This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft File: KMvNlssXsh1iT9IXD9DXCBY68j0.mft (raw, json) Hash identifier: yu6d0+H6UXbIgDd5MZXkBc1+9QQvdzeZwAVwwmcwyPk= Subject key identifier: 73:ED:86:A5:83:8A:F1:02:4D:A8:E3:AE:D1:05:52:5A:5E:C1:E7:38 Authority key identifier: 28:CB:CD:96:CB:17:B2:1D:62:4F:D2:17:0F:D0:D7:08:16:3A:F2:3D Certificate issuer: /CN=28cbcd96cb17b21d624fd2170fd0d708163af23d Certificate serial: 019C43226F86E772DF26C9C09BCC1DBB069C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMvNlssXsh1iT9IXD9DXCBY68j0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft Manifest number: 1138 Signing time: Mon 09 Feb 2026 16:00:56 +0000 Manifest this update: Mon 09 Feb 2026 16:00:56 +0000 Manifest next update: Tue 10 Feb 2026 16:00:56 +0000 Files and hashes: 1: KMvNlssXsh1iT9IXD9DXCBY68j0.crl (hash: ewVi6v6edRuCLEvWJ5qXCUNSz4V2FXhZuHt7Ay4xp+o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft rsync://rpki.ripe.net/repository/DEFAULT/KMvNlssXsh1iT9IXD9DXCBY68j0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:6f:86:e7:72:df:26:c9:c0:9b:cc:1d:bb:06:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28cbcd96cb17b21d624fd2170fd0d708163af23d Validity Not Before: Feb 9 16:00:56 2026 GMT Not After : Feb 10 16:00:56 2026 GMT Subject: CN=73ed86a5838af1024da8e3aed105525a5ec1e738 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:13:15:dc:e0:b0:8b:56:6e:54:76:d0:df:8c: 58:7c:eb:7e:41:55:eb:e2:91:9e:22:55:4e:65:a8: 3b:78:6d:45:51:f6:28:3e:a5:14:d7:0d:23:cd:02: 72:e4:6c:81:91:2e:72:4c:c3:74:e7:d6:ef:a3:4d: 14:79:1d:02:1a:4c:61:b7:4c:1b:c2:11:a9:71:4c: 1b:53:13:05:4a:b1:44:54:af:46:76:a4:f0:3d:be: 78:af:ab:39:6b:9e:36:35:5d:8a:7a:54:3f:c1:bf: 4a:a5:f3:f0:5b:98:b2:97:f7:6e:e4:4d:c3:4e:fe: e6:a9:a0:a1:87:83:41:03:e4:8a:55:5a:b6:ee:be: 5a:1a:a4:7a:90:f2:b5:71:4a:4f:52:49:37:6b:59: 37:58:39:20:4d:d0:bd:6f:f2:e1:49:02:1f:8f:57: 77:49:73:9a:44:f5:22:cf:91:d6:ec:a5:d3:50:3b: 45:ba:9f:cd:00:18:48:fc:6d:a1:75:73:2f:54:fc: c0:2a:93:6f:00:fe:dc:d9:b8:03:8e:fd:32:52:76: d1:d1:3d:67:20:61:e2:d1:ed:bd:29:5d:6b:5b:c0: 4e:7f:a0:27:6b:b2:d5:9c:3d:97:27:9d:0a:37:a1: e7:fd:e6:46:49:36:ba:57:7e:34:bd:fb:3c:a8:67: 61:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:ED:86:A5:83:8A:F1:02:4D:A8:E3:AE:D1:05:52:5A:5E:C1:E7:38 X509v3 Authority Key Identifier: keyid:28:CB:CD:96:CB:17:B2:1D:62:4F:D2:17:0F:D0:D7:08:16:3A:F2:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMvNlssXsh1iT9IXD9DXCBY68j0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:13:41:b8:eb:59:cd:29:0f:2f:70:6e:04:01:86:9f:24:8e: e1:70:51:4e:e0:36:9e:9f:e6:c9:19:3c:55:9d:98:1b:ce:a9: 37:8d:6a:52:e5:44:cd:b1:57:3d:11:c9:3c:45:3f:4c:3e:67: 09:fe:5b:0c:ea:6a:a0:b2:11:da:78:2b:e0:e2:e3:c1:d5:5b: ba:07:28:42:97:58:1b:e1:98:6c:71:e5:50:41:fe:97:8e:fd: c2:d7:41:ac:41:05:dc:40:48:78:b2:34:02:95:85:62:e3:53: 1c:b3:e4:e1:72:0f:84:a7:de:e5:da:a5:eb:66:e4:9c:3a:72: 36:c9:ca:ba:36:b3:30:df:fe:75:1c:a8:ad:f8:7e:e1:fa:7a: a1:1e:58:0f:ff:aa:8e:d3:21:4b:19:d8:45:10:dd:01:52:cf: 26:23:ae:16:5f:b8:2c:af:97:5f:4b:90:03:11:f0:71:29:9b: 18:d2:57:db:dd:d4:88:e5:0d:12:33:ac:91:d4:df:97:3e:de: f8:dc:9b:82:82:45:db:3b:9c:ec:55:28:13:0f:b1:7b:e4:58: fa:66:05:71:d5:1a:fa:ab:d5:36:bb:94:d8:e6:76:13:3c:33: 6e:f6:0b:cf:b4:13:74:25:6a:f9:34:d9:ab:e0:be:cc:86:89: f5:4e:fc:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIm+G53LfJsnAm8wduwacMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4Y2JjZDk2Y2IxN2IyMWQ2MjRmZDIxNzBmZDBkNzA4MTYz YWYyM2QwHhcNMjYwMjA5MTYwMDU2WhcNMjYwMjEwMTYwMDU2WjAzMTEwLwYDVQQD Eyg3M2VkODZhNTgzOGFmMTAyNGRhOGUzYWVkMTA1NTI1YTVlYzFlNzM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6BMV3OCwi1ZuVHbQ34xYfOt+QVXr 4pGeIlVOZag7eG1FUfYoPqUU1w0jzQJy5GyBkS5yTMN059bvo00UeR0CGkxht0wb whGpcUwbUxMFSrFEVK9GdqTwPb54r6s5a542NV2KelQ/wb9KpfPwW5iyl/du5E3D Tv7mqaChh4NBA+SKVVq27r5aGqR6kPK1cUpPUkk3a1k3WDkgTdC9b/LhSQIfj1d3 SXOaRPUiz5HW7KXTUDtFup/NABhI/G2hdXMvVPzAKpNvAP7c2bgDjv0yUnbR0T1n IGHi0e29KV1rW8BOf6Ana7LVnD2XJ50KN6Hn/eZGSTa6V340vfs8qGdh1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHPthqWDivECTajjrtEFUlpewec4MB8GA1UdIwQY MBaAFCjLzZbLF7IdYk/SFw/Q1wgWOvI9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS012Tmxzc1hzaDFpVDlJWEQ5RFhDQlk2OGowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC82ZTQwZWUtNzkzNS00MWE5LThlZTct ZjlhNjk0NDlkNWZhLzEvS012Tmxzc1hzaDFpVDlJWEQ5RFhDQlk2OGowLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC82ZTQwZWUtNzkzNS00MWE5LThlZTctZjlhNjk0NDlkNWZh LzEvS012Tmxzc1hzaDFpVDlJWEQ5RFhDQlk2OGowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqhNBuOtZ zSkPL3BuBAGGnySO4XBRTuA2np/myRk8VZ2YG86pN41qUuVEzbFXPRHJPEU/TD5n Cf5bDOpqoLIR2ngr4OLjwdVbugcoQpdYG+GYbHHlUEH+l479wtdBrEEF3EBIeLI0 ApWFYuNTHLPk4XIPhKfe5dql62bknDpyNsnKujazMN/+dRyorfh+4fp6oR5YD/+q jtMhSxnYRRDdAVLPJiOuFl+4LK+XX0uQAxHwcSmbGNJX293UiOUNEjOskdTflz7e +NybgoJF2zuc7FUoEw+xe+RY+mYFcdUa+qvVNruU2OZ2EzwzbvYLz7QTdCVq+TTZ q+C+zIaJ9U78tw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:38:49 2026 by rpki-client