This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft File: kpbYTmTVXsgSR2-4BvD-daCL-ys.mft (raw, json) Hash identifier: 1tsoKnrgZX780TTlIrWx6X/FsJe9TOY/P4jC6BmyDd8= Subject key identifier: 8F:6D:A8:B4:29:02:05:D4:50:91:6B:88:8E:00:14:2F:E8:02:24:4D Authority key identifier: 92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B Certificate issuer: /CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b Certificate serial: 019C43FE8EF29A3866248FD605EDF58C0E4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft Manifest number: 1812 Signing time: Mon 09 Feb 2026 20:01:21 +0000 Manifest this update: Mon 09 Feb 2026 20:01:21 +0000 Manifest next update: Tue 10 Feb 2026 20:01:21 +0000 Files and hashes: 1: WMTxNqy5dxe24um7JtSXmDnNRnM.roa (hash: TxZKxHcS8Fj+JFe1cwBosTBaRiZeeZ2HacumzoOW+L8=) 2: kpbYTmTVXsgSR2-4BvD-daCL-ys.crl (hash: Y3gtGbBXO5b5zlzrisDepkqU4cVwxftXe/4FI6q9VAs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:8e:f2:9a:38:66:24:8f:d6:05:ed:f5:8c:0e:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b Validity Not Before: Feb 9 20:01:21 2026 GMT Not After : Feb 10 20:01:21 2026 GMT Subject: CN=8f6da8b4290205d450916b888e00142fe802244d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f0:3e:37:7a:bf:5a:9a:3a:c7:3c:1f:05:a1: 8f:84:12:1c:d2:38:be:95:5b:ab:d9:04:e4:27:9a: 61:ce:86:73:73:0a:7c:f3:39:b1:0c:2c:83:f7:d8: 9e:b5:8d:2c:0c:ee:da:1b:db:fa:52:8d:8f:81:25: 16:28:1b:e9:32:79:70:4d:b4:7f:a6:a0:18:60:b4: 01:34:88:40:36:d7:fd:df:24:62:6f:ad:83:c0:be: 05:a6:28:7d:20:4f:5c:ce:44:c9:76:30:43:7a:ea: d5:b5:de:7a:d7:fd:8d:7e:69:0f:eb:56:31:25:e3: b5:70:e3:92:51:a5:d0:26:01:d3:75:16:3f:b7:ca: 4d:1e:79:de:59:81:7c:9c:15:db:7c:f6:16:f0:c7: fe:05:c5:ad:d3:53:e1:10:b8:8b:58:f6:a0:4f:cc: be:ed:ca:fb:ea:93:94:ab:57:07:91:67:8c:18:24: ce:b3:7d:45:4e:d9:2a:de:b2:a7:45:dd:f8:fe:aa: db:de:24:89:4c:8f:b6:09:3e:ed:00:0c:f3:71:a4: c6:1d:50:d5:b5:d0:cd:24:b4:95:93:b7:32:d4:e1: 96:fd:f0:86:c4:d0:41:07:4b:2d:f4:43:d2:40:40: f9:aa:3d:2e:cf:cd:dc:7a:1d:58:b5:c6:c6:78:c5: e9:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:6D:A8:B4:29:02:05:D4:50:91:6B:88:8E:00:14:2F:E8:02:24:4D X509v3 Authority Key Identifier: keyid:92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:89:04:26:0c:fa:fe:5f:29:28:5c:25:fd:ec:54:41:28:56: 32:f2:ea:57:7f:97:2e:34:60:d6:57:3c:0f:4c:ff:34:bc:fe: 