This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft File: h-2cuDQKwglaTLBSjl6i9zjOpnI.mft (raw, json) Hash identifier: XY+LOWDrt14slvml+R6sdZkhla94ZrdmDo2TAKIe8Lk= Subject key identifier: A6:6E:60:D7:41:E3:16:7E:23:1F:C7:31:FD:7D:2A:C5:2F:68:95:FA Authority key identifier: 87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72 Certificate issuer: /CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672 Certificate serial: 019C4133E428B37E10E8F8BF7BD537C21623 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft Manifest number: 05DB Signing time: Mon 09 Feb 2026 07:00:45 +0000 Manifest this update: Mon 09 Feb 2026 07:00:45 +0000 Manifest next update: Tue 10 Feb 2026 07:00:45 +0000 Files and hashes: 1: ClXL4dT4GSld8lEfAWyCYr5cI3Y.roa (hash: gOfRKf6V+xV3ZsFtbBW86oarsiPBo5VFvmb0v2OnPU0=) 2: h-2cuDQKwglaTLBSjl6i9zjOpnI.crl (hash: wfq/JYsibPmgm87ugMpH6QzU/5Ag7arwgfONWBqU5tQ=) 3: vT00UMTKIHLp4hINXZvd81w31H4.roa (hash: QI91nZrYvdKW6PkjSidpqTabE42DmbX4YNbp5QsN850=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:e4:28:b3:7e:10:e8:f8:bf:7b:d5:37:c2:16:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672 Validity Not Before: Feb 9 07:00:45 2026 GMT Not After : Feb 10 07:00:45 2026 GMT Subject: CN=a66e60d741e3167e231fc731fd7d2ac52f6895fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:f1:a9:3c:c7:e2:a3:3e:c1:23:56:d5:ee:e0: 3f:c6:45:63:21:e5:d0:ec:ca:39:03:20:32:18:78: 01:0e:e4:d5:12:57:23:36:18:88:b3:08:23:75:71: 8c:96:0b:43:39:9d:6a:b8:18:df:17:b3:4d:d0:0c: d0:55:e5:f5:dd:17:47:72:47:11:ba:29:d2:8a:c8: b6:1f:50:31:ee:e6:ce:76:bb:1c:c4:14:4c:d2:bd: 17:24:0c:f9:db:ea:48:87:16:87:9b:98:fd:18:73: ef:1e:dc:32:83:ca:e3:a6:8c:e5:c7:0f:71:b4:bf: 40:87:79:e3:75:aa:73:d2:81:0a:86:b1:f1:4b:f9: 65:38:7c:6a:9f:06:c5:8b:0c:a2:d5:c7:88:a4:73: 48:b8:eb:b2:e2:ea:f6:17:3b:c6:b3:f0:79:c3:a9: ba:61:28:9a:e9:26:38:a2:7b:4b:62:b5:20:f7:b7: 63:91:19:0f:4d:9d:ee:b6:fb:2b:c7:25:8e:ce:dd: d0:6d:4a:01:7e:e1:97:0b:c4:ea:4f:e4:e1:62:6f: 60:84:08:58:3e:7b:16:57:44:7e:06:9a:e2:c2:c3: c7:ac:28:ce:ee:f4:f6:1f:04:86:7c:2c:9f:48:25: 8a:df:00:66:23:a3:3e:25:1d:37:47:10:04:0e:c4: 3d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:6E:60:D7:41:E3:16:7E:23:1F:C7:31:FD:7D:2A:C5:2F:68:95:FA X509v3 Authority Key Identifier: keyid:87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:9d:36:66:39:ef:43:5d:39:54:b6:98:51:54:13:07:87:59: 