This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft File: H9nOye0f1PQcCx4w77lshhVTvjY.mft (raw, json) Hash identifier: zJsIefPp4ZDqlgwMCtACq/WCukCLIwu2mrw+IFWY7yU= Subject key identifier: 48:D5:B8:DD:4B:3F:71:92:F9:EF:9F:D6:AB:50:14:D6:48:5F:7F:57 Authority key identifier: 1F:D9:CE:C9:ED:1F:D4:F4:1C:0B:1E:30:EF:B9:6C:86:15:53:BE:36 Certificate issuer: /CN=1fd9cec9ed1fd4f41c0b1e30efb96c861553be36 Certificate serial: 019C4322470DFF7E98829F7D683D45539132 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft Manifest number: 03F1 Signing time: Mon 09 Feb 2026 16:00:45 +0000 Manifest this update: Mon 09 Feb 2026 16:00:45 +0000 Manifest next update: Tue 10 Feb 2026 16:00:45 +0000 Files and hashes: 1: H9nOye0f1PQcCx4w77lshhVTvjY.crl (hash: qsTaRrMqw1l+UUd55FPuZ/SnMDJOLjkYTpWhDqKalhY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:47:0d:ff:7e:98:82:9f:7d:68:3d:45:53:91:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1fd9cec9ed1fd4f41c0b1e30efb96c861553be36 Validity Not Before: Feb 9 16:00:45 2026 GMT Not After : Feb 10 16:00:45 2026 GMT Subject: CN=48d5b8dd4b3f7192f9ef9fd6ab5014d6485f7f57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e8:40:a6:5f:a9:ba:df:2b:2a:ea:b7:29:01: c2:23:12:f0:a1:65:d7:ff:b3:ef:57:a7:cf:64:63: 6f:1d:1e:a8:b2:25:d6:f7:e5:c4:62:dc:f2:81:67: 79:fd:3b:62:aa:f1:10:6c:64:6e:f2:1c:ec:78:39: 3a:a7:fd:dc:1c:9c:fe:56:3a:fb:d0:d0:65:b3:00: d1:8d:5b:5b:e4:bb:62:1a:1a:37:ab:89:89:26:90: cb:75:38:d7:18:70:69:09:57:21:9f:f4:74:f8:b5: d0:0f:0e:69:81:8f:5e:c5:3c:8d:48:b0:30:d4:04: d4:59:ee:ed:08:b0:8e:b4:d1:43:3e:d2:33:2a:50: 5e:4d:6d:27:16:fc:ec:36:53:a9:12:42:5e:c8:13: 36:21:a3:8a:b7:7e:28:86:e0:00:d2:a7:9d:80:b1: 71:65:69:a8:c2:47:3c:71:df:2c:63:f2:57:80:54: ce:2c:87:e9:9f:76:f3:e2:1c:c5:3a:b7:cb:a0:49: ce:04:ee:a9:b0:09:8a:57:bc:96:c0:f9:01:8f:a2: c1:6c:70:7f:a0:51:81:b5:f9:00:cb:b0:63:e6:19: e7:be:80:35:28:a7:19:a8:ac:de:d5:6e:aa:3b:85: ff:ee:2c:64:9d:8c:37:c3:14:17:45:a8:a4:47:80: bb:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:D5:B8:DD:4B:3F:71:92:F9:EF:9F:D6:AB:50:14:D6:48:5F:7F:57 X509v3 Authority Key Identifier: keyid:1F:D9:CE:C9:ED:1F:D4:F4:1C:0B:1E:30:EF:B9:6C:86:15:53:BE:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:da:7b:ac:2f:11:d2:19:48:ad:6d:ea:1d:a0:92:a6:f3:2c: 3a:1a:99:44:05:e4:e4:91:8c:7b:7a:88:ef:4b:25:1c:d1:44: 