This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/94f662-506b-4ec9-a7aa-c9b7eb2cea57/1/THHp8j7qymjHIcvkKAYQC3XhV3A.mft File: THHp8j7qymjHIcvkKAYQC3XhV3A.mft (raw, json) Hash identifier: bIpl3nkzcv+C7KxqVZ1sAptRdF62yd9UtDp0+i+XAH8= Subject key identifier: 3E:B0:B2:D3:7C:88:42:9F:D4:48:EB:01:D0:30:BD:FC:A7:2F:ED:BE Authority key identifier: 4C:71:E9:F2:3E:EA:CA:68:C7:21:CB:E4:28:06:10:0B:75:E1:57:70 Certificate issuer: /CN=4c71e9f23eeaca68c721cbe42806100b75e15770 Certificate serial: 019C446B8D6619EE9B21DEBD365032FDA135 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/THHp8j7qymjHIcvkKAYQC3XhV3A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/94f662-506b-4ec9-a7aa-c9b7eb2cea57/1/THHp8j7qymjHIcvkKAYQC3XhV3A.mft Manifest number: 06CE Signing time: Mon 09 Feb 2026 22:00:25 +0000 Manifest this update: Mon 09 Feb 2026 22:00:25 +0000 Manifest next update: Tue 10 Feb 2026 22:00:25 +0000 Files and hashes: 1: THHp8j7qymjHIcvkKAYQC3XhV3A.crl (hash: uBFqOpUrWwIt5bkYdLaNu9QZYDtix605s6PlGWV1IUk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/94f662-506b-4ec9-a7aa-c9b7eb2cea57/1/THHp8j7qymjHIcvkKAYQC3XhV3A.crl rsync://rpki.ripe.net/repository/DEFAULT/16/94f662-506b-4ec9-a7aa-c9b7eb2cea57/1/THHp8j7qymjHIcvkKAYQC3XhV3A.mft rsync://rpki.ripe.net/repository/DEFAULT/THHp8j7qymjHIcvkKAYQC3XhV3A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:8d:66:19:ee:9b:21:de:bd:36:50:32:fd:a1:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4c71e9f23eeaca68c721cbe42806100b75e15770 Validity Not Before: Feb 9 22:00:25 2026 GMT Not After : Feb 10 22:00:25 2026 GMT Subject: CN=3eb0b2d37c88429fd448eb01d030bdfca72fedbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5c:75:3a:35:36:6f:9a:be:98:74:3c:7a:91: 27:7f:2f:cb:bb:95:ba:d5:8a:fb:e5:bc:18:3a:ce: 5d:dd:0f:23:fc:ba:0a:6e:65:eb:ed:12:0e:89:00: b6:bd:2d:4c:9a:91:82:3d:cf:51:38:4f:6e:93:4b: 44:63:3f:94:1e:46:75:c5:0e:56:60:21:b4:10:a5: 22:64:a0:e2:96:65:97:b9:77:9f:39:3f:fb:fa:05: 4e:28:35:ed:cd:7c:10:d4:dd:73:14:66:f7:96:ba: 0c:be:2f:05:5b:71:3d:c3:b2:16:27:ad:c5:93:01: 0a:bd:be:9d:8f:37:1a:80:b9:6b:5c:64:14:06:24: dd:62:4b:81:b6:0f:93:e2:13:ac:89:6e:50:76:4d: 51:1c:c7:25:45:03:fa:37:9d:c7:d7:ee:6c:15:07: 0e:0c:fe:c2:25:50:6d:75:8f:79:a0:bf:bb:ad:e8: 83:b2:a5:4b:55:04:7a:d7:eb:c1:38:57:d4:0d:82: df:d6:5e:f7:45:dd:50:5a:56:13:7e:8d:ae:93:2f: 2e:b8:24:e2:bf:92:7e:10:77:29:52:14:69:3b:de: 26:3d:ab:38:4f:22:08:39:d6:5d:6d:0d:b2:e5:20: da:35:42:e4:35:d4:db:91:a5:ba:cb:3b:d4:74:4d: e8:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:B0:B2:D3:7C:88:42:9F:D4:48:EB:01:D0:30:BD:FC:A7:2F:ED:BE X509v3 Authority Key Identifier: keyid:4C:71:E9:F2:3E:EA:CA:68:C7:21:CB:E4:28:06:10:0B:75:E1:57:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/THHp8j7qymjHIcvkKAYQC3XhV3A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/94f662-506b-4ec9-a7aa-c9b7eb2cea57/1/THHp8j7qymjHIcvkKAYQC3XhV3A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/94f662-506b-4ec9-a7aa-c9b7eb2cea57/1/THHp8j7qymjHIcvkKAYQC3XhV3A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:a3:9b:f5:cd:d5:74:1e:a1:f5:1d:fa:db:ed:a6:a1:c0:15: fa:3f:58:eb:fb:94:5b:5a:0b:97:0d:0e:ad:07:8c:4f:95:e5: bd:e0:84:8f:5d:28:fc:75:0c:3e:1b:16:12:a4:f5:0d:3d:e2: 68:2d:f4:cb:c4:5a:93:d7:b6:ca:fe:2d:c3:67:d6:39:51:40: 79:31:63:3a:a9:84:62:18:16:27:39:1f:3a:a8:03:eb:ae:3e: 53:c1:ba:6d:e8:2a:cb:69:7a:f7:2e:f6:d2:76:de:5e:1e:81: f3:e0:de:d3:31:60:aa:31:74:d8:17:de:9a:e3:dc:57:8e:12: 6d:91:e0:12:0a:c9:d4:b1:1c:92:79:48:64:81:12:10:0e:71: 37:bc:3b:63:94:a0:1a:f5:62:9b:be:db:b2:5e:47:d7:61:6e: 93:89:e0:d6:ad:a3:f6:c6:b7:e5:e4:6c:ff:ff:1f:84:fb:dc: 6a:8c:7c:2f:b5:95:6b:6c:b0:f4:c1:cc:8b:34:a0:61:7a:99: 90:29:84:d7:88:81:0b:10:d6:1d:47:a3:db:38:ed:d5:9d:5a: 44:44:7a:f9:db:0d:47:0f:d5:df:9c:08:85:1a:cf:fa:52:66: 97:a7:3f:47:8e:b3:c0:62:ab:9a:48:75:a4:83:ef:72:e7:55: 31:d2:d2:6f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa41mGe6bId69NlAy/aE1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjNzFlOWYyM2VlYWNhNjhjNzIxY2JlNDI4MDYxMDBiNzVl MTU3NzAwHhcNMjYwMjA5MjIwMDI1WhcNMjYwMjEwMjIwMDI1WjAzMTEwLwYDVQQD EygzZWIwYjJkMzdjODg0MjlmZDQ0OGViMDFkMDMwYmRmY2E3MmZlZGJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1x1OjU2b5q+mHQ8epEnfy/Lu5W6 1Yr75bwYOs5d3Q8j/LoKbmXr7RIOiQC2vS1MmpGCPc9ROE9uk0tEYz+UHkZ1xQ5W YCG0EKUiZKDilmWXuXefOT/7+gVOKDXtzXwQ1N1zFGb3lroMvi8FW3E9w7IWJ63F kwEKvb6djzcagLlrXGQUBiTdYkuBtg+T4hOsiW5Qdk1RHMclRQP6N53H1+5sFQcO DP7CJVBtdY95oL+7reiDsqVLVQR61+vBOFfUDYLf1l73Rd1QWlYTfo2uky8uuCTi v5J+EHcpUhRpO94mPas4TyIIOdZdbQ2y5SDaNULkNdTbkaW6yzvUdE3oLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD6wstN8iEKf1EjrAdAwvfynL+2+MB8GA1UdIwQY MBaAFExx6fI+6spoxyHL5CgGEAt14VdwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEhIcDhqN3F5bWpISWN2a0tBWVFDM1hoVjNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi85NGY2NjItNTA2Yi00ZWM5LWE3YWEt YzliN2ViMmNlYTU3LzEvVEhIcDhqN3F5bWpISWN2a0tBWVFDM1hoVjNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi85NGY2NjItNTA2Yi00ZWM5LWE3YWEtYzliN2ViMmNlYTU3 LzEvVEhIcDhqN3F5bWpISWN2a0tBWVFDM1hoVjNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU6Ob9c3V dB6h9R362+2mocAV+j9Y6/uUW1oLlw0OrQeMT5XlveCEj10o/HUMPhsWEqT1DT3i aC30y8Rak9e2yv4tw2fWOVFAeTFjOqmEYhgWJzkfOqgD664+U8G6begqy2l69y72 0nbeXh6B8+De0zFgqjF02BfemuPcV44SbZHgEgrJ1LEcknlIZIESEA5xN7w7Y5Sg GvVim77bsl5H12Fuk4ng1q2j9sa35eRs//8fhPvcaox8L7WVa2yw9MHMizSgYXqZ kCmE14iBCxDWHUej2zjt1Z1aRER6+dsNRw/V35wIhRrP+lJml6c/R46zwGKrmkh1 pIPvcudVMdLSbw== -----END CERTIFICATE-----Generated at Tue Feb 10 00:17:26 2026 by rpki-client