1e:1c:0c:c4:8e:97:3f:2e:03:97:95:99:43:a3:7d:87:56:3b: f4:6a:ca:a8:88:02:2f:95:38:a4:26:d6:ce:a3:bc:09:7d:4a: 73:83:e5:69:99:ef:b0:66:81:9d:31:02:a6:45:ca:29:72:18: 10:d1:0a:29:3a:89:5a:9c:76:20:5b:fa:41:d6:90:09:65:90: 2b:32:d5:47:66:88:cf:8d:20:75:fc:9f:6e:d0:10:33:ec:55: 21:62:f2:8e:30:d8:18:fa:7d:05:fc:6d:ac:bd:78:73:36:d5: fa:a1:58:c6:6d:29:ba:a1:a5:05:f5:75:06:c3:b3:e9:67:c8: d1:e3:de:6a:90:4b:cd:37:91:f9:44:36:40:42:cb:ed:ab:fd: a7:ff:4f:a6:ae:2b:e1:d8:76:88:81:31:38:d8:fc:2b:e7:22: c9:64:68:e6:a6:ee:e5:7f:52:1a:2e:34:aa:47:88:53:70:a6: fe:e5:80:38:8c:af:1c:64:92:b3:1c:b5:53:34:15:8d:dd:b2: 22:6d:07:99:35:f9:4b:41:7c:f5:60:c1:b2:f7:19:4e:46:8d: d7:c6:92:82:c1:b0:21:16:8d:a5:61:b7:d3:2f:03:a2:40:e8: ff:cf:ec:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM+Qos34Q6Pi/e9U3whYjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3ZWQ5Y2I4MzQwYWMyMDk1YTRjYjA1MjhlNWVhMmY3Mzhj ZWE2NzIwHhcNMjYwMjA5MDcwMDQ1WhcNMjYwMjEwMDcwMDQ1WjAzMTEwLwYDVQQD EyhhNjZlNjBkNzQxZTMxNjdlMjMxZmM3MzFmZDdkMmFjNTJmNjg5NWZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlfGpPMfioz7BI1bV7uA/xkVjIeXQ 7Mo5AyAyGHgBDuTVElcjNhiIswgjdXGMlgtDOZ1quBjfF7NN0AzQVeX13RdHckcR uinSisi2H1Ax7ubOdrscxBRM0r0XJAz52+pIhxaHm5j9GHPvHtwyg8rjpozlxw9x tL9Ah3njdapz0oEKhrHxS/llOHxqnwbFiwyi1ceIpHNIuOuy4ur2FzvGs/B5w6m6 YSia6SY4ontLYrUg97djkRkPTZ3utvsrxyWOzt3QbUoBfuGXC8TqT+ThYm9ghAhY PnsWV0R+BpriwsPHrCjO7vT2HwSGfCyfSCWK3wBmI6M+JR03RxAEDsQ9mQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKZuYNdB4xZ+Ix/HMf19KsUvaJX6MB8GA1UdIwQY MBaAFIftnLg0CsIJWkywUo5eovc4zqZyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaC0yY3VEUUt3Z2xhVExCU2psNmk5empPcG5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi82MzgxZDMtNWQwMS00YWJjLWJlZDct N2IyMWJmMzAzY2NjLzEvaC0yY3VEUUt3Z2xhVExCU2psNmk5empPcG5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi82MzgxZDMtNWQwMS00YWJjLWJlZDctN2IyMWJmMzAzY2Nj LzEvaC0yY3VEUUt3Z2xhVExCU2psNmk5empPcG5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANp02Zjnv Q105VLaYUVQTB4dZHhwMxI6XPy4Dl5WZQ6N9h1Y79GrKqIgCL5U4pCbWzqO8CX1K c4PlaZnvsGaBnTECpkXKKXIYENEKKTqJWpx2IFv6QdaQCWWQKzLVR2aIz40gdfyf btAQM+xVIWLyjjDYGPp9BfxtrL14czbV+qFYxm0puqGlBfV1BsOz6WfI0ePeapBL zTeR+UQ2QELL7av9p/9Ppq4r4dh2iIExONj8K+ciyWRo5qbu5X9SGi40qkeIU3Cm /uWAOIyvHGSSsxy1UzQVjd2yIm0HmTX5S0F89WDBsvcZTkaN18aSgsGwIRaNpWG3 0y8DokDo/8/soQ== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:47 2026 by rpki-client