46:32 2026 by rpki-client