This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft File: hSOM5-r2mlui8JR7K6BTOUtFts0.mft (raw, json) Hash identifier: 5M/elANlSKczysXFManl23R/6efzk1GFePAJ/wPmFsY= Subject key identifier: 4A:8C:24:3B:66:7E:67:0A:62:56:F7:D8:9E:2D:1F:22:71:76:66:2F Authority key identifier: 85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD Certificate issuer: /CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd Certificate serial: 019C42B459FE0F153CEC501B27E1EB14D342 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft Manifest number: 17A1 Signing time: Mon 09 Feb 2026 14:00:41 +0000 Manifest this update: Mon 09 Feb 2026 14:00:41 +0000 Manifest next update: Tue 10 Feb 2026 14:00:41 +0000 Files and hashes: 1: 9WDzni9fLgS4Y1Z4NykfP7TpMa0.roa (hash: tKJRFaY2YcR7s8GJcJFATvbLWJiSSXElLCi1btrAeAw=) 2: hSOM5-r2mlui8JR7K6BTOUtFts0.crl (hash: oo4wPZUM+iCvux/twaKYLhRwXfhPCZTcdnYisfIxYXA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:59:fe:0f:15:3c:ec:50:1b:27:e1:eb:14:d3:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd Validity Not Before: Feb 9 14:00:41 2026 GMT Not After : Feb 10 14:00:41 2026 GMT Subject: CN=4a8c243b667e670a6256f7d89e2d1f227176662f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f6:9a:60:5b:3e:7f:ca:c1:41:bd:ab:59:74: 06:32:1d:44:85:aa:6d:d6:6c:cb:2e:09:55:c6:a2: 28:52:ed:da:c2:58:96:8f:12:80:59:bf:45:b2:78: 09:61:50:e4:d5:9f:b7:b0:b3:11:fd:d0:d3:33:7f: 15:c4:32:eb:80:ba:7b:bf:08:7c:fd:a3:28:ba:df: 59:da:fd:26:aa:90:14:a7:b6:e6:5d:cc:22:e4:27: 4c:fa:34:92:77:6b:42:f1:23:7d:61:95:5b:b5:c6: 4b:89:28:91:13:c1:17:1c:1b:12:e9:14:22:8f:c8: 7d:c2:26:c7:78:0a:ed:fc:b2:16:4d:8a:38:ee:63: d3:6c:4d:05:cb:c3:7e:83:c3:61:85:35:2d:6f:3b: 38:c4:d4:61:cc:72:47:86:15:20:e8:e5:dd:00:1e: a2:77:e2:52:fb:f6:b1:ea:17:8b:ad:1e:3e:1b:aa: 58:b3:07:33:35:87:17:fa:c6:13:f8:65:d5:b6:20: 43:86:2d:26:8d:69:6b:df:e4:f9:88:8b:b4:67:9b: a1:a7:fe:e7:63:67:46:c7:51:b2:df:46:02:f3:d3: a2:a6:ab:7a:30:9b:3f:ba:1a:12:ff:c9:9e:b1:49: c5:ba:a0:b7:d5:f6:7d:3e:77:07:a1:37:af:28:15: 85:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:8C:24:3B:66:7E:67:0A:62:56:F7:D8:9E:2D:1F:22:71:76:66:2F X509v3 Authority Key Identifier: keyid:85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:0a:48:ea:c3:4b:e2:50:ae:b7:93:f4:4c:16:3b:05:bf:f7: 38:c2:9b:54:02:6b:d9:7d:b1:f7:e0:1b:fb:9f:85:54:d1:8c: 