This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft File: KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft (raw, json) Hash identifier: DNhLBm8Et9dlRbmxzZe373fwOjtepjsfLpmE6WkPt9A= Subject key identifier: 2B:E9:AD:69:94:B7:DD:9C:B2:E9:A7:3E:0A:4C:58:17:6B:CF:E0:0D Authority key identifier: 29:7A:42:29:71:4F:34:E2:9D:3D:92:B2:5F:7B:59:C7:48:F0:DF:C6 Certificate issuer: /CN=297a4229714f34e29d3d92b25f7b59c748f0dfc6 Certificate serial: 019C43C6F9D34EC03C2BDDDA96EE2FB2A15F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft Manifest number: 0A9F Signing time: Mon 09 Feb 2026 19:00:39 +0000 Manifest this update: Mon 09 Feb 2026 19:00:39 +0000 Manifest next update: Tue 10 Feb 2026 19:00:39 +0000 Files and hashes: 1: KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl (hash: HOoUyT2iDyRpzqEhE3MjcU+Bl67ZnLVdJB9HIew0l58=) 2: xzFbm4sk1g_z1hTqJzkSoYGfwII.roa (hash: vGpqbjJ2sbADDdZ1dTIQ9ghtcR849/Jhk0Pb4QG33k4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:f9:d3:4e:c0:3c:2b:dd:da:96:ee:2f:b2:a1:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=297a4229714f34e29d3d92b25f7b59c748f0dfc6 Validity Not Before: Feb 9 19:00:39 2026 GMT Not After : Feb 10 19:00:39 2026 GMT Subject: CN=2be9ad6994b7dd9cb2e9a73e0a4c58176bcfe00d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ed:3b:46:ea:19:37:1a:db:ed:66:23:0c:2e: c0:d2:50:47:ec:5f:48:55:91:de:b5:40:3e:a7:f6: ef:62:51:79:fe:89:e2:34:93:b0:97:94:a7:0e:e9: 33:33:6c:9c:d0:3e:c5:0a:a3:80:47:5b:30:f6:fb: 56:ec:45:a6:6e:04:3c:6f:91:28:59:59:ea:de:82: 86:7f:91:ac:97:1f:69:36:49:d0:89:9c:b2:19:b4: 28:97:d9:a0:9a:1d:97:90:45:47:e5:60:49:e7:0f: d8:b3:d7:5b:e2:9c:74:a3:01:a2:95:1d:5e:66:e2: 7a:e8:be:6b:7b:e1:a3:3e:5f:77:44:6f:1b:1c:b3: b7:27:18:f4:6c:84:80:2f:81:a3:74:ae:f5:e4:e7: 6e:98:43:20:1a:10:25:cb:e7:af:15:e4:65:33:46: 1d:2c:14:95:c6:53:0a:41:35:76:f2:1f:37:bb:9b: 6a:c4:7f:c3:07:0c:2e:e2:18:4e:05:7f:2a:ef:e2: 78:14:34:40:ce:a4:8c:a7:df:eb:d5:ba:d0:bc:47: 64:59:ba:bc:ed:ea:dc:07:8e:99:b0:27:9a:c3:3b: 2a:17:cf:94:80:76:15:10:3b:41:68:3b:9f:18:27: 3e:b2:74:30:d7:69:8d:6b:3a:62:64:46:8e:9c:54: 11:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:E9:AD:69:94:B7:DD:9C:B2:E9:A7:3E:0A:4C:58:17:6B:CF:E0:0D X509v3 Authority Key Identifier: keyid:29:7A:42:29:71:4F:34:E2:9D:3D:92:B2:5F:7B:59:C7:48:F0:DF:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:c8:03:8d:12:9e:8d:f7:35:06:18:69:c4:82:2d:2b:77:cc: b3:54:22:86:c2:6d:ef:c2:8f:26:35:c5:40:70:9e:ca:57:e8: d8:45:8f:a3:2d:51:69:9b:1e:1d:be:cb:1b:e7:e9:d9:49:87: ad:d3:a4:35:ae:40:25:e6:3f:53:6c:c0:70:c5:81:1a:e3:da: 9f:a6:6e:e2:88:a2:02:e6:5f:06:73:2e:83:f1:65:d7:c3:e7: 4d:7b:7c:9e:ec:3c:30:00:17:4c:5a:8e:8c:ee:91:83:f3:e9: ec:f8:49:ac:0a:f8:92:f3:e6:39:96:64:f6:5f:cc:37:f0:ed: 71:bb:3e:4d:cd:f1:de:a4:af:97:0a:d6:ab:2d:9a:61:65:46: bd:9e:90:6d:75:eb:8c:a2:40:f8:b5:c6:9b:41:c6:3f:61:42: 53:55:ea:27:14:37:d6:46:b5:97:59:56:4d:d9:b5:b4:fc:4a: 32:fb:b5:28:71:65:69:16:bf:31:18:94:e7:0b:d6:41:3b:58: 92:46:86:12:d4:6c:fd:fa:f2:b1:72:46:38:77:87:aa:62:82: da:0f:c6:5a:fd:25:51:66:01:8f:54:8f:23:34:40:78:28:84: 17:a5:59:04:37:c7:f6:81:8f:72:07:8b:17:75:be:24:bd:a2: 3a:57:dc:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxvnTTsA8K93alu4vsqFfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5N2E0MjI5NzE0ZjM0ZTI5ZDNkOTJiMjVmN2I1OWM3NDhm MGRmYzYwHhcNMjYwMjA5MTkwMDM5WhcNMjYwMjEwMTkwMDM5WjAzMTEwLwYDVQQD EygyYmU5YWQ2OTk0YjdkZDljYjJlOWE3M2UwYTRjNTgxNzZiY2ZlMDBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoO07RuoZNxrb7WYjDC7A0lBH7F9I VZHetUA+p/bvYlF5/oniNJOwl5SnDukzM2yc0D7FCqOAR1sw9vtW7EWmbgQ8b5Eo WVnq3oKGf5Gslx9pNknQiZyyGbQol9mgmh2XkEVH5WBJ5w/Ys9db4px0owGilR1e ZuJ66L5re+GjPl93RG8bHLO3Jxj0bISAL4GjdK715OdumEMgGhAly+evFeRlM0Yd LBSVxlMKQTV28h83u5tqxH/DBwwu4hhOBX8q7+J4FDRAzqSMp9/r1brQvEdkWbq8 7ercB46ZsCeawzsqF8+UgHYVEDtBaDufGCc+snQw12mNazpiZEaOnFQREwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCvprWmUt92csumnPgpMWBdrz+ANMB8GA1UdIwQY MBaAFCl6QilxTzTinT2Ssl97WcdI8N/GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1hwQ0tYRlBOT0tkUFpLeVgzdFp4MGp3MzhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC8xZDcyY2UtYmU0Yy00NDk4LWE4MjMt M2FlYmM5ZjgxN2NlLzEvS1hwQ0tYRlBOT0tkUFpLeVgzdFp4MGp3MzhZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC8xZDcyY2UtYmU0Yy00NDk4LWE4MjMtM2FlYmM5ZjgxN2Nl LzEvS1hwQ0tYRlBOT0tkUFpLeVgzdFp4MGp3MzhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfsgDjRKe jfc1BhhpxIItK3fMs1QihsJt78KPJjXFQHCeylfo2EWPoy1RaZseHb7LG+fp2UmH rdOkNa5AJeY/U2zAcMWBGuPan6Zu4oiiAuZfBnMug/Fl18PnTXt8nuw8MAAXTFqO jO6Rg/Pp7PhJrAr4kvPmOZZk9l/MN/Dtcbs+Tc3x3qSvlwrWqy2aYWVGvZ6QbXXr jKJA+LXGm0HGP2FCU1XqJxQ31ka1l1lWTdm1tPxKMvu1KHFlaRa/MRiU5wvWQTtY kkaGEtRs/frysXJGOHeHqmKC2g/GWv0lUWYBj1SPIzRAeCiEF6VZBDfH9oGPcgeL F3W+JL2iOlfcng== -----END CERTIFICATE-----Generated at Tue Feb 10 01:07:57 2026 by rpki-client