This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft File: HeVgH-EiL4m7OqryZPD26nORwTg.mft (raw, json) Hash identifier: QmmBAwPiEE2ssEhEsoyltW3e8pUkJjmEKuCFSjFj0wo= Subject key identifier: 69:EF:8D:FB:F9:72:8A:8F:3C:E2:19:AF:22:87:D8:8D:F1:4E:8C:CC Authority key identifier: 1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38 Certificate issuer: /CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138 Certificate serial: 019C43FD9365973489116148179AFDA488A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft Manifest number: 0B07 Signing time: Mon 09 Feb 2026 20:00:17 +0000 Manifest this update: Mon 09 Feb 2026 20:00:17 +0000 Manifest next update: Tue 10 Feb 2026 20:00:17 +0000 Files and hashes: 1: HeVgH-EiL4m7OqryZPD26nORwTg.crl (hash: 7wkUWelzXQPZlRqLkr7I4tJJHwmAg7Ln7qKvw+yJI1U=) 2: nDpg3cf0raF6jX95bMjbAoRFS7U.roa (hash: GVYh5XEIeIuimg63JfOsccl7tRFww+AiTmkbi2YiTYw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:93:65:97:34:89:11:61:48:17:9a:fd:a4:88:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138 Validity Not Before: Feb 9 20:00:17 2026 GMT Not After : Feb 10 20:00:17 2026 GMT Subject: CN=69ef8dfbf9728a8f3ce219af2287d88df14e8ccc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1a:1c:df:eb:19:2a:52:d9:e4:dd:ab:cc:8c: 9d:1f:2f:16:c4:60:d3:89:52:ed:4f:69:c9:f6:6a: 61:44:9b:4c:6e:5a:65:d8:1b:5f:31:ce:e7:9a:c5: d3:ce:c0:7b:f3:fe:9d:46:fd:47:99:ee:9d:37:81: 3c:9f:23:a2:e8:f3:75:0b:1f:69:b4:7f:18:3a:9c: b1:9f:95:e1:18:43:c6:ad:df:86:1c:05:4b:17:7c: e5:d5:04:e8:d9:d8:5a:c8:58:64:8b:17:f9:01:0b: 57:9a:04:94:9a:a0:f2:be:af:01:13:3a:a9:c1:ac: 76:c3:f0:90:f6:39:ce:30:ac:c0:e4:d2:35:28:e8: 8d:dd:d0:57:0d:7e:69:a2:1a:95:ef:21:fd:e5:97: af:e9:a0:32:6d:92:2e:0e:77:ca:f3:64:b6:a8:44: 39:24:b9:0f:31:01:4e:d2:27:0c:9d:69:db:e0:e2: 38:0a:77:0e:37:20:17:a3:79:de:ce:9e:77:42:8a: b7:a5:ff:f5:de:f9:26:1e:a5:64:2c:cb:b7:e4:92: 3b:d3:f1:84:5c:65:36:0f:64:ad:2f:ed:f2:b9:3e: 4c:f2:17:cc:35:cf:29:fa:ca:e5:19:9a:75:6e:cb: e6:a2:92:c4:e5:62:3b:06:7f:bf:22:21:8f:30:fb: 42:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:EF:8D:FB:F9:72:8A:8F:3C:E2:19:AF:22:87:D8:8D:F1:4E:8C:CC X509v3 Authority Key Identifier: keyid:1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:cd:cd:f7:f1:27:b1:ea:cc:3f:d2:41:4f:41:23:6d:78:0e: c3:6a:26:9a:0c:e9:4a:a6:73:3a:f6:21:14:4c:5a:8e:f1:31: