This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/597975-7117-44f6-9400-e1606be92b98/1/KdIywSew2DMQPDH7UlTsuZVrDEw.mft File: KdIywSew2DMQPDH7UlTsuZVrDEw.mft (raw, json) Hash identifier: s8fsZNPUnkW2BBCdoROM0kp/RiXW1ivrPFdrzEYsbCw= Subject key identifier: 67:16:20:8D:BB:5C:A4:6C:04:46:D5:FA:E6:EE:8D:D8:78:E5:3C:81 Authority key identifier: 29:D2:32:C1:27:B0:D8:33:10:3C:31:FB:52:54:EC:B9:95:6B:0C:4C Certificate issuer: /CN=29d232c127b0d833103c31fb5254ecb9956b0c4c Certificate serial: 019C43C755AE1D948AB0461F42325FB0DB1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdIywSew2DMQPDH7UlTsuZVrDEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/597975-7117-44f6-9400-e1606be92b98/1/KdIywSew2DMQPDH7UlTsuZVrDEw.mft Manifest number: 03BC Signing time: Mon 09 Feb 2026 19:01:02 +0000 Manifest this update: Mon 09 Feb 2026 19:01:02 +0000 Manifest next update: Tue 10 Feb 2026 19:01:02 +0000 Files and hashes: 1: KdIywSew2DMQPDH7UlTsuZVrDEw.crl (hash: sTVF3xX6k0E8ojDYNC0AJo2TSA4b/RXzxqK7TSzEdMw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/597975-7117-44f6-9400-e1606be92b98/1/KdIywSew2DMQPDH7UlTsuZVrDEw.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/597975-7117-44f6-9400-e1606be92b98/1/KdIywSew2DMQPDH7UlTsuZVrDEw.mft rsync://rpki.ripe.net/repository/DEFAULT/KdIywSew2DMQPDH7UlTsuZVrDEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:55:ae:1d:94:8a:b0:46:1f:42:32:5f:b0:db:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29d232c127b0d833103c31fb5254ecb9956b0c4c Validity Not Before: Feb 9 19:01:02 2026 GMT Not After : Feb 10 19:01:02 2026 GMT Subject: CN=6716208dbb5ca46c0446d5fae6ee8dd878e53c81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:25:40:cb:2f:79:fb:8d:00:ae:6e:be:32:09: 8a:58:4d:0b:ff:6c:92:36:d3:63:5a:e0:b8:47:ae: cb:b2:89:0b:8b:0a:bb:d7:0d:cc:1d:59:a8:e2:db: c5:43:55:96:79:d8:b5:95:c1:64:64:03:d0:8b:36: 1e:9a:27:93:d6:00:c7:b9:a6:a9:3a:0f:72:31:42: 8f:74:6d:85:bf:2d:97:e6:24:5d:9b:50:d3:8a:4a: 5f:e3:2b:d9:4f:e9:d1:ae:4c:1e:e3:11:f4:fd:96: 35:32:72:38:09:47:fa:b4:51:0d:19:b0:45:76:4b: ba:47:69:1d:cf:dd:3c:bd:c7:6c:af:7e:80:2c:07: e4:14:70:71:75:6b:b4:fc:99:25:a1:d3:8a:74:f8: b8:bc:30:55:5f:e1:06:2c:22:b5:24:f1:e4:34:5d: e7:34:38:f2:32:f7:75:bc:a3:44:11:ed:f7:21:25: b6:7e:e8:76:c7:52:c9:be:e6:78:94:68:c6:46:84: 5d:d4:e4:4e:7a:74:01:92:77:cb:88:9f:a3:76:1d: 39:61:92:b3:ab:35:06:83:7e:48:e6:b9:a3:95:dd: 37:41:40:4c:f9:1e:af:c8:8a:0c:ed:a1:8d:c5:60: 04:dd:0a:e7:9a:38:e2:03:ab:ab:c5:3d:04:9c:0d: 8a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:16:20:8D:BB:5C:A4:6C:04:46:D5:FA:E6:EE:8D:D8:78:E5:3C:81 X509v3 Authority Key Identifier: