This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft File: hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft (raw, json) Hash identifier: 10oI+XnB4BpkU+UR+FL2PCGLQzukFRPx1kHV8tYOQM4= Subject key identifier: 22:D3:84:D7:CE:CB:04:09:D3:9B:A6:CF:3F:D9:B8:B9:18:40:35:06 Authority key identifier: 85:01:23:E4:CE:2B:80:EB:F1:2E:43:FE:E4:B1:C1:8C:5C:73:D3:B4 Certificate issuer: /CN=850123e4ce2b80ebf12e43fee4b1c18c5c73d3b4 Certificate serial: 019C4321CC399516F8A9A8F2A07F08E93CF2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hQEj5M4rgOvxLkP-5LHBjFxz07Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 16:00:14 +0000 Manifest this update: Mon 09 Feb 2026 16:00:14 +0000 Manifest next update: Tue 10 Feb 2026 16:00:14 +0000 Files and hashes: 1: hQEj5M4rgOvxLkP-5LHBjFxz07Q.crl (hash: AtU2YzEwKKD3CvuPDrpFiyuYm+tin2bsQfzkyUyoYgE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.crl rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft rsync://rpki.ripe.net/repository/DEFAULT/hQEj5M4rgOvxLkP-5LHBjFxz07Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:cc:39:95:16:f8:a9:a8:f2:a0:7f:08:e9:3c:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=850123e4ce2b80ebf12e43fee4b1c18c5c73d3b4 Validity Not Before: Feb 9 16:00:14 2026 GMT Not After : Feb 10 16:00:14 2026 GMT Subject: CN=22d384d7cecb0409d39ba6cf3fd9b8b918403506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e7:38:3d:d0:a2:1b:11:5d:62:83:1b:9f:33: c1:5f:e4:53:0f:b7:ec:16:0f:eb:9d:18:69:7d:a8: 34:f7:ca:0f:b4:d4:c6:8c:0e:ad:82:47:4c:63:6b: 82:2d:b7:24:e5:48:ad:30:66:c0:79:52:54:b9:96: 23:75:72:44:8d:d5:18:57:7c:61:6b:54:e6:73:d0: c7:a0:df:39:32:5e:87:03:6d:33:a8:27:d5:f0:f9: 1d:00:90:c5:53:c5:d6:96:f9:54:2e:db:f4:ba:f1: cf:7e:72:4b:f4:0e:1f:9c:4b:30:f1:f0:1e:21:d3: 08:6e:86:75:33:97:7e:6d:00:8f:72:e1:6e:82:05: 87:37:d0:bb:a9:79:00:f9:31:b2:bf:96:15:64:8a: af:28:36:66:38:96:2e:af:5f:48:86:49:15:5a:e6: a7:12:e2:29:1c:7d:72:fc:01:87:f5:1d:3a:ed:f0: ba:bb:8c:74:3c:59:82:7f:fa:74:3c:4d:76:c3:6c: dd:97:66:ce:8f:d7:80:b5:75:9f:e2:98:fc:63:91: 5f:5c:e0:65:70:04:4f:7a:53:d7:92:1d:8b:29:a3: 66:cb:e4:1d:19:ee:ee:80:c3:0d:a6:ea:34:75:62: 8c:fc:03:47:77:db:19:d7:66:97:c2:90:08:4f:ab: be:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:D3:84:D7:CE:CB:04:09:D3:9B:A6:CF:3F:D9:B8:B9:18:40:35:06 X509v3 Authority Key Identifier: keyid:85:01:23:E4:CE:2B:80:EB:F1:2E:43:FE:E4:B1:C1:8C:5C:73:D3:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hQEj5M4rgOvxLkP-5LHBjFxz07Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/98b5dd-7dee-4f4e-9cd1-16320d014c04/1/hQEj5M4rgOvxLkP-5LHBjFxz07Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:89:57:a9:1d:d1:af:f3:50:d9:69:dd:fe:da:f3:4c:f5:de: