This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft File: ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft (raw, json) Hash identifier: fYJb6PDZYWh5sjPYpjrQut2C4WKQtwqUtBHlqNMOB6k= Subject key identifier: 83:E9:0E:32:72:0D:41:09:C6:DC:5E:0B:BF:C5:C1:7F:EF:E9:0A:97 Authority key identifier: 93:2F:B8:2B:8D:02:90:B1:CA:58:CC:7F:1B:ED:63:E4:E4:37:A0:CB Certificate issuer: /CN=932fb82b8d0290b1ca58cc7f1bed63e4e437a0cb Certificate serial: 019C41D8E4A23F32DD9770C14BECDB67A46A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ky-4K40CkLHKWMx_G-1j5OQ3oMs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft Manifest number: 0FF9 Signing time: Mon 09 Feb 2026 10:00:59 +0000 Manifest this update: Mon 09 Feb 2026 10:00:59 +0000 Manifest next update: Tue 10 Feb 2026 10:00:59 +0000 Files and hashes: 1: ky-4K40CkLHKWMx_G-1j5OQ3oMs.crl (hash: XZga6fG+zYkD9VtzEX7I3OXlm66XAKfr9SRZjiK69Yw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft rsync://rpki.ripe.net/repository/DEFAULT/ky-4K40CkLHKWMx_G-1j5OQ3oMs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:e4:a2:3f:32:dd:97:70:c1:4b:ec:db:67:a4:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=932fb82b8d0290b1ca58cc7f1bed63e4e437a0cb Validity Not Before: Feb 9 10:00:59 2026 GMT Not After : Feb 10 10:00:59 2026 GMT Subject: CN=83e90e32720d4109c6dc5e0bbfc5c17fefe90a97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:bb:20:91:f1:7d:45:ef:c9:1b:b6:73:6e:96: 23:e6:f6:b4:49:3e:32:4e:1c:9e:c5:05:12:c6:3b: 98:3b:04:15:08:2c:57:a7:4d:46:88:0d:12:ed:e3: 15:44:3a:b6:6b:c8:7a:69:4f:ac:7a:95:94:ff:62: f3:d0:c5:1e:dc:51:e6:6e:07:f4:ff:66:9c:29:b7: ea:57:38:62:5e:cd:2a:82:a3:2c:1f:cb:4b:e7:82: 20:44:f3:db:c2:0f:ac:a9:f3:b9:f6:e3:9b:c3:0a: 2c:ea:bc:87:3d:60:df:9e:f1:a8:ce:b7:5d:f9:b6: 27:13:e5:d4:ba:a8:87:75:bd:70:6f:2b:c7:8f:bb: c2:dc:db:a8:fd:c0:b3:66:58:23:2f:c8:bc:47:73: 7d:6a:2d:7f:9a:6f:04:1a:6a:d1:4f:61:56:b6:17: 40:ad:21:55:00:2a:74:40:2c:fb:5f:8b:11:b5:42: b6:68:f9:69:82:05:14:01:ca:53:2f:59:96:c7:2d: 0f:72:96:05:4b:28:61:0b:a4:28:b6:ef:0f:6a:35: 99:3f:a0:39:56:82:c1:dc:d5:68:c4:30:06:9c:d4: c4:36:8f:16:b9:4b:c1:9c:a3:7d:8f:7a:36:05:64: 6b:d5:ec:88:1b:24:f2:9a:6e:b6:b5:4f:20:b8:b4: 8e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:E9:0E:32:72:0D:41:09:C6:DC:5E:0B:BF:C5:C1:7F:EF:E9:0A:97 X509v3 Authority Key Identifier: keyid:93:2F:B8:2B:8D:02:90:B1:CA:58:CC:7F:1B:ED:63:E4:E4:37:A0:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ky-4K40CkLHKWMx_G-1j5OQ3oMs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3b3ab-53a1-48ff-a344-82d33f4bac45/1/ky-4K40CkLHKWMx_G-1j5OQ3oMs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:a1:10:6e:0e:cb:90:b9:72:b2:22:06:b6:61:d2:ba:3f:9b: 