This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.mft File: kyIxLx0huzs4bKOqlzrGzSVLcDk.mft (raw, json) Hash identifier: vCM2cbKW4T8LX4jpBrz0qu8ilJ86WMmWTQSHXusUAHM= Subject key identifier: D8:BA:41:5F:39:A8:4E:37:A9:5F:81:77:8C:24:C5:F0:7C:E6:7A:75 Authority key identifier: 93:22:31:2F:1D:21:BB:3B:38:6C:A3:AA:97:3A:C6:CD:25:4B:70:39 Certificate issuer: /CN=9322312f1d21bb3b386ca3aa973ac6cd254b7039 Certificate serial: 019C41D863273E032E05F438ACBAD4FF3BE2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kyIxLx0huzs4bKOqlzrGzSVLcDk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.mft Manifest number: 180B Signing time: Mon 09 Feb 2026 10:00:25 +0000 Manifest this update: Mon 09 Feb 2026 10:00:25 +0000 Manifest next update: Tue 10 Feb 2026 10:00:25 +0000 Files and hashes: 1: kyIxLx0huzs4bKOqlzrGzSVLcDk.crl (hash: skGhPyLA21Tx7Dd2iJiN6XAqYFv9JadNGO9IcVGsCjc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.mft rsync://rpki.ripe.net/repository/DEFAULT/kyIxLx0huzs4bKOqlzrGzSVLcDk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:63:27:3e:03:2e:05:f4:38:ac:ba:d4:ff:3b:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9322312f1d21bb3b386ca3aa973ac6cd254b7039 Validity Not Before: Feb 9 10:00:25 2026 GMT Not After : Feb 10 10:00:25 2026 GMT Subject: CN=d8ba415f39a84e37a95f81778c24c5f07ce67a75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:bc:5e:e1:4f:f4:eb:63:cf:72:d7:c6:34:88: f4:bb:1d:57:4a:58:be:a7:ce:e1:0e:89:0d:7d:d1: f0:86:a6:7e:93:f4:0a:22:1d:cc:f8:4e:3a:23:cc: 6d:17:63:74:ef:cc:b3:de:81:45:46:d9:10:e7:6e: e4:cd:21:ec:2b:c1:3c:e5:2d:04:ec:b9:ee:0e:8f: de:71:c0:1b:54:9a:33:31:89:ab:fa:d6:b9:13:99: 47:d0:92:dc:cd:c4:48:e9:04:cc:e2:20:62:2a:4a: 14:97:8b:4f:25:d6:07:0d:ae:7a:32:14:d6:24:2a: 30:9e:8f:ea:4e:41:1f:54:11:17:ff:e4:6c:dd:48: 67:9b:54:e3:ca:06:eb:39:1c:7f:ff:6f:f8:db:f0: 93:fb:88:10:08:d6:1a:80:b9:7b:24:ea:39:e8:8a: 9b:78:51:23:5b:14:52:74:a6:ff:66:5d:03:90:51: 3b:7e:49:40:75:4e:60:c8:80:33:58:09:f6:0d:5c: c3:30:c6:3f:bd:14:4e:44:39:3c:5a:e9:3c:93:ee: 53:67:f5:58:c1:82:e6:37:77:28:3d:35:3a:07:e4: ee:a9:76:dd:13:f6:cb:52:79:e4:b9:1a:c7:a1:94: ee:e5:b7:ac:13:3e:cc:c5:5b:9c:98:82:de:8c:c7: 50:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:BA:41:5F:39:A8:4E:37:A9:5F:81:77:8C:24:C5:F0:7C:E6:7A:75 X509v3 Authority Key Identifier: keyid:93:22:31:2F:1D:21:BB:3B:38:6C:A3:AA:97:3A:C6:CD:25:4B:70:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kyIxLx0huzs4bKOqlzrGzSVLcDk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:f2:71:4c:1c:1d:dc:ae:f7:a3:75:16:ab:bf:04:d1:1b:88: 