This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft File: h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft (raw, json) Hash identifier: kh1GMbLH+eACLDcG8jfVlc91rPZW4ZQ2P8s7DIXEhlQ= Subject key identifier: 4C:43:2E:55:CF:87:2A:48:E5:BC:6C:18:F1:FC:FC:45:F5:7D:F1:17 Authority key identifier: 87:F4:5E:3A:40:69:D4:F5:EB:D5:F6:E6:42:1D:8D:3C:AB:E3:09:21 Certificate issuer: /CN=87f45e3a4069d4f5ebd5f6e6421d8d3cabe30921 Certificate serial: 019C45111BB3C593C226B49B663038DC0497 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h_ReOkBp1PXr1fbmQh2NPKvjCSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft Manifest number: 13BE Signing time: Tue 10 Feb 2026 01:01:14 +0000 Manifest this update: Tue 10 Feb 2026 01:01:14 +0000 Manifest next update: Wed 11 Feb 2026 01:01:14 +0000 Files and hashes: 1: aMxhZsLMDx304AXjnZldJIQi_VU.roa (hash: nX4KFrnvKm65Zf0OrETssJJWMj+/5dAoLpEa4nDLRE4=) 2: h_ReOkBp1PXr1fbmQh2NPKvjCSE.crl (hash: f6A3MAnrqB16anccLqX9ms6vN7lMHBpm+mFFDdwAJ2Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft rsync://rpki.ripe.net/repository/DEFAULT/h_ReOkBp1PXr1fbmQh2NPKvjCSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:11:1b:b3:c5:93:c2:26:b4:9b:66:30:38:dc:04:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87f45e3a4069d4f5ebd5f6e6421d8d3cabe30921 Validity Not Before: Feb 10 01:01:14 2026 GMT Not After : Feb 11 01:01:14 2026 GMT Subject: CN=4c432e55cf872a48e5bc6c18f1fcfc45f57df117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ad:18:4d:76:31:9a:d9:c1:31:16:fb:ad:10: e2:cf:3b:99:27:27:21:f8:60:3d:ba:6e:73:8b:3a: f8:dc:93:74:37:46:fc:ba:f3:ef:15:6d:1c:ce:b9: 3c:86:26:63:36:38:3f:54:7e:65:46:cf:e6:6c:3f: 2f:39:92:0a:aa:b9:bc:38:e9:ab:e6:aa:b1:23:87: 05:2d:9f:a3:a1:bb:16:88:1f:00:4e:41:cc:fd:05: 21:7f:bc:d6:c0:f2:90:32:0e:fb:6d:15:91:38:23: da:99:d7:70:fd:55:94:15:02:40:ee:7a:ba:1a:eb: 10:44:18:33:ee:04:08:25:52:7f:60:39:c5:86:09: 12:c6:d4:98:c6:09:91:79:37:d6:4c:0e:82:bf:5c: 23:cf:07:44:74:eb:9c:b9:e2:e7:48:b4:e7:6a:a3: b9:fc:48:52:53:7d:c5:2e:c7:b9:8b:67:a9:c6:2f: 49:7b:9c:7c:d9:df:92:26:45:b5:a5:cd:95:55:bb: 64:0e:15:c9:d4:9b:d1:7e:bc:ef:d6:c8:85:18:5e: be:44:e3:8f:00:5b:fc:37:75:52:67:8e:66:23:cc: f8:d9:b4:87:77:92:87:2f:e0:92:ef:b0:7c:3a:d2: 14:a3:0f:53:9d:ea:7e:d2:5c:a8:67:8c:93:e0:87: 73:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:43:2E:55:CF:87:2A:48:E5:BC:6C:18:F1:FC:FC:45:F5:7D:F1:17 X509v3 Authority Key Identifier: keyid:87:F4:5E:3A:40:69:D4:F5:EB:D5:F6:E6:42:1D:8D:3C:AB:E3:09:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h_ReOkBp1PXr1fbmQh2NPKvjCSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:4e:a7:7b:23:7d:6e:22:9b:b5:c9:74:86:bb:94:8f:b9:10: d1:14:58:10:74:2b:25:ad:16:6a:b3:eb:4f:1f:20:0e:06:0d: dc:35:24:d7:2e:73:95:6b:e5:8e:dc:29:2e:1d:9e:4d:bc:3d: 4b:78:2f:4b:43:34:55:70:43:f0:11:31:ce:ad:f7:ee:93:cf: 2e:dc:dc:30:1e:3e:5f:cb:a8:cc:84:60:b2:f3:ca:fa:15:af: ed:37:aa:e5:f1:51:4e:d3:f4:e0:ed:ba:82:3c:c4:57:0e:9a: 91:8e:1f:28:75:2f:f1:c4:a8:70:bd:8b:86:dc:cc:49:d4:03: df:7f:af:06:a8:d1:78:53:88:2e:9b:8b:d1:eb:ef:71:cb:1d: e4:e6:d2:ea:cc:b5:4e:a3:d5:bc:e4:06:fa:09:a0:c3:f9:50: c2:b1:14:7e:63:28:31:4d:26:a2:1a:04:bc:ec:6c:c4:26:76: e6:80:f0:23:64:e8:bf:ee:ab:98:5f:cd:45:27:0e:f8:a2:03: 2d:70:20:5c:d8:f0:60:61:81:aa:51:cf:ae:33:4c:17:de:df: 9a:ab:ca:4c:dd:16:9b:71:92:0d:8a:c6:80:39:5f:35:6d:14: 42:2c:74:64:b4:2e:ad:18:ca:73:d7:9e:2c:81:04:31:c5:9b: 38:ef:c5:ba -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFERuzxZPCJrSbZjA43ASXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3ZjQ1ZTNhNDA2OWQ0ZjVlYmQ1ZjZlNjQyMWQ4ZDNjYWJl MzA5MjEwHhcNMjYwMjEwMDEwMTE0WhcNMjYwMjExMDEwMTE0WjAzMTEwLwYDVQQD Eyg0YzQzMmU1NWNmODcyYTQ4ZTViYzZjMThmMWZjZmM0NWY1N2RmMTE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAua0YTXYxmtnBMRb7rRDizzuZJych +GA9um5zizr43JN0N0b8uvPvFW0czrk8hiZjNjg/VH5lRs/mbD8vOZIKqrm8OOmr 5qqxI4cFLZ+jobsWiB8ATkHM/QUhf7zWwPKQMg77bRWROCPamddw/VWUFQJA7nq6 GusQRBgz7gQIJVJ/YDnFhgkSxtSYxgmReTfWTA6Cv1wjzwdEdOucueLnSLTnaqO5 /EhSU33FLse5i2epxi9Je5x82d+SJkW1pc2VVbtkDhXJ1JvRfrzv1siFGF6+ROOP AFv8N3VSZ45mI8z42bSHd5KHL+CS77B8OtIUow9Tnep+0lyoZ4yT4IdzUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFExDLlXPhypI5bxsGPH8/EX1ffEXMB8GA1UdIwQY MBaAFIf0XjpAadT169X25kIdjTyr4wkhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaF9SZU9rQnAxUFhyMWZibVFoMk5QS3ZqQ1NFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC84YmRmZDMtZDVhMS00NWI5LTkyOTYt NjMxOWJiMDc5YzQ0LzEvaF9SZU9rQnAxUFhyMWZibVFoMk5QS3ZqQ1NFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC84YmRmZDMtZDVhMS00NWI5LTkyOTYtNjMxOWJiMDc5YzQ0 LzEvaF9SZU9rQnAxUFhyMWZibVFoMk5QS3ZqQ1NFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmE6neyN9 biKbtcl0hruUj7kQ0RRYEHQrJa0WarPrTx8gDgYN3DUk1y5zlWvljtwpLh2eTbw9 S3gvS0M0VXBD8BExzq337pPPLtzcMB4+X8uozIRgsvPK+hWv7Teq5fFRTtP04O26 gjzEVw6akY4fKHUv8cSocL2LhtzMSdQD33+vBqjReFOILpuL0evvccsd5ObS6sy1 TqPVvOQG+gmgw/lQwrEUfmMoMU0mohoEvOxsxCZ25oDwI2Tov+6rmF/NRScO+KID LXAgXNjwYGGBqlHPrjNMF97fmqvKTN0Wm3GSDYrGgDlfNW0UQix0ZLQurRjKc9ee LIEEMcWbOO/Fug== -----END CERTIFICATE-----Generated at Tue Feb 10 02:54:55 2026 by rpki-client