This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.mft File: GhREUllzKqZzbCSCNEZZR_wjdNA.mft (raw, json) Hash identifier: 2XuMvEHnNQSj7H6lE8umM0fzm2hRg9E1OTJJA392BLo= Subject key identifier: 29:80:71:B6:B7:7C:EE:7B:71:48:2A:9D:74:6A:A1:D5:55:E9:E4:F5 Authority key identifier: 1A:14:44:52:59:73:2A:A6:73:6C:24:82:34:46:59:47:FC:23:74:D0 Certificate issuer: /CN=1a14445259732aa6736c248234465947fc2374d0 Certificate serial: 019C4322E2E744465D0E3FB8F40E310AB516 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GhREUllzKqZzbCSCNEZZR_wjdNA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.mft Manifest number: 0E8C Signing time: Mon 09 Feb 2026 16:01:25 +0000 Manifest this update: Mon 09 Feb 2026 16:01:25 +0000 Manifest next update: Tue 10 Feb 2026 16:01:25 +0000 Files and hashes: 1: GhREUllzKqZzbCSCNEZZR_wjdNA.crl (hash: Hv1bKVVhxYV3eWcZy5M6Dy/N+Zil2IDioVY7rq02viA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.mft rsync://rpki.ripe.net/repository/DEFAULT/GhREUllzKqZzbCSCNEZZR_wjdNA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:e2:e7:44:46:5d:0e:3f:b8:f4:0e:31:0a:b5:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a14445259732aa6736c248234465947fc2374d0 Validity Not Before: Feb 9 16:01:25 2026 GMT Not After : Feb 10 16:01:25 2026 GMT Subject: CN=298071b6b77cee7b71482a9d746aa1d555e9e4f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:2a:1b:d8:d8:0e:d3:79:10:ff:91:89:d6:62: a2:bf:67:4c:e0:6a:fa:c1:2e:1b:0a:6c:cd:74:3c: 8e:3e:39:c3:a8:9b:fc:18:bd:b2:e4:b8:51:61:bc: 60:5a:57:94:82:57:72:e4:b5:dd:9e:e8:ee:70:2b: 24:6e:b8:da:c9:95:b7:75:44:31:a1:f5:ef:d2:ce: 0c:ca:c7:13:2f:a7:1e:57:d3:29:14:fc:14:27:91: 54:a7:15:92:d5:bd:b6:bf:5a:9f:57:f1:1e:ea:49: 44:ea:b5:6b:0a:b9:b1:22:49:42:f0:9f:33:69:b5: 7e:d5:a3:3b:65:0c:04:d5:8b:7c:84:74:8e:d1:27: 39:73:7c:68:55:b2:96:e7:bc:ef:f7:ef:ff:4c:0b: 08:62:ca:0c:2b:df:24:ac:ac:1f:0f:b2:7b:4c:2b: b1:d6:44:f8:e8:e4:e0:04:5c:54:0f:f7:b9:8b:1a: 3b:9f:de:38:fc:06:ff:a3:54:47:98:2f:f7:cb:40: 61:c1:a8:5b:2c:b3:1a:a2:50:54:72:25:50:3a:af: 6f:be:63:20:fc:c3:38:fc:12:85:51:ab:be:21:78: 2f:bd:a7:a8:ac:3d:69:a0:62:2d:6a:5b:16:c2:aa: 76:2e:ee:3e:ab:e4:f2:66:d4:92:87:5b:c7:71:b2: 42:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:80:71:B6:B7:7C:EE:7B:71:48:2A:9D:74:6A:A1:D5:55:E9:E4:F5 X509v3 Authority Key Identifier: keyid:1A:14:44:52:59:73:2A:A6:73:6C:24:82:34:46:59:47:FC:23:74:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GhREUllzKqZzbCSCNEZZR_wjdNA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:1e:e8:63:fe:ac:fa:30:85:77:58:1a:b4:05:9d:07:dd:d9: 