This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft File: KIBHSpYWHd4pQs-58YVsL_yICQQ.mft (raw, json) Hash identifier: NhnM2HoqB2bGihWXIOHlwP7SFRWmZCospqJ2yti+ACM= Subject key identifier: 33:5B:47:F1:93:B9:39:10:23:8D:FF:FA:8D:9D:CF:53:36:D4:2F:E9 Authority key identifier: 28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04 Certificate issuer: /CN=2880474a96161dde2942cfb9f1856c2ffc880904 Certificate serial: 019C44D9C1CA622B238EA1BB8E136B7317FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft Manifest number: 03CF Signing time: Tue 10 Feb 2026 00:00:47 +0000 Manifest this update: Tue 10 Feb 2026 00:00:47 +0000 Manifest next update: Wed 11 Feb 2026 00:00:47 +0000 Files and hashes: 1: KIBHSpYWHd4pQs-58YVsL_yICQQ.crl (hash: vSK90Hkbr00fGVjSj7maze52EAUo3/eysQVbDXQyCpk=) 2: p5OtBuJ_H7AvfUmYp0Nby5w6BSc.roa (hash: oRePnKuJGEJuRAGyqz3spXqznhrS2YOXLr+XXfpc3VY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:d9:c1:ca:62:2b:23:8e:a1:bb:8e:13:6b:73:17:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2880474a96161dde2942cfb9f1856c2ffc880904 Validity Not Before: Feb 10 00:00:47 2026 GMT Not After : Feb 11 00:00:47 2026 GMT Subject: CN=335b47f193b93910238dfffa8d9dcf5336d42fe9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:cf:2d:8f:8d:9f:85:b7:c5:4f:8b:d4:9a:d4: 15:b5:9e:b5:95:b8:42:bc:c4:b7:0d:69:84:ce:7e: 87:a3:94:7a:e1:af:3c:e0:97:10:24:6c:3e:b8:6f: 1b:96:f8:ad:4c:33:7e:a5:b5:e8:85:11:46:07:fa: be:c2:3c:cc:69:cb:35:ef:4e:c8:b6:f0:d3:ba:4f: f8:33:5d:34:e0:82:88:d8:93:cb:4c:0b:04:9e:6c: 68:07:2e:16:d2:85:8f:d6:e3:ea:fe:52:98:2a:61: f7:c3:27:ef:34:9c:0d:c6:d0:f9:c1:33:80:64:d4: c7:30:5e:da:3a:47:63:41:10:49:00:d8:20:95:0d: 4e:31:78:c4:bb:ab:c8:68:b1:27:85:d9:e6:a4:db: 1e:cf:19:15:17:5f:47:93:d5:f0:04:d9:37:00:fe: 70:48:f5:15:c0:19:0e:88:a2:6f:ef:75:b3:06:77: 0e:06:72:a8:03:a7:34:a1:38:a0:fa:a3:41:9b:80: bf:48:a1:e1:13:12:ac:39:c1:bd:1d:3f:51:4d:70: 9f:1e:af:5a:5d:81:dc:1c:a6:1f:88:b6:0e:5c:d4: 07:58:82:26:53:0d:3d:72:ec:ea:9b:34:f3:32:a9: 77:2b:9b:e1:99:83:f1:da:a6:52:83:eb:3b:d5:96: d8:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:5B:47:F1:93:B9:39:10:23:8D:FF:FA:8D:9D:CF:53:36:D4:2F:E9 X509v3 Authority Key Identifier: keyid:28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:ba:a8:5d:25:30:4b:cc:ed:b9:28:df:be:b4:02:fa:e5:83: b8:ad:4a:10:43:2c:8f:c1:a0:3c:9e:d8:0e:58:8d:66:3a:13: e1:b5:15:a5:92:a8:cc:1a:58:a4:40:b1:2f:fa:84:f4:c7:a7: 9d:b7:60:74:7a:60:ab:c1:c8:9e:c3:0b:f8:65:94:80:33:42: 28:8b:bf:fb:10:ba:45:84:aa:35:cd:44:c0:9d:10:e4:ff:23: 72:d9:92:8f:cd:49:f3:26:24:0c:d2:79:4f:d7:6f:8b:d0:15: 73:79:6d:f8:1d:14:40:6a:98:92:c9:af:ca:02:3f:7d:8c:c2: 68:1d:28:5a:76:2d:1f:79:2c:3e:6b:c3:33:0e:29:aa:5d:ef: 98:e7:9d:d6:72:a0:f8:e4:fd:82:8c:be:ee:e2:72:f0:79:b7: 34:b2:2b:2d:f0:32:ec:3d:7c:89:bf:4a:ee:90:dd:12:e7:56: 26:41:0b:fd:bf:21:f8:4e:24:0a:66:41:e3:07:6a:80:1c:49: 54:d7:b4:95:01:1e:49:31:12:bd:c3:cc:bd:3d:e7:69:f5:c8: bf:a3:47:a2:94:7a:c2:c0:e0:e5:e6:42:26:51:cf:d2:b6:c8: 6a:19:c3:20:0e:9f:69:8e:4e:d8:2a:9c:8f:6f:83:1f:5b:82: 9a:c0:c8:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxE2cHKYisjjqG7jhNrcxf6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4ODA0NzRhOTYxNjFkZGUyOTQyY2ZiOWYxODU2YzJmZmM4 ODA5MDQwHhcNMjYwMjEwMDAwMDQ3WhcNMjYwMjExMDAwMDQ3WjAzMTEwLwYDVQQD EygzMzViNDdmMTkzYjkzOTEwMjM4ZGZmZmE4ZDlkY2Y1MzM2ZDQyZmU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA088tj42fhbfFT4vUmtQVtZ61lbhC vMS3DWmEzn6Ho5R64a884JcQJGw+uG8blvitTDN+pbXohRFGB/q+wjzMacs1707I tvDTuk/4M1004IKI2JPLTAsEnmxoBy4W0oWP1uPq/lKYKmH3wyfvNJwNxtD5wTOA ZNTHMF7aOkdjQRBJANgglQ1OMXjEu6vIaLEnhdnmpNsezxkVF19Hk9XwBNk3AP5w SPUVwBkOiKJv73WzBncOBnKoA6c0oTig+qNBm4C/SKHhExKsOcG9HT9RTXCfHq9a XYHcHKYfiLYOXNQHWIImUw09cuzqmzTzMql3K5vhmYPx2qZSg+s71ZbYKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDNbR/GTuTkQI43/+o2dz1M21C/pMB8GA1UdIwQY MBaAFCiAR0qWFh3eKULPufGFbC/8iAkEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0lCSFNwWVdIZDRwUXMtNThZVnNMX3lJQ1FRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS82OTNjYzMtYWI3NS00NGM2LWE3NDAt NzQ2MWE1NmNlOTVlLzEvS0lCSFNwWVdIZDRwUXMtNThZVnNMX3lJQ1FRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS82OTNjYzMtYWI3NS00NGM2LWE3NDAtNzQ2MWE1NmNlOTVl LzEvS0lCSFNwWVdIZDRwUXMtNThZVnNMX3lJQ1FRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYbqoXSUw S8ztuSjfvrQC+uWDuK1KEEMsj8GgPJ7YDliNZjoT4bUVpZKozBpYpECxL/qE9Men nbdgdHpgq8HInsML+GWUgDNCKIu/+xC6RYSqNc1EwJ0Q5P8jctmSj81J8yYkDNJ5 T9dvi9AVc3lt+B0UQGqYksmvygI/fYzCaB0oWnYtH3ksPmvDMw4pql3vmOed1nKg +OT9goy+7uJy8Hm3NLIrLfAy7D18ib9K7pDdEudWJkEL/b8h+E4kCmZB4wdqgBxJ VNe0lQEeSTESvcPMvT3nafXIv6NHopR6wsDg5eZCJlHP0rbIahnDIA6faY5O2Cqc j2+DH1uCmsDICw== -----END CERTIFICATE-----Generated at Tue Feb 10 04:19:46 2026 by rpki-client