This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.mft File: Mh6FAflfcDdNRXa5sM1VW68fNas.mft (raw, json) Hash identifier: GO5Z9S5/s5XeoAOMI11vRsHhyg+Tuo1FZEJIOEYt47U= Subject key identifier: 6A:25:F7:56:4C:61:07:5E:78:F8:F2:72:CC:3A:4D:02:D3:CB:C3:50 Authority key identifier: 32:1E:85:01:F9:5F:70:37:4D:45:76:B9:B0:CD:55:5B:AF:1F:35:AB Certificate issuer: /CN=321e8501f95f70374d4576b9b0cd555baf1f35ab Certificate serial: 019C420F4BF72FCE105CC72AB416FFD12C14 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mh6FAflfcDdNRXa5sM1VW68fNas.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 11:00:24 +0000 Manifest this update: Mon 09 Feb 2026 11:00:24 +0000 Manifest next update: Tue 10 Feb 2026 11:00:24 +0000 Files and hashes: 1: Mh6FAflfcDdNRXa5sM1VW68fNas.crl (hash: 9k0sv6nMGH4froYOItcM8WPYN16AQW5gTCHCpy2c7W8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.crl rsync://rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.mft rsync://rpki.ripe.net/repository/DEFAULT/Mh6FAflfcDdNRXa5sM1VW68fNas.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:4b:f7:2f:ce:10:5c:c7:2a:b4:16:ff:d1:2c:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=321e8501f95f70374d4576b9b0cd555baf1f35ab Validity Not Before: Feb 9 11:00:24 2026 GMT Not After : Feb 10 11:00:24 2026 GMT Subject: CN=6a25f7564c61075e78f8f272cc3a4d02d3cbc350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f6:db:d5:bb:c1:02:ef:42:41:e4:e2:a8:5e: ca:b0:59:74:2b:58:f8:81:ea:99:83:46:ef:bd:57: d4:0f:c6:06:d8:de:48:a8:50:86:58:03:fb:ca:dd: 62:75:7c:c8:02:33:a6:61:10:3b:d8:27:c4:e9:be: 19:76:a8:04:87:c0:b9:d1:35:e3:1f:c0:de:35:a7: e4:12:86:4c:64:2d:09:38:91:cd:cb:13:b5:3f:84: dc:d5:58:97:54:9d:fc:fc:ef:bf:17:fc:7e:95:d5: 51:82:0e:b0:e0:f2:e0:94:11:3d:3d:a9:bc:78:64: 2e:5d:f0:34:b7:7b:e4:03:84:a1:85:3b:b7:b0:37: cd:72:78:e6:25:33:73:f2:ca:49:5a:70:f5:ac:b3: 9d:23:ad:d5:79:b5:6d:bc:93:5f:23:47:ca:a8:b2: 02:2a:e4:1b:5f:fb:38:3d:9b:37:ad:73:79:17:5b: ef:f2:c4:14:8d:62:06:5d:4d:06:2c:16:79:40:69: d5:e8:d8:d8:51:d8:27:59:79:df:28:24:6b:2f:a5: ca:20:fd:37:c4:fe:94:85:84:4c:ed:45:5a:88:08: 32:af:33:79:26:67:82:a5:fb:a0:71:8c:69:57:f3: 3c:89:24:9f:71:e0:ac:65:fe:55:b6:97:92:43:ac: 72:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:25:F7:56:4C:61:07:5E:78:F8:F2:72:CC:3A:4D:02:D3:CB:C3:50 X509v3 Authority Key Identifier: keyid:32:1E:85:01:F9:5F:70:37:4D:45:76:B9:B0:CD:55:5B:AF:1F:35:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mh6FAflfcDdNRXa5sM1VW68fNas.