This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft File: KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft (raw, json) Hash identifier: HmnXoluen6IZJx9kBj+oDnYZm/aywOeuX3x6kbDuT3E= Subject key identifier: E9:4E:EF:A4:B1:AD:20:C9:3A:3F:7D:FE:D7:84:E7:82:DC:2D:34:A3 Authority key identifier: 28:C2:20:2A:44:35:37:FB:8F:B2:80:56:7A:17:48:5F:12:30:C4:11 Certificate issuer: /CN=28c2202a443537fb8fb280567a17485f1230c411 Certificate serial: 019C420F81AC28A1425DEE079536BA7A9733 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft Manifest number: 1813 Signing time: Mon 09 Feb 2026 11:00:38 +0000 Manifest this update: Mon 09 Feb 2026 11:00:38 +0000 Manifest next update: Tue 10 Feb 2026 11:00:38 +0000 Files and hashes: 1: KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl (hash: SJqVrsAQOlk/350kDZm80lSXUtx+hvhRDJ4w8ZJcQt8=) 2: rAXOeYyJicjxp8FzJx__Y7hlvEM.roa (hash: shr4TV48j/I82nbVkR38hVjMhfoyIR4wttCVbDSd4eg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:81:ac:28:a1:42:5d:ee:07:95:36:ba:7a:97:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28c2202a443537fb8fb280567a17485f1230c411 Validity Not Before: Feb 9 11:00:38 2026 GMT Not After : Feb 10 11:00:38 2026 GMT Subject: CN=e94eefa4b1ad20c93a3f7dfed784e782dc2d34a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:29:ff:6e:d3:27:77:f3:27:2e:87:16:3f:93: 37:8a:8f:b3:cd:e2:da:e0:59:87:3c:6e:92:d0:39: 6f:11:67:54:0d:63:f5:2b:a8:53:92:67:7e:76:10: d0:9d:07:74:07:c6:56:d0:3d:9e:cf:2a:d2:8d:cd: 00:25:90:67:30:b4:67:24:44:3c:67:c7:08:4a:3e: 7b:34:8b:02:70:8f:3b:0c:d7:c7:be:67:92:be:b2: 95:d6:5c:2b:7e:9f:88:2f:0c:ee:7a:1e:80:a5:43: 66:e2:a4:ca:d3:96:af:4d:37:9b:f0:f6:71:98:c7: 45:a4:b1:ba:06:15:ec:b8:47:de:53:f2:0b:18:b7: a0:2e:ca:f1:e6:e1:3e:ac:c4:75:3b:6e:29:74:63: 4c:94:1b:de:96:a4:36:40:8f:2e:17:2b:24:16:cd: 01:08:12:5e:da:4d:17:70:1d:8a:f0:c7:e0:1e:70: 35:71:ae:3b:ce:80:7c:f8:62:c6:86:ee:5f:6f:a5: 29:2c:3c:81:dc:70:79:dc:2f:e1:3a:65:5a:50:03: 25:83:f8:48:58:bd:11:3f:e6:86:16:7d:2d:0c:94: 35:7a:2d:35:50:98:5b:8d:0a:cd:31:89:84:5a:29: aa:c9:67:1c:1a:1c:b0:ba:01:eb:e7:90:78:a3:26: c3:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:4E:EF:A4:B1:AD:20:C9:3A:3F:7D:FE:D7:84:E7:82:DC:2D:34:A3 X509v3 Authority Key Identifier: keyid:28:C2:20:2A:44:35:37:FB:8F:B2:80:56:7A:17:48:5F:12:30:C4:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b6:5a:ea:22:e9:87:6e:eb:1e:80:f9:e5:cd:94:d1:af:4f:4d: 