This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft File: KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft (raw, json) Hash identifier: UteTgUvshymx6exSkimYknDxhA8/hYSFr7OfLE4JNaQ= Subject key identifier: 95:80:22:C4:B7:06:FD:43:72:02:58:26:07:93:14:B5:6D:D1:3C:E6 Authority key identifier: 28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48 Certificate issuer: /CN=2860f15d278379483aaa0613cbf592e72cc81e48 Certificate serial: 019C41D8B6E60245EFF35AC88E4398BE7749 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft Manifest number: 0B2D Signing time: Mon 09 Feb 2026 10:00:47 +0000 Manifest this update: Mon 09 Feb 2026 10:00:47 +0000 Manifest next update: Tue 10 Feb 2026 10:00:47 +0000 Files and hashes: 1: KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl (hash: 9sFUKgCHrh2u9Dy+xEGK0/kPC6aOdjZ0aqwHn+yQ8k0=) 2: _umM-ifUYAXN-TkvPlavvAf1aBQ.roa (hash: sCjPYzBH4hvw7Ts2Tsttu/QAIcVSkFxZGEGfyMRDD0Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:b6:e6:02:45:ef:f3:5a:c8:8e:43:98:be:77:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2860f15d278379483aaa0613cbf592e72cc81e48 Validity Not Before: Feb 9 10:00:47 2026 GMT Not After : Feb 10 10:00:47 2026 GMT Subject: CN=958022c4b706fd4372025826079314b56dd13ce6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:45:cc:60:ea:38:dd:27:c0:ac:c3:d5:2f:62: f7:d2:5f:f1:7a:80:ea:c2:a6:af:c5:65:a3:02:79: b4:2d:12:de:54:3f:9e:30:ea:53:dc:f9:a3:2c:47: 8b:fa:a3:28:28:d2:20:39:ae:a3:bf:4f:58:9f:bb: 66:3a:12:ff:a1:c2:14:b2:0d:95:65:f3:f2:d4:dc: bd:c5:84:a5:6c:ce:73:23:b5:dd:b5:90:87:31:7d: 31:22:37:cd:53:43:7c:bd:76:c4:c9:f9:31:34:b3: 87:74:6a:13:be:04:95:a2:84:2f:6f:ee:14:43:af: 1e:5e:86:5f:f2:c6:8d:87:bb:ae:d8:e0:bd:5b:e4: 7d:fb:8b:6d:69:f7:be:d1:52:7b:48:65:33:1d:4d: 84:5b:4e:21:e1:b1:b4:5b:26:1f:14:26:fc:1d:0a: 7f:30:10:89:51:5e:4a:e8:60:6f:29:11:40:bd:b1: 32:7b:f8:d1:18:6d:ce:2e:c1:f6:42:79:d8:ae:07: 7a:be:69:09:5c:2e:e9:78:b3:f3:43:01:e1:9e:84: 87:cc:96:21:fd:7b:ba:23:f0:6f:0f:63:cc:5b:9e: b0:fc:92:f1:82:f3:b1:06:d9:a4:43:e4:ff:e3:16: 68:47:40:38:94:97:3d:57:23:d0:0b:dc:f6:f8:01: e3:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:80:22:C4:B7:06:FD:43:72:02:58:26:07:93:14:B5:6D:D1:3C:E6 X509v3 Authority Key Identifier: keyid:28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:a8:d8:4f:20:f4:a1:ee:f6:70:29:f7:5d:69:cd:4e:14:c5: 