keyid:29:D2:32:C1:27:B0:D8:33:10:3C:31:FB:52:54:EC:B9:95:6B:0C:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdIywSew2DMQPDH7UlTsuZVrDEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/597975-7117-44f6-9400-e1606be92b98/1/KdIywSew2DMQPDH7UlTsuZVrDEw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/597975-7117-44f6-9400-e1606be92b98/1/KdIywSew2DMQPDH7UlTsuZVrDEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:8b:84:52:e5:e1:ca:9f:a6:41:ae:b9:ae:f8:0f:2a:af:e4: 31:13:37:c6:85:3e:1c:19:a8:31:58:e2:a0:8b:a8:db:4b:a0: c2:4d:87:81:fa:91:7e:8f:0e:10:1e:73:f1:92:f7:bc:54:42: ee:6e:75:52:b6:bc:b0:90:a5:7b:61:00:d6:65:74:6c:d9:8c: 39:d8:9f:16:3f:ab:86:b7:99:a9:13:e6:e1:78:b4:5c:39:9d: 94:13:4a:03:7e:e0:7f:06:06:c2:c5:84:5e:6d:41:fb:ee:17: 4c:cc:14:ed:d0:10:22:fc:da:cd:23:0e:7e:5c:fa:b6:4b:03: 48:15:c7:c3:db:18:4a:f5:5e:68:27:06:7e:27:2c:d0:4a:ad: f2:59:16:9b:5e:5f:d2:73:49:64:44:6a:a3:13:9c:00:b9:3a: 00:5e:4c:de:f6:b6:97:b0:60:de:58:5b:ee:7f:c2:07:02:ad: 3e:98:ce:2e:92:47:0f:8d:1f:5e:1c:3b:4d:13:b4:a7:10:24: 03:96:f4:50:92:0c:fd:a0:a4:fe:f8:79:f2:3f:b8:b4:98:2a: 8f:19:ab:28:31:19:34:94:82:ae:85:b5:12:45:bc:28:f9:18: 44:0b:15:a0:ff:21:f8:54:6b:98:a7:0c:14:8a:57:42:3c:45: 45:10:80:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDx1WuHZSKsEYfQjJfsNsbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZDIzMmMxMjdiMGQ4MzMxMDNjMzFmYjUyNTRlY2I5OTU2 YjBjNGMwHhcNMjYwMjA5MTkwMTAyWhcNMjYwMjEwMTkwMTAyWjAzMTEwLwYDVQQD Eyg2NzE2MjA4ZGJiNWNhNDZjMDQ0NmQ1ZmFlNmVlOGRkODc4ZTUzYzgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApyVAyy95+40Arm6+MgmKWE0L/2yS NtNjWuC4R67LsokLiwq71w3MHVmo4tvFQ1WWedi1lcFkZAPQizYemieT1gDHuaap Og9yMUKPdG2Fvy2X5iRdm1DTikpf4yvZT+nRrkwe4xH0/ZY1MnI4CUf6tFENGbBF dku6R2kdz908vcdsr36ALAfkFHBxdWu0/JklodOKdPi4vDBVX+EGLCK1JPHkNF3n NDjyMvd1vKNEEe33ISW2fuh2x1LJvuZ4lGjGRoRd1OROenQBknfLiJ+jdh05YZKz qzUGg35I5rmjld03QUBM+R6vyIoM7aGNxWAE3QrnmjjiA6urxT0EnA2KkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGcWII27XKRsBEbV+ubujdh45TyBMB8GA1UdIwQY MBaAFCnSMsEnsNgzEDwx+1JU7LmVawxMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2RJeXdTZXcyRE1RUERIN1VsVHN1WlZyREV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS81OTc5NzUtNzExNy00NGY2LTk0MDAt ZTE2MDZiZTkyYjk4LzEvS2RJeXdTZXcyRE1RUERIN1VsVHN1WlZyREV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS81OTc5NzUtNzExNy00NGY2LTk0MDAtZTE2MDZiZTkyYjk4 LzEvS2RJeXdTZXcyRE1RUERIN1VsVHN1WlZyREV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXYuEUuXh yp+mQa65rvgPKq/kMRM3xoU+HBmoMVjioIuo20ugwk2HgfqRfo8OEB5z8ZL3vFRC 7m51Ura8sJCle2EA1mV0bNmMOdifFj+rhreZqRPm4Xi0XDmdlBNKA37gfwYGwsWE Xm1B++4XTMwU7dAQIvzazSMOflz6tksDSBXHw9sYSvVeaCcGfics0Eqt8lkWm15f 0nNJZERqoxOcALk6AF5M3va2l7Bg3lhb7n/CBwKtPpjOLpJHD40fXhw7TRO0pxAk A5b0UJIM/aCk/vh58j+4tJgqjxmrKDEZNJSCroW1EkW8KPkYRAsVoP8h+FRrmKcM FIpXQjxFRRCA6Q== -----END CERTIFICATE-----Generated at Mon Feb 9 22:44:00 2026 by rpki-client