This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft File: kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft (raw, json) Hash identifier: Q3b8GfZ1s83GHCxyXYwRg0ptPwOgi5hM2oHgjXPJ9tk= Subject key identifier: 83:43:F7:F4:B2:3C:5E:ED:F1:7C:A2:F9:1B:3F:57:D9:55:8C:00:B5 Authority key identifier: 91:BD:58:83:C8:2A:ED:25:FE:F1:B1:8D:70:D0:21:5B:07:F7:27:D8 Certificate issuer: /CN=91bd5883c82aed25fef1b18d70d0215b07f727d8 Certificate serial: 019C42EAFE7253B0CE42ECB5E0CEE236E139 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft Manifest number: 0338 Signing time: Mon 09 Feb 2026 15:00:22 +0000 Manifest this update: Mon 09 Feb 2026 15:00:22 +0000 Manifest next update: Tue 10 Feb 2026 15:00:22 +0000 Files and hashes: 1: kb1Yg8gq7SX-8bGNcNAhWwf3J9g.crl (hash: QhDup08oAz/RJ/zrGBUdB3pU/qP4J2A6htFGXG1YyH4=) 2: ocMdVynF_p0Tq2OwiTH-YQD2ORA.roa (hash: T9hZOtlKL+lVEzPwoFtr/gTJ5gMSoiMOJ0rZtmiDZzY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft rsync://rpki.ripe.net/repository/DEFAULT/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:ea:fe:72:53:b0:ce:42:ec:b5:e0:ce:e2:36:e1:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91bd5883c82aed25fef1b18d70d0215b07f727d8 Validity Not Before: Feb 9 15:00:22 2026 GMT Not After : Feb 10 15:00:22 2026 GMT Subject: CN=8343f7f4b23c5eedf17ca2f91b3f57d9558c00b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:00:46:2e:95:95:1b:cb:d6:e8:ec:28:cb:89: c2:13:d3:8c:be:7a:60:6e:83:dc:30:27:f9:1b:dd: 14:cd:97:61:0a:a2:84:a5:c9:06:2d:cd:ec:d5:45: 89:c1:d9:99:f1:b0:6a:f4:f3:f4:84:24:39:a7:83: e9:02:39:6b:12:ba:70:97:6a:35:61:4f:89:d1:38: 49:57:b7:cd:a2:7d:b3:e4:b2:90:2c:73:a7:1d:4e: 92:30:f8:55:9b:6e:e5:30:e1:44:0f:f6:d3:4c:d8: 12:1b:36:e1:6b:28:ae:35:cc:60:63:03:17:d0:4b: 78:77:2b:fa:26:df:ad:25:dd:f9:85:23:47:53:c2: 92:57:08:1b:e9:ac:88:2a:28:e8:91:d2:e5:0e:34: 39:41:50:27:a9:56:45:15:43:c3:d9:25:39:df:68: a0:9b:13:4e:c7:f0:7f:bd:78:f4:6a:3a:23:ce:65: db:06:bb:0d:95:50:df:8c:c5:d3:e1:1c:58:06:ae: 8b:55:bf:7f:72:36:fc:7b:4f:29:ea:a6:5e:1f:30: 84:86:60:d9:3d:ea:b1:62:db:43:8e:61:a5:07:04: 58:96:78:c4:81:66:fb:34:79:35:35:27:89:ba:09: e9:2d:b8:40:7a:f8:a8:90:57:8c:fd:d1:ad:93:dc: 73:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:43:F7:F4:B2:3C:5E:ED:F1:7C:A2:F9:1B:3F:57:D9:55:8C:00:B5 X509v3 Authority Key Identifier: keyid:91:BD:58:83:C8:2A:ED:25:FE:F1:B1:8D:70:D0:21:5B:07:F7:27:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:63:62:01:73:2d:a0:d9:b0:8a:45:db:ba:92:3f:43:63:5b: ee:d2:ab:cc:6c:ec:73:b8:d9:13:b3:82:f0:8d:08:3b:0a:a2: c2:bc:03:a6:9d:d0:45:76:ff:95:d6:e3:44:12:20:ac:3c:f8: dc:fe:7a:3e:4b:18:83:8e:11:c2:7c:31:92:a1:f3:51:bf:d3: 2f:fb:77:67:6e:d3:7e:89:d7:45:42:80:39:af:48:40:65:b6: 3f:d8:1b:1e:5c:11:77:e8:88:23:2a:11:36:a9:15:80:c8:88: 6f:08:a0:a3:7e:8b:35:95:ab:82:a2:85:dd:d6:32:1f:0d:2e: be:b4:8e:55:f6:33:69:90:f1:b7:69:70:bf:8c:63:29:50:ac: 87:f8:8a:bd:d7:d2:de:ff:f1:3f:e2:13:ea:7e:0c:3c:1e:46: 3d:3b:89:5b:c4:36:6d:30:4f:a1:a3:69:f1:31:a3:69:07:92: e6:88:6f:d1:df:bf:48:af:12:47:e0:cc:dd:09:7c:7e:c5:ec: 97:1e:6b:c2:5d:10:04:37:50:01:ee:99:83:4f:5a:0f:54:ba: 52:bc:0e:b3:8e:84:cf:e7:95:ba:b8:83:85:95:7e:3f:cc:13: 6f:a4:1e:47:3c:39:36:30:ed:71:80:14:d1:4a:0a:7d:96:6c: 16:fc:09:68 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6v5yU7DOQuy14M7iNuE5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxYmQ1ODgzYzgyYWVkMjVmZWYxYjE4ZDcwZDAyMTViMDdm NzI3ZDgwHhcNMjYwMjA5MTUwMDIyWhcNMjYwMjEwMTUwMDIyWjAzMTEwLwYDVQQD Eyg4MzQzZjdmNGIyM2M1ZWVkZjE3Y2EyZjkxYjNmNTdkOTU1OGMwMGI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxABGLpWVG8vW6Owoy4nCE9OMvnpg boPcMCf5G90UzZdhCqKEpckGLc3s1UWJwdmZ8bBq9PP0hCQ5p4PpAjlrErpwl2o1 YU+J0ThJV7fNon2z5LKQLHOnHU6SMPhVm27lMOFED/bTTNgSGzbhayiuNcxgYwMX 0Et4dyv6Jt+tJd35hSNHU8KSVwgb6ayIKijokdLlDjQ5QVAnqVZFFUPD2SU532ig mxNOx/B/vXj0ajojzmXbBrsNlVDfjMXT4RxYBq6LVb9/cjb8e08p6qZeHzCEhmDZ PeqxYttDjmGlBwRYlnjEgWb7NHk1NSeJugnpLbhAeviokFeM/dGtk9xzbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIND9/SyPF7t8Xyi+Rs/V9lVjAC1MB8GA1UdIwQY MBaAFJG9WIPIKu0l/vGxjXDQIVsH9yfYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2IxWWc4Z3E3U1gtOGJHTmNOQWhXd2YzSjlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC85ZDU2YTMtNDQxNy00OTQwLWJhYTIt OWU5NjJjZDlkZDgyLzEva2IxWWc4Z3E3U1gtOGJHTmNOQWhXd2YzSjlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC85ZDU2YTMtNDQxNy00OTQwLWJhYTItOWU5NjJjZDlkZDgy LzEva2IxWWc4Z3E3U1gtOGJHTmNOQWhXd2YzSjlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYmNiAXMt oNmwikXbupI/Q2Nb7tKrzGzsc7jZE7OC8I0IOwqiwrwDpp3QRXb/ldbjRBIgrDz4 3P56PksYg44RwnwxkqHzUb/TL/t3Z27TfonXRUKAOa9IQGW2P9gbHlwRd+iIIyoR NqkVgMiIbwigo36LNZWrgqKF3dYyHw0uvrSOVfYzaZDxt2lwv4xjKVCsh/iKvdfS 3v/xP+IT6n4MPB5GPTuJW8Q2bTBPoaNp8TGjaQeS5ohv0d+/SK8SR+DM3Ql8fsXs lx5rwl0QBDdQAe6Zg09aD1S6UrwOs46Ez+eVuriDhZV+P8wTb6QeRzw5NjDtcYAU 0UoKfZZsFvwJaA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:03 2026 by rpki-client