This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft File: kXWIXPl40u9mE3YhRTC57WjFtFg.mft (raw, json) Hash identifier: Iny4miN1LxDJ6O6Vk2+sldwDdawMlR4++Ojn1QKB76k= Subject key identifier: B3:09:D4:AA:5F:E7:BE:71:0E:78:28:19:DC:EF:69:D1:99:0C:D2:FA Authority key identifier: 91:75:88:5C:F9:78:D2:EF:66:13:76:21:45:30:B9:ED:68:C5:B4:58 Certificate issuer: /CN=9175885cf978d2ef661376214530b9ed68c5b458 Certificate serial: 019C4322A3F48935C395FE9F1158F072E318 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft Manifest number: 0B2D Signing time: Mon 09 Feb 2026 16:01:09 +0000 Manifest this update: Mon 09 Feb 2026 16:01:09 +0000 Manifest next update: Tue 10 Feb 2026 16:01:09 +0000 Files and hashes: 1: kXWIXPl40u9mE3YhRTC57WjFtFg.crl (hash: 5o7LOj6ueDyuR2Bxia+5M74yO8UrPqkZz1ZqbSO0H/s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.crl rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:a3:f4:89:35:c3:95:fe:9f:11:58:f0:72:e3:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9175885cf978d2ef661376214530b9ed68c5b458 Validity Not Before: Feb 9 16:01:09 2026 GMT Not After : Feb 10 16:01:09 2026 GMT Subject: CN=b309d4aa5fe7be710e782819dcef69d1990cd2fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:81:bb:c4:70:38:79:7b:31:19:a7:78:0a:4a: ae:96:61:16:f1:f4:a1:e6:18:6b:c6:55:20:88:25: c8:69:31:47:f3:46:8a:aa:9d:ba:c3:9a:c1:7b:64: 1a:ab:fd:c1:0f:07:b7:5a:44:9c:9b:83:16:a5:10: bd:b7:5f:66:48:39:c2:61:b2:62:5e:b8:84:c8:49: c1:ab:36:68:e5:d9:97:fc:92:5f:d6:5d:f0:4e:c2: e5:73:2d:ac:79:95:6d:05:32:d2:fc:23:c3:0f:7e: 0c:a5:8d:80:9d:77:fd:8e:27:54:1e:c4:e8:29:64: d9:07:4e:9f:8a:ae:cb:46:ae:5c:07:3e:95:0b:26: 0f:75:7d:7b:e3:06:99:ee:e6:2c:bb:bc:19:f3:5f: 91:15:0f:5e:9e:10:7a:64:4d:ac:50:0f:65:95:fc: 9b:75:ad:db:19:31:97:f2:fb:14:90:ec:96:0a:84: ea:4f:5a:41:16:00:82:e7:d6:9e:84:26:b3:36:55: 8a:37:8b:06:0a:6f:5d:30:82:4a:99:d5:e4:62:6f: 61:9d:b1:04:c1:9a:c5:2e:56:3f:13:49:53:c8:73: 43:56:7d:07:b8:0f:aa:ce:af:89:b8:7b:f1:91:c2: 96:ae:45:bc:ca:47:05:78:7c:bc:ac:32:98:49:10: 2f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:09:D4:AA:5F:E7:BE:71:0E:78:28:19:DC:EF:69:D1:99:0C:D2:FA X509v3 Authority Key Identifier: keyid:91:75:88:5C:F9:78:D2:EF:66:13:76:21:45:30:B9:ED:68:C5:B4:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:50:6f:91:f3:4a:2b:88:b5:70:c2:b7:07:7b:af:fc:7f:57: bf:ca:4b:cb:e9:3c:7d:f3:24:69:87:96:c5:6e:a5:c3:bc:c8: 