This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/3522e9-86e0-4b5a-a2c8-00f0601252c8/1/hRwTZejd_OV1mPvo3n6oesYD4iw.mft File: hRwTZejd_OV1mPvo3n6oesYD4iw.mft (raw, json) Hash identifier: MFW+ZiA76+iaycCg7B/YC+8Vmdy4wrWHks0v+wCTZL4= Subject key identifier: FF:FD:85:87:FF:0E:A0:C4:F8:A8:15:6D:25:51:20:B8:00:80:65:80 Authority key identifier: 85:1C:13:65:E8:DD:FC:E5:75:98:FB:E8:DE:7E:A8:7A:C6:03:E2:2C Certificate issuer: /CN=851c1365e8ddfce57598fbe8de7ea87ac603e22c Certificate serial: 019C40FD5E01F1181B9AD951299F24BA0ADD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hRwTZejd_OV1mPvo3n6oesYD4iw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/3522e9-86e0-4b5a-a2c8-00f0601252c8/1/hRwTZejd_OV1mPvo3n6oesYD4iw.mft Manifest number: 0A5F Signing time: Mon 09 Feb 2026 06:01:12 +0000 Manifest this update: Mon 09 Feb 2026 06:01:12 +0000 Manifest next update: Tue 10 Feb 2026 06:01:12 +0000 Files and hashes: 1: hRwTZejd_OV1mPvo3n6oesYD4iw.crl (hash: nFvPQNtlcwmNAu+0bqclAyTOQfDTul5y/mSXLaIolR4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/3522e9-86e0-4b5a-a2c8-00f0601252c8/1/hRwTZejd_OV1mPvo3n6oesYD4iw.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/3522e9-86e0-4b5a-a2c8-00f0601252c8/1/hRwTZejd_OV1mPvo3n6oesYD4iw.mft rsync://rpki.ripe.net/repository/DEFAULT/hRwTZejd_OV1mPvo3n6oesYD4iw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fd:5e:01:f1:18:1b:9a:d9:51:29:9f:24:ba:0a:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=851c1365e8ddfce57598fbe8de7ea87ac603e22c Validity Not Before: Feb 9 06:01:12 2026 GMT Not After : Feb 10 06:01:12 2026 GMT Subject: CN=fffd8587ff0ea0c4f8a8156d255120b800806580 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:98:31:e8:4e:42:1e:55:1a:8e:89:be:10:c4: 59:4b:69:63:71:1e:15:7c:82:6f:09:2e:4b:56:11: 1f:51:70:17:a5:6c:c2:72:c9:66:69:97:d7:fa:d2: 06:be:f6:e0:3b:3f:f0:dc:3d:08:a9:da:db:82:28: 62:2e:cd:e8:9b:ab:6c:1a:05:b5:c0:eb:55:9a:e4: 9b:06:6e:37:6a:4d:7a:f1:1f:b4:f8:f9:b8:94:4b: a2:90:61:9e:1e:88:7d:45:e5:52:c5:91:87:d0:50: 82:85:d5:3a:ba:23:1f:25:13:fa:59:ca:83:5c:38: f0:3a:b5:9a:1e:16:6d:8a:33:7f:de:af:c1:d6:20: f6:93:cf:2c:53:96:cd:21:27:38:81:06:6d:2d:f7: 46:3c:aa:5b:9a:09:55:ed:87:9a:08:5d:24:52:1c: 68:d8:53:38:2c:19:78:ed:f8:ea:96:aa:ea:a7:70: 6d:b9:3b:a2:37:bd:51:75:20:bf:14:98:f3:87:da: 2f:24:2f:2f:2f:0c:bf:43:06:63:2a:ca:7d:24:5b: 7b:79:eb:c4:37:a5:20:5d:86:1e:4e:24:49:c3:23: 77:cd:3b:15:db:22:09:c1:fd:d1:8e:90:fd:14:36: 35:a3:3d:2c:ae:40:fa:50:a8:0e:e7:f3:d0:c5:71: aa:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:FD:85:87:FF:0E:A0:C4:F8:A8:15:6D:25:51:20:B8:00:80:65:80 X509v3 Authority Key Identifier: keyid:85:1C:13:65:E8:DD:FC:E5:75:98:FB:E8:DE:7E:A8:7A:C6:03:E2:2C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hRwTZejd_OV1mPvo3n6oesYD4iw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3522e9-86e0-4b5a-a2c8-00f0601252c8/1/hRwTZejd_OV1mPvo3n6oesYD4iw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3522e9-86e0-4b5a-a2c8-00f0601252c8/1/hRwTZejd_OV1mPvo3n6oesYD4iw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:2f:d4:b9:f4:1e:e7:48:a5:d9:42:13:d7:8b:91:ad:12:d2: 1a:59:ab:b4:17:11:c7:21:bb:21:31:0e:c5:7a:bb:74:c5:a4: 3b:73:94:c2:c9:f3:e9:ad:58:0f:47:da:7a:05:dc:d6:4a:9e: cc:e4:33:f8:df:28:5c:c5:f3:0e:6c:1a:a7:48:24:6b:a5:f3: c6:6f:73:ae:08:da:1f:a7:f4:81:88:86:22:ad:e9:46:7a:5f: 1d:32:dd:22:3b:f3:3e:a6:b5:8d:8d:ba:96:82:85:5b:b0:ec: 70:39:d6:84:97:25:1c:48:65:ac:de:dc:98:09:73:3a:cd:a3: 5a:2c:64:57:6a:1b:a4:83:20:64:83:e9:29:c4:c4:b0:c3:12: b1:a5:3a:6a:91:b6:da:29:8a:0a:e6:9b:30:60:e9:48:05:91: a8:43:5e:96:cf:c2:e9:d8:e4:d5:03:87:0b:dd:3c:cd:44:fc: 23:e5:7b:bd:6b:6f:57:8e:66:ea:bb:81:e7:e9:ae:7e:31:0c: a6:e5:d4:ac:8e:01:58:72:66:a6:98:cb:8f:47:de:ef:0c:06: 8f:13:e6:11:4c:2c:92:3d:6a:3b:82:b4:9f:a4:5a:7a:a2:7d: ff:6f:7f:83:6f:f1:51:0a:5b:52:8d:7a:25:e5:bb:be:e6:50: c6:37:25:b0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/V4B8RgbmtlRKZ8kugrdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1MWMxMzY1ZThkZGZjZTU3NTk4ZmJlOGRlN2VhODdhYzYw M2UyMmMwHhcNMjYwMjA5MDYwMTEyWhcNMjYwMjEwMDYwMTEyWjAzMTEwLwYDVQQD EyhmZmZkODU4N2ZmMGVhMGM0ZjhhODE1NmQyNTUxMjBiODAwODA2NTgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZgx6E5CHlUajom+EMRZS2ljcR4V fIJvCS5LVhEfUXAXpWzCcslmaZfX+tIGvvbgOz/w3D0IqdrbgihiLs3om6tsGgW1 wOtVmuSbBm43ak168R+0+Pm4lEuikGGeHoh9ReVSxZGH0FCChdU6uiMfJRP6WcqD XDjwOrWaHhZtijN/3q/B1iD2k88sU5bNISc4gQZtLfdGPKpbmglV7YeaCF0kUhxo 2FM4LBl47fjqlqrqp3BtuTuiN71RdSC/FJjzh9ovJC8vLwy/QwZjKsp9JFt7eevE N6UgXYYeTiRJwyN3zTsV2yIJwf3RjpD9FDY1oz0srkD6UKgO5/PQxXGqmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP/9hYf/DqDE+KgVbSVRILgAgGWAMB8GA1UdIwQY MBaAFIUcE2Xo3fzldZj76N5+qHrGA+IsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFJ3VFplamRfT1YxbVB2bzNuNm9lc1lENGl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8zNTIyZTktODZlMC00YjVhLWEyYzgt MDBmMDYwMTI1MmM4LzEvaFJ3VFplamRfT1YxbVB2bzNuNm9lc1lENGl3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC8zNTIyZTktODZlMC00YjVhLWEyYzgtMDBmMDYwMTI1MmM4 LzEvaFJ3VFplamRfT1YxbVB2bzNuNm9lc1lENGl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaC/UufQe 50il2UIT14uRrRLSGlmrtBcRxyG7ITEOxXq7dMWkO3OUwsnz6a1YD0faegXc1kqe zOQz+N8oXMXzDmwap0gka6Xzxm9zrgjaH6f0gYiGIq3pRnpfHTLdIjvzPqa1jY26 loKFW7DscDnWhJclHEhlrN7cmAlzOs2jWixkV2obpIMgZIPpKcTEsMMSsaU6apG2 2imKCuabMGDpSAWRqENels/C6djk1QOHC908zUT8I+V7vWtvV45m6ruB5+mufjEM puXUrI4BWHJmppjLj0fe7wwGjxPmEUwskj1qO4K0n6RaeqJ9/29/g2/xUQpbUo16 JeW7vuZQxjclsA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:59:21 2026 by rpki-client