85:9c:2c:8d:88:7a:13:9c:b9:d6:fb:9b:28:df:42:c6:89:14: 39:74:46:ae:13:e3:e4:31:c7:70:97:43:56:ce:7a:3b:61:89: c1:65:bc:63:db:ff:54:70:e6:ef:e7:d5:6a:28:6f:4b:b7:f5: 99:f9:77:dd:1b:f5:56:7c:d1:0d:aa:56:a0:7a:31:1c:63:b2: 4f:44:d2:1c:0e:80:9d:39:aa:ad:06:db:1c:79:1b:aa:7c:4f: 6f:89:61:d9:c1:e2:98:bf:21:6c:87:b3:75:36:8a:f9:ec:53: a6:cf:6d:2e:4b:df:ed:d3:60:8b:28:1e:7b:ad:99:88:8d:90: 16:85:4d:23:b8:ae:ca:95:07:f3:a4:c4:fc:97:b2:7c:74:08: ea:cd:f8:58:f1:90:26:92:72:8d:47:1a:f9:56:22:d9:d5:c1: b4:a8:6e:ff:44:6b:23:86:5e:ae:cf:e5:ef:11:e0:a0:e6:b4: bd:1e:fc:67:22:53:a3:9d:bf:a9:ed:b3:6d:da:40:68:a2:83: ad:f5:2a:0b:97:7e:8f:d2:f6:08:ba:7b:4a:72:5c:5f:ab:9d: d8:a7:cf:43:23:b5:d5:f6:65:62:0b:61:76:07:b7:f7:8a:92: c9:18:d4:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD4GsKKFCXe4HlTa6epczMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4YzIyMDJhNDQzNTM3ZmI4ZmIyODA1NjdhMTc0ODVmMTIz MGM0MTEwHhcNMjYwMjA5MTEwMDM4WhcNMjYwMjEwMTEwMDM4WjAzMTEwLwYDVQQD EyhlOTRlZWZhNGIxYWQyMGM5M2EzZjdkZmVkNzg0ZTc4MmRjMmQzNGEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Sn/btMnd/MnLocWP5M3io+zzeLa 4FmHPG6S0DlvEWdUDWP1K6hTkmd+dhDQnQd0B8ZW0D2ezyrSjc0AJZBnMLRnJEQ8 Z8cISj57NIsCcI87DNfHvmeSvrKV1lwrfp+ILwzueh6ApUNm4qTK05avTTeb8PZx mMdFpLG6BhXsuEfeU/ILGLegLsrx5uE+rMR1O24pdGNMlBvelqQ2QI8uFyskFs0B CBJe2k0XcB2K8MfgHnA1ca47zoB8+GLGhu5fb6UpLDyB3HB53C/hOmVaUAMlg/hI WL0RP+aGFn0tDJQ1ei01UJhbjQrNMYmEWimqyWccGhywugHr55B4oybDawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOlO76SxrSDJOj99/teE54LcLTSjMB8GA1UdIwQY MBaAFCjCICpENTf7j7KAVnoXSF8SMMQRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS01JZ0trUTFOX3VQc29CV2VoZElYeEl3eEJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC9hMmNlNjQtMzNhZi00NWZlLTkwZWIt ODlkMjYxMWE5NWRiLzEvS01JZ0trUTFOX3VQc29CV2VoZElYeEl3eEJFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC9hMmNlNjQtMzNhZi00NWZlLTkwZWItODlkMjYxMWE5NWRi LzEvS01JZ0trUTFOX3VQc29CV2VoZElYeEl3eEJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtlrqIumH busegPnlzZTRr09NhZwsjYh6E5y51vubKN9CxokUOXRGrhPj5DHHcJdDVs56O2GJ wWW8Y9v/VHDm7+fVaihvS7f1mfl33Rv1VnzRDapWoHoxHGOyT0TSHA6AnTmqrQbb HHkbqnxPb4lh2cHimL8hbIezdTaK+exTps9tLkvf7dNgiygee62ZiI2QFoVNI7iu ypUH86TE/JeyfHQI6s34WPGQJpJyjUca+VYi2dXBtKhu/0RrI4Zers/l7xHgoOa0 vR78ZyJTo52/qe2zbdpAaKKDrfUqC5d+j9L2CLp7SnJcX6ud2KfPQyO11fZlYgth dge394qSyRjURg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:01 2026 by rpki-client