This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft File: hC4XioXWwwtXKyAmHET456S_wnI.mft (raw, json) Hash identifier: QHPGHYIxI7em63iOLFqLoTpN0P3Gf0Fvd2H9aUzk68o= Subject key identifier: 7E:DE:E5:C5:3C:B1:AA:93:BE:DA:A6:A8:09:F2:7D:00:A1:42:BD:44 Authority key identifier: 84:2E:17:8A:85:D6:C3:0B:57:2B:20:26:1C:44:F8:E7:A4:BF:C2:72 Certificate issuer: /CN=842e178a85d6c30b572b20261c44f8e7a4bfc272 Certificate serial: 019C420FDA0A773435661D6BF3FE9E857121 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft Manifest number: 0FA0 Signing time: Mon 09 Feb 2026 11:01:00 +0000 Manifest this update: Mon 09 Feb 2026 11:01:00 +0000 Manifest next update: Tue 10 Feb 2026 11:01:00 +0000 Files and hashes: 1: 3widJOutrAHh97YKSptO-b1dBlc.roa (hash: WjqlvhNeLoXjkFAEnq8uZuntv6RT+a3RPjop0QMbaM8=) 2: hC4XioXWwwtXKyAmHET456S_wnI.crl (hash: XjDHC02tS2mTG6MXmoj6lmJ4aHYrwYl6wLEF1lVhijE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.crl rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:da:0a:77:34:35:66:1d:6b:f3:fe:9e:85:71:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=842e178a85d6c30b572b20261c44f8e7a4bfc272 Validity Not Before: Feb 9 11:01:00 2026 GMT Not After : Feb 10 11:01:00 2026 GMT Subject: CN=7edee5c53cb1aa93bedaa6a809f27d00a142bd44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:50:39:2e:60:f1:7c:10:77:6f:a8:be:48:3c: d7:02:4d:60:7e:b5:fe:d7:c6:74:d4:0f:fc:8e:4e: 21:58:02:df:98:3f:0b:1b:1f:77:99:da:47:33:a5: ba:c4:73:fe:83:f9:1e:70:90:29:c0:1c:77:5d:70: 99:9c:ec:04:02:25:04:32:86:d8:3d:e5:ee:f9:38: 1e:23:19:41:72:c0:5d:ea:be:ed:17:51:36:75:23: 35:30:11:fb:43:97:99:3a:4b:a0:04:7c:34:4c:6e: 12:b8:6d:51:fc:e7:37:54:b4:f6:5f:92:0e:71:2c: d4:e7:de:cf:a3:fd:37:f0:08:f1:9b:07:e6:ec:e1: c6:7e:7f:a5:8b:8e:ea:51:fe:18:64:41:43:8d:4b: 4c:d0:f1:4e:3b:94:bc:d2:b6:55:ba:32:88:e8:93: 30:80:c9:26:a1:45:f0:bb:28:89:d8:42:52:02:60: 1e:06:66:86:54:ad:32:a4:ad:d0:e9:b2:c3:b4:aa: 4a:4d:26:67:61:86:8a:97:b7:95:6c:ce:84:1f:13: 9b:e6:19:d9:8b:60:41:de:17:37:06:8f:7f:e8:8a: eb:c0:59:db:86:5e:73:89:53:c0:3d:df:3e:c6:7b: 7a:2d:91:1c:7e:40:b3:77:06:8e:de:29:34:a5:de: 22:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:DE:E5:C5:3C:B1:AA:93:BE:DA:A6:A8:09:F2:7D:00:A1:42:BD:44 X509v3 Authority Key Identifier: keyid:84:2E:17:8A:85:D6:C3:0B:57:2B:20:26:1C:44:F8:E7:A4:BF:C2:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:0c:06:c7:a8:ab:51:17:55:a0:65:6d:28:85:ed:96:3b:28: 