This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.mft File: KYlkeFHvzRmJcu09FJzLvenFXAA.mft (raw, json) Hash identifier: denvn/3/HrhXglU77/4mq6yAycieGUUhDfON6XhvHJY= Subject key identifier: 68:2F:90:16:1B:01:23:82:E9:D7:B4:EC:AE:12:CD:4A:86:58:3C:1D Authority key identifier: 29:89:64:78:51:EF:CD:19:89:72:ED:3D:14:9C:CB:BD:E9:C5:5C:00 Certificate issuer: /CN=2989647851efcd198972ed3d149ccbbde9c55c00 Certificate serial: 019C43C717B17BC46B929C9278C406ABC7FE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYlkeFHvzRmJcu09FJzLvenFXAA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.mft Manifest number: 0B49 Signing time: Mon 09 Feb 2026 19:00:46 +0000 Manifest this update: Mon 09 Feb 2026 19:00:46 +0000 Manifest next update: Tue 10 Feb 2026 19:00:46 +0000 Files and hashes: 1: KYlkeFHvzRmJcu09FJzLvenFXAA.crl (hash: TXpSJxt3p4tOicxMBgX3OB2ghepMLMsWDHPX6RomMpE=) 2: l2v4PMgche6PmMtMOC23cD4fvMk.roa (hash: h7RmNWqQIkYYdlzGtKAOjEz+jTEWe9NjQLWfgzz+cDE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.crl rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.mft rsync://rpki.ripe.net/repository/DEFAULT/KYlkeFHvzRmJcu09FJzLvenFXAA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:17:b1:7b:c4:6b:92:9c:92:78:c4:06:ab:c7:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2989647851efcd198972ed3d149ccbbde9c55c00 Validity Not Before: Feb 9 19:00:46 2026 GMT Not After : Feb 10 19:00:46 2026 GMT Subject: CN=682f90161b012382e9d7b4ecae12cd4a86583c1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:8d:d9:86:81:f5:eb:9d:25:7f:b2:69:3e:e4: 4d:0c:f8:0d:ee:81:70:27:ac:5c:4a:87:7f:46:1c: 58:52:fc:04:a2:26:43:1f:3e:54:76:de:c9:66:55: b3:60:2d:a0:55:78:21:54:5b:9f:2f:6d:74:b6:01: 99:c6:78:fe:9a:e6:d7:ae:ce:ca:ea:1e:bb:71:96: 2a:c2:23:b4:4b:c5:49:33:a0:5a:c2:c6:44:80:fa: 09:86:c4:de:96:37:61:00:e5:6d:ef:00:7e:b4:fb: ab:88:af:ce:02:d1:44:30:f3:a2:86:ad:a8:3a:82: 13:24:14:53:71:48:8a:37:03:50:fa:94:d4:5f:ab: 9f:03:9d:39:96:28:0e:85:56:7e:5e:d8:ae:9b:e8: ca:0f:16:8c:f3:4a:14:c6:d4:46:a3:af:ec:ca:f3: c3:95:0c:a5:39:98:cd:4a:ba:7a:52:4d:66:ca:29: 11:21:3b:d8:2a:4f:0b:73:cf:31:b2:18:a3:c9:83: 3d:a3:d6:e6:fa:6f:4f:35:cf:04:f8:77:e1:73:fa: 5b:e1:1e:42:30:70:a7:94:94:d8:6b:a0:c0:5b:66: d6:10:c3:31:d6:0c:b3:6b:b7:e1:bf:53:75:0d:5c: 94:ec:b7:9b:87:99:3d:52:6e:b5:85:e5:93:65:e1: 97:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:2F:90:16:1B:01:23:82:E9:D7:B4:EC:AE:12:CD:4A:86:58:3C:1D X509v3 Authority Key Identifier: