This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.mft File: rHI58-_bN5H1vlVSmbXYFpfz0BI.mft (raw, json) Hash identifier: Z7oNHdf1Sa2NwNwxt9YzN9CNfwsT8GDikuhf5ULhriU= Subject key identifier: 80:20:F5:DF:DA:F8:FE:75:0E:B9:7D:E6:1C:F4:09:6D:6B:5C:BF:1A Authority key identifier: AC:72:39:F3:EF:DB:37:91:F5:BE:55:52:99:B5:D8:16:97:F3:D0:12 Certificate issuer: /CN=ac7239f3efdb3791f5be555299b5d81697f3d012 Certificate serial: 019C4390412A421F7490B0E7CBC1A0286CC1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rHI58-_bN5H1vlVSmbXYFpfz0BI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.mft Manifest number: 13CC Signing time: Mon 09 Feb 2026 18:00:53 +0000 Manifest this update: Mon 09 Feb 2026 18:00:53 +0000 Manifest next update: Tue 10 Feb 2026 18:00:53 +0000 Files and hashes: 1: rHI58-_bN5H1vlVSmbXYFpfz0BI.crl (hash: GDmXgSL/FRMYFvTLrnoe6Xjc3CIDaLRwLkqa/OTjvUI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.mft rsync://rpki.ripe.net/repository/DEFAULT/rHI58-_bN5H1vlVSmbXYFpfz0BI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:41:2a:42:1f:74:90:b0:e7:cb:c1:a0:28:6c:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac7239f3efdb3791f5be555299b5d81697f3d012 Validity Not Before: Feb 9 18:00:53 2026 GMT Not After : Feb 10 18:00:53 2026 GMT Subject: CN=8020f5dfdaf8fe750eb97de61cf4096d6b5cbf1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:0e:95:a3:00:45:0f:10:61:a9:ec:fd:1c:be: 6e:b9:0a:a6:97:fe:e7:51:de:3d:17:23:12:d8:09: 1d:3c:4b:1f:a9:95:06:ee:49:7b:6c:23:aa:d4:2c: b2:7a:9f:93:6e:17:c1:5e:96:ff:81:df:25:3d:ef: ee:ce:a3:43:73:eb:5b:00:c8:7a:9f:20:70:45:71: da:94:ee:1b:de:cc:39:a7:a9:9c:b0:aa:67:3a:a5: a6:42:ac:7c:4b:eb:e8:9e:71:b7:24:45:94:43:a3: 51:d6:05:31:c6:f5:a6:70:87:b3:a7:dc:7f:01:e7: 91:c5:77:a8:be:a2:ec:3c:3d:0a:05:70:2c:96:25: dc:e2:89:89:99:34:11:85:ef:7d:94:02:76:64:48: 15:08:fa:8c:6d:fc:dd:3d:76:09:a9:b7:4a:de:b5: f7:d6:87:e5:3c:48:22:28:eb:c8:7e:84:74:c4:1d: 1e:d6:db:fc:e5:2c:1a:63:3a:12:74:51:91:98:da: de:60:62:cc:df:c4:3b:38:85:0a:7a:f2:e8:87:4f: 6a:a1:6d:05:94:b5:50:42:0b:59:6c:b7:7d:7d:4f: a3:e4:23:7d:f6:22:96:c8:48:6d:d0:82:58:78:c4: bc:4d:cb:84:99:82:48:ef:08:f0:da:c6:c2:3f:da: 20:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:20:F5:DF:DA:F8:FE:75:0E:B9:7D:E6:1C:F4:09:6D:6B:5C:BF:1A X509v3 Authority Key Identifier: keyid:AC:72:39:F3:EF:DB:37:91:F5:BE:55:52:99:B5:D8:16:97:F3:D0:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rHI58-_bN5H1vlVSmbXYFpfz0BI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:b4:f9:cd:f4:00:ce:4f:2d:9d:81:b4:17:3f:4c:b3:c6:bb: f2:c1:f9:33:70:ee:b4:10:50:d3:08:7f:7d:27:d6:04:8c:b0: 68:d9:f9:c4:51:5b:85:ed:ee:e3:63:96:2e:29:3e:fc:34:a9: 06:ad:ac:ec:d9:29:ed:6e:80:2c:53:2b:2f:0a:1e:42:76:21: 6a:f9:dc:0a:f4:3a:0f:c1:24:4f:1f:83:26:86:ea:4b:23:5d: 25:74:9d:cf:f1:c9:37:bd:8d:7c:7d:13:5c:e3:b2:89:ec:84: 64:c4:22:bc:dd:b1:9d:7e:87:72:a4:e5:c1:2c:78:32:34:4f: 91:cd:4b:a8:7d:97:60:8e:dc:de:f1:a0:87:7c:29:fa:1b:02: 3d:b3:29:c5:01:4a:35:b1:8c:4f:6f:ad:e6:7f:ca:34:87:db: 3e:96:a2:93:fc:44:f9:ff:71:a8:3b:fc:e8:38:bb:99:c5:69: e8:cf:a1:3b:f5:66:17:79:a7:a3:88:d2:05:7d:bc:37:d1:b5: 37:0f:7a:6f:8f:d5:d9:a6:f8:63:72:4d:fd:c2:e2:0f:41:eb: 68:77:2a:93:23:8c:19:99:7c:3d:70:ef:a7:81:6a:bf:22:1a: 11:17:3d:63:7a:10:c0:f5:ab:2f:c2:59:aa:9a:f2:97:41:71: eb:25:65:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkEEqQh90kLDny8GgKGzBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjNzIzOWYzZWZkYjM3OTFmNWJlNTU1Mjk5YjVkODE2OTdm M2QwMTIwHhcNMjYwMjA5MTgwMDUzWhcNMjYwMjEwMTgwMDUzWjAzMTEwLwYDVQQD Eyg4MDIwZjVkZmRhZjhmZTc1MGViOTdkZTYxY2Y0MDk2ZDZiNWNiZjFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmw6VowBFDxBhqez9HL5uuQqml/7n Ud49FyMS2AkdPEsfqZUG7kl7bCOq1Cyyep+TbhfBXpb/gd8lPe/uzqNDc+tbAMh6 nyBwRXHalO4b3sw5p6mcsKpnOqWmQqx8S+vonnG3JEWUQ6NR1gUxxvWmcIezp9x/ AeeRxXeovqLsPD0KBXAsliXc4omJmTQRhe99lAJ2ZEgVCPqMbfzdPXYJqbdK3rX3 1oflPEgiKOvIfoR0xB0e1tv85SwaYzoSdFGRmNreYGLM38Q7OIUKevLoh09qoW0F lLVQQgtZbLd9fU+j5CN99iKWyEht0IJYeMS8TcuEmYJI7wjw2sbCP9ogSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIAg9d/a+P51Drl95hz0CW1rXL8aMB8GA1UdIwQY MBaAFKxyOfPv2zeR9b5VUpm12BaX89ASMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvckhJNTgtX2JONUgxdmxWU21iWFlGcGZ6MEJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS9jODkwZmMtMmNmOC00MDc1LTg3NWQt Y2NmYzdmMDdiOWNiLzEvckhJNTgtX2JONUgxdmxWU21iWFlGcGZ6MEJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS9jODkwZmMtMmNmOC00MDc1LTg3NWQtY2NmYzdmMDdiOWNi LzEvckhJNTgtX2JONUgxdmxWU21iWFlGcGZ6MEJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlbT5zfQA zk8tnYG0Fz9Ms8a78sH5M3DutBBQ0wh/fSfWBIywaNn5xFFbhe3u42OWLik+/DSp Bq2s7Nkp7W6ALFMrLwoeQnYhavncCvQ6D8EkTx+DJobqSyNdJXSdz/HJN72NfH0T XOOyieyEZMQivN2xnX6HcqTlwSx4MjRPkc1LqH2XYI7c3vGgh3wp+hsCPbMpxQFK NbGMT2+t5n/KNIfbPpaik/xE+f9xqDv86Di7mcVp6M+hO/VmF3mno4jSBX28N9G1 Nw96b4/V2ab4Y3JN/cLiD0HraHcqkyOMGZl8PXDvp4FqvyIaERc9Y3oQwPWrL8JZ qpryl0Fx6yVl+w== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:25 2026 by rpki-client