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:b1:62:90:7b:4e:05:30:df:a1:0d:28:3e:0a:fb:b9:13:59: fd:56:a2:cd:8e:82:1e:dc:84:1f:8f:a6:5e:87:cd:fa:33:d9: 10:89:31:63:1d:e4:23:70:01:78:07:9b:c6:19:e7:65:a8:45: 18:8f:5b:c9:d9:85:e6:80:43:d8:f7:6c:9b:10:a1:21:9a:17: 28:63:50:ae:d1:f1:3c:f5:1c:71:1b:88:24:52:5c:67:90:83: a8:79:86:81:5c:9e:a7:a3:7b:fd:c0:e7:ce:18:0a:d4:fd:f4: 8f:01:68:79:33:47:2d:b3:28:6c:ea:d5:e8:5d:ff:3e:f2:3a: a9:cf:29:fd:7e:4c:dd:82:c3:74:24:02:7e:48:3b:25:d8:56: 7f:04:5f:14:fd:26:e5:f8:59:98:08:c4:fd:dd:0f:f3:e6:ad: 6d:24:aa:fe:23:52:5d:c5:99:7f:79:3e:16:60:c2:f1:e9:83: ad:be:45:07:8c:4d:1a:f6:05:54:ac:f9:3d:58:a4:74:7d:37: d9:cd:b3:59:5e:ea:f1:21:88:cd:34:a1:d0:ae:3f:cd:55:1e: a4:57:f0:ef:7f:59:85:5b:35:ce:3c:91:27:26:8c:c0:83:db: d7:c8:1e:4a:a6:21:a7:e4:cd:62:fe:7a:7e:5d:f4:d3:11:00: 65:0b:71:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD0v3L84QXMcqtBb/0SwUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyMWU4NTAxZjk1ZjcwMzc0ZDQ1NzZiOWIwY2Q1NTViYWYx ZjM1YWIwHhcNMjYwMjA5MTEwMDI0WhcNMjYwMjEwMTEwMDI0WjAzMTEwLwYDVQQD Eyg2YTI1Zjc1NjRjNjEwNzVlNzhmOGYyNzJjYzNhNGQwMmQzY2JjMzUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoPbb1bvBAu9CQeTiqF7KsFl0K1j4 geqZg0bvvVfUD8YG2N5IqFCGWAP7yt1idXzIAjOmYRA72CfE6b4ZdqgEh8C50TXj H8DeNafkEoZMZC0JOJHNyxO1P4Tc1ViXVJ38/O+/F/x+ldVRgg6w4PLglBE9Pam8 eGQuXfA0t3vkA4ShhTu3sDfNcnjmJTNz8spJWnD1rLOdI63VebVtvJNfI0fKqLIC KuQbX/s4PZs3rXN5F1vv8sQUjWIGXU0GLBZ5QGnV6NjYUdgnWXnfKCRrL6XKIP03 xP6UhYRM7UVaiAgyrzN5JmeCpfugcYxpV/M8iSSfceCsZf5VtpeSQ6xyxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGol91ZMYQdeePjycsw6TQLTy8NQMB8GA1UdIwQY MBaAFDIehQH5X3A3TUV2ubDNVVuvHzWrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWg2RkFmbGZjRGROUlhhNXNNMVZXNjhmTmFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS8xNmJmMjgtODQyYi00OGZhLTg5NGQt ZmJmNzU3NWFhY2UyLzEvTWg2RkFmbGZjRGROUlhhNXNNMVZXNjhmTmFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS8xNmJmMjgtODQyYi00OGZhLTg5NGQtZmJmNzU3NWFhY2Uy LzEvTWg2RkFmbGZjRGROUlhhNXNNMVZXNjhmTmFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGbFikHtO BTDfoQ0oPgr7uRNZ/VaizY6CHtyEH4+mXofN+jPZEIkxYx3kI3ABeAebxhnnZahF GI9bydmF5oBD2PdsmxChIZoXKGNQrtHxPPUccRuIJFJcZ5CDqHmGgVyep6N7/cDn zhgK1P30jwFoeTNHLbMobOrV6F3/PvI6qc8p/X5M3YLDdCQCfkg7JdhWfwRfFP0m 5fhZmAjE/d0P8+atbSSq/iNSXcWZf3k+FmDC8emDrb5FB4xNGvYFVKz5PVikdH03 2c2zWV7q8SGIzTSh0K4/zVUepFfw739ZhVs1zjyRJyaMwIPb18geSqYhp+TNYv56 fl300xEAZQtxKA== -----END CERTIFICATE-----Generated at Mon Feb 9 20:56:32 2026 by rpki-client