This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft File: EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft (raw, json) Hash identifier: 70H32Adak49BokJnlWI1FoZ/HBEBU4CBXgRT3+Jo/54= Subject key identifier: AF:2F:26:8C:86:9E:40:2A:34:11:00:52:6C:75:55:03:32:94:BA:B5 Authority key identifier: 10:7A:5A:F1:96:B8:A0:EA:96:0C:28:F6:B3:E7:52:91:C7:E8:61:CD Certificate issuer: /CN=107a5af196b8a0ea960c28f6b3e75291c7e861cd Certificate serial: 019C42101262B1B2921C252890C0DDBF53BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 11:01:15 +0000 Manifest this update: Mon 09 Feb 2026 11:01:15 +0000 Manifest next update: Tue 10 Feb 2026 11:01:15 +0000 Files and hashes: 1: B_eufKACcye9RNL9zWFuL3O0F2Q.roa (hash: u51nAFunJxaWbsLgaW5TM9elEVLvvbw93zNAlf1WyzQ=) 2: EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl (hash: zYMZit6qUgh9mz0nuVIIAymKcQ4k6Cw7V+PWnIOyCzo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:12:62:b1:b2:92:1c:25:28:90:c0:dd:bf:53:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=107a5af196b8a0ea960c28f6b3e75291c7e861cd Validity Not Before: Feb 9 11:01:15 2026 GMT Not After : Feb 10 11:01:15 2026 GMT Subject: CN=af2f268c869e402a341100526c7555033294bab5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6c:8d:b2:6a:94:d9:9f:1d:02:14:01:d7:98: f1:e8:a4:2b:15:d5:d9:b5:0a:79:98:9c:b9:eb:83: b7:01:84:d4:70:af:af:72:09:9d:94:ae:cc:67:65: 3e:65:6c:77:ca:4b:7d:d5:38:7a:81:d1:1e:89:82: 21:2a:0b:4a:2f:eb:dc:d0:1c:da:ae:76:78:37:5c: a5:bf:09:92:ea:99:b1:ef:d7:c5:0b:90:28:e3:e6: 1d:c4:15:a2:3f:42:eb:08:af:e1:93:7c:84:11:c3: dd:1f:3d:38:85:d1:27:90:c4:03:71:4b:8b:87:fc: 08:17:03:c2:2b:a0:21:81:7b:7e:22:79:2a:9d:be: 62:8f:51:70:9a:c0:d5:68:98:c9:42:7c:f4:95:15: 95:40:b2:a3:b2:c7:52:83:e2:1c:2d:75:16:e5:c3: dd:68:ef:e2:92:c7:bd:38:08:e0:6a:84:22:a8:50: 57:df:8e:13:51:3b:f1:f9:d3:08:89:76:97:18:cc: b9:aa:96:8d:1f:aa:21:0b:68:01:15:f3:90:72:98: ae:9d:34:5b:b5:a7:90:6a:3d:45:0d:a5:24:cc:8f: 2c:fe:52:96:d4:58:64:8d:78:db:90:27:4d:31:f5: a0:66:bf:c1:89:ba:71:d5:86:87:d0:4e:fc:1a:74: 37:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:2F:26:8C:86:9E:40:2A:34:11:00:52:6C:75:55:03:32:94:BA:B5 X509v3 Authority Key Identifier: keyid:10:7A:5A:F1:96:B8:A0:EA:96:0C:28:F6:B3:E7:52:91:C7:E8:61:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:35:78:a1:c8:f2:99:ea:ee:2b:1f:42:27:8c:4c:af:33:b3: 