12:69:0a:4a:b0:85:5b:88:19:9b:22:1b:a7:1e:2c:b6:89:e8: 74:a1:10:7d:bc:3e:c6:2a:66:de:30:a4:10:c5:3b:da:39:bc: ee:12:40:eb:77:de:10:ff:b2:ab:55:4a:04:75:58:bf:ed:51: 72:10:2e:d1:ab:6e:40:57:91:aa:aa:bb:b6:59:24:d3:54:4b: d8:e3:84:8b:1b:cc:54:1b:2f:9b:69:ce:42:28:46:d6:72:e2: 70:52:db:4f:3f:81:ed:86:01:7d:31:f8:7e:64:43:53:87:f8: 8f:0a:7b:0e:64:ba:a0:2c:e3:0f:2a:af:a8:46:d3:c9:f7:19: c7:f9:38:64:3e:00:5b:69:a7:e8:7e:cc:21:fa:4a:a4:2f:0b: de:e5:11:4e:79:ac:7b:c4:d7:b0:16:ee:19:81:67:e6:fe:2b: 6a:1a:e1:f4:53:0b:f7:1c:84:f7:81:36:20:bb:d1:1f:4f:f7: ca:c5:99:62:85:ac:ef:f3:08:c5:42:b1:5f:49:3a:54:b0:3a: 5b:67:d8:6e:b8:4a:ed:31:66:8f:49:41:f9:62:32:22:ce:14: 5a:e6:9a:d4:09:99:a0:6b:41:60:87:13:0b:28:26:69:27:fb: 3d:c1:00:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIuLnREZdDj+49A4xCrUWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhMTQ0NDUyNTk3MzJhYTY3MzZjMjQ4MjM0NDY1OTQ3ZmMy Mzc0ZDAwHhcNMjYwMjA5MTYwMTI1WhcNMjYwMjEwMTYwMTI1WjAzMTEwLwYDVQQD EygyOTgwNzFiNmI3N2NlZTdiNzE0ODJhOWQ3NDZhYTFkNTU1ZTllNGY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Cob2NgO03kQ/5GJ1mKiv2dM4Gr6 wS4bCmzNdDyOPjnDqJv8GL2y5LhRYbxgWleUgldy5LXdnujucCskbrjayZW3dUQx ofXv0s4MyscTL6ceV9MpFPwUJ5FUpxWS1b22v1qfV/Ee6klE6rVrCrmxIklC8J8z abV+1aM7ZQwE1Yt8hHSO0Sc5c3xoVbKW57zv9+//TAsIYsoMK98krKwfD7J7TCux 1kT46OTgBFxUD/e5ixo7n944/Ab/o1RHmC/3y0BhwahbLLMaolBUciVQOq9vvmMg /MM4/BKFUau+IXgvvaeorD1poGItalsWwqp2Lu4+q+TyZtSSh1vHcbJCpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCmAcba3fO57cUgqnXRqodVV6eT1MB8GA1UdIwQY MBaAFBoURFJZcyqmc2wkgjRGWUf8I3TQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR2hSRVVsbHpLcVp6YkNTQ05FWlpSX3dqZE5BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9kMTA4NDEtN2Q0NC00NmRhLWIyOWMt MzgxZjIzZjE4M2Q3LzEvR2hSRVVsbHpLcVp6YkNTQ05FWlpSX3dqZE5BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi9kMTA4NDEtN2Q0NC00NmRhLWIyOWMtMzgxZjIzZjE4M2Q3 LzEvR2hSRVVsbHpLcVp6YkNTQ05FWlpSX3dqZE5BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASR7oY/6s +jCFd1gatAWdB93ZEmkKSrCFW4gZmyIbpx4stonodKEQfbw+xipm3jCkEMU72jm8 7hJA63feEP+yq1VKBHVYv+1RchAu0atuQFeRqqq7tlkk01RL2OOEixvMVBsvm2nO QihG1nLicFLbTz+B7YYBfTH4fmRDU4f4jwp7DmS6oCzjDyqvqEbTyfcZx/k4ZD4A W2mn6H7MIfpKpC8L3uURTnmse8TXsBbuGYFn5v4rahrh9FML9xyE94E2ILvRH0/3 ysWZYoWs7/MIxUKxX0k6VLA6W2fYbrhK7TFmj0lB+WIyIs4UWuaa1AmZoGtBYIcT CygmaSf7PcEA5A== -----END CERTIFICATE-----Generated at Mon Feb 9 20:56:13 2026 by rpki-client