This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.mft File: soehvthfaZtS-gaqGeUc8liPFLk.mft (raw, json) Hash identifier: VfZ+j/1FWwWbnb2tLRQFsCsPDy8zrj1wDRlyj0CmnMw= Subject key identifier: F4:35:FD:AB:8D:C1:A6:11:34:CF:55:35:99:8A:A2:D8:2D:F2:D1:60 Authority key identifier: B2:87:A1:BE:D8:5F:69:9B:52:FA:06:AA:19:E5:1C:F2:58:8F:14:B9 Certificate issuer: /CN=b287a1bed85f699b52fa06aa19e51cf2588f14b9 Certificate serial: 019C432281FC8D1CE66E139971B87B170D16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/soehvthfaZtS-gaqGeUc8liPFLk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.mft Manifest number: 12B2 Signing time: Mon 09 Feb 2026 16:01:00 +0000 Manifest this update: Mon 09 Feb 2026 16:01:00 +0000 Manifest next update: Tue 10 Feb 2026 16:01:00 +0000 Files and hashes: 1: soehvthfaZtS-gaqGeUc8liPFLk.crl (hash: SgfZSfIRJaNHQcagDIYtghmsCIabS84aAwwpyzRgHm0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.crl rsync://rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.mft rsync://rpki.ripe.net/repository/DEFAULT/soehvthfaZtS-gaqGeUc8liPFLk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:81:fc:8d:1c:e6:6e:13:99:71:b8:7b:17:0d:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b287a1bed85f699b52fa06aa19e51cf2588f14b9 Validity Not Before: Feb 9 16:01:00 2026 GMT Not After : Feb 10 16:01:00 2026 GMT Subject: CN=f435fdab8dc1a61134cf5535998aa2d82df2d160 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:35:9b:ac:30:50:c3:b0:7d:af:1c:09:1c:c6: 5f:0c:cb:62:cb:f7:67:8d:cb:42:ba:fb:79:ba:02: ce:12:c3:4f:bf:b4:17:2f:97:d4:62:c7:dc:06:61: e2:a8:78:1c:b4:aa:fe:c4:2a:93:82:ff:20:2d:af: b0:94:d7:c1:6b:7c:de:23:2f:83:b6:9f:4b:2b:a5: 4f:24:3a:dc:58:9d:89:57:8c:6e:03:43:07:39:13: ae:f8:76:d9:7f:43:c9:6c:ec:e1:70:ba:fb:f2:e0: c3:07:92:21:19:d0:6a:6c:90:94:0d:79:df:f0:31: fa:3f:f5:98:e7:c4:26:aa:50:56:f7:23:c7:5d:15: ef:3b:4c:45:d5:5e:e2:01:cc:45:fa:6b:94:03:99: 4b:f7:da:45:58:4e:d0:18:59:46:e5:51:b0:a4:f6: dd:e5:5b:27:15:31:e1:72:d4:cd:15:14:a4:f9:65: b0:80:8e:8a:f6:dd:20:b3:b5:36:c6:57:a3:34:0b: c5:c7:95:a5:04:81:09:06:51:8c:42:1e:61:4f:dd: d8:d8:52:2e:cd:d8:8e:88:b4:5a:a3:2a:ea:8e:4a: 42:25:99:53:b9:db:5c:65:86:49:5b:80:52:24:c9: 67:07:c2:c5:ef:ed:88:77:d9:fa:0c:c2:19:dc:34: 9c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:35:FD:AB:8D:C1:A6:11:34:CF:55:35:99:8A:A2:D8:2D:F2:D1:60 X509v3 Authority Key Identifier: keyid:B2:87:A1:BE:D8:5F:69:9B:52:FA:06:AA:19:E5:1C:F2:58:8F:14:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/soehvthfaZtS-gaqGeUc8liPFLk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0a277e-0656-4cfe-a8a8-02e3d9e02eec/1/soehvthfaZtS-gaqGeUc8liPFLk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:0a:85:ef:fe:9e:cc:60:d9:bb:1e:98:2b:f5:c2:fd:c4:13: 