This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft File: hEcK8NideFuhi6YX3Anj9yxZlvM.mft (raw, json) Hash identifier: wEUnFU2b3IwrN3hlLk0EIghR7dm9V9wXJzUoXVx1CS8= Subject key identifier: E2:7E:5D:0E:D4:12:06:89:7F:AA:91:B9:20:B8:F7:C0:8F:3D:19:4A Authority key identifier: 84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3 Certificate issuer: /CN=84470af0d89d785ba18ba617dc09e3f72c5996f3 Certificate serial: 019C43902F05B7E392572ECDA2BF167AA064 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft Manifest number: 099E Signing time: Mon 09 Feb 2026 18:00:48 +0000 Manifest this update: Mon 09 Feb 2026 18:00:48 +0000 Manifest next update: Tue 10 Feb 2026 18:00:48 +0000 Files and hashes: 1: hEcK8NideFuhi6YX3Anj9yxZlvM.crl (hash: 0q36V/wK9kaA2LvEttNuOZXyZ1e1b48wYhDmsJLOQ6E=) 2: vRy4dtwuzcoaMObZOrhsdgekFn8.roa (hash: EEHH4lnEcaLiLMDse86Umm3P044hYY8hcdkDDqvn/M4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:2f:05:b7:e3:92:57:2e:cd:a2:bf:16:7a:a0:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84470af0d89d785ba18ba617dc09e3f72c5996f3 Validity Not Before: Feb 9 18:00:48 2026 GMT Not After : Feb 10 18:00:48 2026 GMT Subject: CN=e27e5d0ed41206897faa91b920b8f7c08f3d194a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2f:f1:cb:34:37:2a:62:c6:ad:d5:b9:24:6d: c2:83:22:40:2a:a0:96:d0:08:50:b2:27:c4:32:7e: 2b:94:eb:a4:c5:b2:e3:22:67:ab:16:e1:4b:69:38: ed:4a:99:7f:3d:25:d9:0c:7e:2c:49:59:28:ef:fe: 54:ae:8e:68:a7:ff:80:00:97:1f:28:a1:bf:23:10: ff:96:eb:74:6b:d0:e7:a9:c1:da:d7:52:c9:2b:ff: 23:ad:6e:68:6e:92:a3:eb:d6:40:de:ad:68:57:f2: a9:ed:26:5d:8a:fb:ed:ab:a0:bb:10:6d:af:e5:bf: b9:83:aa:db:36:21:ae:17:58:a4:04:fa:df:4c:e2: 4f:c7:cf:14:46:bf:64:ec:75:36:dd:20:7a:92:69: c8:15:ca:79:bc:70:71:bd:2a:1a:41:1b:fd:7c:14: 64:8e:ed:5e:d6:d7:12:36:3f:9a:ea:2f:65:b2:18: 22:e7:f2:86:03:5b:dc:b3:9f:ff:3e:8d:4e:d9:6f: ad:c0:b2:a9:d2:2c:38:53:d8:86:20:f7:f1:81:64: 96:e7:ab:6e:a0:53:08:a0:ed:e2:e1:54:86:ef:fb: 94:12:4d:36:98:3d:e2:c5:50:3d:ef:21:24:eb:c7: 7e:8d:49:2e:d5:7d:d6:7c:4f:ca:05:71:7e:b5:5f: 41:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:7E:5D:0E:D4:12:06:89:7F:AA:91:B9:20:B8:F7:C0:8F:3D:19:4A X509v3 Authority Key Identifier: keyid:84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c8:44:db:ca:39:1e:36:76:32:11:7a:58:1d:fc:07:c5:75:0e: 42:c9:83:4d:ca:07:5b:df:1c:b4:2b:99:7a:1a:f1:63:de:b3: 