This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/bde818-c0ed-4924-8d7b-6ec40c85a2ae/1/KWLmoTNMnKnJPtV_9K1y2ZzpGtA.mft File: KWLmoTNMnKnJPtV_9K1y2ZzpGtA.mft (raw, json) Hash identifier: mD6RD7RmCm7/EpvP/PoYTY2itUx22rVNDPeBBLQ9tCo= Subject key identifier: F4:56:3B:05:40:C7:92:27:30:2D:7A:6A:96:9E:58:B4:9D:25:EB:14 Authority key identifier: 29:62:E6:A1:33:4C:9C:A9:C9:3E:D5:7F:F4:AD:72:D9:9C:E9:1A:D0 Certificate issuer: /CN=2962e6a1334c9ca9c93ed57ff4ad72d99ce91ad0 Certificate serial: 019BB327D9F87F6402FDB1C2D68844D69E76 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWLmoTNMnKnJPtV_9K1y2ZzpGtA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/bde818-c0ed-4924-8d7b-6ec40c85a2ae/1/KWLmoTNMnKnJPtV_9K1y2ZzpGtA.mft Manifest number: 08AA Signing time: Mon 12 Jan 2026 17:01:31 +0000 Manifest this update: Mon 12 Jan 2026 17:01:31 +0000 Manifest next update: Tue 13 Jan 2026 17:01:31 +0000 Files and hashes: 1: KWLmoTNMnKnJPtV_9K1y2ZzpGtA.crl (hash: QFnFe/R5ZFTcCpeA7jmAHP9KhpMt8DD0C/7oM5/zHwA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/bde818-c0ed-4924-8d7b-6ec40c85a2ae/1/KWLmoTNMnKnJPtV_9K1y2ZzpGtA.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/bde818-c0ed-4924-8d7b-6ec40c85a2ae/1/KWLmoTNMnKnJPtV_9K1y2ZzpGtA.mft rsync://rpki.ripe.net/repository/DEFAULT/KWLmoTNMnKnJPtV_9K1y2ZzpGtA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 16:30:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:b3:27:d9:f8:7f:64:02:fd:b1:c2:d6:88:44:d6:9e:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2962e6a1334c9ca9c93ed57ff4ad72d99ce91ad0 Validity Not Before: Jan 12 17:01:31 2026 GMT Not After : Jan 13 17:01:31 2026 GMT Subject: CN=f4563b0540c79227302d7a6a969e58b49d25eb14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:02:64:eb:08:c8:92:7b:3c:a6:d0:6e:f1:78: d8:25:0f:c2:d7:2f:e0:fc:51:b8:20:9c:94:df:a9: 10:89:e0:83:24:16:e1:d3:f5:65:a3:8e:b9:91:ec: 03:3d:8d:68:31:a2:2c:8f:3a:00:4d:0b:00:a5:19: 37:ad:77:99:ce:08:f7:94:b7:3a:98:37:d2:5c:07: 43:ec:72:a1:0c:0a:93:29:fc:30:e0:b3:20:69:dc: 29:cc:f1:36:c5:05:91:c4:96:70:a6:6c:2d:65:ab: e2:b5:28:6f:0e:15:2f:30:57:7e:7c:c2:ab:69:0b: 0a:29:98:76:30:4f:5a:e6:91:09:88:51:12:6c:7b: f8:d5:9c:fe:d8:73:c7:0b:53:80:5f:31:12:c7:01: 50:f3:7f:a5:db:2a:cb:31:31:20:fc:76:d8:6d:1d: 5f:eb:6b:58:a0:a7:5f:b2:72:e9:4d:ce:6a:fa:0d: c1:35:c0:95:16:ce:13:df:4d:d7:f9:ec:19:5b:f1: 27:24:37:ef:20:ba:17:09:d1:e0:bb:fe:b9:40:f3: dc:c0:9d:dc:35:69:5e:cc:af:56:d7:ac:be:e9:f1: 92:98:94:85:26:73:f7:5e:6e:9e:47:21:44:e4:74: 5f:32:44:a1:6c:45:7c:87:f5:f2:89:77:f0:62:1d: 81:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:56:3B:05:40:C7:92:27:30:2D:7A:6A:96:9E:58:B4:9D:25:EB:14 X509v3 Authority Key Identifier: keyid:29:62:E6:A1:33:4C:9C:A9:C9:3E:D5:7F:F4:AD:72:D9:9C:E9:1A:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWLmoTNMnKnJPtV_9K1y2ZzpGtA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/bde818-c0ed-4924-8d7b-6ec40c85a2ae/1/KWLmoTNMnKnJPtV_9K1y2ZzpGtA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/bde818-c0ed-4924-8d7b-6ec40c85a2ae/1/KWLmoTNMnKnJPtV_9K1y2ZzpGtA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:87:27:90:fb:e6:6a:09:7b:a7:56:e2:64:94:81:72:26:2f: 62:52:38:5f:42:8a:41:e5:a1:88:4d:22:99:c0:a3:e3:69:e2: 65:60:1d:c3:e9:35:3d:18:c3:cf:de:22:cc:1f:55:80:0f:1d: b0:6c:d8:1a:d4:ab:85:c7:82:de:cc:eb:5e:9e:33:20:5b:dc: 35:7f:f6:0d:16:1f:d1:13:6b:7b:90:ee:dd:de:b7:aa:21:16: f7:af:00:03:17:a0:0f:cd:cc:e9:06:5b:2d:51:4c:16:54:3f: 31:75:b0:69:ec:d4:12:08:10:0e:a2:80:1c:85:6a:a3:ef:b9: 43:69:11:9d:4e:82:4a:b3:7a:a9:c4:c9:95:bd:a0:be:0f:7c: fe:b1:63:f1:2d:62:d8:85:0d:21:09:f4:26:ae:c4:7d:20:83: 40:67:e2:e7:b7:7f:6d:31:ed:df:3e:57:4d:8a:ac:10:eb:2d: 49:4f:af:d0:52:e1:ac:1f:08:3c:72:0d:59:5a:e1:c1:aa:ba: db:a7:86:61:0d:e5:e7:f1:bc:bd:89:93:8b:b3:fc:4b:63:60: 16:f1:31:63:86:97:c0:a1:91:f6:e0:c5:9d:2c:cd:c1:c6:67: b7:3c:93:62:98:33:69:f8:8d:23:3d:96:c7:65:57:07:6e:32: d3:f4:c8:fa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuzJ9n4f2QC/bHC1ohE1p52MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5NjJlNmExMzM0YzljYTljOTNlZDU3ZmY0YWQ3MmQ5OWNl OTFhZDAwHhcNMjYwMTEyMTcwMTMxWhcNMjYwMTEzMTcwMTMxWjAzMTEwLwYDVQQD EyhmNDU2M2IwNTQwYzc5MjI3MzAyZDdhNmE5NjllNThiNDlkMjVlYjE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9gJk6wjIkns8ptBu8XjYJQ/C1y/g /FG4IJyU36kQieCDJBbh0/Vlo465kewDPY1oMaIsjzoATQsApRk3rXeZzgj3lLc6 mDfSXAdD7HKhDAqTKfww4LMgadwpzPE2xQWRxJZwpmwtZavitShvDhUvMFd+fMKr aQsKKZh2ME9a5pEJiFESbHv41Zz+2HPHC1OAXzESxwFQ83+l2yrLMTEg/HbYbR1f 62tYoKdfsnLpTc5q+g3BNcCVFs4T303X+ewZW/EnJDfvILoXCdHgu/65QPPcwJ3c NWlezK9W16y+6fGSmJSFJnP3Xm6eRyFE5HRfMkShbEV8h/XyiXfwYh2BFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPRWOwVAx5InMC16apaeWLSdJesUMB8GA1UdIwQY MBaAFCli5qEzTJypyT7Vf/Stctmc6RrQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1dMbW9UTk1uS25KUHRWXzlLMXkyWnpwR3RBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC9iZGU4MTgtYzBlZC00OTI0LThkN2It NmVjNDBjODVhMmFlLzEvS1dMbW9UTk1uS25KUHRWXzlLMXkyWnpwR3RBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC9iZGU4MTgtYzBlZC00OTI0LThkN2ItNmVjNDBjODVhMmFl LzEvS1dMbW9UTk1uS25KUHRWXzlLMXkyWnpwR3RBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAYcnkPvm agl7p1biZJSBciYvYlI4X0KKQeWhiE0imcCj42niZWAdw+k1PRjDz94izB9VgA8d sGzYGtSrhceC3szrXp4zIFvcNX/2DRYf0RNre5Du3d63qiEW968AAxegD83M6QZb LVFMFlQ/MXWwaezUEggQDqKAHIVqo++5Q2kRnU6CSrN6qcTJlb2gvg98/rFj8S1i 2IUNIQn0Jq7EfSCDQGfi57d/bTHt3z5XTYqsEOstSU+v0FLhrB8IPHINWVrhwaq6 26eGYQ3l5/G8vYmTi7P8S2NgFvExY4aXwKGR9uDFnSzNwcZntzyTYpgzafiNIz2W x2VXB24y0/TI+g== -----END CERTIFICATE-----Generated at Mon Jan 12 23:49:14 2026 by rpki-client