38:c6:d5:ea:33:75:25:1b:6c:ff:ca:0d:49:cb:d7:dd:a2:8b: bb:43:a7:5b:aa:0d:d5:9e:56:13:32:99:f5:87:06:fa:f5:e9: 38:b6:af:bc:d7:e9:33:1d:1d:1f:2d:49:01:9c:be:24:6a:76: 5f:59:06:ae:90:0a:e4:70:2a:2a:1a:5b:d2:c8:db:da:e8:db: ff:64:57:93:da:5f:8c:78:62:42:ed:cc:d6:9f:40:11:a2:4a: ab:3e:44:8c:f9:00:a0:c1:4b:e9:cf:33:d8:37:d1:ed:90:76: dc:38:c6:d5:6c:95:f0:51:76:60:4d:9b:d7:30:b9:73:1b:23: 4f:f0:e6:01:0f:86:92:43:b7:a1:9d:b1:df:dd:fd:d1:45:38: d2:64:2f:40:c0:bd:8a:4f:98:f3:1e:44:1b:84:a3:ca:6f:c9: 34:ac:d7:98:91:2f:ba:db:ab:46:f8:59:29:7e:5e:3e:37:e8: 81:61:e2:08:4c:67:1f:67:4b:c7:e4:10:46:70:8f:5d:d2:0f: ef:a1:24:06:04:fe:46:3a:3d:ae:96:e3:ef:ec:df:9d:71:71: cf:43:57:24:35:32:6a:56:38:ac:e9:e7:b1:ec:45:f8:ea:43: 26:a4:f4:8f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIoH8jRzmbhOZcbh7Fw0WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyODdhMWJlZDg1ZjY5OWI1MmZhMDZhYTE5ZTUxY2YyNTg4 ZjE0YjkwHhcNMjYwMjA5MTYwMTAwWhcNMjYwMjEwMTYwMTAwWjAzMTEwLwYDVQQD EyhmNDM1ZmRhYjhkYzFhNjExMzRjZjU1MzU5OThhYTJkODJkZjJkMTYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmDWbrDBQw7B9rxwJHMZfDMtiy/dn jctCuvt5ugLOEsNPv7QXL5fUYsfcBmHiqHgctKr+xCqTgv8gLa+wlNfBa3zeIy+D tp9LK6VPJDrcWJ2JV4xuA0MHOROu+HbZf0PJbOzhcLr78uDDB5IhGdBqbJCUDXnf 8DH6P/WY58QmqlBW9yPHXRXvO0xF1V7iAcxF+muUA5lL99pFWE7QGFlG5VGwpPbd 5VsnFTHhctTNFRSk+WWwgI6K9t0gs7U2xlejNAvFx5WlBIEJBlGMQh5hT93Y2FIu zdiOiLRaoyrqjkpCJZlTudtcZYZJW4BSJMlnB8LF7+2Id9n6DMIZ3DSc2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPQ1/auNwaYRNM9VNZmKotgt8tFgMB8GA1UdIwQY MBaAFLKHob7YX2mbUvoGqhnlHPJYjxS5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc29laHZ0aGZhWnRTLWdhcUdlVWM4bGlQRkxrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8wYTI3N2UtMDY1Ni00Y2ZlLWE4YTgt MDJlM2Q5ZTAyZWVjLzEvc29laHZ0aGZhWnRTLWdhcUdlVWM4bGlQRkxrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC8wYTI3N2UtMDY1Ni00Y2ZlLWE4YTgtMDJlM2Q5ZTAyZWVj LzEvc29laHZ0aGZhWnRTLWdhcUdlVWM4bGlQRkxrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQQqF7/6e zGDZux6YK/XC/cQTOMbV6jN1JRts/8oNScvX3aKLu0OnW6oN1Z5WEzKZ9YcG+vXp OLavvNfpMx0dHy1JAZy+JGp2X1kGrpAK5HAqKhpb0sjb2ujb/2RXk9pfjHhiQu3M 1p9AEaJKqz5EjPkAoMFL6c8z2DfR7ZB23DjG1WyV8FF2YE2b1zC5cxsjT/DmAQ+G kkO3oZ2x39390UU40mQvQMC9ik+Y8x5EG4Sjym/JNKzXmJEvuturRvhZKX5ePjfo gWHiCExnH2dLx+QQRnCPXdIP76EkBgT+Rjo9rpbj7+zfnXFxz0NXJDUyalY4rOnn sexF+OpDJqT0jw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:53:39 2026 by rpki-client