This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft File: kmhshS82--n8i-d8QJtSJqbuVNU.mft (raw, json) Hash identifier: AjqOTuKXNxUs/8I/nKe2K+StqNUe3Cbp5gCn1dusJqk= Subject key identifier: 10:C5:D7:56:7A:C0:B5:34:A0:E8:02:84:7B:3D:61:6D:AA:E4:56:A9 Authority key identifier: 92:68:6C:85:2F:36:FB:E9:FC:8B:E7:7C:40:9B:52:26:A6:EE:54:D5 Certificate issuer: /CN=92686c852f36fbe9fc8be77c409b5226a6ee54d5 Certificate serial: 019C4390C206C121F98871427A2D405F8177 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmhshS82--n8i-d8QJtSJqbuVNU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft Manifest number: 1813 Signing time: Mon 09 Feb 2026 18:01:26 +0000 Manifest this update: Mon 09 Feb 2026 18:01:26 +0000 Manifest next update: Tue 10 Feb 2026 18:01:26 +0000 Files and hashes: 1: kmhshS82--n8i-d8QJtSJqbuVNU.crl (hash: 1U8tC9WkZ0WQOneCcbHl1Oth0xHakeIcVZlBZ6Mp3JA=) 2: m64MgsXTuVAo-KXrz-HC9VS3YL4.roa (hash: aAemQZEctQRghlYaCM8BeUg6WijqhJ1QuHQjJjaDAco=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft rsync://rpki.ripe.net/repository/DEFAULT/kmhshS82--n8i-d8QJtSJqbuVNU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:c2:06:c1:21:f9:88:71:42:7a:2d:40:5f:81:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92686c852f36fbe9fc8be77c409b5226a6ee54d5 Validity Not Before: Feb 9 18:01:26 2026 GMT Not After : Feb 10 18:01:26 2026 GMT Subject: CN=10c5d7567ac0b534a0e802847b3d616daae456a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:76:25:a3:b9:79:41:40:61:26:d8:56:a1:a2: 83:05:60:85:4a:27:e0:b6:5d:37:ef:d5:7f:b6:04: f8:0c:80:24:c1:36:e8:5f:c5:8b:0c:ce:99:52:d8: f2:bd:15:61:ed:10:7d:d9:3e:a1:ba:89:fe:88:2b: a2:7c:b4:08:8b:85:55:06:f8:df:66:74:e1:26:c4: 07:e1:c6:eb:2e:3e:7f:26:25:c9:13:d9:ed:da:28: 12:ee:e9:af:c2:e5:dd:13:24:72:ed:28:a6:da:d7: fa:f8:62:3d:9c:08:81:37:a9:57:db:b5:13:b3:31: d7:4c:f5:ce:81:34:16:47:03:38:c1:da:27:78:b0: 90:25:4e:12:35:76:86:00:7d:da:d1:e3:cc:17:49: 3c:41:f6:27:09:5d:ab:03:06:37:af:96:13:e0:8d: 69:31:a8:89:e7:91:53:46:fc:44:af:1f:5a:22:59: 22:bb:4c:fa:28:96:fc:bf:03:3d:3a:90:0f:5b:a7: 64:f4:19:99:4a:34:b6:6f:1b:9b:c2:fc:84:ac:e5: 87:db:13:b4:86:4d:40:bd:13:c8:f5:28:db:2e:ac: 64:db:c6:1d:3e:b7:d3:ab:ec:8f:b5:6d:22:c9:7b: d4:c7:4d:08:5b:0d:3e:90:ef:53:1d:07:de:9f:42: 9e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:C5:D7:56:7A:C0:B5:34:A0:E8:02:84:7B:3D:61:6D:AA:E4:56:A9 X509v3 Authority Key Identifier: keyid:92:68:6C:85:2F:36:FB:E9:FC:8B:E7:7C:40:9B:52:26:A6:EE:54:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmhshS82--n8i-d8QJtSJqbuVNU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:35:58:10:bc:48:00:d9:5a:77:a0:2f:16:bf:bc:1e:e1:5a: 