keyid:29:89:64:78:51:EF:CD:19:89:72:ED:3D:14:9C:CB:BD:E9:C5:5C:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYlkeFHvzRmJcu09FJzLvenFXAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:ad:72:30:af:ee:1b:30:4a:aa:30:11:a9:d6:6f:3f:1d:51: 30:03:e7:ba:e2:47:dc:24:b8:46:74:3f:fb:be:05:1a:a2:06: 91:bb:4f:5c:62:b6:75:29:5f:f2:a9:40:4c:82:6b:db:ef:17: 53:ee:22:97:27:6b:ad:6f:7c:4a:14:db:10:47:44:13:87:bc: 6a:6b:2f:d5:3b:be:c2:fa:29:51:7b:cf:15:71:8e:04:29:d1: e6:f4:15:e6:0c:90:77:bf:7d:ee:3a:b2:32:72:8d:8b:59:49: 71:6a:75:10:f1:f3:60:ea:80:28:34:10:78:dd:eb:54:a9:fb: cd:a7:8c:55:2a:09:59:32:ec:d9:a4:a1:0a:7d:dc:14:06:9b: 3e:74:c7:c4:6f:cb:e7:d0:8c:a5:9a:c5:a5:f5:7d:ab:7e:e1: 70:03:81:4e:83:9a:70:7a:bf:48:a0:24:34:03:1e:4b:e1:8c: 81:f6:af:34:f9:6d:73:d4:4f:d6:a9:44:99:06:b3:5a:db:4e: 9a:0a:15:ef:f1:04:50:3a:a1:00:f1:5a:75:68:11:2d:24:ce: 52:33:ef:d0:cd:7a:4b:df:b3:8d:21:b7:f8:13:26:f1:f8:da: c9:7d:f9:1f:2d:3b:5b:12:b1:54:91:28:8a:48:e9:87:be:b5: 98:8d:4e:22 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxxexe8RrkpySeMQGq8f+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ODk2NDc4NTFlZmNkMTk4OTcyZWQzZDE0OWNjYmJkZTlj NTVjMDAwHhcNMjYwMjA5MTkwMDQ2WhcNMjYwMjEwMTkwMDQ2WjAzMTEwLwYDVQQD Eyg2ODJmOTAxNjFiMDEyMzgyZTlkN2I0ZWNhZTEyY2Q0YTg2NTgzYzFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoY3ZhoH1650lf7JpPuRNDPgN7oFw J6xcSod/RhxYUvwEoiZDHz5Udt7JZlWzYC2gVXghVFufL210tgGZxnj+mubXrs7K 6h67cZYqwiO0S8VJM6BawsZEgPoJhsTeljdhAOVt7wB+tPuriK/OAtFEMPOihq2o OoITJBRTcUiKNwNQ+pTUX6ufA505ligOhVZ+Xtium+jKDxaM80oUxtRGo6/syvPD lQylOZjNSrp6Uk1myikRITvYKk8Lc88xshijyYM9o9bm+m9PNc8E+Hfhc/pb4R5C MHCnlJTYa6DAW2bWEMMx1gyza7fhv1N1DVyU7Lebh5k9Um61heWTZeGXGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGgvkBYbASOC6de07K4SzUqGWDwdMB8GA1UdIwQY MBaAFCmJZHhR780ZiXLtPRScy73pxVwAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1lsa2VGSHZ6Um1KY3UwOUZKekx2ZW5GWEFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy9hYjVlODgtZDJmOS00ODdiLWJiOTIt YTRjYjFjZmQwMGI4LzEvS1lsa2VGSHZ6Um1KY3UwOUZKekx2ZW5GWEFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYy9hYjVlODgtZDJmOS00ODdiLWJiOTItYTRjYjFjZmQwMGI4 LzEvS1lsa2VGSHZ6Um1KY3UwOUZKekx2ZW5GWEFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM61yMK/u GzBKqjARqdZvPx1RMAPnuuJH3CS4RnQ/+74FGqIGkbtPXGK2dSlf8qlATIJr2+8X U+4ilydrrW98ShTbEEdEE4e8amsv1Tu+wvopUXvPFXGOBCnR5vQV5gyQd7997jqy MnKNi1lJcWp1EPHzYOqAKDQQeN3rVKn7zaeMVSoJWTLs2aShCn3cFAabPnTHxG/L 59CMpZrFpfV9q37hcAOBToOacHq/SKAkNAMeS+GMgfavNPltc9RP1qlEmQazWttO mgoV7/EEUDqhAPFadWgRLSTOUjPv0M16S9+zjSG3+BMm8fjayX35Hy07WxKxVJEo ikjph761mI1OIg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:48:34 2026 by rpki-client