This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft File: 0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft (raw, json) Hash identifier: NAffAd83DgwmGN0f1pRoRQ7BDxJnrfB6hDCRnB1Cd50= Subject key identifier: CD:BE:4F:15:B1:72:F2:66:49:33:8F:52:ED:D3:0E:06:BC:BB:78:D7 Authority key identifier: D2:1A:59:40:72:2B:20:7B:29:D9:5A:6C:81:BE:0D:2B:F4:D4:10:CC Certificate issuer: /CN=d21a5940722b207b29d95a6c81be0d2bf4d410cc Certificate serial: 019C41D8D6AA32D53AC68BF99C322C675B36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft Manifest number: 09CB Signing time: Mon 09 Feb 2026 10:00:55 +0000 Manifest this update: Mon 09 Feb 2026 10:00:55 +0000 Manifest next update: Tue 10 Feb 2026 10:00:55 +0000 Files and hashes: 1: 0hpZQHIrIHsp2Vpsgb4NK_TUEMw.crl (hash: Dg0J/n3AsTl11UoLsydMWfS6AlR6Au62+NvFdDXY07o=) 2: 6jB2jMiHx3sCwDqQfo8bHL7xj1o.roa (hash: c6SeZtcLZoq1VVZbkWGju8/PVQHZ1NT6ScCfBSc3zdI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.crl rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft rsync://rpki.ripe.net/repository/DEFAULT/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:d6:aa:32:d5:3a:c6:8b:f9:9c:32:2c:67:5b:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d21a5940722b207b29d95a6c81be0d2bf4d410cc Validity Not Before: Feb 9 10:00:55 2026 GMT Not After : Feb 10 10:00:55 2026 GMT Subject: CN=cdbe4f15b172f26649338f52edd30e06bcbb78d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f4:f0:fb:95:f9:b8:ef:1f:76:3d:15:50:85: a0:d6:d9:df:80:e0:22:04:92:a4:e3:f7:87:92:12: 95:8a:15:71:29:75:9b:81:b9:ff:d9:be:f2:31:e8: 8b:2f:66:d3:89:d8:1c:d5:65:7f:42:e3:45:e8:5e: c3:8e:ae:8d:ac:10:e3:73:f5:f4:a1:95:c1:ab:bc: 68:02:98:d9:87:20:85:63:84:5a:6f:0a:42:3d:2b: cc:7f:8a:e5:e2:15:ec:6f:aa:68:7b:25:13:69:60: bf:72:79:67:2d:1a:1e:71:04:9a:69:20:de:89:77: 3e:09:b1:cf:3e:9f:00:3e:bf:a7:86:4f:dc:45:8b: a8:2b:db:ae:c4:be:f3:73:de:5f:c1:e4:40:81:09: 1c:10:5d:57:9c:54:16:c1:96:6a:ea:2a:f1:cd:02: f8:c0:df:95:d2:67:23:69:30:67:8d:72:a1:b9:e3: 3c:b0:8a:cd:16:bf:4a:0a:c5:05:7b:4d:7b:fb:44: 72:7d:b3:f3:69:b3:4f:b3:10:c1:6f:a5:96:c8:0a: 65:bd:ba:7e:b2:cb:b1:c1:92:d7:a1:56:73:10:ac: 0c:9b:32:20:ff:ab:c9:89:0a:a1:2e:3b:0b:05:00: c5:ac:dc:94:57:a5:c3:52:e8:29:34:92:8f:cc:ba: 9b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:BE:4F:15:B1:72:F2:66:49:33:8F:52:ED:D3:0E:06:BC:BB:78:D7 X509v3 Authority Key Identifier: keyid:D2:1A:59:40:72:2B:20:7B:29:D9:5A:6C:81:BE:0D:2B:F4:D4:10:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:45:2e:fa:d9:59:8f:ef:52:fb:08:7d:a5:31:2e:f3:e8:61: 