65:37:f6:32:b4:0b:6b:34:a5:bf:69:68:93:5e:0a:54:54:92: 57:80:18:ad:d8:fe:77:e4:3d:8c:07:fe:ee:53:cc:5a:81:35: d1:23:8d:96:1f:34:2b:be:0a:09:1e:6a:c1:7e:0c:2f:28:ad: 8e:91:8f:3a:a8:04:0c:81:69:49:48:3d:97:81:4d:81:e2:ac: ac:4b:07:a3:1c:b0:a3:11:c5:8b:45:c8:d4:c0:77:9a:c6:9e: 98:ee:ad:b7:72:39:cf:66:1c:c8:69:8f:8c:f2:6d:09:76:0d: b6:5e:cf:e6:d5:f1:5b:46:08:61:6d:a5:8a:c6:ad:cc:87:0f: 0a:67:36:1e:8d:8f:d5:91:1f:ad:59:03:34:7c:97:57:20:d4: 8b:21:74:0a:a3:69:09:d6:46:a7:60:3b:5b:36:d4:64:b5:70: fb:c6:1d:4e:05:ac:aa:92:a6:54:fb:25:61:2d:64:15:11:1e: fb:8b:e0:5f:ee:6a:99:a3:7f:66:2b:46:b8:f7:6e:a6:15:10: 9b:d6:ec:d2:e9:b7:1f:1b:11:6d:10:63:1d:05:0e:53:30:e7: c6:3b:cc:e1:cd:be:8f:94:f1:1a:68:bd:00:c0:0f:a6:15:e5: 2b:76:35:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkMIGwSH5iHFCei1AX4F3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyNjg2Yzg1MmYzNmZiZTlmYzhiZTc3YzQwOWI1MjI2YTZl ZTU0ZDUwHhcNMjYwMjA5MTgwMTI2WhcNMjYwMjEwMTgwMTI2WjAzMTEwLwYDVQQD EygxMGM1ZDc1NjdhYzBiNTM0YTBlODAyODQ3YjNkNjE2ZGFhZTQ1NmE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlHYlo7l5QUBhJthWoaKDBWCFSifg tl0379V/tgT4DIAkwTboX8WLDM6ZUtjyvRVh7RB92T6huon+iCuifLQIi4VVBvjf ZnThJsQH4cbrLj5/JiXJE9nt2igS7umvwuXdEyRy7Sim2tf6+GI9nAiBN6lX27UT szHXTPXOgTQWRwM4wdoneLCQJU4SNXaGAH3a0ePMF0k8QfYnCV2rAwY3r5YT4I1p MaiJ55FTRvxErx9aIlkiu0z6KJb8vwM9OpAPW6dk9BmZSjS2bxubwvyErOWH2xO0 hk1AvRPI9SjbLqxk28YdPrfTq+yPtW0iyXvUx00IWw0+kO9THQfen0Ke7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBDF11Z6wLU0oOgChHs9YW2q5FapMB8GA1UdIwQY MBaAFJJobIUvNvvp/IvnfECbUiam7lTVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva21oc2hTODItLW44aS1kOFFKdFNKcWJ1Vk5VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC9kNTU5YjItNGIzMy00ZjhkLTlkMjEt YmE3MWZiZGIwMzc0LzEva21oc2hTODItLW44aS1kOFFKdFNKcWJ1Vk5VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC9kNTU5YjItNGIzMy00ZjhkLTlkMjEtYmE3MWZiZGIwMzc0 LzEva21oc2hTODItLW44aS1kOFFKdFNKcWJ1Vk5VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFzVYELxI ANlad6AvFr+8HuFaZTf2MrQLazSlv2lok14KVFSSV4AYrdj+d+Q9jAf+7lPMWoE1 0SONlh80K74KCR5qwX4MLyitjpGPOqgEDIFpSUg9l4FNgeKsrEsHoxywoxHFi0XI 1MB3msaemO6tt3I5z2YcyGmPjPJtCXYNtl7P5tXxW0YIYW2lisatzIcPCmc2Ho2P 1ZEfrVkDNHyXVyDUiyF0CqNpCdZGp2A7WzbUZLVw+8YdTgWsqpKmVPslYS1kFREe +4vgX+5qmaN/ZitGuPduphUQm9bs0um3HxsRbRBjHQUOUzDnxjvM4c2+j5TxGmi9 AMAPphXlK3Y1uQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:49 2026 by rpki-client