e1:30:2a:45:7f:3b:cb:08:57:bf:42:76:b1:6c:6e:9e:22:e1: 5a:f4:d3:11:d6:1d:0c:36:ae:e1:c7:be:a4:a5:ac:e8:9d:4d: c8:93:94:ae:0c:6c:c7:95:85:06:54:ce:90:f3:a5:ff:3c:5a: 28:e6:ef:34:d9:31:41:54:8a:94:59:9d:a3:2e:1a:4d:ee:57: f5:4c:13:8b:29:76:e8:a5:c4:ec:03:93:e3:9e:93:98:9f:13: 30:48:4c:bd:77:58:89:b4:64:58:55:9e:55:53:bc:2e:68:51: f0:69:36:83:3a:cc:31:94:4f:89:5e:c8:b5:fe:56:1f:45:df: 70:33:4a:45:f8:a1:8a:ad:f9:41:6b:a8:09:e3:94:e6:c5:0a: 0c:a9:fd:63:b8:4c:de:51:fc:f1:98:47:c4:7c:c9:ec:d8:d6: 13:d7:c3:49:d8:ec:a8:97:5e:2d:64:4e:d4:a5:7c:e4:22:ca: 57:d9:49:5d:d8:87:9a:d5:40:ca:a0:3a:18:3c:48:d2:64:0d: 62:28:b9:08:9c:e9:41:90:79:f8:3c:9c:61:45:be:1b:81:e3: 54:eb:54:f2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/ZNllzSJEWFIF5r9pIimMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkZTU2MDFmZTEyMjJmODliYjNhYWFmMjY0ZjBmNmVhNzM5 MWMxMzgwHhcNMjYwMjA5MjAwMDE3WhcNMjYwMjEwMjAwMDE3WjAzMTEwLwYDVQQD Eyg2OWVmOGRmYmY5NzI4YThmM2NlMjE5YWYyMjg3ZDg4ZGYxNGU4Y2NjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnBoc3+sZKlLZ5N2rzIydHy8WxGDT iVLtT2nJ9mphRJtMblpl2BtfMc7nmsXTzsB78/6dRv1Hme6dN4E8nyOi6PN1Cx9p tH8YOpyxn5XhGEPGrd+GHAVLF3zl1QTo2dhayFhkixf5AQtXmgSUmqDyvq8BEzqp wax2w/CQ9jnOMKzA5NI1KOiN3dBXDX5pohqV7yH95Zev6aAybZIuDnfK82S2qEQ5 JLkPMQFO0icMnWnb4OI4CncONyAXo3nezp53Qoq3pf/13vkmHqVkLMu35JI70/GE XGU2D2StL+3yuT5M8hfMNc8p+srlGZp1bsvmopLE5WI7Bn+/IiGPMPtCTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGnvjfv5coqPPOIZryKH2I3xTozMMB8GA1UdIwQY MBaAFB3lYB/hIi+Juzqq8mTw9upzkcE4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGVWZ0gtRWlMNG03T3FyeVpQRDI2bk9Sd1RnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS9lN2I1OTEtMGY1ZS00MTQxLWJlOTYt ZGRkNTNkNzkyOGE4LzEvSGVWZ0gtRWlMNG03T3FyeVpQRDI2bk9Sd1RnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS9lN2I1OTEtMGY1ZS00MTQxLWJlOTYtZGRkNTNkNzkyOGE4 LzEvSGVWZ0gtRWlMNG03T3FyeVpQRDI2bk9Sd1RnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlc3N9/En serMP9JBT0EjbXgOw2ommgzpSqZzOvYhFExajvEx4TAqRX87ywhXv0J2sWxuniLh WvTTEdYdDDau4ce+pKWs6J1NyJOUrgxsx5WFBlTOkPOl/zxaKObvNNkxQVSKlFmd oy4aTe5X9UwTiyl26KXE7AOT456TmJ8TMEhMvXdYibRkWFWeVVO8LmhR8Gk2gzrM MZRPiV7Itf5WH0XfcDNKRfihiq35QWuoCeOU5sUKDKn9Y7hM3lH88ZhHxHzJ7NjW E9fDSdjsqJdeLWRO1KV85CLKV9lJXdiHmtVAyqA6GDxI0mQNYii5CJzpQZB5+Dyc YUW+G4HjVOtU8g== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:17 2026 by rpki-client