52:63:74:96:29:e2:79:99:d8:89:07:4b:4c:f3:25:59:33:e4: 61:1a:71:f7:0f:c4:97:64:52:23:0c:47:82:1f:4a:3f:fa:7c: 76:41:ef:c7:a9:ce:3c:1b:39:27:8e:ab:9c:a5:ed:53:7e:74: 2c:69:3c:fd:1c:ba:d7:3b:62:90:e1:09:36:46:a8:e7:a3:5a: 0d:c0:13:08:1c:36:a2:07:ea:13:60:94:2d:61:b6:cb:5d:64: e9:78:46:40:f0:a5:1b:71:93:51:19:b7:ce:39:e3:6b:79:30: a1:31:3b:9e:da:a6:ce:00:fd:31:62:a9:a3:68:8b:06:ca:b6: 5b:99:97:82:ba:7e:23:bb:24:40:eb:66:26:68:b2:88:aa:f0: 80:9c:f6:23:53:16:3a:d4:02:8f:71:37:c2:96:05:a0:74:49: d6:31:cd:ce:cc:8d:23:50:6a:37:67:99:06:b5:f7:5b:1a:0d: 0d:53:9c:aa:b4:83:e2:01:84:e0:58:97:68:75:26:c9:3c:45: b1:00:7a:74:73:f3:c7:00:31:ee:ab:ec:32:85:9d:ce:58:80: 9c:ef:ee:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtFn+DxU87FAbJ+HrFNNCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1MjM4Y2U3ZWFmNjlhNWJhMmYwOTQ3YjJiYTA1MzM5NGI0 NWI2Y2QwHhcNMjYwMjA5MTQwMDQxWhcNMjYwMjEwMTQwMDQxWjAzMTEwLwYDVQQD Eyg0YThjMjQzYjY2N2U2NzBhNjI1NmY3ZDg5ZTJkMWYyMjcxNzY2NjJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArfaaYFs+f8rBQb2rWXQGMh1Ehapt 1mzLLglVxqIoUu3awliWjxKAWb9FsngJYVDk1Z+3sLMR/dDTM38VxDLrgLp7vwh8 /aMout9Z2v0mqpAUp7bmXcwi5CdM+jSSd2tC8SN9YZVbtcZLiSiRE8EXHBsS6RQi j8h9wibHeArt/LIWTYo47mPTbE0Fy8N+g8NhhTUtbzs4xNRhzHJHhhUg6OXdAB6i d+JS+/ax6heLrR4+G6pYswczNYcX+sYT+GXVtiBDhi0mjWlr3+T5iIu0Z5uhp/7n Y2dGx1Gy30YC89Oipqt6MJs/uhoS/8mesUnFuqC31fZ9PncHoTevKBWFDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEqMJDtmfmcKYlb32J4tHyJxdmYvMB8GA1UdIwQY MBaAFIUjjOfq9ppbovCUeyugUzlLRbbNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFNPTTUtcjJtbHVpOEpSN0s2QlRPVXRGdHMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9jYTQxMTQtMmZiOS00M2QxLWI1Mjgt MDMyYWY4MzZjMTcyLzEvaFNPTTUtcjJtbHVpOEpSN0s2QlRPVXRGdHMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy9jYTQxMTQtMmZiOS00M2QxLWI1MjgtMDMyYWY4MzZjMTcy LzEvaFNPTTUtcjJtbHVpOEpSN0s2QlRPVXRGdHMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHQpI6sNL 4lCut5P0TBY7Bb/3OMKbVAJr2X2x9+Ab+5+FVNGMUmN0linieZnYiQdLTPMlWTPk YRpx9w/El2RSIwxHgh9KP/p8dkHvx6nOPBs5J46rnKXtU350LGk8/Ry61ztikOEJ Nkao56NaDcATCBw2ogfqE2CULWG2y11k6XhGQPClG3GTURm3zjnja3kwoTE7ntqm zgD9MWKpo2iLBsq2W5mXgrp+I7skQOtmJmiyiKrwgJz2I1MWOtQCj3E3wpYFoHRJ 1jHNzsyNI1BqN2eZBrX3WxoNDVOcqrSD4gGE4FiXaHUmyTxFsQB6dHPzxwAx7qvs MoWdzliAnO/uKA== -----END CERTIFICATE-----Generated at Mon Feb 9 23:00:24 2026 by rpki-client