45:e3:5a:c0:0a:92:8a:7b:c6:23:63:a3:3d:a7:0c:54:9b:3b: 29:3e:99:5a:36:63:21:ef:f0:72:da:11:13:40:42:aa:4a:5f: b2:58:be:6c:c4:e3:26:04:63:e2:0e:c6:09:9f:ab:fb:76:84: fb:62:e2:e1:39:94:83:02:60:66:3f:64:dd:12:cc:9c:ec:90: 18:76:ba:62:3f:88:57:f9:fa:7f:09:6a:c0:cc:cc:c3:e5:d4: 58:e0:eb:64:3a:f9:5f:ab:54:04:42:00:d3:1e:38:5b:dd:e2: 08:be:fe:06:59:f6:de:98:8d:6b:32:ae:7f:8e:a3:72:d2:b1: 92:80:fb:08:21:ce:a4:f2:73:d9:47:d5:cb:30:4a:2d:21:99: 49:b0:94:a1:7f:7d:48:6d:a0:bb:85:59:56:65:db:b2:bd:10: 15:d3:9a:13:d6:de:d5:ee:7d:1d:93:62:33:7f:41:63:1c:6e: 3a:15:6e:3e:ad:7b:97:8b:1a:a3:2d:8f:04:97:e2:3b:ba:4a: a7:65:5f:e9:94:1c:8c:05:14:bb:53:9f:6b:70:88:47:e9:94: bf:8f:ed:7b:b3:0d:fc:7c:37:d5:5a:6f:37:25:2c:3d:ee:44: ae:a3:62:be -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2OSiPzLdl3DBS+zbZ6RqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzMmZiODJiOGQwMjkwYjFjYTU4Y2M3ZjFiZWQ2M2U0ZTQz N2EwY2IwHhcNMjYwMjA5MTAwMDU5WhcNMjYwMjEwMTAwMDU5WjAzMTEwLwYDVQQD Eyg4M2U5MGUzMjcyMGQ0MTA5YzZkYzVlMGJiZmM1YzE3ZmVmZTkwYTk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA97sgkfF9Re/JG7ZzbpYj5va0ST4y ThyexQUSxjuYOwQVCCxXp01GiA0S7eMVRDq2a8h6aU+sepWU/2Lz0MUe3FHmbgf0 /2acKbfqVzhiXs0qgqMsH8tL54IgRPPbwg+sqfO59uObwwos6ryHPWDfnvGozrdd +bYnE+XUuqiHdb1wbyvHj7vC3Nuo/cCzZlgjL8i8R3N9ai1/mm8EGmrRT2FWthdA rSFVACp0QCz7X4sRtUK2aPlpggUUAcpTL1mWxy0PcpYFSyhhC6Qotu8PajWZP6A5 VoLB3NVoxDAGnNTENo8WuUvBnKN9j3o2BWRr1eyIGyTymm62tU8guLSOJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIPpDjJyDUEJxtxeC7/FwX/v6QqXMB8GA1UdIwQY MBaAFJMvuCuNApCxyljMfxvtY+TkN6DLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3ktNEs0MENrTEhLV014X0ctMWo1T1Ezb01zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9kM2IzYWItNTNhMS00OGZmLWEzNDQt ODJkMzNmNGJhYzQ1LzEva3ktNEs0MENrTEhLV014X0ctMWo1T1Ezb01zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi9kM2IzYWItNTNhMS00OGZmLWEzNDQtODJkMzNmNGJhYzQ1 LzEva3ktNEs0MENrTEhLV014X0ctMWo1T1Ezb01zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOKEQbg7L kLlysiIGtmHSuj+bReNawAqSinvGI2OjPacMVJs7KT6ZWjZjIe/wctoRE0BCqkpf sli+bMTjJgRj4g7GCZ+r+3aE+2Li4TmUgwJgZj9k3RLMnOyQGHa6Yj+IV/n6fwlq wMzMw+XUWODrZDr5X6tUBEIA0x44W93iCL7+Bln23piNazKuf46jctKxkoD7CCHO pPJz2UfVyzBKLSGZSbCUoX99SG2gu4VZVmXbsr0QFdOaE9be1e59HZNiM39BYxxu OhVuPq17l4saoy2PBJfiO7pKp2Vf6ZQcjAUUu1Ofa3CIR+mUv4/te7MN/Hw31Vpv NyUsPe5ErqNivg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:42 2026 by rpki-client