3d:b7:c5:c6:54:42:28:bf:86:a4:02:8a:6a:b7:63:bb:ad:cb: 78:e0:ed:af:ed:f4:c5:98:30:90:cc:ea:bc:c8:04:48:a9:3e: 99:85:f0:f0:ea:b3:52:c6:ef:01:a4:8b:6e:c3:f9:b5:20:01: 50:4a:83:6e:ff:6d:9b:f1:24:06:57:4a:17:de:fb:ee:aa:b6: 1d:d6:32:f4:65:0d:a1:98:d8:b5:1b:71:0a:d1:4a:42:07:8d: 91:cc:ba:50:37:78:9c:3e:00:4e:82:c4:15:e4:df:04:35:aa: d2:c1:3e:f9:78:5c:db:86:e0:2d:53:ce:4e:7f:51:62:6b:ec: 93:25:bf:c3:f8:cc:0b:e5:62:d8:2c:d0:56:87:85:96:e2:e9: f6:c7:ed:99:d6:4a:f9:a2:98:97:ce:70:12:4f:51:f2:7b:88: 35:1d:24:9d:25:62:8b:25:ff:7c:e2:ef:4e:ad:33:20:6d:9a: 9a:db:a9:7f:b3:76:ce:3f:cc:65:0a:b1:49:cb:ba:07:74:62: 8e:66:9c:69:29:3b:21:15:1c:7d:e7:bd:9f:5a:21:bf:4b:f1: 40:3e:32:f7:fd:40:a5:5b:5c:b1:75:78:26:41:2d:8d:62:f8: bf:52:48:99 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2NaqMtU6xov5nDIsZ1s2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyMWE1OTQwNzIyYjIwN2IyOWQ5NWE2YzgxYmUwZDJiZjRk NDEwY2MwHhcNMjYwMjA5MTAwMDU1WhcNMjYwMjEwMTAwMDU1WjAzMTEwLwYDVQQD EyhjZGJlNGYxNWIxNzJmMjY2NDkzMzhmNTJlZGQzMGUwNmJjYmI3OGQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsvTw+5X5uO8fdj0VUIWg1tnfgOAi BJKk4/eHkhKVihVxKXWbgbn/2b7yMeiLL2bTidgc1WV/QuNF6F7Djq6NrBDjc/X0 oZXBq7xoApjZhyCFY4RabwpCPSvMf4rl4hXsb6poeyUTaWC/cnlnLRoecQSaaSDe iXc+CbHPPp8APr+nhk/cRYuoK9uuxL7zc95fweRAgQkcEF1XnFQWwZZq6irxzQL4 wN+V0mcjaTBnjXKhueM8sIrNFr9KCsUFe017+0RyfbPzabNPsxDBb6WWyAplvbp+ ssuxwZLXoVZzEKwMmzIg/6vJiQqhLjsLBQDFrNyUV6XDUugpNJKPzLqbtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM2+TxWxcvJmSTOPUu3TDga8u3jXMB8GA1UdIwQY MBaAFNIaWUByKyB7KdlabIG+DSv01BDMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGhwWlFISXJJSHNwMlZwc2diNE5LX1RVRU13LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC81NjQzM2EtMGE3MC00ZWFlLTlmOWQt OGNmYmRiNzk5Mjg0LzEvMGhwWlFISXJJSHNwMlZwc2diNE5LX1RVRU13Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC81NjQzM2EtMGE3MC00ZWFlLTlmOWQtOGNmYmRiNzk5Mjg0 LzEvMGhwWlFISXJJSHNwMlZwc2diNE5LX1RVRU13LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbUUu+tlZ j+9S+wh9pTEu8+hhPbfFxlRCKL+GpAKKardju63LeODtr+30xZgwkMzqvMgESKk+ mYXw8OqzUsbvAaSLbsP5tSABUEqDbv9tm/EkBldKF9777qq2HdYy9GUNoZjYtRtx CtFKQgeNkcy6UDd4nD4AToLEFeTfBDWq0sE++Xhc24bgLVPOTn9RYmvskyW/w/jM C+Vi2CzQVoeFluLp9sftmdZK+aKYl85wEk9R8nuINR0knSViiyX/fOLvTq0zIG2a mtupf7N2zj/MZQqxScu6B3RijmacaSk7IRUcfee9n1ohv0vxQD4y9/1ApVtcsXV4 JkEtjWL4v1JImQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:57 2026 by rpki-client