85:ed:df:de:b9:3c:ee:52:e8:29:5f:1d:4b:11:1d:28:bc:ce: 59:fe:0c:4b:8a:a2:d7:31:14:8a:0f:b4:35:1d:71:7a:d0:76: 26:47:03:b4:42:eb:67:79:30:59:d7:d9:be:2a:6a:31:d9:87: 3d:cd:3f:87:98:c2:89:f6:6c:8d:81:59:5f:1a:c0:2a:46:c1: 46:18:1a:c2:af:e3:14:9f:36:37:bb:47:d9:74:c4:8b:42:e5: 9f:23:c8:e6:1a:aa:6f:eb:9a:f2:2d:9d:4d:fb:38:9f:26:31: 25:d8:20:32:74:ff:b7:ad:c7:21:1c:96:41:56:88:25:d8:d9: 29:9d:27:b3:1b:fa:e1:5d:00:74:39:78:34:2f:0d:db:ed:03: 0b:5d:4e:d2:02:91:f6:2a:64:3a:06:3d:32:35:b3:bf:4b:d7: 29:82:03:79:74:32:bb:9b:fe:5d:d9:fc:86:04:32:b7:83:7f: ce:38:1b:c0:88:5a:cc:f2:cc:3b:ec:6a:d9:59:ff:e9:e2:e0: a0:a8:a2:a7:89:83:ab:f0:a2:79:1a:f4:9a:48:58:56:b0:a6: 52:62:71:8b:de:c4:1d:52:d5:62:f5:35:36:f6:0b:c5:63:d9: 13:29:ba:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD9oKdzQ1Zh1r8/6ehXEhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0MmUxNzhhODVkNmMzMGI1NzJiMjAyNjFjNDRmOGU3YTRi ZmMyNzIwHhcNMjYwMjA5MTEwMTAwWhcNMjYwMjEwMTEwMTAwWjAzMTEwLwYDVQQD Eyg3ZWRlZTVjNTNjYjFhYTkzYmVkYWE2YTgwOWYyN2QwMGExNDJiZDQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr1A5LmDxfBB3b6i+SDzXAk1gfrX+ 18Z01A/8jk4hWALfmD8LGx93mdpHM6W6xHP+g/kecJApwBx3XXCZnOwEAiUEMobY PeXu+TgeIxlBcsBd6r7tF1E2dSM1MBH7Q5eZOkugBHw0TG4SuG1R/Oc3VLT2X5IO cSzU597Po/038Ajxmwfm7OHGfn+li47qUf4YZEFDjUtM0PFOO5S80rZVujKI6JMw gMkmoUXwuyiJ2EJSAmAeBmaGVK0ypK3Q6bLDtKpKTSZnYYaKl7eVbM6EHxOb5hnZ i2BB3hc3Bo9/6IrrwFnbhl5ziVPAPd8+xnt6LZEcfkCzdwaO3ik0pd4i3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH7e5cU8saqTvtqmqAnyfQChQr1EMB8GA1UdIwQY MBaAFIQuF4qF1sMLVysgJhxE+Oekv8JyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEM0WGlvWFd3d3RYS3lBbUhFVDQ1NlNfd25JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS8wNzMwZDEtZmVlMy00NjU0LTlkZWEt ZTE4N2JlOWI2YzIzLzEvaEM0WGlvWFd3d3RYS3lBbUhFVDQ1NlNfd25JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS8wNzMwZDEtZmVlMy00NjU0LTlkZWEtZTE4N2JlOWI2YzIz LzEvaEM0WGlvWFd3d3RYS3lBbUhFVDQ1NlNfd25JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMQwGx6ir URdVoGVtKIXtljsohe3f3rk87lLoKV8dSxEdKLzOWf4MS4qi1zEUig+0NR1xetB2 JkcDtELrZ3kwWdfZvipqMdmHPc0/h5jCifZsjYFZXxrAKkbBRhgawq/jFJ82N7tH 2XTEi0LlnyPI5hqqb+ua8i2dTfs4nyYxJdggMnT/t63HIRyWQVaIJdjZKZ0nsxv6 4V0AdDl4NC8N2+0DC11O0gKR9ipkOgY9MjWzv0vXKYIDeXQyu5v+Xdn8hgQyt4N/ zjgbwIhazPLMO+xq2Vn/6eLgoKiip4mDq/CieRr0mkhYVrCmUmJxi97EHVLVYvU1 NvYLxWPZEym6Hg== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:47 2026 by rpki-client