3e:fe:56:65:6a:83:64:dc:eb:c6:03:f3:59:af:80:0c:00:52: e8:02:2b:4e:0d:2e:7c:cc:fa:55:65:3a:fe:d4:73:a2:11:cc: 8a:3c:29:f7:74:ba:42:15:31:fa:4b:a9:60:d3:78:74:e0:e6: 1d:e9:2d:ba:6c:d8:df:48:d4:f0:8e:0b:7d:7a:e1:18:0e:24: 57:8f:01:25:2a:3b:30:0a:b2:81:18:63:69:4d:c9:5c:37:95: a0:57:7a:8b:d4:70:ff:59:ae:ce:b5:ff:a4:76:4e:c4:86:6e: 95:1d:1d:78:ae:27:47:60:ec:b9:a8:56:b3:e0:25:62:7b:8b: a0:86:7e:b4:ab:e9:39:d7:75:c6:ca:5e:80:e0:56:96:3f:d7: e1:98:ef:4a:69:19:ca:bb:a7:cf:db:29:19:dc:90:b6:31:02: 67:a0:04:72:77:48:f2:30:47:e3:3d:5c:c5:4f:f8:8a:08:8b: 76:22:0d:e5:13:c3:0c:62:c8:a7:78:85:ad:53:43:03:ff:63: 00:87:84:92:4b:66:5c:ef:7f:fc:da:fb:66:0a:b3:f9:0e:7d: 61:1a:2e:30 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIkcN/36Ygp99aD1FU5EyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmZDljZWM5ZWQxZmQ0ZjQxYzBiMWUzMGVmYjk2Yzg2MTU1 M2JlMzYwHhcNMjYwMjA5MTYwMDQ1WhcNMjYwMjEwMTYwMDQ1WjAzMTEwLwYDVQQD Eyg0OGQ1YjhkZDRiM2Y3MTkyZjllZjlmZDZhYjUwMTRkNjQ4NWY3ZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOhApl+put8rKuq3KQHCIxLwoWXX /7PvV6fPZGNvHR6osiXW9+XEYtzygWd5/TtiqvEQbGRu8hzseDk6p/3cHJz+Vjr7 0NBlswDRjVtb5LtiGho3q4mJJpDLdTjXGHBpCVchn/R0+LXQDw5pgY9exTyNSLAw 1ATUWe7tCLCOtNFDPtIzKlBeTW0nFvzsNlOpEkJeyBM2IaOKt34ohuAA0qedgLFx ZWmowkc8cd8sY/JXgFTOLIfpn3bz4hzFOrfLoEnOBO6psAmKV7yWwPkBj6LBbHB/ oFGBtfkAy7Bj5hnnvoA1KKcZqKze1W6qO4X/7ixknYw3wxQXRaikR4C76wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEjVuN1LP3GS+e+f1qtQFNZIX39XMB8GA1UdIwQY MBaAFB/ZzsntH9T0HAseMO+5bIYVU742MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDluT3llMGYxUFFjQ3g0dzc3bHNoaFZUdmpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9lODFjMWEtMGM4Ny00ODI1LWJjY2Mt MzZiN2IxZGUwNDVkLzEvSDluT3llMGYxUFFjQ3g0dzc3bHNoaFZUdmpZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS9lODFjMWEtMGM4Ny00ODI1LWJjY2MtMzZiN2IxZGUwNDVk LzEvSDluT3llMGYxUFFjQ3g0dzc3bHNoaFZUdmpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADtp7rC8R 0hlIrW3qHaCSpvMsOhqZRAXk5JGMe3qI70slHNFEPv5WZWqDZNzrxgPzWa+ADABS 6AIrTg0ufMz6VWU6/tRzohHMijwp93S6QhUx+kupYNN4dODmHektumzY30jU8I4L fXrhGA4kV48BJSo7MAqygRhjaU3JXDeVoFd6i9Rw/1muzrX/pHZOxIZulR0deK4n R2DsuahWs+AlYnuLoIZ+tKvpOdd1xspegOBWlj/X4ZjvSmkZyrunz9spGdyQtjEC Z6AEcndI8jBH4z1cxU/4igiLdiIN5RPDDGLIp3iFrVNDA/9jAIeEkktmXO9//Nr7 Zgqz+Q59YRouMA== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:14 2026 by rpki-client