This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/829a87-22fa-4632-862c-bd69f526181b/1/hhiHKrn6K6AssBpEzo64dkEoHBw.mft File: hhiHKrn6K6AssBpEzo64dkEoHBw.mft (raw, json) Hash identifier: zNq+3t0vq7IewzAPErPmICzEdWH6doX6W24urb8jb64= Subject key identifier: 16:B8:39:31:9F:AE:6B:D4:EC:6C:2D:F9:E1:E9:91:48:66:D3:25:D6 Authority key identifier: 86:18:87:2A:B9:FA:2B:A0:2C:B0:1A:44:CE:8E:B8:76:41:28:1C:1C Certificate issuer: /CN=8618872ab9fa2ba02cb01a44ce8eb87641281c1c Certificate serial: 019C4390490E05203FF4D41024C5AD64E70A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hhiHKrn6K6AssBpEzo64dkEoHBw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/829a87-22fa-4632-862c-bd69f526181b/1/hhiHKrn6K6AssBpEzo64dkEoHBw.mft Manifest number: 07AF Signing time: Mon 09 Feb 2026 18:00:55 +0000 Manifest this update: Mon 09 Feb 2026 18:00:55 +0000 Manifest next update: Tue 10 Feb 2026 18:00:55 +0000 Files and hashes: 1: hhiHKrn6K6AssBpEzo64dkEoHBw.crl (hash: CaxmndxuvUVTkK9jz3fJLLj9bxmWVRFmk4287wRPHxA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/829a87-22fa-4632-862c-bd69f526181b/1/hhiHKrn6K6AssBpEzo64dkEoHBw.crl rsync://rpki.ripe.net/repository/DEFAULT/08/829a87-22fa-4632-862c-bd69f526181b/1/hhiHKrn6K6AssBpEzo64dkEoHBw.mft rsync://rpki.ripe.net/repository/DEFAULT/hhiHKrn6K6AssBpEzo64dkEoHBw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:49:0e:05:20:3f:f4:d4:10:24:c5:ad:64:e7:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8618872ab9fa2ba02cb01a44ce8eb87641281c1c Validity Not Before: Feb 9 18:00:55 2026 GMT Not After : Feb 10 18:00:55 2026 GMT Subject: CN=16b839319fae6bd4ec6c2df9e1e9914866d325d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:95:e8:12:9f:22:39:42:6a:b4:53:c9:b5:5f: b0:8d:bd:d1:0b:fc:a4:7a:5a:32:e8:c5:e9:72:ac: c3:79:a8:2b:bf:fe:66:9d:a8:5e:50:7d:b5:a5:9d: 6a:1a:46:96:4b:d9:aa:21:9b:ec:67:f7:28:23:17: a2:90:71:78:38:d8:aa:04:b5:7d:b1:06:63:72:69: 2e:c5:5e:5b:76:71:ca:30:c4:c2:e0:72:a8:e9:ea: 6a:22:9e:8f:bd:18:57:13:8d:5b:a4:9c:df:15:eb: 2c:45:b3:df:81:c1:bc:96:19:84:f8:43:d7:d0:3d: b7:74:69:3b:60:53:cc:2e:f5:c3:19:7b:f1:7f:61: 16:a1:a5:60:eb:93:45:4b:5b:ba:85:98:0a:5a:82: 34:b6:d9:93:be:d0:8d:2a:55:4d:2b:bd:0a:5a:e0: ea:6c:4d:52:81:9d:bf:71:e8:a6:e3:da:77:d2:9f: 4f:92:bf:69:c6:43:03:35:36:f7:0a:2e:d7:bd:69: 72:7d:8b:21:fe:ac:1b:6e:63:97:57:4b:2c:a2:23: 42:05:92:bb:85:f7:a9:d7:c8:d7:ef:70:81:f1:21: 23:27:2b:20:8a:95:5e:fe:88:b4:46:12:75:79:3c: 36:e7:d2:ee:a0:fe:79:b8:cb:54:8c:3b:b7:e0:ad: a8:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:B8:39:31:9F:AE:6B:D4:EC:6C:2D:F9:E1:E9:91:48:66:D3:25:D6 X509v3 Authority Key Identifier: keyid:86:18:87:2A:B9:FA:2B:A0:2C:B0:1A:44:CE:8E:B8:76:41:28:1C:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hhiHKrn6K6AssBpEzo64dkEoHBw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/829a87-22fa-4632-862c-bd69f526181b/1/hhiHKrn6K6AssBpEzo64dkEoHBw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/829a87-22fa-4632-862c-bd69f526181b/1/hhiHKrn6K6AssBpEzo64dkEoHBw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:03:6b:8d:4b:db:47:11:24:10:75:fd:73:06:8a:53:fc:dc: a3:ad:be:8b:18:db:06:55:be:cc:91:dd:42:74:8c:8c:ca:17: 3d:33:d2:33:3f:13:c7:6a:ba:33:9b:c6:2a:bf:88:ba:ff:c9: b8:ab:95:fe:a6:82:70:e7:cf:2b:2e:8d:6a:38:7a:04:e0:a9: 73:00:3c:fb:8f:90:db:ef:3d:07:8b:89:2f:80:0c:85:bc:52: ef:7f:03:94:73:9d:63:99:44:9d:ac:56:74:4a:31:18:8a:90: 7a:e9:84:8a:43:6b:68:3f:8c:c4:da:9e:5d:3a:8b:56:b3:40: 8e:08:af:2f:f6:12:ce:2c:ef:5a:f3:93:a8:df:75:6d:15:b5: 3d:ab:2a:82:20:c4:b6:0b:3c:7e:6f:1d:fc:00:19:92:48:a3: 5a:06:d1:74:5f:a7:db:74:66:d2:59:ce:d3:71:ca:ed:ad:6e: e8:46:2a:3d:24:05:b8:8e:3c:38:e9:25:1f:5e:6c:f6:a7:6b: 6b:6b:37:b1:82:33:3e:65:db:2b:bb:bd:c4:51:fa:3d:e6:44: 69:6a:f5:f0:ef:8c:ba:6a:91:fc:b5:f1:61:e0:6c:43:32:1b: 3a:90:b2:a0:b5:69:ac:81:c4:37:28:af:b8:b9:f5:ac:33:af: 8c:8d:d1:83 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkEkOBSA/9NQQJMWtZOcKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2MTg4NzJhYjlmYTJiYTAyY2IwMWE0NGNlOGViODc2NDEy ODFjMWMwHhcNMjYwMjA5MTgwMDU1WhcNMjYwMjEwMTgwMDU1WjAzMTEwLwYDVQQD EygxNmI4MzkzMTlmYWU2YmQ0ZWM2YzJkZjllMWU5OTE0ODY2ZDMyNWQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZXoEp8iOUJqtFPJtV+wjb3RC/yk eloy6MXpcqzDeagrv/5mnaheUH21pZ1qGkaWS9mqIZvsZ/coIxeikHF4ONiqBLV9 sQZjcmkuxV5bdnHKMMTC4HKo6epqIp6PvRhXE41bpJzfFessRbPfgcG8lhmE+EPX 0D23dGk7YFPMLvXDGXvxf2EWoaVg65NFS1u6hZgKWoI0ttmTvtCNKlVNK70KWuDq bE1SgZ2/ceim49p30p9Pkr9pxkMDNTb3Ci7XvWlyfYsh/qwbbmOXV0ssoiNCBZK7 hfep18jX73CB8SEjJysgipVe/oi0RhJ1eTw259LuoP55uMtUjDu34K2o+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBa4OTGfrmvU7Gwt+eHpkUhm0yXWMB8GA1UdIwQY MBaAFIYYhyq5+iugLLAaRM6OuHZBKBwcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGhpSEtybjZLNkFzc0JwRXpvNjRka0VvSEJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC84MjlhODctMjJmYS00NjMyLTg2MmMt YmQ2OWY1MjYxODFiLzEvaGhpSEtybjZLNkFzc0JwRXpvNjRka0VvSEJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC84MjlhODctMjJmYS00NjMyLTg2MmMtYmQ2OWY1MjYxODFi LzEvaGhpSEtybjZLNkFzc0JwRXpvNjRka0VvSEJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdANrjUvb RxEkEHX9cwaKU/zco62+ixjbBlW+zJHdQnSMjMoXPTPSMz8Tx2q6M5vGKr+Iuv/J uKuV/qaCcOfPKy6Najh6BOCpcwA8+4+Q2+89B4uJL4AMhbxS738DlHOdY5lEnaxW dEoxGIqQeumEikNraD+MxNqeXTqLVrNAjgivL/YSzizvWvOTqN91bRW1PasqgiDE tgs8fm8d/AAZkkijWgbRdF+n23Rm0lnO03HK7a1u6EYqPSQFuI48OOklH15s9qdr a2s3sYIzPmXbK7u9xFH6PeZEaWr18O+MumqR/LXxYeBsQzIbOpCyoLVprIHENyiv uLn1rDOvjI3Rgw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:07:19 2026 by rpki-client