This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft File: kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft (raw, json) Hash identifier: jocVUr1hmESdFgImV7G8IOx9C1+2tOrNQJFBIp24qAI= Subject key identifier: 3C:A3:AF:EC:6F:B2:03:26:6A:E0:0C:AD:32:23:D2:5A:F0:2E:58:B5 Authority key identifier: 92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23 Certificate issuer: /CN=92680145cfb2371ecf4c364726b64708572c4223 Certificate serial: 019C4358D8F247E10D4B0875BC9B71B5B053 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft Manifest number: 0C1E Signing time: Mon 09 Feb 2026 17:00:22 +0000 Manifest this update: Mon 09 Feb 2026 17:00:22 +0000 Manifest next update: Tue 10 Feb 2026 17:00:22 +0000 Files and hashes: 1: cBSRB4O0rt965GGsn8A2s4pg_DA.roa (hash: uu3le68VCrwbgy10AnjrGBO0DA+D/b5MUJEn6iEvayk=) 2: kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl (hash: Q5fh+UOYPN+Rkm/GI1ySdr8LYw6Hc3pDBS4t9Jdd27o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:d8:f2:47:e1:0d:4b:08:75:bc:9b:71:b5:b0:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92680145cfb2371ecf4c364726b64708572c4223 Validity Not Before: Feb 9 17:00:22 2026 GMT Not After : Feb 10 17:00:22 2026 GMT Subject: CN=3ca3afec6fb203266ae00cad3223d25af02e58b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:c5:eb:a6:e0:2c:3e:54:6d:82:b3:5e:dc:4b: d8:46:e7:78:f9:6d:c2:91:83:5e:15:62:23:63:82: 17:17:81:1a:35:d6:7a:55:55:45:1f:60:71:4a:3e: a7:de:3a:44:ee:b3:61:d7:0b:2c:5a:57:74:69:8d: e6:82:5c:8e:61:1d:5b:f8:22:46:6e:bd:b3:22:8d: 11:7c:d6:87:00:8a:aa:cb:67:8f:59:60:15:34:6b: 2f:19:90:ae:a7:01:0d:9f:cb:3b:b4:66:6b:34:b4: d6:8c:89:da:0b:b6:21:ab:af:73:23:a3:55:3d:70: f8:4d:79:5a:96:42:29:b6:bb:cd:19:03:e2:1b:fe: fc:55:11:ae:39:f6:c6:5b:53:3f:24:21:af:ce:6f: c8:18:db:36:98:aa:3b:02:d3:6c:d1:68:d0:b3:69: 34:c3:82:04:84:90:9f:92:e5:6a:5f:b2:1a:15:ac: d7:2f:5a:2f:24:1f:8c:23:de:5b:12:59:3a:46:4e: d1:b2:3b:4a:87:5e:6c:9c:a2:32:91:63:8d:2f:45: 14:d8:98:51:f6:f1:93:e1:ca:f4:99:74:52:25:ee: f9:c4:f7:f0:c2:ee:d7:93:ab:06:cc:79:af:98:2d: 30:20:d5:bd:dc:4b:83:47:c1:c0:6c:9b:95:d2:80: e4:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:A3:AF:EC:6F:B2:03:26:6A:E0:0C:AD:32:23:D2:5A:F0:2E:58:B5 X509v3 Authority Key Identifier: keyid:92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:e8:5c:0b:9c:08:da:63:8d:02:c6:df:fa:84:ff:95:75:ad: fd:b1:95:b7:0d:96:15:30:a1:e2:bf:17:82:5b:45:1e:a3:c7: 01:93:e8:92:c7:2f:3d:cf:1d:c4:b1:fb:62:33:ba:58:53:a1: 7e:d9:49:47:32:23:13:0f:2d:38:9d:df:38:b3:34:08:d2:aa: 6c:7d:f9:b8:c6:d9:f2:df:d0:ca:23:93:28:ac:e8:ac:6b:3c: 53:6f:d0:e8:b5:94:62:24:eb:7b:60:64:11:98:85:b1:c1:5f: 10:8e:98:b3:8f:74:f1:69:82:4e:79:cd:f0:bc:f8:3b:1e:6b: 56:5f:2e:f0:26:8b:50:4a:1b:b0:c1:6a:fb:91:f6:82:ec:b2: 1a:4d:fc:5a:d1:2f:41:d8:e3:4f:81:54:98:c5:4d:3d:bb:17: 7d:cf:d2:0b:c7:7b:ff:10:9f:cd:47:5f:3d:61:f6:67:30:15: 55:79:eb:a3:e1:f7:ea:b0:2b:3d:f4:98:b0:68:27:ca:b3:d0: 10:97:de:5f:d0:a6:5f:30:de:5f:24:a0:2b:82:8c:dd:4d:a1: 2f:6b:93:4c:56:95:98:64:ff:83:5c:47:26:c0:ed:ce:c6:12: 85:7b:5b:49:35:f5:50:bf:d1:22:ce:2a:4b:32:50:d0:ba:a7: 2a:81:80:c9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWNjyR+ENSwh1vJtxtbBTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyNjgwMTQ1Y2ZiMjM3MWVjZjRjMzY0NzI2YjY0NzA4NTcy YzQyMjMwHhcNMjYwMjA5MTcwMDIyWhcNMjYwMjEwMTcwMDIyWjAzMTEwLwYDVQQD EygzY2EzYWZlYzZmYjIwMzI2NmFlMDBjYWQzMjIzZDI1YWYwMmU1OGI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl8XrpuAsPlRtgrNe3EvYRud4+W3C kYNeFWIjY4IXF4EaNdZ6VVVFH2BxSj6n3jpE7rNh1wssWld0aY3mglyOYR1b+CJG br2zIo0RfNaHAIqqy2ePWWAVNGsvGZCupwENn8s7tGZrNLTWjInaC7Yhq69zI6NV PXD4TXlalkIptrvNGQPiG/78VRGuOfbGW1M/JCGvzm/IGNs2mKo7AtNs0WjQs2k0 w4IEhJCfkuVqX7IaFazXL1ovJB+MI95bElk6Rk7RsjtKh15snKIykWONL0UU2JhR 9vGT4cr0mXRSJe75xPfwwu7Xk6sGzHmvmC0wINW93EuDR8HAbJuV0oDkKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDyjr+xvsgMmauAMrTIj0lrwLli1MB8GA1UdIwQY MBaAFJJoAUXPsjcez0w2Rya2RwhXLEIjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva21nQlJjLXlOeDdQVERaSEpyWkhDRmNzUWlNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8xM2Y2OWEtMGJiZC00NTk1LThhNDQt MTNkN2JlYmY0N2JhLzEva21nQlJjLXlOeDdQVERaSEpyWkhDRmNzUWlNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi8xM2Y2OWEtMGJiZC00NTk1LThhNDQtMTNkN2JlYmY0N2Jh LzEva21nQlJjLXlOeDdQVERaSEpyWkhDRmNzUWlNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMehcC5wI 2mONAsbf+oT/lXWt/bGVtw2WFTCh4r8XgltFHqPHAZPokscvPc8dxLH7YjO6WFOh ftlJRzIjEw8tOJ3fOLM0CNKqbH35uMbZ8t/QyiOTKKzorGs8U2/Q6LWUYiTre2Bk EZiFscFfEI6Ys4908WmCTnnN8Lz4Ox5rVl8u8CaLUEobsMFq+5H2guyyGk38WtEv QdjjT4FUmMVNPbsXfc/SC8d7/xCfzUdfPWH2ZzAVVXnro+H36rArPfSYsGgnyrPQ EJfeX9CmXzDeXySgK4KM3U2hL2uTTFaVmGT/g1xHJsDtzsYShXtbSTX1UL/RIs4q SzJQ0LqnKoGAyQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:34:18 2026 by rpki-client