This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/db69b3-781e-4cb9-9edf-6dd6a9c55f57/1/hRRRk1wYRkb4aHgjivsKDVqwut4.mft File: hRRRk1wYRkb4aHgjivsKDVqwut4.mft (raw, json) Hash identifier: rSMVat13rKHbiCZFfv9gFe8RFrvto8BmxgBG0EqTkH8= Subject key identifier: CF:7B:38:77:1E:5E:58:DD:FE:BA:31:11:D4:1A:25:D0:41:9A:B6:83 Authority key identifier: 85:14:51:93:5C:18:46:46:F8:68:78:23:8A:FB:0A:0D:5A:B0:BA:DE Certificate issuer: /CN=851451935c184646f86878238afb0a0d5ab0bade Certificate serial: 019C41348084EB0675BF6EB578DE3983568F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hRRRk1wYRkb4aHgjivsKDVqwut4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/db69b3-781e-4cb9-9edf-6dd6a9c55f57/1/hRRRk1wYRkb4aHgjivsKDVqwut4.mft Manifest number: 01BE Signing time: Mon 09 Feb 2026 07:01:25 +0000 Manifest this update: Mon 09 Feb 2026 07:01:25 +0000 Manifest next update: Tue 10 Feb 2026 07:01:25 +0000 Files and hashes: 1: hRRRk1wYRkb4aHgjivsKDVqwut4.crl (hash: Wpb6ao9xOUVQ8FLiZKba2mppIfiFXhoItDr/uoOaz1U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/db69b3-781e-4cb9-9edf-6dd6a9c55f57/1/hRRRk1wYRkb4aHgjivsKDVqwut4.crl rsync://rpki.ripe.net/repository/DEFAULT/32/db69b3-781e-4cb9-9edf-6dd6a9c55f57/1/hRRRk1wYRkb4aHgjivsKDVqwut4.mft rsync://rpki.ripe.net/repository/DEFAULT/hRRRk1wYRkb4aHgjivsKDVqwut4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:80:84:eb:06:75:bf:6e:b5:78:de:39:83:56:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=851451935c184646f86878238afb0a0d5ab0bade Validity Not Before: Feb 9 07:01:25 2026 GMT Not After : Feb 10 07:01:25 2026 GMT Subject: CN=cf7b38771e5e58ddfeba3111d41a25d0419ab683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3b:b7:b3:49:4a:b6:27:6f:68:bf:1b:58:61: 3a:6d:da:5d:26:77:bf:a3:af:e4:75:f9:a0:e3:e3: ed:a0:8c:eb:1d:59:dd:db:74:3b:5a:f3:3f:3e:9a: 89:91:54:50:c8:47:c2:6c:dd:d5:9c:fd:fd:3b:42: 64:38:84:96:8b:b8:82:68:08:7f:db:f6:ba:6b:d0: ad:4e:46:93:65:f2:1b:d5:78:ca:c2:d0:99:4b:92: 95:22:8a:64:af:bc:2f:ec:31:cd:6b:53:74:5f:c0: 7f:7e:56:a4:b6:2f:41:c8:7e:4e:bc:43:20:7b:b8: ad:39:d4:d5:39:1d:1d:a9:a6:43:1c:fd:f5:d6:a4: 31:48:0e:2e:ec:ac:52:61:df:ce:c8:4f:41:bb:fc: ae:09:11:32:41:67:ba:c5:c3:6e:e6:7f:36:50:c1: f0:8d:1c:ae:e1:d9:bc:27:ad:41:09:50:cf:83:25: 6a:a4:2b:86:da:e6:15:63:e2:20:ef:ec:f1:ce:ef: c9:b1:3c:ea:b7:0b:eb:5a:92:eb:22:fa:08:4c:60: 87:d1:c6:3c:35:3f:4b:81:15:63:96:a0:66:f1:a1: 97:a7:02:5b:72:e5:be:e8:e6:90:dd:0a:12:fa:d4: 08:68:b8:c1:96:2b:58:69:7f:4e:af:fe:0b:a2:9e: a0:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:7B:38:77:1E:5E:58:DD:FE:BA:31:11:D4:1A:25:D0:41:9A:B6:83 X509v3 Authority Key Identifier: keyid:85:14:51:93:5C:18:46:46:F8:68:78:23:8A:FB:0A:0D:5A:B0:BA:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hRRRk1wYRkb4aHgjivsKDVqwut4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/db69b3-781e-4cb9-9edf-6dd6a9c55f57/1/hRRRk1wYRkb4aHgjivsKDVqwut4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/db69b3-781e-4cb9-9edf-6dd6a9c55f57/1/hRRRk1wYRkb4aHgjivsKDVqwut4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:7e:25:88:c5:f5:0b:6f:0d:c0:70:9f:0d:9f:68:8b:78:ae: 5f:24:08:dd:7b:58:36:2b:ca:50:ff:01:cb:ad:ce:68:ae:df: e4:7c:53:f9:f3:27:2e:64:fe:0c:39:8a:4e:e3:e6:c4:2c:a3: 55:6b:1d:70:31:b3:67:d4:5a:d5:61:97:0a:f6:29:b3:0b:01: d5:ce:88:9c:48:f9:75:e1:7f:07:72:09:4b:24:a4:1e:41:1a: b0:e7:06:00:93:24:ef:7f:1e:de:ec:0d:f8:1f:e6:54:5e:4b: 45:04:27:04:d0:11:66:da:99:8a:49:1e:26:94:39:7f:d1:c6: 22:39:a8:0d:ee:3c:f3:62:ee:3d:ba:f5:d1:3a:04:09:8f:92: b9:c3:78:b4:0c:e8:27:81:16:57:d8:1e:fc:ac:6d:b2:a2:3e: 78:14:c6:e1:42:1d:86:31:30:77:7b:5e:70:9c:f2:47:ef:e9: 44:bb:77:5a:2a:5b:ed:c8:a7:22:6f:74:f1:88:9c:66:55:1f: e4:67:52:2b:a3:d1:7c:91:96:60:47:12:2c:2c:2e:70:c0:c5: 12:b8:a2:de:7e:95:2c:ae:b9:61:db:fd:71:58:82:80:8c:7a: bd:e3:27:d0:8a:a5:90:66:b1:87:52:28:0e:ca:58:41:36:74: 0d:61:7a:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNICE6wZ1v261eN45g1aPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1MTQ1MTkzNWMxODQ2NDZmODY4NzgyMzhhZmIwYTBkNWFi MGJhZGUwHhcNMjYwMjA5MDcwMTI1WhcNMjYwMjEwMDcwMTI1WjAzMTEwLwYDVQQD EyhjZjdiMzg3NzFlNWU1OGRkZmViYTMxMTFkNDFhMjVkMDQxOWFiNjgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwju3s0lKtidvaL8bWGE6bdpdJne/ o6/kdfmg4+PtoIzrHVnd23Q7WvM/PpqJkVRQyEfCbN3VnP39O0JkOISWi7iCaAh/ 2/a6a9CtTkaTZfIb1XjKwtCZS5KVIopkr7wv7DHNa1N0X8B/flakti9ByH5OvEMg e7itOdTVOR0dqaZDHP311qQxSA4u7KxSYd/OyE9Bu/yuCREyQWe6xcNu5n82UMHw jRyu4dm8J61BCVDPgyVqpCuG2uYVY+Ig7+zxzu/JsTzqtwvrWpLrIvoITGCH0cY8 NT9LgRVjlqBm8aGXpwJbcuW+6OaQ3QoS+tQIaLjBlitYaX9Or/4Lop6g/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM97OHceXljd/roxEdQaJdBBmraDMB8GA1UdIwQY MBaAFIUUUZNcGEZG+Gh4I4r7Cg1asLreMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFJSUmsxd1lSa2I0YUhnaml2c0tEVnF3dXQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi9kYjY5YjMtNzgxZS00Y2I5LTllZGYt NmRkNmE5YzU1ZjU3LzEvaFJSUmsxd1lSa2I0YUhnaml2c0tEVnF3dXQ0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi9kYjY5YjMtNzgxZS00Y2I5LTllZGYtNmRkNmE5YzU1ZjU3 LzEvaFJSUmsxd1lSa2I0YUhnaml2c0tEVnF3dXQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVX4liMX1 C28NwHCfDZ9oi3iuXyQI3XtYNivKUP8By63OaK7f5HxT+fMnLmT+DDmKTuPmxCyj VWsdcDGzZ9Ra1WGXCvYpswsB1c6InEj5deF/B3IJSySkHkEasOcGAJMk738e3uwN +B/mVF5LRQQnBNARZtqZikkeJpQ5f9HGIjmoDe4882LuPbr10ToECY+SucN4tAzo J4EWV9ge/KxtsqI+eBTG4UIdhjEwd3tecJzyR+/pRLt3Wipb7cinIm908YicZlUf 5GdSK6PRfJGWYEcSLCwucMDFErii3n6VLK65Ydv9cViCgIx6veMn0IqlkGaxh1Io DspYQTZ0DWF6VQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:44 2026 by rpki-client