This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.mft File: KrmiSem1jILhRV6yM5RVsDHn3d8.mft (raw, json) Hash identifier: M7RqH1DgNtsq7DdmwR3XWVVCoW/0e9f7wIGkbZ/jr+k= Subject key identifier: C0:96:C8:11:98:09:46:8E:A7:3D:69:01:EF:CD:95:58:2F:C9:76:02 Authority key identifier: 2A:B9:A2:49:E9:B5:8C:82:E1:45:5E:B2:33:94:55:B0:31:E7:DD:DF Certificate issuer: /CN=2ab9a249e9b58c82e1455eb2339455b031e7dddf Certificate serial: 019C43908B75DE6FC8B74E22C099DE397A05 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KrmiSem1jILhRV6yM5RVsDHn3d8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 18:01:12 +0000 Manifest this update: Mon 09 Feb 2026 18:01:12 +0000 Manifest next update: Tue 10 Feb 2026 18:01:12 +0000 Files and hashes: 1: KrmiSem1jILhRV6yM5RVsDHn3d8.crl (hash: n96BWWOR9ektyMz7VC25cBfM5GKDtgefkYdl9qmEsxU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.mft rsync://rpki.ripe.net/repository/DEFAULT/KrmiSem1jILhRV6yM5RVsDHn3d8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:8b:75:de:6f:c8:b7:4e:22:c0:99:de:39:7a:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ab9a249e9b58c82e1455eb2339455b031e7dddf Validity Not Before: Feb 9 18:01:12 2026 GMT Not After : Feb 10 18:01:12 2026 GMT Subject: CN=c096c8119809468ea73d6901efcd95582fc97602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9d:2b:8b:84:8b:30:11:e7:e4:15:85:ac:ae: 42:cf:4b:0e:63:1a:48:f0:dc:fb:9b:00:66:49:ed: 03:3b:f9:5a:52:c4:34:fa:13:af:37:e1:34:41:0f: 7e:cc:c5:eb:cb:32:64:76:8b:bf:ff:85:53:ad:76: 0d:88:3a:76:a2:b6:c8:94:df:88:4a:a3:e0:a6:10: ec:83:f7:8c:19:6b:56:84:cc:60:dc:d0:c9:75:26: 64:75:c0:93:be:1c:ac:34:b3:ea:18:87:5e:fd:c2: 6e:c5:ab:32:8d:10:ca:b0:bc:43:3a:b0:51:fb:ba: 34:4f:0c:81:18:9a:be:78:95:b8:54:97:2d:f3:b1: b6:90:6a:df:65:16:da:c9:a9:7a:b8:1f:66:26:a2: 16:d5:26:2d:91:b5:51:8c:04:42:05:2b:14:45:b2: 00:d8:f3:ad:10:f4:16:5d:85:11:78:bb:3f:06:e3: 72:08:2d:b8:ce:79:90:cd:d9:4c:f8:c4:4f:98:81: 7b:82:5d:0f:f9:16:f2:a7:47:2a:3c:5e:7a:4c:52: 16:27:46:43:8a:71:3f:86:18:a5:db:72:26:fe:09: c0:eb:4f:3b:db:92:ca:f3:a1:d7:12:a7:3e:e4:e6: 5c:c0:39:7d:73:b1:cc:0c:c7:83:f6:03:f2:f1:29: 3a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:96:C8:11:98:09:46:8E:A7:3D:69:01:EF:CD:95:58:2F:C9:76:02 X509v3 Authority Key Identifier: keyid:2A:B9:A2:49:E9:B5:8C:82:E1:45:5E:B2:33:94:55:B0:31:E7:DD:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KrmiSem1jILhRV6yM5RVsDHn3d8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b7:e9:9e:4e:c4:86:b9:03:8c:ff:cb:61:ce:d5:6c:8f:b4:2c: 