This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.mft File: KhmTnyGLthMV6bOzez24WWCXXRQ.mft (raw, json) Hash identifier: LccmfsGzNrKJmYGXJ/0fN/lzl9PUSCl7g54mz6XjYmY= Subject key identifier: C2:68:EA:D7:4A:5B:F2:31:E0:6E:B7:3F:06:46:8A:8A:BA:C4:9D:08 Authority key identifier: 2A:19:93:9F:21:8B:B6:13:15:E9:B3:B3:7B:3D:B8:59:60:97:5D:14 Certificate issuer: /CN=2a19939f218bb61315e9b3b37b3db85960975d14 Certificate serial: 019C439055614F03CEDEC5C3E1F99C5EAA54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KhmTnyGLthMV6bOzez24WWCXXRQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.mft Manifest number: 120B Signing time: Mon 09 Feb 2026 18:00:58 +0000 Manifest this update: Mon 09 Feb 2026 18:00:58 +0000 Manifest next update: Tue 10 Feb 2026 18:00:58 +0000 Files and hashes: 1: KhmTnyGLthMV6bOzez24WWCXXRQ.crl (hash: fR1Lwejwo/9zoywKd8/mjqi8HbKvs4GVUARBUSLUq8g=) 2: Opq729qHLi-8dYaQgIIxGa15kXA.roa (hash: 29AgcIdF39QZ4KXfXzVq7WdeMpA7ZOSG9zMnRXMOq8o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.mft rsync://rpki.ripe.net/repository/DEFAULT/KhmTnyGLthMV6bOzez24WWCXXRQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:55:61:4f:03:ce:de:c5:c3:e1:f9:9c:5e:aa:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a19939f218bb61315e9b3b37b3db85960975d14 Validity Not Before: Feb 9 18:00:58 2026 GMT Not After : Feb 10 18:00:58 2026 GMT Subject: CN=c268ead74a5bf231e06eb73f06468a8abac49d08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:12:bd:5a:02:cb:6a:b7:6f:ee:f6:6f:a5:ea: 83:98:6e:3d:ce:f7:8a:9b:31:77:0e:13:ee:83:38: 08:70:15:81:56:ab:22:ce:b1:a2:2c:6a:06:67:f6: ee:96:5a:91:c0:a0:70:8e:b8:78:ea:6b:8e:14:6d: 88:d9:a7:ad:b7:3a:64:45:86:f2:31:8f:f1:fb:b5: 16:bc:65:32:75:af:4d:37:b8:31:bb:d0:6e:d3:2b: 2d:e7:a2:d3:4b:37:b2:eb:a3:81:87:20:c5:34:02: 9f:1f:13:d0:99:a2:89:22:69:2e:4c:f6:04:7b:02: 01:98:c0:53:4a:1e:df:2b:00:2e:ac:30:19:a3:a5: bb:ed:74:cc:50:fa:e9:4a:42:9c:74:65:98:6a:e3: 9d:4a:e9:0b:de:ef:ec:4c:1c:1f:64:cd:e7:af:a8: 96:95:61:0e:56:5c:ca:e8:44:9f:89:cd:1b:23:c7: 88:c3:90:b5:b7:7a:43:78:a9:ff:6f:7a:12:ac:82: 90:10:c6:1b:18:57:f1:aa:1c:89:4f:3d:8a:1d:0f: 6c:e3:9a:67:e6:c9:ff:e3:3e:9a:92:29:57:ac:15: 1c:9f:61:0f:1d:84:6e:e5:50:cf:b0:c0:e9:b3:f5: 8e:1b:ea:c8:e3:9e:37:33:cb:8a:fe:62:a0:65:5e: 0c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:68:EA:D7:4A:5B:F2:31:E0:6E:B7:3F:06:46:8A:8A:BA:C4:9D:08 X509v3 Authority Key Identifier: keyid:2A:19:93:9F:21:8B:B6:13:15:E9:B3:B3:7B:3D:B8:59:60:97:5D:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KhmTnyGLthMV6bOzez24WWCXXRQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:93:b8:2c:00:3b:55:16:c7:c8:ab:05:96:b1:51:23:c1:6e: 9f:8f:d4:bc:94:1c:f9:0f:8e:b9:7c:df:82:52:31:77:aa:8a: 86:3b:51:15:4b:c7:7f:3b:01:e8:ab:d1:76:ba:71:a2:4f:0a: 94:e8:13:97:2c:17:ca:b8:53:f4:ca:65:f6:f6:81:f9:61:a6: 82:00:b3:36:14:e0:b8:3f:9e:bd:f7:53:e1:45:fa:99:cb:d4: f8:8d:ad:90:68:67:e0:d5:6e:7e:8f:78:01:29:e0:20:43:b7: ca:d8:fd:f9:89:f5:31:c9:38:80:32:29:6b:a3:f3:37:f9:07: c0:34:0f:da:c4:54:04:2d:ee:20:15:0f:ad:a6:96:3c:d1:b5: 5d:e8:08:a9:9e:88:98:26:b7:72:57:58:02:12:20:2c:25:9a: 30:4b:50:a1:d6:8a:c0:f3:e1:bb:1c:4b:eb:5d:e3:54:9b:84: c6:6e:b9:cf:32:2f:c4:04:a9:2a:cd:ea:2b:97:80:34:dc:02: d9:e4:23:5c:39:a6:41:de:f3:a2:07:d1:86:b5:a0:56:66:76: dc:22:39:4a:dc:ea:51:3b:06:7e:d0:2c:91:5b:b4:2c:53:1b: 24:c0:a0:4d:6d:16:56:28:b8:11:e5:54:66:d7:3a:e9:17:62: 9a:94:02:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkFVhTwPO3sXD4fmcXqpUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhMTk5MzlmMjE4YmI2MTMxNWU5YjNiMzdiM2RiODU5NjA5 NzVkMTQwHhcNMjYwMjA5MTgwMDU4WhcNMjYwMjEwMTgwMDU4WjAzMTEwLwYDVQQD EyhjMjY4ZWFkNzRhNWJmMjMxZTA2ZWI3M2YwNjQ2OGE4YWJhYzQ5ZDA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwRK9WgLLardv7vZvpeqDmG49zveK mzF3DhPugzgIcBWBVqsizrGiLGoGZ/bullqRwKBwjrh46muOFG2I2aettzpkRYby MY/x+7UWvGUyda9NN7gxu9Bu0yst56LTSzey66OBhyDFNAKfHxPQmaKJImkuTPYE ewIBmMBTSh7fKwAurDAZo6W77XTMUPrpSkKcdGWYauOdSukL3u/sTBwfZM3nr6iW lWEOVlzK6ESfic0bI8eIw5C1t3pDeKn/b3oSrIKQEMYbGFfxqhyJTz2KHQ9s45pn 5sn/4z6akilXrBUcn2EPHYRu5VDPsMDps/WOG+rI4543M8uK/mKgZV4M1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMJo6tdKW/Ix4G63PwZGioq6xJ0IMB8GA1UdIwQY MBaAFCoZk58hi7YTFemzs3s9uFlgl10UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2htVG55R0x0aE1WNmJPemV6MjRXV0NYWFJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS81NGU0OTgtZTYyOS00MWU4LThhYmMt ZGY1ZjIwZGQ3NmFkLzEvS2htVG55R0x0aE1WNmJPemV6MjRXV0NYWFJRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS81NGU0OTgtZTYyOS00MWU4LThhYmMtZGY1ZjIwZGQ3NmFk LzEvS2htVG55R0x0aE1WNmJPemV6MjRXV0NYWFJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFZO4LAA7 VRbHyKsFlrFRI8Fun4/UvJQc+Q+OuXzfglIxd6qKhjtRFUvHfzsB6KvRdrpxok8K lOgTlywXyrhT9Mpl9vaB+WGmggCzNhTguD+evfdT4UX6mcvU+I2tkGhn4NVufo94 ASngIEO3ytj9+Yn1Mck4gDIpa6PzN/kHwDQP2sRUBC3uIBUPraaWPNG1XegIqZ6I mCa3cldYAhIgLCWaMEtQodaKwPPhuxxL613jVJuExm65zzIvxASpKs3qK5eANNwC 2eQjXDmmQd7zogfRhrWgVmZ23CI5StzqUTsGftAskVu0LFMbJMCgTW0WVii4EeVU Ztc66RdimpQCmw== -----END CERTIFICATE-----Generated at Tue Feb 10 03:13:04 2026 by rpki-client