This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft File: KYm1iRINOeoU_1OWO_IxV9Mkleo.mft (raw, json) Hash identifier: nTUn8yqEbNzOMiqzDwn8DiEtTbjR29eGJTFy17L0C6A= Subject key identifier: F9:96:0D:33:78:7B:F7:71:81:A3:7F:DC:DF:49:11:B9:88:31:54:63 Authority key identifier: 29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA Certificate issuer: /CN=2989b589120d39ea14ff53963bf23157d32495ea Certificate serial: 019C42B3EF80E4917484D70B0A116DA71F0D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 14:00:14 +0000 Manifest this update: Mon 09 Feb 2026 14:00:14 +0000 Manifest next update: Tue 10 Feb 2026 14:00:14 +0000 Files and hashes: 1: KYm1iRINOeoU_1OWO_IxV9Mkleo.crl (hash: gZZVlRXmFBGKSSexhqbdWiTKOseZuydp8KvKyFpMVxE=) 2: Np8PkRIzq2H-mfEgyXXHLw4xA2o.roa (hash: kCme1YTSTXAyOTkajeANzDG66nwpOp5PNkNgd2m+u9c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b3:ef:80:e4:91:74:84:d7:0b:0a:11:6d:a7:1f:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2989b589120d39ea14ff53963bf23157d32495ea Validity Not Before: Feb 9 14:00:14 2026 GMT Not After : Feb 10 14:00:14 2026 GMT Subject: CN=f9960d33787bf77181a37fdcdf4911b988315463 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:37:d7:9d:df:db:79:49:5b:5b:c6:3e:4b:e0: 87:3b:5d:72:36:0a:5c:40:58:f8:04:62:db:34:eb: 83:04:fe:b6:d1:01:c3:7e:40:c7:4b:0a:0c:4b:71: 70:9b:a6:0c:c8:9b:90:67:9a:9b:e8:97:25:b8:fe: c1:29:63:81:bc:ba:b8:40:af:5d:69:48:59:d6:b9: 10:75:ae:44:49:db:0a:84:cb:ef:ac:fd:ce:89:0e: be:2f:af:1a:f4:02:47:0e:17:67:7d:69:98:0a:82: 3d:40:68:39:5e:bd:5e:78:08:73:5e:1d:ad:48:0c: e2:11:e2:b6:6a:8d:ac:65:e4:f3:8e:b1:33:69:29: 2f:54:cd:40:8d:fc:b1:45:5c:fc:98:cd:b0:7e:de: ea:ed:35:e7:88:d2:7c:0c:c9:45:49:9b:3a:bb:b9: 11:47:8d:38:75:23:7f:3c:35:7b:23:96:9e:24:fd: 39:c9:09:36:80:a3:e9:cc:48:c2:48:1e:cf:19:ba: d5:6f:7e:52:f2:6a:21:f1:ff:33:dd:f5:b5:da:da: 08:28:83:a5:21:43:bf:e8:56:7c:13:25:68:53:2a: f4:fe:72:30:7f:3d:b4:9f:c9:04:ea:77:c3:0c:f8: d8:f5:fd:0a:11:b6:1c:9e:3c:bb:3c:b1:13:60:cd: 3a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:96:0D:33:78:7B:F7:71:81:A3:7F:DC:DF:49:11:B9:88:31:54:63 X509v3 Authority Key Identifier: keyid:29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:dd:84:7e:ed:20:4f:da:7d:50:b6:28:1c:69:65:0c:24:3f: c9:a8:81:52:78:a3:69:68:67:b4:01:cb:27:14:89:b1:2a:c1: