This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.mft File: KANYk6JXplTz-FSVxBaevobeGNE.mft (raw, json) Hash identifier: xYgYhTxDl9hn/4VC/gbBTABgZLlnub5WS/6n5xk+ap8= Subject key identifier: 33:CF:A7:5C:50:95:0C:94:09:9A:D3:5F:3E:F3:62:69:34:5A:7B:7A Authority key identifier: 28:03:58:93:A2:57:A6:54:F3:F8:54:95:C4:16:9E:BE:86:DE:18:D1 Certificate issuer: /CN=28035893a257a654f3f85495c4169ebe86de18d1 Certificate serial: 019C42465A3E9C3C8AC2F03E11A35898FC44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KANYk6JXplTz-FSVxBaevobeGNE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.mft Manifest number: 0D4D Signing time: Mon 09 Feb 2026 12:00:32 +0000 Manifest this update: Mon 09 Feb 2026 12:00:32 +0000 Manifest next update: Tue 10 Feb 2026 12:00:32 +0000 Files and hashes: 1: KANYk6JXplTz-FSVxBaevobeGNE.crl (hash: rB3UFdbIAb3huKm3EpykAXVwdrUZQHsjuSxfKiIUres=) 2: Uwq4fgrazLwEGWvCfkhNBfYlPZA.roa (hash: vwAFLTe2SVcS4DhCcFTz3AjD8TipO0c+U4k+Iwqqzxk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.mft rsync://rpki.ripe.net/repository/DEFAULT/KANYk6JXplTz-FSVxBaevobeGNE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:5a:3e:9c:3c:8a:c2:f0:3e:11:a3:58:98:fc:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28035893a257a654f3f85495c4169ebe86de18d1 Validity Not Before: Feb 9 12:00:32 2026 GMT Not After : Feb 10 12:00:32 2026 GMT Subject: CN=33cfa75c50950c94099ad35f3ef36269345a7b7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:21:8a:d2:d1:a1:eb:0f:37:b7:8b:b6:3a:f2: e1:a1:9c:08:00:5b:06:01:c9:5c:6c:22:6a:48:70: 31:2a:99:79:17:21:c7:a5:68:72:37:a6:73:a5:85: df:b8:5c:f2:69:f5:3c:c5:e9:96:c3:ab:60:e4:40: 2a:ed:92:74:56:7d:4f:ef:53:6a:35:36:be:b9:be: c2:17:f1:b0:e4:56:da:c4:4d:92:aa:48:28:24:bc: f6:0f:32:75:c0:3a:d1:0f:f6:c7:fd:a3:16:09:62: 79:fb:75:2f:5b:aa:27:b7:2d:f2:a2:5a:f3:c4:80: 44:11:f2:1a:60:59:bf:e7:50:bb:08:df:39:2b:52: 4d:f5:9b:17:da:21:b9:7a:5a:32:7d:fb:19:aa:96: 30:77:80:bb:f2:c7:a6:cb:1b:8c:25:82:50:a5:24: da:61:4a:f1:a1:cc:ce:ff:51:d3:5e:ae:7c:95:c0: ab:e7:2a:8b:42:7b:46:4a:c2:5b:36:b7:99:1c:72: 5b:f4:5d:20:c1:b9:3a:d2:b8:f2:4d:fd:7b:93:bf: cf:d2:fb:ee:63:c6:7d:51:5c:e9:2a:c0:46:0d:86: 1b:57:ba:ef:3e:ce:aa:66:67:7a:dd:ff:43:08:a7: 02:81:78:6c:dc:61:95:e5:60:dc:94:e7:47:3f:c5: be:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:CF:A7:5C:50:95:0C:94:09:9A:D3:5F:3E:F3:62:69:34:5A:7B:7A X509v3 Authority Key Identifier: keyid:28:03:58:93:A2:57:A6:54:F3:F8:54:95:C4:16:9E:BE:86:DE:18:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KANYk6JXplTz-FSVxBaevobeGNE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:9b:1f:88:76:9d:18:9a:8f:63:ff:e8:71:6e:a9:e3:51:a3: f7:7a:51:ac:df:ad:00:a8:ba:3a:5e:0a:71:18:5f:ea:f8:74: c9:cc:46:d9:13:2a:50:62:95:06:47:0e:c0:9f:e8:a6:ce:ba: 2c:bd:9d:bb:71:73:0d:ed:53:46:6f:78:47:1a:4b:53:7a:28: d0:32:45:4f:36:45:24:c3:d8:d4:01:6b:91:9a:8b:dd:d0:b5: 24:97:42:9d:b8:d1:21:40:95:fb:6a:4e:a5:c0:50:0e:b2:72: 34:80:c1:72:20:6e:ec:40:5d:d7:ed:17:56:d0:9d:b8:fb:7b: 16:a9:3b:71:c8:e1:43:12:90:a5:bd:b1:a9:98:21:b7:e1:75: 37:7f:3e:1e:a4:82:ef:08:58:00:16:a5:91:f1:db:90:a9:6d: 15:53:33:2b:7f:2a:b8:f1:d8:1e:cd:af:51:ae:3b:18:30:c2: f6:94:3b:24:6a:97:bc:6f:52:3a:9b:bd:d7:62:d1:cc:c1:9a: f7:ef:c9:3f:7f:6d:3a:76:a4:2a:5e:63:ea:68:9c:fe:02:0d: 15:2d:be:c7:93:eb:3c:a8:b5:db:69:16:70:71:a7:44:b5:7c: e8:bf:c5:d7:7a:fb:6e:07:ed:97:f6:7e:1a:ce:24:81:5a:0f: 18:e9:cd:60 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRlo+nDyKwvA+EaNYmPxEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4MDM1ODkzYTI1N2E2NTRmM2Y4NTQ5NWM0MTY5ZWJlODZk ZTE4ZDEwHhcNMjYwMjA5MTIwMDMyWhcNMjYwMjEwMTIwMDMyWjAzMTEwLwYDVQQD EygzM2NmYTc1YzUwOTUwYzk0MDk5YWQzNWYzZWYzNjI2OTM0NWE3YjdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3yGK0tGh6w83t4u2OvLhoZwIAFsG AclcbCJqSHAxKpl5FyHHpWhyN6ZzpYXfuFzyafU8xemWw6tg5EAq7ZJ0Vn1P71Nq NTa+ub7CF/Gw5FbaxE2SqkgoJLz2DzJ1wDrRD/bH/aMWCWJ5+3UvW6onty3yolrz xIBEEfIaYFm/51C7CN85K1JN9ZsX2iG5eloyffsZqpYwd4C78semyxuMJYJQpSTa YUrxoczO/1HTXq58lcCr5yqLQntGSsJbNreZHHJb9F0gwbk60rjyTf17k7/P0vvu Y8Z9UVzpKsBGDYYbV7rvPs6qZmd63f9DCKcCgXhs3GGV5WDclOdHP8W+qwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDPPp1xQlQyUCZrTXz7zYmk0Wnt6MB8GA1UdIwQY MBaAFCgDWJOiV6ZU8/hUlcQWnr6G3hjRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0FOWWs2SlhwbFR6LUZTVnhCYWV2b2JlR05FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS85Yjc2ZTMtZTRmMS00MWEyLTlmMGUt OTM3ZTAwZDA3MzJmLzEvS0FOWWs2SlhwbFR6LUZTVnhCYWV2b2JlR05FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS85Yjc2ZTMtZTRmMS00MWEyLTlmMGUtOTM3ZTAwZDA3MzJm LzEvS0FOWWs2SlhwbFR6LUZTVnhCYWV2b2JlR05FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApJsfiHad GJqPY//ocW6p41Gj93pRrN+tAKi6Ol4KcRhf6vh0ycxG2RMqUGKVBkcOwJ/ops66 LL2du3FzDe1TRm94RxpLU3oo0DJFTzZFJMPY1AFrkZqL3dC1JJdCnbjRIUCV+2pO pcBQDrJyNIDBciBu7EBd1+0XVtCduPt7Fqk7ccjhQxKQpb2xqZght+F1N38+HqSC 7whYABalkfHbkKltFVMzK38quPHYHs2vUa47GDDC9pQ7JGqXvG9SOpu912LRzMGa 9+/JP39tOnakKl5j6mic/gINFS2+x5PrPKi122kWcHGnRLV86L/F13r7bgftl/Z+ Gs4kgVoPGOnNYA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:48:43 2026 by rpki-client