84:d7:11:0b:e0:5c:22:44:98:16:2a:06:5f:23:e3:33:51:c8: 1b:e8:31:88:1d:65:bc:0c:34:93:78:ee:d9:99:a4:9c:ac:68: 15:25:a2:e1:95:92:04:1a:89:5b:24:98:bb:a2:a9:e6:c8:93: 2f:3a:12:62:ff:37:24:6f:f8:20:68:af:08:12:1b:ad:c5:b4: a1:e7:72:cd:50:8f:b1:0b:8a:b3:d2:a3:b5:b4:f2:ef:28:68: 07:94:19:e6:94:92:5e:a5:ff:ee:54:49:8a:65:18:5c:86:49: 3d:9e:50:9b:53:cf:98:aa:12:32:cc:70:bc:87:35:a9:85:6a: 25:4c:0d:14:13:39:a7:2d:65:dc:f3:e9:cf:aa:89:44:2d:fc: ca:21:ca:c2:e4:fb:41:59:2b:89:a0:40:ee:71:01:63:74:5c: 1a:5c:e2:3e:c5:7d:e4:6a:bf:7f:81:8d:c4:49:56:b3:75:db: 44:e3:8f:74:cd:16:4c:4a:aa:6c:d5:98:de:39:ca:0f:50:c3: 60:42:31:f3:0e:b3:77:4a:b9:02:50:e6:a9:5b:c9:2f:26:f9: 8e:de:c8:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkC8Ft+OSVy7Nor8WeqBkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0NDcwYWYwZDg5ZDc4NWJhMThiYTYxN2RjMDllM2Y3MmM1 OTk2ZjMwHhcNMjYwMjA5MTgwMDQ4WhcNMjYwMjEwMTgwMDQ4WjAzMTEwLwYDVQQD EyhlMjdlNWQwZWQ0MTIwNjg5N2ZhYTkxYjkyMGI4ZjdjMDhmM2QxOTRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3i/xyzQ3KmLGrdW5JG3CgyJAKqCW 0AhQsifEMn4rlOukxbLjImerFuFLaTjtSpl/PSXZDH4sSVko7/5Uro5op/+AAJcf KKG/IxD/lut0a9DnqcHa11LJK/8jrW5obpKj69ZA3q1oV/Kp7SZdivvtq6C7EG2v 5b+5g6rbNiGuF1ikBPrfTOJPx88URr9k7HU23SB6kmnIFcp5vHBxvSoaQRv9fBRk ju1e1tcSNj+a6i9lshgi5/KGA1vcs5//Po1O2W+twLKp0iw4U9iGIPfxgWSW56tu oFMIoO3i4VSG7/uUEk02mD3ixVA97yEk68d+jUku1X3WfE/KBXF+tV9BPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOJ+XQ7UEgaJf6qRuSC498CPPRlKMB8GA1UdIwQY MBaAFIRHCvDYnXhboYumF9wJ4/csWZbzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEVjSzhOaWRlRnVoaTZZWDNBbmo5eXhabHZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS82NjBmMWQtNTc1My00NTE2LTgwMDIt ZTc2ZTNlMjkzZTAyLzEvaEVjSzhOaWRlRnVoaTZZWDNBbmo5eXhabHZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS82NjBmMWQtNTc1My00NTE2LTgwMDItZTc2ZTNlMjkzZTAy LzEvaEVjSzhOaWRlRnVoaTZZWDNBbmo5eXhabHZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyETbyjke NnYyEXpYHfwHxXUOQsmDTcoHW98ctCuZehrxY96zhNcRC+BcIkSYFioGXyPjM1HI G+gxiB1lvAw0k3ju2ZmknKxoFSWi4ZWSBBqJWySYu6Kp5siTLzoSYv83JG/4IGiv CBIbrcW0oedyzVCPsQuKs9KjtbTy7yhoB5QZ5pSSXqX/7lRJimUYXIZJPZ5Qm1PP mKoSMsxwvIc1qYVqJUwNFBM5py1l3PPpz6qJRC38yiHKwuT7QVkriaBA7nEBY3Rc GlziPsV95Gq/f4GNxElWs3XbROOPdM0WTEqqbNWY3jnKD1DDYEIx8w6zd0q5AlDm qVvJLyb5jt7I2w== -----END CERTIFICATE-----Generated at Mon Feb 9 23:52:33 2026 by rpki-client