This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft File: KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft (raw, json) Hash identifier: voY0idzBfDx51lB2LxJr494RouR3NvhJD9lrYsfKe4Q= Subject key identifier: B2:AE:F2:07:DF:F3:BA:11:FA:E9:6E:3F:DB:42:18:AE:9C:A6:54:8D Authority key identifier: 28:F9:81:C2:0A:A6:52:AA:85:E0:08:BD:26:2F:7B:C1:F8:56:C3:58 Certificate issuer: /CN=28f981c20aa652aa85e008bd262f7bc1f856c358 Certificate serial: 019C413365D434554AA7C2CE76B8F07CE20B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft Manifest number: 1259 Signing time: Mon 09 Feb 2026 07:00:13 +0000 Manifest this update: Mon 09 Feb 2026 07:00:13 +0000 Manifest next update: Tue 10 Feb 2026 07:00:13 +0000 Files and hashes: 1: 6Rn-wxtOzItHCQZfTf_aB44eX3w.roa (hash: CLsXfryDKRJpVOl8XMFhcPTYQSBV9e1dqAwQW92Ka+4=) 2: KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl (hash: 4fGeOSvDJjJH/COyyixjfAr0eGA1rjuDtGoyFfOAbT0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:65:d4:34:55:4a:a7:c2:ce:76:b8:f0:7c:e2:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28f981c20aa652aa85e008bd262f7bc1f856c358 Validity Not Before: Feb 9 07:00:13 2026 GMT Not After : Feb 10 07:00:13 2026 GMT Subject: CN=b2aef207dff3ba11fae96e3fdb4218ae9ca6548d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e5:13:9a:fb:07:e7:44:bf:bc:38:c0:40:d3: d2:3a:ce:03:9a:99:b9:1d:f1:c9:91:f1:50:a2:6b: c2:f7:e9:1c:d3:ca:01:5a:7a:a4:b8:5b:79:47:c0: 6f:ef:93:20:8b:e0:42:18:91:a5:48:a0:f0:f6:f6: ba:9e:43:11:bd:53:a5:67:9e:f4:be:af:2e:fe:cb: 55:99:08:d2:a8:9e:9f:e7:77:c6:de:92:34:4f:2b: 1a:7e:36:15:60:41:6f:fe:e2:34:85:29:46:9e:bd: 8d:62:3b:ed:87:d8:b4:b5:df:63:09:e2:fa:0d:e8: d9:ff:6f:25:ad:81:3e:1f:aa:14:50:8e:70:b6:96: ef:ba:06:ab:40:9d:28:73:a8:5d:59:fc:04:8d:ab: 01:85:ea:45:18:f8:0f:08:47:7c:b4:4c:fc:ef:cd: 9a:50:94:56:a2:50:5d:15:a8:b1:2e:6c:61:a0:c4: 03:9c:4a:33:de:5e:bd:0e:40:17:f6:d7:dd:83:c3: e1:26:12:f2:fa:5d:a8:32:89:aa:4e:bd:32:e0:52: 5e:50:a6:e5:80:32:93:4e:75:a6:35:1b:c5:1a:af: d5:0c:08:63:15:c0:ff:50:4b:d9:ea:34:66:15:ea: 87:d3:dd:52:fb:03:3f:18:73:ba:b0:3a:03:24:8b: 7e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:AE:F2:07:DF:F3:BA:11:FA:E9:6E:3F:DB:42:18:AE:9C:A6:54:8D X509v3 Authority Key Identifier: keyid:28:F9:81:C2:0A:A6:52:AA:85:E0:08:BD:26:2F:7B:C1:F8:56:C3:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:39:85:f7:a4:26:b1:fc:b0:4e:cf:18:d2:85:76:4d:61:8b: