This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft File: gEH-6hI_ywfocqjLS92at7jaL88.mft (raw, json) Hash identifier: nZ7YKkJrzhYo3w0DU5Dnn4/tqkZoStWbxAEd+M/aSI4= Subject key identifier: F3:28:F6:AF:4D:0A:EF:28:56:F2:C5:B7:C3:00:79:0B:9A:F2:71:EE Authority key identifier: 80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF Certificate issuer: /CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf Certificate serial: 019C43590E62854BF9140B759676FF4325B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft Manifest number: 0C27 Signing time: Mon 09 Feb 2026 17:00:35 +0000 Manifest this update: Mon 09 Feb 2026 17:00:35 +0000 Manifest next update: Tue 10 Feb 2026 17:00:35 +0000 Files and hashes: 1: TtXo5-QRvXwKIgknKnZ4_4t2vL8.roa (hash: mXHeMxujxsacK8/QlflktbO+DxAXX0UCko2MtIwDM0I=) 2: gEH-6hI_ywfocqjLS92at7jaL88.crl (hash: pwOQ+jCnvyDJ+PF6VET+RjH+1mSCMlQZWpgKyv2fj6w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.crl rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:0e:62:85:4b:f9:14:0b:75:96:76:ff:43:25:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf Validity Not Before: Feb 9 17:00:35 2026 GMT Not After : Feb 10 17:00:35 2026 GMT Subject: CN=f328f6af4d0aef2856f2c5b7c300790b9af271ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:7a:30:2a:03:28:60:f4:71:ba:6e:56:76:a7: 7e:94:47:fe:1f:ab:df:7b:93:64:8b:6c:31:b4:0f: 08:b4:9f:3f:e9:96:5b:e8:90:65:c2:91:dc:dd:bb: fd:45:05:0e:5b:29:91:53:d1:97:6b:cc:ce:55:4b: bc:2b:ff:56:be:93:c6:b8:0f:33:b8:e4:2e:04:d9: dd:ed:29:82:19:09:f3:82:c7:f9:82:cb:28:b7:73: dc:3a:7a:2f:96:c5:a2:bd:03:0f:b7:9b:c0:63:4c: 58:db:2a:15:f8:dc:15:47:a0:55:4a:5b:18:92:3a: d7:8f:0b:24:50:d9:12:78:a6:34:72:70:79:1b:81: e7:d2:26:5d:ba:af:01:1e:78:c9:9d:49:a4:02:34: 53:10:f1:9e:d5:b2:5e:d1:9d:46:1d:9e:d2:c0:32: f3:7d:30:7d:a6:94:d0:ad:90:e3:e7:18:82:ae:fb: 2f:6a:e6:39:8b:6e:df:74:42:a5:a0:c6:ab:d0:b2: a2:78:af:b6:e8:6a:3d:94:70:81:2f:9c:7e:7a:0e: 33:b4:39:72:bf:af:44:d9:74:de:f8:4b:4d:95:02: df:00:6d:a4:95:ad:bb:4e:9f:66:b6:c6:75:10:ea: 48:33:75:05:74:80:f3:03:64:8c:77:8b:e6:95:7c: e9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:28:F6:AF:4D:0A:EF:28:56:F2:C5:B7:C3:00:79:0B:9A:F2:71:EE X509v3 Authority Key Identifier: keyid:80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:36:fd:ba:8e:d4:f8:06:a7:ed:fb:ea:f3:10:63:bb:6c:8e: 6d:1f:13:75:cf:af:71:9f:5b:bb:4a:5a:b1:d8:38:32:7d:10: af:e8:0e:56:8e:3d:79:76:fb:ec:d4:81:37:9b:82:ed:58:9d: 66:bc:23:4a:1e:cb:b1:cd:be:06:f7:85:5a:37:ce:98:b6:25: ad:23:23:5b:8f:c3:62:3e:28:1d:09:09:27:53:d3:97:cb:00: fb:12:68:f3:60:20:fd:ff:b3:03:56:35:50:89:87:b7:bb:58: 0c:fe:e5:ea:23:28:ae:2f:3a:a5:b4:46:ed:8b:25:94:79:d2: e5:0b:d7:98:2c:f9:9c:2b:0c:2b:8d:11:a1:d6:ff:33:91:b7: 8a:cc:d6:8c:6a:b1:80:5e:5c:6f:56:10:bc:2e:90:62:1a:f0: fe:97:25:f6:9e:49:46:0b:76:2a:c8:68:be:cd:47:ac:6b:8a: 07:8d:66:48:3c:97:88:14:a4:a6:73:7a:ff:01:25:d9:56:86: 4f:73:43:3c:ca:54:f8:88:33:b1:86:91:f6:55:25:30:45:a6: f5:8c:c5:64:4f:ff:c0:cf:60:09:63:32:cd:6d:98:11:52:65: b0:f3:12:c3:da:e7:aa:f5:5c:f5:ee:19:c0:0d:15:91:11:46: c2:83:2f:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWQ5ihUv5FAt1lnb/QyWzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgwNDFmZWVhMTIzZmNiMDdlODcyYThjYjRiZGQ5YWI3Yjhk YTJmY2YwHhcNMjYwMjA5MTcwMDM1WhcNMjYwMjEwMTcwMDM1WjAzMTEwLwYDVQQD EyhmMzI4ZjZhZjRkMGFlZjI4NTZmMmM1YjdjMzAwNzkwYjlhZjI3MWVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyHowKgMoYPRxum5Wdqd+lEf+H6vf e5Nki2wxtA8ItJ8/6ZZb6JBlwpHc3bv9RQUOWymRU9GXa8zOVUu8K/9WvpPGuA8z uOQuBNnd7SmCGQnzgsf5gssot3PcOnovlsWivQMPt5vAY0xY2yoV+NwVR6BVSlsY kjrXjwskUNkSeKY0cnB5G4Hn0iZduq8BHnjJnUmkAjRTEPGe1bJe0Z1GHZ7SwDLz fTB9ppTQrZDj5xiCrvsvauY5i27fdEKloMar0LKieK+26Go9lHCBL5x+eg4ztDly v69E2XTe+EtNlQLfAG2kla27Tp9mtsZ1EOpIM3UFdIDzA2SMd4vmlXzp7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPMo9q9NCu8oVvLFt8MAeQua8nHuMB8GA1UdIwQY MBaAFIBB/uoSP8sH6HKoy0vdmre42i/PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ0VILTZoSV95d2ZvY3FqTFM5MmF0N2phTDg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9kMzE3Y2EtMzk2MS00ZmUwLWJkZTgt ZjdjNTAxNDE4ZTU2LzEvZ0VILTZoSV95d2ZvY3FqTFM5MmF0N2phTDg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZi9kMzE3Y2EtMzk2MS00ZmUwLWJkZTgtZjdjNTAxNDE4ZTU2 LzEvZ0VILTZoSV95d2ZvY3FqTFM5MmF0N2phTDg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWTb9uo7U +Aan7fvq8xBju2yObR8Tdc+vcZ9bu0pasdg4Mn0Qr+gOVo49eXb77NSBN5uC7Vid ZrwjSh7Lsc2+BveFWjfOmLYlrSMjW4/DYj4oHQkJJ1PTl8sA+xJo82Ag/f+zA1Y1 UImHt7tYDP7l6iMori86pbRG7YsllHnS5QvXmCz5nCsMK40Rodb/M5G3iszWjGqx gF5cb1YQvC6QYhrw/pcl9p5JRgt2Kshovs1HrGuKB41mSDyXiBSkpnN6/wEl2VaG T3NDPMpU+IgzsYaR9lUlMEWm9YzFZE//wM9gCWMyzW2YEVJlsPMSw9rnqvVc9e4Z wA0VkRFGwoMv2g== -----END CERTIFICATE-----Generated at Mon Feb 9 21:08:39 2026 by rpki-client