20:38:55:ea:aa:88:8b:33:7b:e8:96:4d:25:0b:ef:c5:9e:61: 1a:58:2b:27:81:67:e2:32:e3:52:59:ca:fe:14:3c:34:15:ae: 65:48:71:08:c6:0a:09:f6:0f:ab:4f:b8:ba:e8:43:c6:f4:23: c7:4c:69:d9:df:bd:f4:ff:e7:28:36:38:0b:a4:9b:df:f5:00: 11:ed:63:7c:97:47:a1:b9:b0:0b:d0:cd:a9:08:8f:73:07:c7: fc:0f:1c:dd:f6:80:8a:26:89:d7:75:19:51:0d:d0:e8:38:4e: 73:78:d3:58:74:11:0f:14:bc:ec:70:ed:67:7e:07:1a:35:c0: e2:b2:0b:db:10:06:fc:21:6c:77:41:b2:71:3c:e8:09:0f:47: 57:db:d7:eb:0b:52:f0:bf:35:f3:07:11:e0:e1:e9:0c:0c:de: bc:52:dd:21:4b:a9:09:9a:50:84:da:6f:b8:6a:30:a9:43:7c: 14:c0:08:51:fa:2c:3c:7d:c6:79:81:33:7e:7a:da:c3:ee:fc: f0:ec:16:ea:a2:95:a8:f9:78:0c:89:38:93:d9:67:8c:db:a7: 3a:da:8f:6d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/o7ymjhmJI/WBe31jA5OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyOTZkODRlNjRkNTVlYzgxMjQ3NmZiODA2ZjBmZTc1YTA4 YmZiMmIwHhcNMjYwMjA5MjAwMTIxWhcNMjYwMjEwMjAwMTIxWjAzMTEwLwYDVQQD Eyg4ZjZkYThiNDI5MDIwNWQ0NTA5MTZiODg4ZTAwMTQyZmU4MDIyNDRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyvA+N3q/Wpo6xzwfBaGPhBIc0ji+ lVur2QTkJ5phzoZzcwp88zmxDCyD99ietY0sDO7aG9v6Uo2PgSUWKBvpMnlwTbR/ pqAYYLQBNIhANtf93yRib62DwL4Fpih9IE9czkTJdjBDeurVtd561/2NfmkP61Yx JeO1cOOSUaXQJgHTdRY/t8pNHnneWYF8nBXbfPYW8Mf+BcWt01PhELiLWPagT8y+ 7cr76pOUq1cHkWeMGCTOs31FTtkq3rKnRd34/qrb3iSJTI+2CT7tAAzzcaTGHVDV tdDNJLSVk7cy1OGW/fCGxNBBB0st9EPSQED5qj0uz83ceh1YtcbGeMXpFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI9tqLQpAgXUUJFriI4AFC/oAiRNMB8GA1UdIwQY MBaAFJKW2E5k1V7IEkdvuAbw/nWgi/srMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3BiWVRtVFZYc2dTUjItNEJ2RC1kYUNMLXlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9hNTRlYjEtMzNkZS00MDFmLTkzNWEt ZjM0OTI4NDUwOWI3LzEva3BiWVRtVFZYc2dTUjItNEJ2RC1kYUNMLXlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My9hNTRlYjEtMzNkZS00MDFmLTkzNWEtZjM0OTI4NDUwOWI3 LzEva3BiWVRtVFZYc2dTUjItNEJ2RC1kYUNMLXlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARokEJgz6 /l8pKFwl/exUQShWMvLqV3+XLjRg1lc8D0z/NLz+IDhV6qqIizN76JZNJQvvxZ5h GlgrJ4Fn4jLjUlnK/hQ8NBWuZUhxCMYKCfYPq0+4uuhDxvQjx0xp2d+99P/nKDY4 C6Sb3/UAEe1jfJdHobmwC9DNqQiPcwfH/A8c3faAiiaJ13UZUQ3Q6DhOc3jTWHQR DxS87HDtZ34HGjXA4rIL2xAG/CFsd0GycTzoCQ9HV9vX6wtS8L818wcR4OHpDAze vFLdIUupCZpQhNpvuGowqUN8FMAIUfosPH3GeYEzfnraw+788OwW6qKVqPl4DIk4 k9lnjNunOtqPbQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:38:47 2026 by rpki-client