5a:52:f8:96:f7:cd:f9:84:a1:a3:a1:d7:18:2e:27:00:e3:91: 06:ec:56:52:69:60:9f:d1:36:d9:28:be:2c:a6:85:09:18:64: fa:e6:34:e8:75:7d:14:84:63:e0:0b:30:3f:d3:83:7a:de:c9: 70:50:13:46:1a:cd:4a:22:9f:2c:ec:6a:e7:fd:29:fb:9d:e9: d6:4e:0c:66:48:e1:eb:57:b6:85:82:fe:e8:9e:69:6e:5d:79: f5:e6:dd:9a:b0:3b:da:d1:a1:27:b8:1f:59:3f:ed:8a:8f:eb: 48:3e:fd:81:b9:ad:97:25:08:05:85:8d:76:48:cd:95:22:79: 42:c2:60:c3:cd:c6:35:95:85:14:8a:44:d3:5e:16:e1:8a:d5: 5a:a4:3b:a2:a8:84:35:96:fc:aa:37:9e:3f:84:ca:38:2e:16: 69:a5:72:8e:16:b2:5a:d5:5d:94:8a:f9:b0:4c:8d:1b:b6:d0: d9:3a:49:6c:a5:f4:79:57:03:54:d5:1e:27:3c:57:fe:75:56: 20:f0:af:44:77:8c:47:c4:f3:e9:05:bd:56:dc:59:7a:88:cd: 2f:d9:a3:54:96:fe:53:98:dc:2a:c7:c0:70:d3:d4:d1:af:5d: 88:d1:da:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2LbmAkXv81rIjkOYvndJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4NjBmMTVkMjc4Mzc5NDgzYWFhMDYxM2NiZjU5MmU3MmNj ODFlNDgwHhcNMjYwMjA5MTAwMDQ3WhcNMjYwMjEwMTAwMDQ3WjAzMTEwLwYDVQQD Eyg5NTgwMjJjNGI3MDZmZDQzNzIwMjU4MjYwNzkzMTRiNTZkZDEzY2U2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoUXMYOo43SfArMPVL2L30l/xeoDq wqavxWWjAnm0LRLeVD+eMOpT3PmjLEeL+qMoKNIgOa6jv09Yn7tmOhL/ocIUsg2V ZfPy1Ny9xYSlbM5zI7XdtZCHMX0xIjfNU0N8vXbEyfkxNLOHdGoTvgSVooQvb+4U Q68eXoZf8saNh7uu2OC9W+R9+4ttafe+0VJ7SGUzHU2EW04h4bG0WyYfFCb8HQp/ MBCJUV5K6GBvKRFAvbEye/jRGG3OLsH2QnnYrgd6vmkJXC7peLPzQwHhnoSHzJYh /Xu6I/BvD2PMW56w/JLxgvOxBtmkQ+T/4xZoR0A4lJc9VyPQC9z2+AHjJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJWAIsS3Bv1DcgJYJgeTFLVt0TzmMB8GA1UdIwQY MBaAFChg8V0ng3lIOqoGE8v1kucsyB5IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0dEeFhTZURlVWc2cWdZVHlfV1M1eXpJSGtnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC8xZDFiNzItOGJjZi00NTAwLTkxMjUt MzIxYzE0ZGQ0NjM5LzEvS0dEeFhTZURlVWc2cWdZVHlfV1M1eXpJSGtnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC8xZDFiNzItOGJjZi00NTAwLTkxMjUtMzIxYzE0ZGQ0NjM5 LzEvS0dEeFhTZURlVWc2cWdZVHlfV1M1eXpJSGtnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi6jYTyD0 oe72cCn3XWnNThTFWlL4lvfN+YSho6HXGC4nAOORBuxWUmlgn9E22Si+LKaFCRhk +uY06HV9FIRj4AswP9ODet7JcFATRhrNSiKfLOxq5/0p+53p1k4MZkjh61e2hYL+ 6J5pbl159ebdmrA72tGhJ7gfWT/tio/rSD79gbmtlyUIBYWNdkjNlSJ5QsJgw83G NZWFFIpE014W4YrVWqQ7oqiENZb8qjeeP4TKOC4WaaVyjhayWtVdlIr5sEyNG7bQ 2TpJbKX0eVcDVNUeJzxX/nVWIPCvRHeMR8Tz6QW9VtxZeojNL9mjVJb+U5jcKsfA cNPU0a9diNHaPA== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:18 2026 by rpki-client