This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft File: kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft (raw, json) Hash identifier: x3bGohhcUsI0fcaHF/gMYefN9G6HfFZJGtdFniX3Q4I= Subject key identifier: 69:36:C4:13:4B:91:24:0A:50:6B:13:58:90:D9:41:36:AA:B1:8E:D7 Authority key identifier: 91:18:8C:A6:4C:46:70:A6:EB:56:B4:2A:50:A1:05:88:AD:96:47:EE Certificate issuer: /CN=91188ca64c4670a6eb56b42a50a10588ad9647ee Certificate serial: 019C420F44F6996C0217DE469D59A6E492A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft Manifest number: 0CA4 Signing time: Mon 09 Feb 2026 11:00:22 +0000 Manifest this update: Mon 09 Feb 2026 11:00:22 +0000 Manifest next update: Tue 10 Feb 2026 11:00:22 +0000 Files and hashes: 1: bChcbGdFNJLxkL6cWvlOuiphISs.roa (hash: +dNUc4mkY1Ks/wJrUAYjbgs9Kw+RWtpPfvShsAp4TVY=) 2: kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl (hash: o/acW21yr2MUQT0LrwsfRNk28/YBZnxMDPuLEG3+jTY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:44:f6:99:6c:02:17:de:46:9d:59:a6:e4:92:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91188ca64c4670a6eb56b42a50a10588ad9647ee Validity Not Before: Feb 9 11:00:22 2026 GMT Not After : Feb 10 11:00:22 2026 GMT Subject: CN=6936c4134b91240a506b135890d94136aab18ed7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:21:f7:37:b5:69:4d:3a:e2:43:3e:fd:80:66: 9e:29:ec:75:bb:bc:0e:f4:a4:fc:d9:20:0c:84:d6: 4e:3c:5a:a4:19:dd:77:c1:f9:5b:96:9a:a3:23:7d: 8d:90:91:5b:a0:43:c8:88:a7:12:3a:eb:a4:00:0c: 99:b0:ec:ea:5e:71:00:36:2e:f6:15:99:31:79:2b: 5f:a2:c5:bf:2c:57:ef:c1:7d:50:26:92:bc:2e:98: 20:53:f9:bb:aa:fc:95:de:df:93:2d:a5:53:5d:12: 84:0c:3b:76:39:c6:c0:81:80:cd:e8:69:03:88:e6: 9c:c3:09:01:28:2c:b2:5f:7b:a5:d8:39:cd:89:94: 72:33:a3:3b:d1:ac:d8:57:06:30:08:e6:3b:d7:5b: fe:ea:9b:31:f4:c7:7d:f7:f3:ab:46:bf:6f:65:6d: ea:b4:52:1d:ba:3a:e8:d7:34:01:72:85:48:d7:53: 14:00:35:1d:c4:37:9d:c1:96:a0:46:87:9d:ae:50: 92:3b:fa:3d:d2:12:8e:b1:fa:74:69:4f:e4:35:86: 2f:58:10:c5:74:9e:17:a1:48:b5:b9:34:76:aa:e4: 9d:92:53:ab:39:fc:5e:01:de:1c:dd:53:c6:ba:e9: b5:25:d8:61:a6:f5:3d:4c:ac:d5:26:d3:7d:a2:a2: f1:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:36:C4:13:4B:91:24:0A:50:6B:13:58:90:D9:41:36:AA:B1:8E:D7 X509v3 Authority Key Identifier: keyid:91:18:8C:A6:4C:46:70:A6:EB:56:B4:2A:50:A1:05:88:AD:96:47:EE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:16:09:18:d5:6f:1b:77:b0:be:7d:ed:bd:a6:31:1c:58:80: 