This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.mft File: HR3nlQkjqWQxniwzg0m9Emh75K4.mft (raw, json) Hash identifier: mLl5daKlTNEMmE5bCS5Z2ETzlybCSAosrtmx8G/h1gU= Subject key identifier: 60:2F:36:E4:9E:3D:A6:1A:77:67:CD:E3:AD:CD:D9:9B:B8:69:76:F1 Authority key identifier: 1D:1D:E7:95:09:23:A9:64:31:9E:2C:33:83:49:BD:12:68:7B:E4:AE Certificate issuer: /CN=1d1de7950923a964319e2c338349bd12687be4ae Certificate serial: 019C4321D00CE32333D3072B32E17FBCF0E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HR3nlQkjqWQxniwzg0m9Emh75K4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.mft Manifest number: 0C86 Signing time: Mon 09 Feb 2026 16:00:15 +0000 Manifest this update: Mon 09 Feb 2026 16:00:15 +0000 Manifest next update: Tue 10 Feb 2026 16:00:15 +0000 Files and hashes: 1: HR3nlQkjqWQxniwzg0m9Emh75K4.crl (hash: M2aTtIbu9Cmtw5wXcbI9jLs42CSUin1AyB+2n0K/dX4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.crl rsync://rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.mft rsync://rpki.ripe.net/repository/DEFAULT/HR3nlQkjqWQxniwzg0m9Emh75K4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:d0:0c:e3:23:33:d3:07:2b:32:e1:7f:bc:f0:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d1de7950923a964319e2c338349bd12687be4ae Validity Not Before: Feb 9 16:00:15 2026 GMT Not After : Feb 10 16:00:15 2026 GMT Subject: CN=602f36e49e3da61a7767cde3adcdd99bb86976f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b7:e2:06:93:21:fa:19:40:12:c7:6d:c0:39: 10:85:20:08:04:56:f3:a3:6b:1e:6b:17:30:94:96: 81:34:f1:de:4c:29:f1:53:1e:b7:ef:ca:79:4d:30: 24:c3:a3:d2:d1:45:fb:e1:e8:22:81:e6:84:69:f4: 3e:d3:04:a6:68:69:f3:90:df:7e:1e:c9:ad:1d:12: a0:96:24:f3:08:f3:63:ad:02:e0:53:e6:36:c7:26: 67:44:f6:ba:ea:e5:6c:10:56:ed:ca:55:16:df:55: 09:fb:5e:3d:1f:ca:51:a6:a8:3e:f4:c7:f9:70:55: 3b:60:5c:7c:c1:5e:49:ac:d5:b7:7e:30:ce:65:6d: fd:ac:f6:ba:4b:b7:a7:13:19:b3:41:b8:f2:62:46: e3:30:5e:62:1e:ec:38:d0:d7:68:2a:3e:d1:ce:23: 91:fe:4e:0e:f8:d4:44:eb:bd:d5:ff:06:b9:a4:84: bf:09:87:dd:ed:41:75:e5:28:bd:40:cf:3c:73:77: c0:1a:16:40:07:9a:a3:19:d6:d3:f7:6d:3b:b4:7a: 25:9e:24:49:50:c5:b2:34:5e:8c:ae:35:8b:d6:27: 49:3c:a3:c7:ab:04:17:cd:7d:a2:b6:9d:ed:af:ee: 96:09:d3:d7:64:b5:ca:04:34:c6:51:88:ec:28:7e: ad:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:2F:36:E4:9E:3D:A6:1A:77:67:CD:E3:AD:CD:D9:9B:B8:69:76:F1 X509v3 Authority Key Identifier: keyid:1D:1D:E7:95:09:23:A9:64:31:9E:2C:33:83:49:BD:12:68:7B:E4:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HR3nlQkjqWQxniwzg0m9Emh75K4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/bbe160-d9bb-4b4d-8737-d8d00e16c590/1/HR3nlQkjqWQxniwzg0m9Emh75K4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:b5:b2:3c:04:f4:cc:20:8f:ca:23:ec:02:2f:f5:58:c0:b0: e7:78:89:52:80:dd:42:fa:ed:22:30:9b:9c:d2:a5:04:1b:63: de:09:42:4d:30:83:36:26:ce:44:07:2f:9c:e0:76:f4:24:2d: 03:79:86:92:68:2a:29:8a:21:af:f6:68:b5:cb:3f:47:25:cd: 09:40:3c:4e:20:f3:5c:7c:59:7d:91:98:da:b2:79:01:1c:0c: 7d:08:dc:f9:51:0f:48:b4:c8:28:95:31:db:0f:d6:db:c2:99: 96:50:f3:6b:7d:c7:b7:d9:f7:5f:33:0c:da:89:5f:a6:b9:b8: a6:1c:17:5a:ee:b5:18:f7:ae:63:19:6b:2c:bf:79:76:0c:53: bd:ca:db:f7:0a:31:f3:9d:c8:53:0e:7c:62:2f:97:01:ba:5f: 24:60:20:5a:49:70:1f:9e:66:6b:04:c6:bf:3c:ed:c6:39:ea: ba:e4:35:19:5d:e3:14:61:f2:f2:32:2b:14:77:2d:94:10:c6: b4:83:fa:66:dd:55:9e:18:7c:81:d0:d8:7f:4e:46:39:4d:fd: 4b:b0:5e:3d:40:7f:c6:43:af:f1:e8:5f:bc:12:2c:6a:3c:dd: 8e:45:f2:d5:8c:41:ee:26:3f:e8:04:0c:da:39:84:ce:50:b3: 2f:ac:91:e1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIdAM4yMz0wcrMuF/vPDnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkMWRlNzk1MDkyM2E5NjQzMTllMmMzMzgzNDliZDEyNjg3 YmU0YWUwHhcNMjYwMjA5MTYwMDE1WhcNMjYwMjEwMTYwMDE1WjAzMTEwLwYDVQQD Eyg2MDJmMzZlNDllM2RhNjFhNzc2N2NkZTNhZGNkZDk5YmI4Njk3NmYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv7fiBpMh+hlAEsdtwDkQhSAIBFbz o2seaxcwlJaBNPHeTCnxUx6378p5TTAkw6PS0UX74egigeaEafQ+0wSmaGnzkN9+ HsmtHRKgliTzCPNjrQLgU+Y2xyZnRPa66uVsEFbtylUW31UJ+149H8pRpqg+9Mf5 cFU7YFx8wV5JrNW3fjDOZW39rPa6S7enExmzQbjyYkbjMF5iHuw40NdoKj7RziOR /k4O+NRE673V/wa5pIS/CYfd7UF15Si9QM88c3fAGhZAB5qjGdbT9207tHolniRJ UMWyNF6MrjWL1idJPKPHqwQXzX2itp3tr+6WCdPXZLXKBDTGUYjsKH6tcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGAvNuSePaYad2fN463N2Zu4aXbxMB8GA1UdIwQY MBaAFB0d55UJI6lkMZ4sM4NJvRJoe+SuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFIzbmxRa2pxV1F4bml3emcwbTlFbWg3NUs0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9iYmUxNjAtZDliYi00YjRkLTg3Mzct ZDhkMDBlMTZjNTkwLzEvSFIzbmxRa2pxV1F4bml3emcwbTlFbWg3NUs0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi9iYmUxNjAtZDliYi00YjRkLTg3MzctZDhkMDBlMTZjNTkw LzEvSFIzbmxRa2pxV1F4bml3emcwbTlFbWg3NUs0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo7WyPAT0 zCCPyiPsAi/1WMCw53iJUoDdQvrtIjCbnNKlBBtj3glCTTCDNibORAcvnOB29CQt A3mGkmgqKYohr/Zotcs/RyXNCUA8TiDzXHxZfZGY2rJ5ARwMfQjc+VEPSLTIKJUx 2w/W28KZllDza33Ht9n3XzMM2olfprm4phwXWu61GPeuYxlrLL95dgxTvcrb9wox 853IUw58Yi+XAbpfJGAgWklwH55mawTGvzztxjnquuQ1GV3jFGHy8jIrFHctlBDG tIP6Zt1Vnhh8gdDYf05GOU39S7BePUB/xkOv8ehfvBIsajzdjkXy1YxB7iY/6AQM 2jmEzlCzL6yR4Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:48:03 2026 by rpki-client