This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft File: kh2gU5IfUoNniBiPgvYt1aqXP-k.mft (raw, json) Hash identifier: UbVaS5RlMWPI7APfOLixN3HjnN4kh8xTsJla1u62ywk= Subject key identifier: 34:13:8D:A2:FB:13:FF:DB:25:69:27:9E:E9:5B:38:C9:94:68:59:37 Authority key identifier: 92:1D:A0:53:92:1F:52:83:67:88:18:8F:82:F6:2D:D5:AA:97:3F:E9 Certificate issuer: /CN=921da053921f52836788188f82f62dd5aa973fe9 Certificate serial: 019C4390D1F57F58F9290B0A9EA799D90E31 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft Manifest number: 10D5 Signing time: Mon 09 Feb 2026 18:01:30 +0000 Manifest this update: Mon 09 Feb 2026 18:01:30 +0000 Manifest next update: Tue 10 Feb 2026 18:01:30 +0000 Files and hashes: 1: kh2gU5IfUoNniBiPgvYt1aqXP-k.crl (hash: V9w/WC4wUPeudiaGmwC6iycxBQmNkwczHnKiAYozPgA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:d1:f5:7f:58:f9:29:0b:0a:9e:a7:99:d9:0e:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=921da053921f52836788188f82f62dd5aa973fe9 Validity Not Before: Feb 9 18:01:30 2026 GMT Not After : Feb 10 18:01:30 2026 GMT Subject: CN=34138da2fb13ffdb2569279ee95b38c994685937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:88:b4:5e:fd:e7:8a:3d:8a:35:61:85:59:3e: a0:a7:0d:25:72:f3:51:bf:21:37:1b:6d:0f:82:08: 00:d6:64:f0:c0:11:61:28:b4:c0:f8:67:9e:10:d9: 34:a8:c3:41:79:9b:f7:ed:22:95:59:06:8a:6f:dd: 6b:2d:87:3a:e9:27:70:3f:50:1b:e9:c6:d2:fb:7a: dc:25:dd:e7:04:85:4a:25:fb:87:d6:4b:c2:f6:bf: ce:c1:ac:3c:da:43:45:e0:2b:e1:f9:35:78:4f:0c: c0:82:01:24:30:d8:be:c2:94:76:f5:c0:9e:43:d0: 21:92:55:98:0c:2f:84:68:65:79:3a:6e:7a:43:73: 17:8b:93:44:8b:cb:d5:da:0e:f9:91:08:90:cf:c0: 86:95:6c:7c:a9:1e:3c:2f:2f:56:bc:0a:a1:3a:0c: 7d:d9:8b:51:bb:df:1a:63:a5:2a:e2:98:3c:63:f6: 29:c6:2c:32:4d:da:a7:57:e1:80:b3:b3:b5:aa:2c: 9c:db:df:61:6b:6d:9d:02:ff:6c:1f:ee:c3:71:b4: b8:36:f0:e3:4d:08:01:1b:c9:95:79:1e:f9:d2:f9: e8:c5:36:87:c2:10:7e:69:8a:59:11:17:e5:b9:01: 18:6d:6c:1f:06:31:ce:85:cf:8c:c3:99:29:27:59: d9:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:13:8D:A2:FB:13:FF:DB:25:69:27:9E:E9:5B:38:C9:94:68:59:37 X509v3 Authority Key Identifier: keyid:92:1D:A0:53:92:1F:52:83:67:88:18:8F:82:F6:2D:D5:AA:97:3F:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:6b:04:69:51:5d:b7:d6:68:bb:58:5c:14:4c:62:dd:e7:6a: c9:1c:17:44:1a:80:5a:9e:73:04:e5:79:7c:f9:63:26:72:88: 