2f:d1:a0:56:dc:80:7c:33:ee:53:de:94:53:e6:0a:94:2d:81: ee:dc:47:9a:0c:6f:67:15:0a:8d:9b:40:15:e6:b7:c9:0a:51: be:c7:ba:04:62:f3:37:11:3d:be:6d:1a:1c:45:76:43:c9:ab: 80:2d:30:bc:93:31:d9:6f:ae:dd:d9:0b:39:4e:3a:64:bf:ba: db:98:85:8e:f9:19:f7:78:d5:dc:60:9a:5c:2b:f7:9f:a5:c4: d3:6b:b6:8e:5c:68:9d:d9:f0:cb:5d:9d:95:eb:da:e2:ae:e1: e8:7b:58:85:4d:38:35:54:6c:19:2d:b4:e6:f6:48:00:1b:76: 61:d2:02:16:4d:1d:64:6c:a8:39:af:bd:74:eb:81:7e:7d:b3: 22:2c:64:c6:11:27:64:66:f2:63:17:43:f9:97:c4:65:31:7d: bb:c4:61:74:64:b1:7a:1b:d8:a6:0e:0e:66:45:5c:51:5a:a8: c2:f5:88:59:71:ed:4c:ba:ec:53:26:f6:ad:71:67:c9:04:49: 1d:58:9c:cf:5f:cc:22:f4:1c:33:80:1e:be:dd:df:6c:16:fe: f1:c8:cd:ba:fe:ab:ee:97:69:b4:7e:8b:ed:48:d0:23:7e:b8: bd:73:a7:7e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2GMnPgMuBfQ4rLrU/zviMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzMjIzMTJmMWQyMWJiM2IzODZjYTNhYTk3M2FjNmNkMjU0 YjcwMzkwHhcNMjYwMjA5MTAwMDI1WhcNMjYwMjEwMTAwMDI1WjAzMTEwLwYDVQQD EyhkOGJhNDE1ZjM5YTg0ZTM3YTk1ZjgxNzc4YzI0YzVmMDdjZTY3YTc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4rxe4U/062PPctfGNIj0ux1XSli+ p87hDokNfdHwhqZ+k/QKIh3M+E46I8xtF2N078yz3oFFRtkQ527kzSHsK8E85S0E 7LnuDo/eccAbVJozMYmr+ta5E5lH0JLczcRI6QTM4iBiKkoUl4tPJdYHDa56MhTW JCowno/qTkEfVBEX/+Rs3Uhnm1TjygbrORx//2/42/CT+4gQCNYagLl7JOo56Iqb eFEjWxRSdKb/Zl0DkFE7fklAdU5gyIAzWAn2DVzDMMY/vRRORDk8Wuk8k+5TZ/VY wYLmN3coPTU6B+TuqXbdE/bLUnnkuRrHoZTu5besEz7MxVucmILejMdQyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNi6QV85qE43qV+Bd4wkxfB85np1MB8GA1UdIwQY MBaAFJMiMS8dIbs7OGyjqpc6xs0lS3A5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3lJeEx4MGh1enM0YktPcWx6ckd6U1ZMY0RrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC82OTVkNzEtYmJhMS00MjVkLWI5ZjMt YzI2Nzc4MDliNGE3LzEva3lJeEx4MGh1enM0YktPcWx6ckd6U1ZMY0RrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC82OTVkNzEtYmJhMS00MjVkLWI5ZjMtYzI2Nzc4MDliNGE3 LzEva3lJeEx4MGh1enM0YktPcWx6ckd6U1ZMY0RrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV/JxTBwd 3K73o3UWq78E0RuIL9GgVtyAfDPuU96UU+YKlC2B7txHmgxvZxUKjZtAFea3yQpR vse6BGLzNxE9vm0aHEV2Q8mrgC0wvJMx2W+u3dkLOU46ZL+625iFjvkZ93jV3GCa XCv3n6XE02u2jlxondnwy12dleva4q7h6HtYhU04NVRsGS205vZIABt2YdICFk0d ZGyoOa+9dOuBfn2zIixkxhEnZGbyYxdD+ZfEZTF9u8RhdGSxehvYpg4OZkVcUVqo wvWIWXHtTLrsUyb2rXFnyQRJHVicz1/MIvQcM4Aevt3fbBb+8cjNuv6r7pdptH6L 7UjQI364vXOnfg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:26 2026 by rpki-client