This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft File: I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft (raw, json) Hash identifier: AcSW2to5/aA1lCKV6u7ZqwcwE/u44l/movXsJqjUfZo= Subject key identifier: A9:23:FD:D4:AB:33:F5:05:02:EA:59:91:8F:4D:1C:05:DF:E9:57:34 Authority key identifier: 23:F1:E0:9F:0E:6E:D8:91:AD:17:D6:CE:4A:3C:73:28:D7:59:B4:C8 Certificate issuer: /CN=23f1e09f0e6ed891ad17d6ce4a3c7328d759b4c8 Certificate serial: 019C4322ACC4E0BE51B075B031F77E6EEAD6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 16:01:11 +0000 Manifest this update: Mon 09 Feb 2026 16:01:11 +0000 Manifest next update: Tue 10 Feb 2026 16:01:11 +0000 Files and hashes: 1: I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl (hash: aTq6EtBXg1dhwARd6yEaUJ2hVUaSryL+LaqmH1QaPSE=) 2: YH3qouyi9uf0Sjp7erwfbtdqIMY.roa (hash: XATxeFAkfU3QrOitUmq9zj3TBTO+Je2+3q8oJUZcsYU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:ac:c4:e0:be:51:b0:75:b0:31:f7:7e:6e:ea:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23f1e09f0e6ed891ad17d6ce4a3c7328d759b4c8 Validity Not Before: Feb 9 16:01:11 2026 GMT Not After : Feb 10 16:01:11 2026 GMT Subject: CN=a923fdd4ab33f50502ea59918f4d1c05dfe95734 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:64:9b:2d:1c:53:65:6a:55:d2:ac:92:73:12: fb:44:e6:76:e1:c8:72:28:92:31:5f:53:2b:33:fd: 2f:a5:c3:f2:d2:b8:a7:7a:43:0d:22:de:6c:d7:b1: 85:97:99:bb:a8:d1:8d:0e:fe:a9:5e:cd:9a:4b:6b: fd:3b:b5:8d:f7:f4:ad:95:04:54:9e:1b:c6:1c:69: 26:74:8e:f9:e8:25:e1:eb:c3:4f:42:ee:4f:d9:d2: f7:37:1a:e5:84:f2:93:d6:75:73:c7:91:f9:ca:00: e3:6c:d1:92:a4:e4:6b:1e:aa:66:62:6b:48:9d:fd: 6f:c3:ec:7d:b8:42:6a:82:40:6d:9e:07:46:6f:2c: be:ae:38:42:c4:e4:bc:d3:4b:f6:e5:56:b1:b8:dc: ad:37:99:c1:87:ab:c9:7a:14:c8:fc:f1:8a:ea:fc: 7d:cc:c5:dd:03:fd:e5:9b:0b:c0:be:70:35:d6:87: f2:f6:5d:24:54:2b:f4:2d:d1:25:f5:42:6f:ef:a1: 33:71:d3:1a:92:70:0c:1a:eb:ea:54:e6:14:e1:1e: 7f:6a:8b:61:dc:47:12:b7:2e:35:9d:87:0e:be:c3: 49:11:b5:ee:3a:81:ad:00:19:ff:53:13:d7:3a:05: aa:82:8e:13:94:ca:f8:51:4f:10:13:e4:17:8b:62: 52:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:23:FD:D4:AB:33:F5:05:02:EA:59:91:8F:4D:1C:05:DF:E9:57:34 X509v3 Authority Key Identifier: keyid:23:F1:E0:9F:0E:6E:D8:91:AD:17:D6:CE:4A:3C:73:28:D7:59:B4:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:b7:66:11:b7:76:75:37:49:e3:eb:44:69:cb:24:30:d6:04: d9:58:59:74:7b:b6:ee:b3:3a:fb:cb:2c:5b:de:d9:77:a7:3c: 30:fb:9e:e0:95:ca:f8:3d:ae:dd:7e:be:d4:dc:e0:41:75:ec: e5:d1:34:8b:57:5c:c0:63:57:d0:66:45:95:54:28:95:45:d4: fb:01:ea:48:53:d6:b3:bf:af:70:d9:f4:fd:55:ef:9e:d2:42: a4:2a:19:de:0d:da:ff:ea:16:2d:25:20:b0:8a:e0:aa:e9:d9: ac:d3:19:23:d1:ef:68:0a:f7:25:2c:73:72:f6:e6:fe:fd:cd: 3b:d4:af:71:0c:3a:a9:fc:7a:ac:93:6a:b7:12:2b:35:ad:67: 7a:69:35:19:b0:4b:03:27:55:92:cf:66:b7:30:8a:cb:8f:03: 47:54:6d:f1:eb:12:93:10:2e:ca:aa:78:b7:24:5a:13:0b:46: a0:87:9c:86:cf:2e:7f:d9:3a:98:b3:c9:b1:85:da:ab:51:a7: 7b:15:65:73:ff:c0:36:b2:a6:b5:31:4f:2a:79:cc:15:6d:fc: 84:c7:ce:d7:a8:38:87:48:2a:c9:3b:3d:b9:b2:1e:47:36:8d: a8:d0:72:8c:12:78:0c:48:49:54:8a:8a:4b:9a:c2:58:d3:b2: 63:61:f0:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIqzE4L5RsHWwMfd+burWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzZjFlMDlmMGU2ZWQ4OTFhZDE3ZDZjZTRhM2M3MzI4ZDc1 OWI0YzgwHhcNMjYwMjA5MTYwMTExWhcNMjYwMjEwMTYwMTExWjAzMTEwLwYDVQQD EyhhOTIzZmRkNGFiMzNmNTA1MDJlYTU5OTE4ZjRkMWMwNWRmZTk1NzM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0WSbLRxTZWpV0qyScxL7ROZ24chy KJIxX1MrM/0vpcPy0rinekMNIt5s17GFl5m7qNGNDv6pXs2aS2v9O7WN9/StlQRU nhvGHGkmdI756CXh68NPQu5P2dL3NxrlhPKT1nVzx5H5ygDjbNGSpORrHqpmYmtI nf1vw+x9uEJqgkBtngdGbyy+rjhCxOS800v25VaxuNytN5nBh6vJehTI/PGK6vx9 zMXdA/3lmwvAvnA11ofy9l0kVCv0LdEl9UJv76EzcdMaknAMGuvqVOYU4R5/aoth 3EcSty41nYcOvsNJEbXuOoGtABn/UxPXOgWqgo4TlMr4UU8QE+QXi2JS3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKkj/dSrM/UFAupZkY9NHAXf6Vc0MB8GA1UdIwQY MBaAFCPx4J8ObtiRrRfWzko8cyjXWbTIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSV9IZ253NXUySkd0RjliT1NqeHpLTmRadE1nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC85NTVlZDEtOGI0MC00MTg1LTg0YTkt MmRkY2Y1NmE3NjNlLzEvSV9IZ253NXUySkd0RjliT1NqeHpLTmRadE1nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC85NTVlZDEtOGI0MC00MTg1LTg0YTktMmRkY2Y1NmE3NjNl LzEvSV9IZ253NXUySkd0RjliT1NqeHpLTmRadE1nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPrdmEbd2 dTdJ4+tEacskMNYE2VhZdHu27rM6+8ssW97Zd6c8MPue4JXK+D2u3X6+1NzgQXXs 5dE0i1dcwGNX0GZFlVQolUXU+wHqSFPWs7+vcNn0/VXvntJCpCoZ3g3a/+oWLSUg sIrgqunZrNMZI9HvaAr3JSxzcvbm/v3NO9SvcQw6qfx6rJNqtxIrNa1nemk1GbBL AydVks9mtzCKy48DR1Rt8esSkxAuyqp4tyRaEwtGoIechs8uf9k6mLPJsYXaq1Gn exVlc//ANrKmtTFPKnnMFW38hMfO16g4h0gqyTs9ubIeRzaNqNByjBJ4DEhJVIqK S5rCWNOyY2HwVQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:35:52 2026 by rpki-client