0c:e8:ad:1e:70:85:82:6e:af:68:6d:51:51:5e:f6:55:71:4b: 76:81:8f:b1:53:3b:7a:81:f2:5f:3e:73:19:27:dd:d0:c3:cf: 5c:99:34:b2:b3:08:f7:8e:1a:85:eb:93:43:9e:70:1e:93:35: 26:14:2e:ba:ec:b4:db:14:e0:f2:ed:78:32:2a:52:5e:22:5d: 15:ec:c7:c9:0d:0e:56:80:34:ee:d3:e5:48:e5:6b:8d:33:62: 07:4d:fe:42:b5:c5:d3:84:03:bc:24:3a:a6:ff:22:8a:c5:dd: 4c:d7:bb:3b:7a:bc:9f:62:f2:c9:52:16:df:3f:3f:e2:ce:39: 80:0b:ec:f3:06:3f:e0:de:a8:b9:dc:06:83:ae:de:15:d2:b8: ed:0d:88:78:f3:ae:e4:89:5f:7a:b9:a0:3f:03:89:e7:4e:da: f9:69:5f:29:f0:1e:02:44:f4:7f:7c:57:84:11:cb:73:ad:a7: 0a:39:45:af:99:ec:5a:69:66:62:09:35:0d:7e:ce:00:a8:9a: ec:fd:09:0b:5f:eb:4d:b4:7a:c0:3f:53:d7:c6:49:97:74:32: a3:91:e9:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkNH1f1j5KQsKnqeZ2Q4xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMWRhMDUzOTIxZjUyODM2Nzg4MTg4ZjgyZjYyZGQ1YWE5 NzNmZTkwHhcNMjYwMjA5MTgwMTMwWhcNMjYwMjEwMTgwMTMwWjAzMTEwLwYDVQQD EygzNDEzOGRhMmZiMTNmZmRiMjU2OTI3OWVlOTViMzhjOTk0Njg1OTM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/Yi0Xv3nij2KNWGFWT6gpw0lcvNR vyE3G20PgggA1mTwwBFhKLTA+GeeENk0qMNBeZv37SKVWQaKb91rLYc66SdwP1Ab 6cbS+3rcJd3nBIVKJfuH1kvC9r/Owaw82kNF4Cvh+TV4TwzAggEkMNi+wpR29cCe Q9AhklWYDC+EaGV5Om56Q3MXi5NEi8vV2g75kQiQz8CGlWx8qR48Ly9WvAqhOgx9 2YtRu98aY6Uq4pg8Y/YpxiwyTdqnV+GAs7O1qiyc299ha22dAv9sH+7DcbS4NvDj TQgBG8mVeR750vnoxTaHwhB+aYpZERfluQEYbWwfBjHOhc+Mw5kpJ1nZowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDQTjaL7E//bJWknnulbOMmUaFk3MB8GA1UdIwQY MBaAFJIdoFOSH1KDZ4gYj4L2LdWqlz/pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2gyZ1U1SWZVb05uaUJpUGd2WXQxYXFYUC1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS8zZTZlYTUtMGQ0ZS00MzRmLWE2ZjMt ZWIzNDZkOWNlOWUwLzEva2gyZ1U1SWZVb05uaUJpUGd2WXQxYXFYUC1rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS8zZTZlYTUtMGQ0ZS00MzRmLWE2ZjMtZWIzNDZkOWNlOWUw LzEva2gyZ1U1SWZVb05uaUJpUGd2WXQxYXFYUC1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYmsEaVFd t9Zou1hcFExi3edqyRwXRBqAWp5zBOV5fPljJnKIDOitHnCFgm6vaG1RUV72VXFL doGPsVM7eoHyXz5zGSfd0MPPXJk0srMI944aheuTQ55wHpM1JhQuuuy02xTg8u14 MipSXiJdFezHyQ0OVoA07tPlSOVrjTNiB03+QrXF04QDvCQ6pv8iisXdTNe7O3q8 n2LyyVIW3z8/4s45gAvs8wY/4N6oudwGg67eFdK47Q2IePOu5IlfermgPwOJ507a +WlfKfAeAkT0f3xXhBHLc62nCjlFr5nsWmlmYgk1DX7OAKia7P0JC1/rTbR6wD9T 18ZJl3Qyo5HpuQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:01 2026 by rpki-client