c7:7d:7a:fb:60:01:ae:b6:fb:ba:68:47:17:d9:0e:eb:6d:24: 6c:24:cb:10:cc:72:87:9e:d7:c7:ba:c2:2b:de:d8:b4:46:73: 09:dd:f8:b4:0b:6b:e7:68:21:9e:37:41:2c:34:02:86:e4:3d: 74:ef:5b:3e:68:b7:c6:24:91:01:c4:56:14:8d:1a:b0:26:a6: f3:e0:04:67:dc:b1:6d:95:91:79:ec:8a:c0:27:09:fe:bd:2f: b5:03:78:bd:5e:da:81:61:6c:d4:61:eb:7b:43:9b:e7:e3:14: 9f:3d:16:0c:bd:a1:41:ca:5c:d0:a4:d9:c5:b2:42:b9:d4:2b: 23:6e:19:e8:9b:82:36:eb:f4:e2:46:86:e6:28:e1:7d:96:b2: ec:12:d0:86:1a:8d:75:49:ae:e1:0d:c0:f9:74:a3:bc:0c:4a: 1e:5d:97:8c:ac:d9:01:b5:1b:df:a7:c6:f2:80:25:5b:a6:79: 1b:a2:03:42:82:3a:d4:4f:be:bf:89:3e:e6:9f:24:31:f2:44: 00:69:aa:ca:32:e6:54:e7:86:ae:91:ac:f1:68:f5:7f:07:9f: 6d:11:10:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCs++A5JF0hNcLChFtpx8NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ODliNTg5MTIwZDM5ZWExNGZmNTM5NjNiZjIzMTU3ZDMy NDk1ZWEwHhcNMjYwMjA5MTQwMDE0WhcNMjYwMjEwMTQwMDE0WjAzMTEwLwYDVQQD EyhmOTk2MGQzMzc4N2JmNzcxODFhMzdmZGNkZjQ5MTFiOTg4MzE1NDYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzzfXnd/beUlbW8Y+S+CHO11yNgpc QFj4BGLbNOuDBP620QHDfkDHSwoMS3Fwm6YMyJuQZ5qb6JcluP7BKWOBvLq4QK9d aUhZ1rkQda5ESdsKhMvvrP3OiQ6+L68a9AJHDhdnfWmYCoI9QGg5Xr1eeAhzXh2t SAziEeK2ao2sZeTzjrEzaSkvVM1AjfyxRVz8mM2wft7q7TXniNJ8DMlFSZs6u7kR R404dSN/PDV7I5aeJP05yQk2gKPpzEjCSB7PGbrVb35S8moh8f8z3fW12toIKIOl IUO/6FZ8EyVoUyr0/nIwfz20n8kE6nfDDPjY9f0KEbYcnjy7PLETYM06FQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPmWDTN4e/dxgaN/3N9JEbmIMVRjMB8GA1UdIwQY MBaAFCmJtYkSDTnqFP9TljvyMVfTJJXqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1ltMWlSSU5PZW9VXzFPV09fSXhWOU1rbGVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9mMDgxNzAtOGQ5Mi00Y2ZhLWI3MzMt ZmJkYmU1MTRkZjVhLzEvS1ltMWlSSU5PZW9VXzFPV09fSXhWOU1rbGVvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS9mMDgxNzAtOGQ5Mi00Y2ZhLWI3MzMtZmJkYmU1MTRkZjVh LzEvS1ltMWlSSU5PZW9VXzFPV09fSXhWOU1rbGVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARt2Efu0g T9p9ULYoHGllDCQ/yaiBUnijaWhntAHLJxSJsSrBx316+2ABrrb7umhHF9kO620k bCTLEMxyh57Xx7rCK97YtEZzCd34tAtr52ghnjdBLDQChuQ9dO9bPmi3xiSRAcRW FI0asCam8+AEZ9yxbZWReeyKwCcJ/r0vtQN4vV7agWFs1GHre0Ob5+MUnz0WDL2h Qcpc0KTZxbJCudQrI24Z6JuCNuv04kaG5ijhfZay7BLQhhqNdUmu4Q3A+XSjvAxK Hl2XjKzZAbUb36fG8oAlW6Z5G6IDQoI61E++v4k+5p8kMfJEAGmqyjLmVOeGrpGs 8Wj1fwefbREQ5A== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:49 2026 by rpki-client