bb:ee:32:18:ed:63:9f:61:7d:35:c0:0b:d2:86:c5:28:00:e9: da:05:4b:d6:6e:ba:b0:37:fa:0b:be:52:c3:5d:8b:ce:3f:5e: 30:15:e1:89:89:ef:8b:86:5a:b7:77:7d:f2:0f:f8:09:f0:21: fa:e2:54:ef:74:f2:25:4a:a3:78:9b:3e:ab:dc:4d:88:0a:11: 07:2a:f9:85:59:d8:99:86:4d:cf:7e:99:e7:a7:23:dc:7b:ca: b7:d4:67:c9:75:53:a6:a6:38:fa:d7:10:b0:c9:d7:07:38:ac: 10:44:23:98:6b:3e:25:b8:3f:f9:01:01:54:09:24:47:9e:d2: b1:3a:8e:ad:51:10:a9:e2:6a:15:0b:92:2b:24:36:b6:69:6e: c2:ad:bb:b9:45:8d:3d:d6:5d:42:c0:85:b0:2f:9a:93:fd:e3: 5d:5b:99:bb:b9:f5:8b:3a:a6:a7:34:92:53:e8:4b:b4:77:da: 57:0f:3b:f1:e7:2e:5d:b0:0c:b4:c1:b6:60:58:85:83:5c:f7: 40:6e:1c:e3:c0:ec:26:10:2d:ac:66:4e:e3:d7:bf:70:ff:5f: 36:92:13:28:3c:9d:47:c7:07:0d:e8:08:cc:cd:cd:67:c4:d8: 72:54:6c:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIcw5lRb4qajyoH8I6TzyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1MDEyM2U0Y2UyYjgwZWJmMTJlNDNmZWU0YjFjMThjNWM3 M2QzYjQwHhcNMjYwMjA5MTYwMDE0WhcNMjYwMjEwMTYwMDE0WjAzMTEwLwYDVQQD EygyMmQzODRkN2NlY2IwNDA5ZDM5YmE2Y2YzZmQ5YjhiOTE4NDAzNTA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Oc4PdCiGxFdYoMbnzPBX+RTD7fs Fg/rnRhpfag098oPtNTGjA6tgkdMY2uCLbck5UitMGbAeVJUuZYjdXJEjdUYV3xh a1Tmc9DHoN85Ml6HA20zqCfV8PkdAJDFU8XWlvlULtv0uvHPfnJL9A4fnEsw8fAe IdMIboZ1M5d+bQCPcuFuggWHN9C7qXkA+TGyv5YVZIqvKDZmOJYur19IhkkVWuan EuIpHH1y/AGH9R067fC6u4x0PFmCf/p0PE12w2zdl2bOj9eAtXWf4pj8Y5FfXOBl cARPelPXkh2LKaNmy+QdGe7ugMMNpuo0dWKM/ANHd9sZ12aXwpAIT6u+FQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCLThNfOywQJ05umzz/ZuLkYQDUGMB8GA1UdIwQY MBaAFIUBI+TOK4Dr8S5D/uSxwYxcc9O0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFFFajVNNHJnT3Z4TGtQLTVMSEJqRnh6MDdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My85OGI1ZGQtN2RlZS00ZjRlLTljZDEt MTYzMjBkMDE0YzA0LzEvaFFFajVNNHJnT3Z4TGtQLTVMSEJqRnh6MDdRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My85OGI1ZGQtN2RlZS00ZjRlLTljZDEtMTYzMjBkMDE0YzA0 LzEvaFFFajVNNHJnT3Z4TGtQLTVMSEJqRnh6MDdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYYlXqR3R r/NQ2Wnd/trzTPXeu+4yGO1jn2F9NcAL0obFKADp2gVL1m66sDf6C75Sw12Lzj9e MBXhiYnvi4Zat3d98g/4CfAh+uJU73TyJUqjeJs+q9xNiAoRByr5hVnYmYZNz36Z 56cj3HvKt9RnyXVTpqY4+tcQsMnXBzisEEQjmGs+Jbg/+QEBVAkkR57SsTqOrVEQ qeJqFQuSKyQ2tmluwq27uUWNPdZdQsCFsC+ak/3jXVuZu7n1izqmpzSSU+hLtHfa Vw878ecuXbAMtMG2YFiFg1z3QG4c48DsJhAtrGZO49e/cP9fNpITKDydR8cHDegI zM3NZ8TYclRskg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:35:06 2026 by rpki-client