f9:88:fd:ae:ef:05:95:30:1c:1e:4b:18:50:b4:c2:9d:fb:f7: a5:7b:36:db:84:5d:83:96:23:f5:89:1a:c4:1f:fc:e4:f0:42: a3:62:b6:6d:34:97:7f:29:38:33:e0:61:ad:eb:36:66:0e:5a: 37:18:df:33:b5:30:a0:ee:37:17:eb:ef:91:89:8b:89:d6:34: bc:cf:29:a0:fd:90:80:4b:bd:ab:1a:80:38:61:ba:3c:4e:79: 96:e1:a8:2d:f8:31:b8:34:e1:2b:65:c7:7d:98:27:14:51:80: 51:71:58:74:82:76:55:95:00:7f:64:11:6d:9b:6c:56:09:f0: a3:7e:05:3a:a9:50:cf:5b:8b:2b:00:75:81:f7:66:ab:7d:52: 27:1e:79:ef:23:63:f1:78:1c:73:54:0b:7d:d4:5e:d6:60:5a: 45:fd:c6:08:d3:d9:1d:3c:51:cf:a0:bb:df:c9:92:ec:63:7e: 62:1b:d4:41:92:a3:b8:27:ba:0c:56:6f:a4:fc:75:9d:23:bd: c9:b2:d2:6d:26:f7:01:b5:6f:43:b4:96:9d:80:73:f4:e7:ba: 5f:3d:93:d6:6f:29:c3:2c:1a:15:e7:ab:10:db:7a:d7:08:a0: b2:09:0f:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM2XUNFVKp8LOdrjwfOILMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4Zjk4MWMyMGFhNjUyYWE4NWUwMDhiZDI2MmY3YmMxZjg1 NmMzNTgwHhcNMjYwMjA5MDcwMDEzWhcNMjYwMjEwMDcwMDEzWjAzMTEwLwYDVQQD EyhiMmFlZjIwN2RmZjNiYTExZmFlOTZlM2ZkYjQyMThhZTljYTY1NDhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAveUTmvsH50S/vDjAQNPSOs4Dmpm5 HfHJkfFQomvC9+kc08oBWnqkuFt5R8Bv75Mgi+BCGJGlSKDw9va6nkMRvVOlZ570 vq8u/stVmQjSqJ6f53fG3pI0TysafjYVYEFv/uI0hSlGnr2NYjvth9i0td9jCeL6 DejZ/28lrYE+H6oUUI5wtpbvugarQJ0oc6hdWfwEjasBhepFGPgPCEd8tEz8782a UJRWolBdFaixLmxhoMQDnEoz3l69DkAX9tfdg8PhJhLy+l2oMomqTr0y4FJeUKbl gDKTTnWmNRvFGq/VDAhjFcD/UEvZ6jRmFeqH091S+wM/GHO6sDoDJIt+jwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLKu8gff87oR+uluP9tCGK6cplSNMB8GA1UdIwQY MBaAFCj5gcIKplKqheAIvSYve8H4VsNYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1BtQndncW1VcXFGNEFpOUppOTd3ZmhXdzFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS8zNTJmOWEtNGZkZS00ODRhLWI5MjMt Yzg3ZmJiZDAzZTg2LzEvS1BtQndncW1VcXFGNEFpOUppOTd3ZmhXdzFnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS8zNTJmOWEtNGZkZS00ODRhLWI5MjMtYzg3ZmJiZDAzZTg2 LzEvS1BtQndncW1VcXFGNEFpOUppOTd3ZmhXdzFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAjmF96Qm sfywTs8Y0oV2TWGL+Yj9ru8FlTAcHksYULTCnfv3pXs224Rdg5Yj9YkaxB/85PBC o2K2bTSXfyk4M+Bhres2Zg5aNxjfM7UwoO43F+vvkYmLidY0vM8poP2QgEu9qxqA OGG6PE55luGoLfgxuDThK2XHfZgnFFGAUXFYdIJ2VZUAf2QRbZtsVgnwo34FOqlQ z1uLKwB1gfdmq31SJx557yNj8Xgcc1QLfdRe1mBaRf3GCNPZHTxRz6C738mS7GN+ YhvUQZKjuCe6DFZvpPx1nSO9ybLSbSb3AbVvQ7SWnYBz9Oe6Xz2T1m8pwywaFeer ENt61wigsgkPww== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:41 2026 by rpki-client