05:2d:40:b8:88:8a:ae:0c:53:0d:b0:e8:45:f9:07:c9:99:2e: 9c:a7:d2:d4:e9:f4:34:5b:59:95:09:91:6d:67:a9:15:8f:e2: 62:81:83:f8:4a:fe:55:b7:77:e1:bb:75:73:9b:67:70:8c:d4: 0d:98:9b:2c:05:76:38:e3:7c:e5:25:a8:83:7e:d7:41:e3:c1: 25:84:03:bf:9c:5e:8e:b1:65:79:98:95:04:54:8d:24:fd:7a: 8c:71:ea:be:b1:78:c2:95:82:38:58:8f:44:1b:65:ac:2e:3c: 43:fd:5f:b0:bb:46:1f:87:6e:90:0f:c1:e6:26:72:a1:e0:85: f8:2a:02:da:80:d4:39:8c:14:43:01:cd:c3:26:aa:15:2e:6a: a7:e6:a5:68:9d:bd:1f:95:a0:78:01:5a:27:db:8c:33:c7:9f: 1e:f8:07:0e:7f:e6:6f:a9:26:c5:95:4a:ee:bf:15:df:46:0c: 96:0e:b7:ca:5c:e0:1d:9d:e2:ac:99:24:4e:98:a2:92:39:7e: 30:20:69:dc:65:7e:69:10:25:18:6b:a9:c7:1b:66:1a:50:30: 02:2a:06:4f:00:6e:ee:7e:a5:cd:6c:0c:90:eb:dd:7f:85:13: d9:85:0d:b3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEBJisbKSHCUokMDdv1O6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwN2E1YWYxOTZiOGEwZWE5NjBjMjhmNmIzZTc1MjkxYzdl ODYxY2QwHhcNMjYwMjA5MTEwMTE1WhcNMjYwMjEwMTEwMTE1WjAzMTEwLwYDVQQD EyhhZjJmMjY4Yzg2OWU0MDJhMzQxMTAwNTI2Yzc1NTUwMzMyOTRiYWI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmyNsmqU2Z8dAhQB15jx6KQrFdXZ tQp5mJy564O3AYTUcK+vcgmdlK7MZ2U+ZWx3ykt91Th6gdEeiYIhKgtKL+vc0Bza rnZ4N1ylvwmS6pmx79fFC5Ao4+YdxBWiP0LrCK/hk3yEEcPdHz04hdEnkMQDcUuL h/wIFwPCK6AhgXt+Inkqnb5ij1FwmsDVaJjJQnz0lRWVQLKjssdSg+IcLXUW5cPd aO/ikse9OAjgaoQiqFBX344TUTvx+dMIiXaXGMy5qpaNH6ohC2gBFfOQcpiunTRb taeQaj1FDaUkzI8s/lKW1FhkjXjbkCdNMfWgZr/Bibpx1YaH0E78GnQ3iwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK8vJoyGnkAqNBEAUmx1VQMylLq1MB8GA1UdIwQY MBaAFBB6WvGWuKDqlgwo9rPnUpHH6GHNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRUhwYThaYTRvT3FXRENqMnMtZFNrY2ZvWWMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9iYjIzZTEtNDZjYS00NjRhLWIzZjIt ZjkyOWUyNTUxNjI3LzEvRUhwYThaYTRvT3FXRENqMnMtZFNrY2ZvWWMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS9iYjIzZTEtNDZjYS00NjRhLWIzZjItZjkyOWUyNTUxNjI3 LzEvRUhwYThaYTRvT3FXRENqMnMtZFNrY2ZvWWMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcDV4ocjy meruKx9CJ4xMrzOzBS1AuIiKrgxTDbDoRfkHyZkunKfS1On0NFtZlQmRbWepFY/i YoGD+Er+Vbd34bt1c5tncIzUDZibLAV2OON85SWog37XQePBJYQDv5xejrFleZiV BFSNJP16jHHqvrF4wpWCOFiPRBtlrC48Q/1fsLtGH4dukA/B5iZyoeCF+CoC2oDU OYwUQwHNwyaqFS5qp+alaJ29H5WgeAFaJ9uMM8efHvgHDn/mb6kmxZVK7r8V30YM lg63ylzgHZ3irJkkTpiikjl+MCBp3GV+aRAlGGupxxtmGlAwAioGTwBu7n6lzWwM kOvdf4UT2YUNsw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:19 2026 by rpki-client