This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/8e01ca-2ccf-4912-914b-9168826cd355/1/4HDNq3OhLa82gGsOFgLI2vuQk7s.mft File: 4HDNq3OhLa82gGsOFgLI2vuQk7s.mft (raw, json) Hash identifier: 8PRyAEvxSj02fEfrFEhg2JFgeiBqp/GdjEPM6JFxE30= Subject key identifier: C7:A9:EB:31:D4:72:94:82:6F:ED:20:5F:C2:18:02:86:94:F6:68:E7 Authority key identifier: E0:70:CD:AB:73:A1:2D:AF:36:80:6B:0E:16:02:C8:DA:FB:90:93:BB Certificate issuer: /CN=e070cdab73a12daf36806b0e1602c8dafb9093bb Certificate serial: 019C432290766A327495400A96C2BC0C962B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4HDNq3OhLa82gGsOFgLI2vuQk7s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/8e01ca-2ccf-4912-914b-9168826cd355/1/4HDNq3OhLa82gGsOFgLI2vuQk7s.mft Manifest number: 0D5A Signing time: Mon 09 Feb 2026 16:01:04 +0000 Manifest this update: Mon 09 Feb 2026 16:01:04 +0000 Manifest next update: Tue 10 Feb 2026 16:01:04 +0000 Files and hashes: 1: 4HDNq3OhLa82gGsOFgLI2vuQk7s.crl (hash: GDAtm0V0lOwfG+p6raLDS0WmIBZ3+G0Mck05t0r0aY4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/8e01ca-2ccf-4912-914b-9168826cd355/1/4HDNq3OhLa82gGsOFgLI2vuQk7s.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/8e01ca-2ccf-4912-914b-9168826cd355/1/4HDNq3OhLa82gGsOFgLI2vuQk7s.mft rsync://rpki.ripe.net/repository/DEFAULT/4HDNq3OhLa82gGsOFgLI2vuQk7s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:90:76:6a:32:74:95:40:0a:96:c2:bc:0c:96:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e070cdab73a12daf36806b0e1602c8dafb9093bb Validity Not Before: Feb 9 16:01:04 2026 GMT Not After : Feb 10 16:01:04 2026 GMT Subject: CN=c7a9eb31d47294826fed205fc218028694f668e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b5:6b:83:25:04:1e:7c:35:8b:25:54:8b:91: 7c:f8:d7:2e:e6:8e:3f:c4:e3:09:c2:04:38:ea:bd: 8f:17:a9:1a:97:b2:b2:a3:33:bd:37:00:8f:5c:ed: 30:b2:7b:e0:d6:1a:28:c5:12:a6:64:b8:1c:52:03: af:01:8d:ce:e8:04:0e:54:e4:e5:56:37:37:2c:b3: 84:b6:9c:b9:8b:94:f8:b3:b2:48:ff:94:87:6f:65: 75:14:89:6c:ca:30:a7:f5:ff:08:bb:26:88:06:20: 66:58:64:98:73:3f:be:29:88:22:48:e8:8c:c8:c6: 29:3e:eb:b3:8a:56:ab:1c:41:1c:1d:07:fb:fc:f4: 90:4d:70:88:65:4b:ba:46:02:80:aa:7d:43:b1:95: 8e:60:41:46:e1:81:2b:cf:32:fb:27:a8:2c:3e:e3: c2:cd:cb:b2:a2:03:b3:9d:a1:2f:bf:7d:3e:c0:06: 63:5b:fe:fd:97:be:a9:66:9e:c5:71:f8:e2:14:f6: b3:5f:a9:5e:0c:0c:d5:aa:a1:3b:65:ac:a4:bb:b3: b8:07:20:b0:36:06:c2:16:93:d4:c0:24:ff:cc:a7: c8:53:e0:66:fb:12:7e:56:08:d9:65:5c:b6:58:b0: cd:58:cd:e2:02:de:18:73:88:fd:25:10:13:94:35: 32:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:A9:EB:31:D4:72:94:82:6F:ED:20:5F:C2:18:02:86:94:F6:68:E7 X509v3 Authority Key Identifier: keyid:E0:70:CD:AB:73:A1:2D:AF:36:80:6B:0E:16:02:C8:DA:FB:90:93:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4HDNq3OhLa82gGsOFgLI2vuQk7s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8e01ca-2ccf-4912-914b-9168826cd355/1/4HDNq3OhLa82gGsOFgLI2vuQk7s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8e01ca-2ccf-4912-914b-9168826cd355/1/4HDNq3OhLa82gGsOFgLI2vuQk7s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:1c:4e:ea:62:01:df:ba:0a:01:7b:f6:1e:2d:71:20:3e:11: 66:f3:05:f5:3c:bf:54:4e:7e:87:71:6e:4d:f9:4b:d5:11:16: ab:64:ca:76:43:7b:99:4c:fe:39:05:6c:86:da:59:77:69:e0: d4:7e:b5:8a:bb:18:63:5e:19:a1:ad:5c:0c:72:f5:5b:5a:f7: a7:38:bb:25:f3:99:2c:87:f8:c4:7f:6d:be:ee:39:9d:fb:21: 68:ad:16:84:4b:79:ac:d6:07:96:77:91:2b:0d:f0:b4:58:d1: 59:84:17:0e:4b:54:ad:b4:ff:48:52:43:3e:3b:74:8b:5d:b5: 79:55:80:03:9f:9d:ba:8a:0b:00:a9:53:fd:dc:87:0b:73:c2: eb:95:fd:5e:c8:8f:2e:5c:40:4d:47:1b:a1:ae:d1:6b:e7:6b: 15:2c:bd:7a:87:86:48:2d:e2:04:4a:a6:6e:34:db:ce:3d:76: 49:18:71:92:ed:dc:45:94:86:42:7c:ee:d2:4a:cb:85:a8:40: e9:1a:78:14:f0:7f:6d:7d:59:ca:6c:df:74:e1:f4:ff:c0:15: 25:2d:31:c0:49:13:8f:37:75:ae:4e:51:8f:59:51:19:37:16: 79:b3:76:59:eb:e0:c6:7c:95:51:ea:53:a2:8e:04:93:8d:b0: 49:1c:78:8f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIpB2ajJ0lUAKlsK8DJYrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwNzBjZGFiNzNhMTJkYWYzNjgwNmIwZTE2MDJjOGRhZmI5 MDkzYmIwHhcNMjYwMjA5MTYwMTA0WhcNMjYwMjEwMTYwMTA0WjAzMTEwLwYDVQQD EyhjN2E5ZWIzMWQ0NzI5NDgyNmZlZDIwNWZjMjE4MDI4Njk0ZjY2OGU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0LVrgyUEHnw1iyVUi5F8+Ncu5o4/ xOMJwgQ46r2PF6kal7KyozO9NwCPXO0wsnvg1hooxRKmZLgcUgOvAY3O6AQOVOTl Vjc3LLOEtpy5i5T4s7JI/5SHb2V1FIlsyjCn9f8IuyaIBiBmWGSYcz++KYgiSOiM yMYpPuuzilarHEEcHQf7/PSQTXCIZUu6RgKAqn1DsZWOYEFG4YErzzL7J6gsPuPC zcuyogOznaEvv30+wAZjW/79l76pZp7FcfjiFPazX6leDAzVqqE7Zayku7O4ByCw NgbCFpPUwCT/zKfIU+Bm+xJ+VgjZZVy2WLDNWM3iAt4Yc4j9JRATlDUyBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMep6zHUcpSCb+0gX8IYAoaU9mjnMB8GA1UdIwQY MBaAFOBwzatzoS2vNoBrDhYCyNr7kJO7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNEhETnEzT2hMYTgyZ0dzT0ZnTEkydnVRazdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS84ZTAxY2EtMmNjZi00OTEyLTkxNGIt OTE2ODgyNmNkMzU1LzEvNEhETnEzT2hMYTgyZ0dzT0ZnTEkydnVRazdzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS84ZTAxY2EtMmNjZi00OTEyLTkxNGItOTE2ODgyNmNkMzU1 LzEvNEhETnEzT2hMYTgyZ0dzT0ZnTEkydnVRazdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlxxO6mIB 37oKAXv2Hi1xID4RZvMF9Ty/VE5+h3FuTflL1REWq2TKdkN7mUz+OQVshtpZd2ng 1H61irsYY14Zoa1cDHL1W1r3pzi7JfOZLIf4xH9tvu45nfshaK0WhEt5rNYHlneR Kw3wtFjRWYQXDktUrbT/SFJDPjt0i121eVWAA5+duooLAKlT/dyHC3PC65X9XsiP LlxATUcboa7Ra+drFSy9eoeGSC3iBEqmbjTbzj12SRhxku3cRZSGQnzu0krLhahA 6Rp4FPB/bX1ZymzfdOH0/8AVJS0xwEkTjzd1rk5Rj1lRGTcWebN2WevgxnyVUepT oo4Ek42wSRx4jw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:29 2026 by rpki-client