26:e1:9a:54:e1:c1:cd:94:eb:fd:6e:c0:1a:ac:f1:f0:b5:9b: ec:09:06:e6:06:f9:dd:0d:a1:2b:91:67:07:52:c7:13:21:86: 7a:d7:73:c6:f9:c6:8a:e3:be:fc:ac:8e:99:04:2a:85:d3:2f: 45:bc:02:00:99:17:94:5c:7a:12:f9:94:a9:cc:09:59:4f:ac: ed:37:d8:37:cc:8c:38:c6:56:dc:77:7a:f7:4e:c7:21:f2:06: 21:11:af:47:98:45:26:60:68:88:e4:75:eb:28:95:01:1e:3d: 32:9f:46:69:c7:8a:09:e5:e4:bf:72:49:fa:aa:c4:77:50:4e: 11:4c:3c:7b:53:81:12:77:76:e7:01:2e:05:74:32:76:34:ef: f0:a7:f0:33:76:07:85:14:b4:bb:72:79:10:5e:1c:0c:61:52: e3:4c:6d:08:8b:20:04:ad:ae:30:88:f7:f4:51:2c:9d:ec:5e: d9:ce:55:5a:07:b1:7b:ac:41:01:9a:83:1a:d7:84:e4:57:a2: f8:17:f9:ab:64:4f:ab:40:2f:58:12:a8:e8:64:cc:1a:d3:89: a0:bf:60:1c:97:da:49:19:15:14:d8:41:3c:c9:fd:99:aa:bb: 5f:c8:6e:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD0T2mWwCF95GnVmm5JKlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxMTg4Y2E2NGM0NjcwYTZlYjU2YjQyYTUwYTEwNTg4YWQ5 NjQ3ZWUwHhcNMjYwMjA5MTEwMDIyWhcNMjYwMjEwMTEwMDIyWjAzMTEwLwYDVQQD Eyg2OTM2YzQxMzRiOTEyNDBhNTA2YjEzNTg5MGQ5NDEzNmFhYjE4ZWQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApCH3N7VpTTriQz79gGaeKex1u7wO 9KT82SAMhNZOPFqkGd13wflblpqjI32NkJFboEPIiKcSOuukAAyZsOzqXnEANi72 FZkxeStfosW/LFfvwX1QJpK8LpggU/m7qvyV3t+TLaVTXRKEDDt2OcbAgYDN6GkD iOacwwkBKCyyX3ul2DnNiZRyM6M70azYVwYwCOY711v+6psx9Md99/OrRr9vZW3q tFIdujro1zQBcoVI11MUADUdxDedwZagRoedrlCSO/o90hKOsfp0aU/kNYYvWBDF dJ4XoUi1uTR2quSdklOrOfxeAd4c3VPGuum1JdhhpvU9TKzVJtN9oqLxKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGk2xBNLkSQKUGsTWJDZQTaqsY7XMB8GA1UdIwQY MBaAFJEYjKZMRnCm61a0KlChBYitlkfuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1JpTXBreEdjS2JyVnJRcVVLRUZpSzJXUi00LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi8zMWQ2YzEtMTE0Ni00NTg4LTgzOGQt MTQ3MTc3YjgzN2RlLzEva1JpTXBreEdjS2JyVnJRcVVLRUZpSzJXUi00Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYi8zMWQ2YzEtMTE0Ni00NTg4LTgzOGQtMTQ3MTc3YjgzN2Rl LzEva1JpTXBreEdjS2JyVnJRcVVLRUZpSzJXUi00LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApBYJGNVv G3ewvn3tvaYxHFiAJuGaVOHBzZTr/W7AGqzx8LWb7AkG5gb53Q2hK5FnB1LHEyGG etdzxvnGiuO+/KyOmQQqhdMvRbwCAJkXlFx6EvmUqcwJWU+s7TfYN8yMOMZW3Hd6 907HIfIGIRGvR5hFJmBoiOR16yiVAR49Mp9GaceKCeXkv3JJ+qrEd1BOEUw8e1OB End25wEuBXQydjTv8KfwM3YHhRS0u3J5EF4cDGFS40xtCIsgBK2uMIj39FEsnexe 2c5VWgexe6xBAZqDGteE5Fei+Bf5q2RPq0AvWBKo6GTMGtOJoL9gHJfaSRkVFNhB PMn9maq7X8huKA== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:45 2026 by rpki-client