3d:c5:17:04:c6:f6:e3:21:a3:9a:4f:b7:be:48:cb:6b:a9:3a: b8:8f:3c:7d:60:40:b9:e3:31:c7:63:b8:6e:81:22:74:a4:c9: 4b:e5:eb:fa:bb:63:53:ad:f4:ba:87:db:32:70:40:c9:bb:91: 4e:28:20:e5:64:8d:38:25:19:5b:85:c2:fd:37:95:8b:d3:18: 48:06:82:22:9e:aa:9a:a7:98:a6:60:58:1c:59:03:03:42:70: d3:99:86:6a:03:c7:52:13:ab:0f:f7:99:43:0c:3e:b6:10:d0: b4:35:db:d7:ad:19:6f:d6:7f:79:f0:02:8d:2b:59:c8:93:18: 79:4f:44:a4:e7:a2:af:b0:1e:f4:ce:d6:76:df:69:bf:bc:06: 8a:4a:8b:aa:c5:e3:65:3a:9a:66:d6:13:08:f9:65:25:10:49: 9b:d6:b3:5b:93:a4:c3:0d:df:9b:6d:e8:f1:67:af:09:2b:44: 02:2f:af:78:ec:6c:2f:38:b0:db:e3:53:33:57:91:20:d5:5c: a4:65:b4:6b:51:02:a9:b8:aa:cc:2d:0e:cc:e9:98:5f:a5:d3: 8f:09:66:93:f5:94:0a:49:a9:a2:f5:9d:31:6f:d3:1a:63:3f: 8b:69:89:d7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkIt13m/It04iwJneOXoFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhYjlhMjQ5ZTliNThjODJlMTQ1NWViMjMzOTQ1NWIwMzFl N2RkZGYwHhcNMjYwMjA5MTgwMTEyWhcNMjYwMjEwMTgwMTEyWjAzMTEwLwYDVQQD EyhjMDk2YzgxMTk4MDk0NjhlYTczZDY5MDFlZmNkOTU1ODJmYzk3NjAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxp0ri4SLMBHn5BWFrK5Cz0sOYxpI 8Nz7mwBmSe0DO/laUsQ0+hOvN+E0QQ9+zMXryzJkdou//4VTrXYNiDp2orbIlN+I SqPgphDsg/eMGWtWhMxg3NDJdSZkdcCTvhysNLPqGIde/cJuxasyjRDKsLxDOrBR +7o0TwyBGJq+eJW4VJct87G2kGrfZRbayal6uB9mJqIW1SYtkbVRjARCBSsURbIA 2POtEPQWXYUReLs/BuNyCC24znmQzdlM+MRPmIF7gl0P+Rbyp0cqPF56TFIWJ0ZD inE/hhil23Im/gnA608725LK86HXEqc+5OZcwDl9c7HMDMeD9gPy8Sk6pwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMCWyBGYCUaOpz1pAe/NlVgvyXYCMB8GA1UdIwQY MBaAFCq5oknptYyC4UVesjOUVbAx593fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3JtaVNlbTFqSUxoUlY2eU01UlZzREhuM2Q4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi85ZWFiNmQtNmIzNS00YTVhLWFmYjEt MjUxZjIyMDkzZDA0LzEvS3JtaVNlbTFqSUxoUlY2eU01UlZzREhuM2Q4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi85ZWFiNmQtNmIzNS00YTVhLWFmYjEtMjUxZjIyMDkzZDA0 LzEvS3JtaVNlbTFqSUxoUlY2eU01UlZzREhuM2Q4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAt+meTsSG uQOM/8thztVsj7QsPcUXBMb24yGjmk+3vkjLa6k6uI88fWBAueMxx2O4boEidKTJ S+Xr+rtjU630uofbMnBAybuRTigg5WSNOCUZW4XC/TeVi9MYSAaCIp6qmqeYpmBY HFkDA0Jw05mGagPHUhOrD/eZQww+thDQtDXb160Zb9Z/efACjStZyJMYeU9EpOei r7Ae9M7Wdt9pv7wGikqLqsXjZTqaZtYTCPllJRBJm9azW5Okww3fm23o8WevCStE Ai+veOxsLziw2+NTM1eRINVcpGW0a1ECqbiqzC0OzOmYX6XTjwlmk/WUCkmpovWd MW/TGmM/i2mJ1w== -----END CERTIFICATE-----Generated at Tue Feb 10 01:36:10 2026 by rpki-client