This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/ad8d09-39e9-408f-a370-9bb3f57c0ef0/1/KGURKILY5sctAiwsPaF7UsKtsHs.mft File: KGURKILY5sctAiwsPaF7UsKtsHs.mft (raw, json) Hash identifier: gKwHNSsh4Zqy2jCgHZp+dVTGWNTnNpyU6Vs0tbMNIZ8= Subject key identifier: BD:36:42:11:17:76:CB:46:BC:A1:E5:E9:10:6D:D7:77:56:7C:96:55 Authority key identifier: 28:65:11:28:82:D8:E6:C7:2D:02:2C:2C:3D:A1:7B:52:C2:AD:B0:7B Certificate issuer: /CN=2865112882d8e6c72d022c2c3da17b52c2adb07b Certificate serial: 019C4321FDC3B47918B275E27C4F9BE467CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGURKILY5sctAiwsPaF7UsKtsHs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/ad8d09-39e9-408f-a370-9bb3f57c0ef0/1/KGURKILY5sctAiwsPaF7UsKtsHs.mft Manifest number: 0ADD Signing time: Mon 09 Feb 2026 16:00:26 +0000 Manifest this update: Mon 09 Feb 2026 16:00:26 +0000 Manifest next update: Tue 10 Feb 2026 16:00:26 +0000 Files and hashes: 1: KGURKILY5sctAiwsPaF7UsKtsHs.crl (hash: /uETYCYfLtBL3D18WFt32wn9W7fI8AGQFOBl5kIKCms=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/ad8d09-39e9-408f-a370-9bb3f57c0ef0/1/KGURKILY5sctAiwsPaF7UsKtsHs.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/ad8d09-39e9-408f-a370-9bb3f57c0ef0/1/KGURKILY5sctAiwsPaF7UsKtsHs.mft rsync://rpki.ripe.net/repository/DEFAULT/KGURKILY5sctAiwsPaF7UsKtsHs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:fd:c3:b4:79:18:b2:75:e2:7c:4f:9b:e4:67:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2865112882d8e6c72d022c2c3da17b52c2adb07b Validity Not Before: Feb 9 16:00:26 2026 GMT Not After : Feb 10 16:00:26 2026 GMT Subject: CN=bd3642111776cb46bca1e5e9106dd777567c9655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e4:94:7c:e4:ca:97:7c:22:57:6e:9d:41:78: c1:af:11:f7:49:33:92:fd:b3:34:a7:ae:6f:8d:46: f1:0b:1c:1e:5f:55:08:0c:e6:66:13:a5:64:c0:7a: 4b:a9:2e:08:2b:46:5f:1e:b1:7a:98:74:f5:1c:37: 5b:79:71:e2:1b:ac:1e:c6:92:b1:2b:7e:d8:f3:ca: f6:05:de:ab:b1:8f:c3:6f:ef:5d:f2:06:a8:d6:22: b8:d9:b9:ab:8b:22:96:eb:91:9f:95:2a:db:c0:04: b1:81:5b:a6:5e:c2:76:76:79:b9:6b:1e:63:7f:a1: 49:0f:03:a1:35:bb:f4:62:1d:8d:86:5d:f7:87:35: b2:6a:3a:14:11:60:9b:fb:39:0b:8e:a7:ad:e7:4a: 14:cf:61:c9:9e:ff:f3:c9:81:0e:b6:62:de:23:34: 3c:11:8f:44:ed:59:90:46:6d:27:ff:f7:b4:1b:78: b3:33:af:7e:dd:54:29:72:69:af:04:5f:f5:41:09: db:d3:a7:1a:de:07:76:83:9b:c2:0f:2d:36:07:33: 40:1d:12:13:c9:90:9f:6c:25:b1:ef:e1:f1:39:25: 56:45:31:d2:e8:b1:51:5c:c1:1d:9f:ee:d0:17:5e: f3:b1:33:90:3a:4c:ab:53:2e:24:59:f7:79:9f:02: 3b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:36:42:11:17:76:CB:46:BC:A1:E5:E9:10:6D:D7:77:56:7C:96:55 X509v3 Authority Key Identifier: keyid:28:65:11:28:82:D8:E6:C7:2D:02:2C:2C:3D:A1:7B:52:C2:AD:B0:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGURKILY5sctAiwsPaF7UsKtsHs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ad8d09-39e9-408f-a370-9bb3f57c0ef0/1/KGURKILY5sctAiwsPaF7UsKtsHs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ad8d09-39e9-408f-a370-9bb3f57c0ef0/1/KGURKILY5sctAiwsPaF7UsKtsHs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:df:68:b5:76:28:46:6d:04:ec:f7:18:ae:f4:9c:83:a4:72: 34:40:e7:b8:1f:db:44:91:45:54:3f:1b:39:8c:03:6d:f7:6c: a3:5a:0b:6e:07:ca:0c:71:9c:db:a1:69:ac:9a:6b:42:cf:a5: fe:04:7f:a8:c6:6a:11:6e:ad:89:f6:de:7a:53:65:82:a9:10: 61:19:a4:0a:b9:d3:c2:ba:f0:a7:57:67:4a:fa:9c:74:c8:2c: 5f:e8:a8:49:6d:08:11:e9:ef:0b:e8:a7:73:2b:75:86:46:b6: 49:42:d7:60:77:f1:a0:e8:c9:20:e0:91:56:9d:a0:21:96:9d: 1b:e7:3c:22:77:7b:e7:3b:b8:61:45:0c:23:5f:0e:09:3e:0c: ac:77:4c:9e:a7:1c:27:54:ab:81:dc:1c:f0:c2:1d:67:c0:eb: e1:c4:48:a0:d1:6d:3f:33:f4:7d:c2:51:82:77:9c:94:5d:c9: 72:f7:73:d4:7d:1e:d7:ab:65:e3:0b:f7:10:a6:c2:07:b6:d1: 93:90:93:1b:18:1e:2a:ff:c1:5d:14:b3:e3:10:1d:5c:d8:78: c9:7d:34:38:28:46:12:20:bd:ed:78:61:b0:f9:20:f9:b1:9b: 50:da:fe:c8:05:37:41:52:17:a6:08:14:93:0b:a8:d5:98:92: cb:cd:ce:7b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIf3DtHkYsnXifE+b5GfOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4NjUxMTI4ODJkOGU2YzcyZDAyMmMyYzNkYTE3YjUyYzJh ZGIwN2IwHhcNMjYwMjA5MTYwMDI2WhcNMjYwMjEwMTYwMDI2WjAzMTEwLwYDVQQD EyhiZDM2NDIxMTE3NzZjYjQ2YmNhMWU1ZTkxMDZkZDc3NzU2N2M5NjU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApeSUfOTKl3wiV26dQXjBrxH3STOS /bM0p65vjUbxCxweX1UIDOZmE6VkwHpLqS4IK0ZfHrF6mHT1HDdbeXHiG6wexpKx K37Y88r2Bd6rsY/Db+9d8gao1iK42bmriyKW65GflSrbwASxgVumXsJ2dnm5ax5j f6FJDwOhNbv0Yh2Nhl33hzWyajoUEWCb+zkLjqet50oUz2HJnv/zyYEOtmLeIzQ8 EY9E7VmQRm0n//e0G3izM69+3VQpcmmvBF/1QQnb06ca3gd2g5vCDy02BzNAHRIT yZCfbCWx7+HxOSVWRTHS6LFRXMEdn+7QF17zsTOQOkyrUy4kWfd5nwI7fQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL02QhEXdstGvKHl6RBt13dWfJZVMB8GA1UdIwQY MBaAFChlESiC2ObHLQIsLD2he1LCrbB7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0dVUktJTFk1c2N0QWl3c1BhRjdVc0t0c0hzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9hZDhkMDktMzllOS00MDhmLWEzNzAt OWJiM2Y1N2MwZWYwLzEvS0dVUktJTFk1c2N0QWl3c1BhRjdVc0t0c0hzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi9hZDhkMDktMzllOS00MDhmLWEzNzAtOWJiM2Y1N2MwZWYw LzEvS0dVUktJTFk1c2N0QWl3c1BhRjdVc0t0c0hzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhN9otXYo Rm0E7PcYrvScg6RyNEDnuB/bRJFFVD8bOYwDbfdso1oLbgfKDHGc26FprJprQs+l /gR/qMZqEW6tifbeelNlgqkQYRmkCrnTwrrwp1dnSvqcdMgsX+ioSW0IEenvC+in cyt1hka2SULXYHfxoOjJIOCRVp2gIZadG+c8Ind75zu4YUUMI18OCT4MrHdMnqcc J1Srgdwc8MIdZ8Dr4cRIoNFtPzP0fcJRgneclF3Jcvdz1H0e16tl4wv3EKbCB7bR k5CTGxgeKv/BXRSz4xAdXNh4yX00OChGEiC97XhhsPkg+bGbUNr+yAU3QVIXpggU kwuo1ZiSy83Oew== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:44 2026 by rpki-client