9e:8a:d4:1a:29:d2:92:83:92:f3:2f:ff:37:21:3c:b5:7e:8e: 0f:93:86:dd:32:2a:58:6d:4b:35:e6:09:aa:d4:0b:76:a8:38: ef:9e:7f:fb:1f:3c:47:d1:9a:cc:49:c8:2e:c8:14:8b:a4:88: 16:ce:16:cb:52:0a:85:39:4f:12:bd:97:57:4f:f7:e6:d8:fc: 27:9f:93:53:38:d4:f2:a6:fb:fa:ce:de:f0:74:94:ba:6d:fa: a7:3b:fd:7e:b5:c4:f5:26:e5:38:69:ae:a8:37:68:c8:c9:49: 70:af:8d:5d:58:fa:23:4c:51:ff:e1:64:dd:cb:03:52:0e:f0: f4:89:68:db:79:03:59:d6:13:3a:53:a2:64:7b:7f:f6:b7:70: 8f:ff:82:3b:e1:92:b7:60:3f:96:ef:de:d8:bc:6e:8d:b5:6c: 41:28:0b:e5:73:39:b4:fd:f0:e9:ea:65:10:83:a6:c9:1d:9a: 88:f5:96:5a:0c:83:d0:68:6b:52:d2:79:75:a3:f6:6d:63:2a: 3e:92:e4:13:49:f9:70:00:d8:9a:0e:cf:66:6b:da:4f:e2:a3: 82:eb:d7:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIqP0iTXDlf6fEVjwcuMYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxNzU4ODVjZjk3OGQyZWY2NjEzNzYyMTQ1MzBiOWVkNjhj NWI0NTgwHhcNMjYwMjA5MTYwMTA5WhcNMjYwMjEwMTYwMTA5WjAzMTEwLwYDVQQD EyhiMzA5ZDRhYTVmZTdiZTcxMGU3ODI4MTlkY2VmNjlkMTk5MGNkMmZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApIG7xHA4eXsxGad4CkqulmEW8fSh 5hhrxlUgiCXIaTFH80aKqp26w5rBe2Qaq/3BDwe3WkScm4MWpRC9t19mSDnCYbJi XriEyEnBqzZo5dmX/JJf1l3wTsLlcy2seZVtBTLS/CPDD34MpY2AnXf9jidUHsTo KWTZB06fiq7LRq5cBz6VCyYPdX174waZ7uYsu7wZ81+RFQ9enhB6ZE2sUA9llfyb da3bGTGX8vsUkOyWCoTqT1pBFgCC59aehCazNlWKN4sGCm9dMIJKmdXkYm9hnbEE wZrFLlY/E0lTyHNDVn0HuA+qzq+JuHvxkcKWrkW8ykcFeHy8rDKYSRAvxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLMJ1Kpf575xDngoGdzvadGZDNL6MB8GA1UdIwQY MBaAFJF1iFz5eNLvZhN2IUUwue1oxbRYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1hXSVhQbDQwdTltRTNZaFJUQzU3V2pGdEZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS9jNDg1ZDktMjczNi00OWIxLTlhNDQt MWI5NTgxOWNmYzljLzEva1hXSVhQbDQwdTltRTNZaFJUQzU3V2pGdEZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZS9jNDg1ZDktMjczNi00OWIxLTlhNDQtMWI5NTgxOWNmYzlj LzEva1hXSVhQbDQwdTltRTNZaFJUQzU3V2pGdEZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQFBvkfNK K4i1cMK3B3uv/H9Xv8pLy+k8ffMkaYeWxW6lw7zInorUGinSkoOS8y//NyE8tX6O D5OG3TIqWG1LNeYJqtQLdqg4755/+x88R9GazEnILsgUi6SIFs4Wy1IKhTlPEr2X V0/35tj8J5+TUzjU8qb7+s7e8HSUum36pzv9frXE9SblOGmuqDdoyMlJcK+NXVj6 I0xR/+Fk3csDUg7w9Ilo23kDWdYTOlOiZHt/9rdwj/+CO+GSt2A/lu/e2LxujbVs QSgL5XM5tP3w6eplEIOmyR2aiPWWWgyD0GhrUtJ5daP2bWMqPpLkE0n5cADYmg7P ZmvaT+KjguvXPg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:32 2026 by rpki-client