This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/d980d1-92c8-44b4-a5ab-757f99927571/1/vhhoIFs9E3NVqnHyRnKVzYcZUsg.mft File: vhhoIFs9E3NVqnHyRnKVzYcZUsg.mft (raw, json) Hash identifier: UTmw2ef7QDbIKip37eFXtSmTmtLk2qMyIt6jk494C+g= Subject key identifier: BD:A0:C5:4A:BA:52:DA:71:EF:4C:D4:9F:7F:5E:65:5A:1C:51:5C:B7 Authority key identifier: BE:18:68:20:5B:3D:13:73:55:AA:71:F2:46:72:95:CD:87:19:52:C8 Certificate issuer: /CN=be1868205b3d137355aa71f2467295cd871952c8 Certificate serial: 019C420F36F85A84CAB83B74AAB1F962EF91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vhhoIFs9E3NVqnHyRnKVzYcZUsg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/d980d1-92c8-44b4-a5ab-757f99927571/1/vhhoIFs9E3NVqnHyRnKVzYcZUsg.mft Manifest number: 0E10 Signing time: Mon 09 Feb 2026 11:00:19 +0000 Manifest this update: Mon 09 Feb 2026 11:00:19 +0000 Manifest next update: Tue 10 Feb 2026 11:00:19 +0000 Files and hashes: 1: vhhoIFs9E3NVqnHyRnKVzYcZUsg.crl (hash: UcsIggYFJaxNNrdv8LWjBi7zHsdZhSyuKVCuC5ua+xs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/d980d1-92c8-44b4-a5ab-757f99927571/1/vhhoIFs9E3NVqnHyRnKVzYcZUsg.crl rsync://rpki.ripe.net/repository/DEFAULT/40/d980d1-92c8-44b4-a5ab-757f99927571/1/vhhoIFs9E3NVqnHyRnKVzYcZUsg.mft rsync://rpki.ripe.net/repository/DEFAULT/vhhoIFs9E3NVqnHyRnKVzYcZUsg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:36:f8:5a:84:ca:b8:3b:74:aa:b1:f9:62:ef:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be1868205b3d137355aa71f2467295cd871952c8 Validity Not Before: Feb 9 11:00:19 2026 GMT Not After : Feb 10 11:00:19 2026 GMT Subject: CN=bda0c54aba52da71ef4cd49f7f5e655a1c515cb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:26:76:5e:4f:07:ed:18:e4:be:7b:ca:39:be: 57:6a:e7:20:d9:2f:28:07:7a:95:b1:6d:3a:c1:4f: 02:7b:39:5a:71:57:1f:da:6d:99:4a:a7:10:a9:17: 65:57:42:2e:b6:54:ed:d5:a4:36:de:e8:dc:bc:14: eb:94:38:5e:46:36:e4:9e:52:20:a6:5f:af:77:e8: 90:4c:99:19:64:b5:20:78:6b:89:32:8e:70:79:cf: 17:6e:ca:40:6f:92:2f:ee:72:e9:65:9d:76:19:99: 3f:58:bf:37:ad:ae:c6:9e:b1:96:98:d0:60:0a:d2: e0:13:7a:a0:98:36:83:c6:31:6f:b5:55:d2:d9:73: 42:30:fc:92:68:e2:45:ea:58:ee:42:d4:55:2e:ce: 66:a3:4b:d8:c3:57:86:73:60:b0:ba:2a:7c:e8:70: f5:f4:b1:ab:67:0f:bb:a6:a4:80:0f:4e:62:24:55: 06:ce:73:27:2a:20:76:5c:74:f2:ce:03:80:6b:1c: 44:f7:18:ae:6b:d4:45:93:c2:87:93:01:20:69:d7: 05:2f:b1:bb:32:72:18:05:d2:66:28:59:b3:54:54: 16:47:6b:22:79:f1:c4:4a:3e:38:35:18:67:be:80: b3:ad:3d:1f:58:25:88:b2:2a:2a:17:2a:f1:1d:8a: 76:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A0:C5:4A:BA:52:DA:71:EF:4C:D4:9F:7F:5E:65:5A:1C:51:5C:B7 X509v3 Authority Key Identifier: keyid:BE:18:68:20:5B:3D:13:73:55:AA:71:F2:46:72:95:CD:87:19:52:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vhhoIFs9E3NVqnHyRnKVzYcZUsg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/d980d1-92c8-44b4-a5ab-757f99927571/1/vhhoIFs9E3NVqnHyRnKVzYcZUsg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/d980d1-92c8-44b4-a5ab-757f99927571/1/vhhoIFs9E3NVqnHyRnKVzYcZUsg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:b3:b7:41:74:78:47:5f:08:98:64:8d:bd:f0:bb:c5:3a:2e: 6f:3e:2f:2a:86:49:74:35:25:dd:18:4f:42:15:4a:dd:67:49: fd:0d:45:42:27:71:20:05:69:e4:92:9e:5a:0d:65:b7:65:32: 80:6e:a7:6c:30:92:8f:a9:5f:00:6b:c6:6c:86:e3:5c:d1:d5: 5c:db:41:27:4d:75:8e:99:e2:fb:68:af:4a:77:36:41:f9:23: 3d:e6:fa:54:c3:d4:63:17:9c:d1:9a:e6:2a:3b:18:2e:2c:34: d5:31:66:6d:e0:b1:a5:4c:35:0b:c7:20:ea:ab:69:9a:12:c9: bf:4d:e7:c4:40:5c:62:55:9f:ba:19:55:4b:7e:a9:ff:93:07: ed:26:96:32:4f:5f:6d:a1:1e:13:6c:0b:c1:55:ed:4a:8a:18: 1f:c7:36:75:f6:07:6c:36:ba:a8:ff:5b:aa:69:bf:23:d5:49: 73:60:5e:bf:6f:0e:cd:23:df:70:8a:8f:cd:7a:0b:6c:b6:3d: c5:34:02:93:d1:08:06:2a:8d:aa:73:ba:bd:e7:e8:82:19:e7: 59:6e:00:0c:96:94:42:ed:74:7e:13:48:48:c7:d7:10:62:69: ba:57:cc:eb:db:9c:32:63:f4:5b:9d:38:32:ec:70:65:69:d0: 2f:42:5c:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCDzb4WoTKuDt0qrH5Yu+RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlMTg2ODIwNWIzZDEzNzM1NWFhNzFmMjQ2NzI5NWNkODcx OTUyYzgwHhcNMjYwMjA5MTEwMDE5WhcNMjYwMjEwMTEwMDE5WjAzMTEwLwYDVQQD EyhiZGEwYzU0YWJhNTJkYTcxZWY0Y2Q0OWY3ZjVlNjU1YTFjNTE1Y2I3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwyZ2Xk8H7RjkvnvKOb5Xaucg2S8o B3qVsW06wU8CezlacVcf2m2ZSqcQqRdlV0IutlTt1aQ23ujcvBTrlDheRjbknlIg pl+vd+iQTJkZZLUgeGuJMo5wec8XbspAb5Iv7nLpZZ12GZk/WL83ra7GnrGWmNBg CtLgE3qgmDaDxjFvtVXS2XNCMPySaOJF6ljuQtRVLs5mo0vYw1eGc2Cwuip86HD1 9LGrZw+7pqSAD05iJFUGznMnKiB2XHTyzgOAaxxE9xiua9RFk8KHkwEgadcFL7G7 MnIYBdJmKFmzVFQWR2siefHESj44NRhnvoCzrT0fWCWIsioqFyrxHYp2IQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL2gxUq6Utpx70zUn39eZVocUVy3MB8GA1UdIwQY MBaAFL4YaCBbPRNzVapx8kZylc2HGVLIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmhob0lGczlFM05WcW5IeVJuS1Z6WWNaVXNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9kOTgwZDEtOTJjOC00NGI0LWE1YWIt NzU3Zjk5OTI3NTcxLzEvdmhob0lGczlFM05WcW5IeVJuS1Z6WWNaVXNnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC9kOTgwZDEtOTJjOC00NGI0LWE1YWItNzU3Zjk5OTI3NTcx LzEvdmhob0lGczlFM05WcW5IeVJuS1Z6WWNaVXNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAprO3QXR4 R18ImGSNvfC7xToubz4vKoZJdDUl3RhPQhVK3WdJ/Q1FQidxIAVp5JKeWg1lt2Uy gG6nbDCSj6lfAGvGbIbjXNHVXNtBJ011jpni+2ivSnc2QfkjPeb6VMPUYxec0Zrm KjsYLiw01TFmbeCxpUw1C8cg6qtpmhLJv03nxEBcYlWfuhlVS36p/5MH7SaWMk9f baEeE2wLwVXtSooYH8c2dfYHbDa6qP9bqmm/I9VJc2Bev28OzSPfcIqPzXoLbLY9 xTQCk9EIBiqNqnO6vefoghnnWW4ADJaUQu10fhNISMfXEGJpulfM69ucMmP0W504 MuxwZWnQL0JcAQ== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:33 2026 by rpki-client