This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/33f12a-9fca-4828-b8f1-9c704f815aaa/1/rhVFyl4w95yXBeJw8eh_r6-5pjI.mft File: rhVFyl4w95yXBeJw8eh_r6-5pjI.mft (raw, json) Hash identifier: MRo3PVXxTip1AdSrTCl68h5OYaX0Wg5JLf8OuUrlZb8= Subject key identifier: E6:D4:2C:D0:4A:73:38:A2:90:28:A4:27:AE:20:55:5B:E5:03:85:E6 Authority key identifier: AE:15:45:CA:5E:30:F7:9C:97:05:E2:70:F1:E8:7F:AF:AF:B9:A6:32 Certificate issuer: /CN=ae1545ca5e30f79c9705e270f1e87fafafb9a632 Certificate serial: 019C427E0F7300962D818AA94936D17EC57A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rhVFyl4w95yXBeJw8eh_r6-5pjI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/33f12a-9fca-4828-b8f1-9c704f815aaa/1/rhVFyl4w95yXBeJw8eh_r6-5pjI.mft Manifest number: 0E Signing time: Mon 09 Feb 2026 13:01:23 +0000 Manifest this update: Mon 09 Feb 2026 13:01:23 +0000 Manifest next update: Tue 10 Feb 2026 13:01:23 +0000 Files and hashes: 1: rhVFyl4w95yXBeJw8eh_r6-5pjI.crl (hash: kdGXeLomftDlVasJcDkjbpAqB+rnVNm/r9yXUYteVUI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/33f12a-9fca-4828-b8f1-9c704f815aaa/1/rhVFyl4w95yXBeJw8eh_r6-5pjI.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/33f12a-9fca-4828-b8f1-9c704f815aaa/1/rhVFyl4w95yXBeJw8eh_r6-5pjI.mft rsync://rpki.ripe.net/repository/DEFAULT/rhVFyl4w95yXBeJw8eh_r6-5pjI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7e:0f:73:00:96:2d:81:8a:a9:49:36:d1:7e:c5:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae1545ca5e30f79c9705e270f1e87fafafb9a632 Validity Not Before: Feb 9 13:01:23 2026 GMT Not After : Feb 10 13:01:23 2026 GMT Subject: CN=e6d42cd04a7338a29028a427ae20555be50385e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0c:7d:90:22:9d:4a:b7:9d:49:12:16:33:eb: fd:32:08:eb:bd:1a:02:a0:68:7e:a4:d9:c3:36:55: ac:e7:ce:9b:0f:1d:1f:a8:07:46:78:1e:ee:4a:c4: 4f:70:23:e2:b1:81:d8:5e:19:79:ea:72:05:8c:80: 79:09:b8:4d:b6:d3:53:f5:e2:2d:f4:0f:ac:11:97: d1:96:54:11:05:07:c2:38:11:b1:6e:cf:4b:36:03: 0b:b0:7d:ca:b4:bd:e2:8d:70:12:2f:c8:bc:73:92: 20:8b:96:45:57:1c:ae:51:e6:4d:3a:dc:a2:e9:d2: 0b:fc:8e:8d:72:46:82:08:be:df:42:9d:3f:df:e3: 46:02:c3:94:38:b9:76:96:e7:09:d2:c0:35:24:3f: e4:db:5f:b2:de:d5:1d:85:fa:2a:d4:f9:24:f9:96: f8:dd:79:37:64:78:6f:e8:ab:ee:00:e9:0e:8c:38: 94:98:f3:ec:a5:97:bc:6c:6e:05:b0:74:af:db:7b: 81:dd:09:5e:50:9c:55:ce:d7:f0:55:bd:9f:39:0a: 92:21:26:7e:83:07:d0:c5:d3:57:f3:45:a5:1b:bd: eb:5a:d6:be:44:ed:fb:f5:e9:3b:32:c7:c6:24:5a: 99:b1:0d:7c:c5:1d:1b:44:58:e4:98:25:e3:d3:14: f3:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:D4:2C:D0:4A:73:38:A2:90:28:A4:27:AE:20:55:5B:E5:03:85:E6 X509v3 Authority Key Identifier: keyid:AE:15:45:CA:5E:30:F7:9C:97:05:E2:70:F1:E8:7F:AF:AF:B9:A6:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rhVFyl4w95yXBeJw8eh_r6-5pjI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33f12a-9fca-4828-b8f1-9c704f815aaa/1/rhVFyl4w95yXBeJw8eh_r6-5pjI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33f12a-9fca-4828-b8f1-9c704f815aaa/1/rhVFyl4w95yXBeJw8eh_r6-5pjI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:e9:58:cc:e7:86:9e:7b:3d:24:9f:16:8b:d1:d8:76:40:20: 09:ee:ab:bf:d7:ba:ea:99:10:b6:56:83:3c:74:39:7c:11:90: 72:ab:c8:13:be:bf:21:35:94:72:4f:77:15:88:01:6d:99:ff: f1:1c:cc:1d:35:23:77:41:88:a5:66:33:94:5a:8e:f3:10:58: de:9b:aa:72:d8:1e:83:9e:63:7b:b3:91:18:d7:10:c7:42:50: 63:e1:ad:6d:fc:62:9e:34:c9:51:ea:15:ee:3c:6c:20:57:69: ba:4d:73:16:06:4b:a8:dc:0c:24:ea:66:f0:a0:e1:11:10:b6: dc:98:5b:ba:64:3f:bb:d6:bd:4c:a6:7f:12:62:dd:fc:26:d8: 51:2c:eb:aa:aa:8c:91:f4:0f:00:ef:02:8f:0e:9f:fa:65:a4: dd:1f:d6:c7:a5:ee:14:23:db:2e:9c:60:33:24:5c:69:4b:8a: 4b:56:a7:95:0a:e2:e7:10:0c:5b:72:34:92:1a:4c:31:70:83: cb:a8:2a:73:56:b5:7c:a3:bf:ed:ff:51:05:52:f0:e7:07:78: 2b:58:37:54:04:66:b6:71:f6:e4:e8:29:55:32:63:56:c7:ba: 16:45:d8:bb:0a:41:3d:83:cc:01:9e:de:fa:69:d3:35:14:a5: 8e:c1:27:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfg9zAJYtgYqpSTbRfsV6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlMTU0NWNhNWUzMGY3OWM5NzA1ZTI3MGYxZTg3ZmFmYWZi OWE2MzIwHhcNMjYwMjA5MTMwMTIzWhcNMjYwMjEwMTMwMTIzWjAzMTEwLwYDVQQD EyhlNmQ0MmNkMDRhNzMzOGEyOTAyOGE0MjdhZTIwNTU1YmU1MDM4NWU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzAx9kCKdSredSRIWM+v9MgjrvRoC oGh+pNnDNlWs586bDx0fqAdGeB7uSsRPcCPisYHYXhl56nIFjIB5CbhNttNT9eIt 9A+sEZfRllQRBQfCOBGxbs9LNgMLsH3KtL3ijXASL8i8c5Igi5ZFVxyuUeZNOtyi 6dIL/I6NckaCCL7fQp0/3+NGAsOUOLl2lucJ0sA1JD/k21+y3tUdhfoq1Pkk+Zb4 3Xk3ZHhv6KvuAOkOjDiUmPPspZe8bG4FsHSv23uB3QleUJxVztfwVb2fOQqSISZ+ gwfQxdNX80WlG73rWta+RO379ek7MsfGJFqZsQ18xR0bRFjkmCXj0xTzuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFObULNBKcziikCikJ64gVVvlA4XmMB8GA1UdIwQY MBaAFK4VRcpeMPeclwXicPHof6+vuaYyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmhWRnlsNHc5NXlYQmVKdzhlaF9yNi01cGpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi8zM2YxMmEtOWZjYS00ODI4LWI4ZjEt OWM3MDRmODE1YWFhLzEvcmhWRnlsNHc5NXlYQmVKdzhlaF9yNi01cGpJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi8zM2YxMmEtOWZjYS00ODI4LWI4ZjEtOWM3MDRmODE1YWFh LzEvcmhWRnlsNHc5NXlYQmVKdzhlaF9yNi01cGpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX+lYzOeG nns9JJ8Wi9HYdkAgCe6rv9e66pkQtlaDPHQ5fBGQcqvIE76/ITWUck93FYgBbZn/ 8RzMHTUjd0GIpWYzlFqO8xBY3puqctgeg55je7ORGNcQx0JQY+GtbfxinjTJUeoV 7jxsIFdpuk1zFgZLqNwMJOpm8KDhERC23JhbumQ/u9a9TKZ/EmLd/CbYUSzrqqqM kfQPAO8Cjw6f+mWk3R/Wx6XuFCPbLpxgMyRcaUuKS1anlQri5xAMW3I0khpMMXCD y6gqc1a1fKO/7f9RBVLw5wd4K1g3VARmtnH25OgpVTJjVse6FkXYuwpBPYPMAZ7e +mnTNRSljsEnSQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:48:10 2026 by rpki-client