This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/e718db-2e45-4c0c-973f-dfa538428e8f/1/Kk8q-EN-cZPVeIX7Y72wPAO6Gbw.mft File: Kk8q-EN-cZPVeIX7Y72wPAO6Gbw.mft (raw, json) Hash identifier: OMRlyuBt7UaAuy8y6NPdlIp5mogHojkDjQhjHekbAk8= Subject key identifier: 2C:2B:F5:02:7A:C9:AE:B8:1F:D5:2F:8B:11:A1:38:8D:4F:B5:66:23 Authority key identifier: 2A:4F:2A:F8:43:7E:71:93:D5:78:85:FB:63:BD:B0:3C:03:BA:19:BC Certificate issuer: /CN=2a4f2af8437e7193d57885fb63bdb03c03ba19bc Certificate serial: 019C4321F4F3955BF0AA79AA869FC101ED48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kk8q-EN-cZPVeIX7Y72wPAO6Gbw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/e718db-2e45-4c0c-973f-dfa538428e8f/1/Kk8q-EN-cZPVeIX7Y72wPAO6Gbw.mft Manifest number: 10C5 Signing time: Mon 09 Feb 2026 16:00:24 +0000 Manifest this update: Mon 09 Feb 2026 16:00:24 +0000 Manifest next update: Tue 10 Feb 2026 16:00:24 +0000 Files and hashes: 1: Kk8q-EN-cZPVeIX7Y72wPAO6Gbw.crl (hash: vLMxMTqR7IZw6EcSLkLp8q2qggL9mM4RqhqRpKViXaU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/e718db-2e45-4c0c-973f-dfa538428e8f/1/Kk8q-EN-cZPVeIX7Y72wPAO6Gbw.crl rsync://rpki.ripe.net/repository/DEFAULT/7d/e718db-2e45-4c0c-973f-dfa538428e8f/1/Kk8q-EN-cZPVeIX7Y72wPAO6Gbw.mft rsync://rpki.ripe.net/repository/DEFAULT/Kk8q-EN-cZPVeIX7Y72wPAO6Gbw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:f4:f3:95:5b:f0:aa:79:aa:86:9f:c1:01:ed:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a4f2af8437e7193d57885fb63bdb03c03ba19bc Validity Not Before: Feb 9 16:00:24 2026 GMT Not After : Feb 10 16:00:24 2026 GMT Subject: CN=2c2bf5027ac9aeb81fd52f8b11a1388d4fb56623 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:73:b2:f5:a5:08:12:44:e0:e4:69:c5:8b:01: 52:d9:12:7b:64:f8:28:f9:e0:f7:29:65:c7:36:e6: d8:ea:aa:1f:df:86:15:ae:f2:54:5b:3d:8b:49:ef: 3b:87:47:6e:35:f8:a5:f3:fc:4e:4f:7c:dd:55:75: 92:d8:1b:38:8a:85:de:67:39:b2:94:fb:5b:32:e5: 93:72:96:04:6f:fc:d1:25:36:5a:50:bc:d8:5f:8b: 89:a4:2d:e0:41:1c:b2:2e:73:4f:05:2c:3a:7f:31: 48:92:5b:ae:4f:c9:00:63:64:ee:e4:64:f2:20:7d: a8:32:c1:fe:45:1e:d8:f1:c0:3f:ee:d1:af:03:2b: bd:79:99:04:c8:75:a0:8d:f0:25:53:c2:d2:52:85: 1c:7e:1a:d2:7b:52:a5:5a:f0:d3:50:72:8b:51:2c: 42:7f:30:6c:37:08:bf:f3:9a:b4:de:f9:e1:ac:ff: a7:43:7c:6b:19:58:8d:0f:3c:ca:13:c4:40:66:b9: 8f:50:08:12:ec:48:22:2e:f7:7d:c0:13:13:84:3e: da:84:53:1d:41:84:4f:32:06:67:7e:04:69:38:f0: 5d:55:4d:b0:52:70:40:92:9f:60:75:9c:c6:90:e2: 3b:5a:e1:db:09:48:6c:8e:07:32:a4:83:10:bb:87: 3d:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:2B:F5:02:7A:C9:AE:B8:1F:D5:2F:8B:11:A1:38:8D:4F:B5:66:23 X509v3 Authority Key Identifier: keyid:2A:4F:2A:F8:43:7E:71:93:D5:78:85:FB:63:BD:B0:3C:03:BA:19:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kk8q-EN-cZPVeIX7Y72wPAO6Gbw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e718db-2e45-4c0c-973f-dfa538428e8f/1/Kk8q-EN-cZPVeIX7Y72wPAO6Gbw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e718db-2e45-4c0c-973f-dfa538428e8f/1/Kk8q-EN-cZPVeIX7Y72wPAO6Gbw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:b4:e5:6b:37:0b:3f:70:0f:9c:44:80:ed:3c:5e:06:5d:21: 3b:1f:30:0d:ba:08:f2:02:48:8c:2f:5a:8c:23:a5:58:ee:cb: 1d:c3:88:4b:3e:36:e6:bc:2f:b6:ce:93:cc:80:d9:ec:f0:ef: 89:b9:de:5e:03:57:93:38:ad:bd:f3:db:81:d4:8e:c1:36:88: d7:bf:7f:1d:8b:77:55:34:8f:4b:35:7a:d7:2d:1e:ee:cf:df: 3b:68:36:ca:e8:54:f0:f8:0d:c7:4b:87:1d:91:72:d1:a3:9a: 33:af:be:47:43:79:96:f8:66:d6:8b:f1:79:92:76:98:c5:ea: 35:8e:06:3e:4d:1a:18:7e:5f:a1:3d:a4:bf:cd:70:17:0c:ab: b6:dc:fa:66:b4:e8:aa:33:64:c8:5d:33:06:c1:71:65:07:f2: 99:13:07:07:d0:ee:ee:f4:cb:e7:34:8a:fa:2d:2e:d6:81:f4: bf:5f:92:3f:f3:91:50:22:59:17:eb:e9:68:10:9b:69:8c:52: 52:f2:89:3b:1f:9a:49:04:9f:f4:f2:22:d9:2a:8f:08:8f:b2: 12:18:0f:b6:ce:2d:c8:fb:d1:6e:8a:6f:01:55:55:5c:0d:2e: bd:35:f3:a3:64:df:1a:8e:73:35:48:fe:b4:4d:ad:40:91:7b: 97:93:ec:70 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIfTzlVvwqnmqhp/BAe1IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhNGYyYWY4NDM3ZTcxOTNkNTc4ODVmYjYzYmRiMDNjMDNi YTE5YmMwHhcNMjYwMjA5MTYwMDI0WhcNMjYwMjEwMTYwMDI0WjAzMTEwLwYDVQQD EygyYzJiZjUwMjdhYzlhZWI4MWZkNTJmOGIxMWExMzg4ZDRmYjU2NjIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAznOy9aUIEkTg5GnFiwFS2RJ7ZPgo +eD3KWXHNubY6qof34YVrvJUWz2LSe87h0duNfil8/xOT3zdVXWS2Bs4ioXeZzmy lPtbMuWTcpYEb/zRJTZaULzYX4uJpC3gQRyyLnNPBSw6fzFIkluuT8kAY2Tu5GTy IH2oMsH+RR7Y8cA/7tGvAyu9eZkEyHWgjfAlU8LSUoUcfhrSe1KlWvDTUHKLUSxC fzBsNwi/85q03vnhrP+nQ3xrGViNDzzKE8RAZrmPUAgS7EgiLvd9wBMThD7ahFMd QYRPMgZnfgRpOPBdVU2wUnBAkp9gdZzGkOI7WuHbCUhsjgcypIMQu4c9vwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCwr9QJ6ya64H9UvixGhOI1PtWYjMB8GA1UdIwQY MBaAFCpPKvhDfnGT1XiF+2O9sDwDuhm8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2s4cS1FTi1jWlBWZUlYN1k3MndQQU82R2J3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9lNzE4ZGItMmU0NS00YzBjLTk3M2Yt ZGZhNTM4NDI4ZThmLzEvS2s4cS1FTi1jWlBWZUlYN1k3MndQQU82R2J3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZC9lNzE4ZGItMmU0NS00YzBjLTk3M2YtZGZhNTM4NDI4ZThm LzEvS2s4cS1FTi1jWlBWZUlYN1k3MndQQU82R2J3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW7TlazcL P3APnESA7TxeBl0hOx8wDboI8gJIjC9ajCOlWO7LHcOISz425rwvts6TzIDZ7PDv ibneXgNXkzitvfPbgdSOwTaI179/HYt3VTSPSzV61y0e7s/fO2g2yuhU8PgNx0uH HZFy0aOaM6++R0N5lvhm1ovxeZJ2mMXqNY4GPk0aGH5foT2kv81wFwyrttz6ZrTo qjNkyF0zBsFxZQfymRMHB9Du7vTL5zSK+i0u1oH0v1+SP/ORUCJZF+vpaBCbaYxS UvKJOx+aSQSf9PIi2SqPCI+yEhgPts4tyPvRbopvAVVVXA0uvTXzo2TfGo5zNUj+ tE2tQJF7l5PscA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:43:53 2026 by rpki-client