This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.mft File: H9e7sd5oCd9_blc_mrtk5gNhPKE.mft (raw, json) Hash identifier: y+vT2Auhr8hBrZWD5XcjndN/P9di5pW7UOIkxsyTocI= Subject key identifier: 86:42:5E:38:55:63:C4:4F:69:CE:C6:B2:D8:D9:6F:65:2D:A2:42:3D Authority key identifier: 1F:D7:BB:B1:DE:68:09:DF:7F:6E:57:3F:9A:BB:64:E6:03:61:3C:A1 Certificate issuer: /CN=1fd7bbb1de6809df7f6e573f9abb64e603613ca1 Certificate serial: 019C4359671462E09BF73774696C1AA47A6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9e7sd5oCd9_blc_mrtk5gNhPKE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.mft Manifest number: 1814 Signing time: Mon 09 Feb 2026 17:00:58 +0000 Manifest this update: Mon 09 Feb 2026 17:00:58 +0000 Manifest next update: Tue 10 Feb 2026 17:00:58 +0000 Files and hashes: 1: H9e7sd5oCd9_blc_mrtk5gNhPKE.crl (hash: IA1iGcgksTc3jAHWN3Jx2yMZHIpWuS4uyIOP+nw6+sI=) 2: VUBqDVSTc9X33Ru22fhohdoill4.roa (hash: xLZ5Laa/gOttFf8mokrurIU7caX1O/u8RDHEevdtn0M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.crl rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.mft rsync://rpki.ripe.net/repository/DEFAULT/H9e7sd5oCd9_blc_mrtk5gNhPKE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:67:14:62:e0:9b:f7:37:74:69:6c:1a:a4:7a:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1fd7bbb1de6809df7f6e573f9abb64e603613ca1 Validity Not Before: Feb 9 17:00:58 2026 GMT Not After : Feb 10 17:00:58 2026 GMT Subject: CN=86425e385563c44f69cec6b2d8d96f652da2423d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:04:9e:be:5d:64:93:fa:85:81:4d:df:2b:61: 00:cf:4d:d0:39:d9:04:ec:7c:3b:98:2c:3c:47:8b: c9:71:c2:95:7a:da:ff:85:0f:10:59:d4:c8:7f:91: 70:5a:2a:6f:e1:11:0c:b1:6a:0e:e7:9d:51:4c:89: 75:a3:c1:e0:9a:9e:50:88:4b:59:dc:50:53:f1:aa: 18:ac:59:be:ca:7c:0a:90:64:d1:c7:ed:df:6c:ed: 36:38:15:f5:85:56:31:89:d8:23:3e:4f:fb:88:d5: 06:73:c4:0a:e5:31:a1:ad:51:82:6b:cf:41:6e:6b: 15:1a:ca:e6:3f:b9:62:11:03:41:0d:b9:e6:ea:77: e2:de:17:9a:c3:63:53:bc:d6:04:02:38:36:fd:d5: 5a:08:7b:fd:ff:fe:0b:e9:42:cd:74:61:6d:6d:69: 8d:55:21:ad:cc:40:31:57:ed:47:8d:9a:57:d2:de: 4e:bc:e2:00:f9:7d:c9:6d:f5:9d:ca:dc:ef:20:5e: a6:26:97:9f:64:90:e4:de:32:4d:c9:4c:ae:b0:f9: 9d:26:af:2a:39:f2:d8:b6:a4:4d:b3:41:e8:1f:bf: 9e:ba:d4:52:ff:35:a7:17:78:91:5e:72:01:95:ad: 9e:35:cb:f7:eb:a4:18:36:a6:29:3a:0f:d0:08:34: 6b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:42:5E:38:55:63:C4:4F:69:CE:C6:B2:D8:D9:6F:65:2D:A2:42:3D X509v3 Authority Key Identifier: keyid:1F:D7:BB:B1:DE:68:09:DF:7F:6E:57:3F:9A:BB:64:E6:03:61:3C:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9e7sd5oCd9_blc_mrtk5gNhPKE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:e4:cf:e2:c2:e7:12:9f:54:a4:34:e7:3c:74:9b:fb:e8:4e: cb:a0:4a:8c:3f:0d:09:ef:69:43:70:09:80:d1:53:47:1f:7c: 70:b9:7b:59:92:6b:38:36:73:ca:c9:a9:6a:af:d6:f5:d0:58: d2:5f:43:ba:3e:95:6e:f8:dc:f2:22:1e:59:53:a0:5f:01:78: 2e:91:31:f2:85:43:80:a5:85:d5:d5:80:f1:89:93:65:a3:fb: ab:72:d0:7a:94:96:8c:d1:39:c1:bb:a9:0b:7c:5c:a3:b8:03: a5:d1:cf:ab:27:4d:67:b5:60:25:ec:00:c2:df:80:43:0e:0c: 59:45:c7:e6:be:69:b6:92:26:22:c9:4f:0b:6f:25:c2:f7:73: d0:37:0c:53:af:3c:a0:53:20:0c:6f:81:03:0e:9a:cf:47:3a: e4:17:57:c1:49:bf:47:f9:b5:59:eb:7e:8f:58:13:4c:aa:fd: d7:38:76:0d:99:aa:09:99:33:1d:70:18:b3:61:a6:2d:73:e0: f3:ff:95:98:d0:ec:0d:4c:3c:ee:f0:9b:ab:89:ee:05:b6:1e: c7:8a:b7:3c:df:63:6f:0c:5c:de:11:89:a5:4d:8a:f5:df:1e: 66:7c:80:f8:f2:4c:29:1e:6f:4a:f0:95:10:fc:86:c1:cb:13: 30:63:5e:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWWcUYuCb9zd0aWwapHprMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmZDdiYmIxZGU2ODA5ZGY3ZjZlNTczZjlhYmI2NGU2MDM2 MTNjYTEwHhcNMjYwMjA5MTcwMDU4WhcNMjYwMjEwMTcwMDU4WjAzMTEwLwYDVQQD Eyg4NjQyNWUzODU1NjNjNDRmNjljZWM2YjJkOGQ5NmY2NTJkYTI0MjNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsgSevl1kk/qFgU3fK2EAz03QOdkE 7Hw7mCw8R4vJccKVetr/hQ8QWdTIf5FwWipv4REMsWoO551RTIl1o8Hgmp5QiEtZ 3FBT8aoYrFm+ynwKkGTRx+3fbO02OBX1hVYxidgjPk/7iNUGc8QK5TGhrVGCa89B bmsVGsrmP7liEQNBDbnm6nfi3heaw2NTvNYEAjg2/dVaCHv9//4L6ULNdGFtbWmN VSGtzEAxV+1HjZpX0t5OvOIA+X3JbfWdytzvIF6mJpefZJDk3jJNyUyusPmdJq8q OfLYtqRNs0HoH7+eutRS/zWnF3iRXnIBla2eNcv366QYNqYpOg/QCDRrwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIZCXjhVY8RPac7GstjZb2UtokI9MB8GA1UdIwQY MBaAFB/Xu7HeaAnff25XP5q7ZOYDYTyhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDllN3NkNW9DZDlfYmxjX21ydGs1Z05oUEtFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni9mOGU4MDMtNDFmNS00NjY4LWFmYTUt ZGIxM2FiYmU0ZTlhLzEvSDllN3NkNW9DZDlfYmxjX21ydGs1Z05oUEtFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni9mOGU4MDMtNDFmNS00NjY4LWFmYTUtZGIxM2FiYmU0ZTlh LzEvSDllN3NkNW9DZDlfYmxjX21ydGs1Z05oUEtFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYeTP4sLn Ep9UpDTnPHSb++hOy6BKjD8NCe9pQ3AJgNFTRx98cLl7WZJrODZzysmpaq/W9dBY 0l9Duj6Vbvjc8iIeWVOgXwF4LpEx8oVDgKWF1dWA8YmTZaP7q3LQepSWjNE5wbup C3xco7gDpdHPqydNZ7VgJewAwt+AQw4MWUXH5r5ptpImIslPC28lwvdz0DcMU688 oFMgDG+BAw6az0c65BdXwUm/R/m1Wet+j1gTTKr91zh2DZmqCZkzHXAYs2GmLXPg 8/+VmNDsDUw87vCbq4nuBbYex4q3PN9jbwxc3hGJpU2K9d8eZnyA+PJMKR5vSvCV EPyGwcsTMGNeSw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:48:31 2026 by rpki-client