This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.mft File: RHhnr-yeLyk5So9fl_kJKdkoIQI.mft (raw, json) Hash identifier: lbglCaXQRgiEsTQ0+mOREeNg5h0Z560DM5QVbHI9qi0= Subject key identifier: 91:CF:CA:E1:52:B9:42:B6:CF:A2:5B:9D:C0:13:8F:08:1D:3F:47:AE Authority key identifier: 44:78:67:AF:EC:9E:2F:29:39:4A:8F:5F:97:F9:09:29:D9:28:21:02 Certificate issuer: /CN=447867afec9e2f29394a8f5f97f90929d9282102 Certificate serial: 019C4322A9A94CD0B84C847A4806BCCBC7A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RHhnr-yeLyk5So9fl_kJKdkoIQI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 16:01:10 +0000 Manifest this update: Mon 09 Feb 2026 16:01:10 +0000 Manifest next update: Tue 10 Feb 2026 16:01:10 +0000 Files and hashes: 1: RHhnr-yeLyk5So9fl_kJKdkoIQI.crl (hash: OyFs8uH/XbjKJXZMknp1sMxL5WPzAAWTvmxSfn5mhXo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.mft rsync://rpki.ripe.net/repository/DEFAULT/RHhnr-yeLyk5So9fl_kJKdkoIQI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:a9:a9:4c:d0:b8:4c:84:7a:48:06:bc:cb:c7:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=447867afec9e2f29394a8f5f97f90929d9282102 Validity Not Before: Feb 9 16:01:10 2026 GMT Not After : Feb 10 16:01:10 2026 GMT Subject: CN=91cfcae152b942b6cfa25b9dc0138f081d3f47ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8e:de:53:63:30:cc:4f:44:aa:c2:e8:b2:99: 45:b4:04:fc:08:b3:65:33:3e:74:0a:3c:46:d4:52: 35:a0:74:95:b9:c0:34:60:28:f6:23:ae:56:d6:ce: 25:9e:24:ac:bb:f1:38:26:99:b7:db:fd:2e:45:07: 74:5d:7e:f3:91:ee:a3:01:ef:28:0a:ea:3c:40:94: 15:f1:fc:a2:12:e4:af:00:b6:a7:0f:f2:ed:e9:21: c6:7b:c9:f7:82:1e:a0:ef:82:d0:d0:a9:ad:ee:63: a2:ea:3d:05:c5:6d:2b:85:a1:b6:45:53:be:87:82: 56:b9:c3:15:c1:5b:af:85:62:85:3d:22:2f:32:9b: c9:f7:d3:6e:fe:94:7a:f6:3c:c1:0a:62:07:17:cb: 5f:b4:08:55:f0:30:9c:30:c1:aa:1d:a0:75:4d:88: 58:25:dc:8a:f2:6a:46:2b:ac:c6:ec:51:e6:13:2e: af:db:c9:ec:58:14:17:ff:d9:9a:3c:f5:03:47:d9: 89:ef:7c:16:9c:4f:93:7d:fd:a9:38:99:46:84:fc: e5:48:07:92:5f:26:5e:3d:13:a4:a1:20:f5:ff:15: 8f:80:c0:ac:90:7f:f7:68:ed:82:d0:74:52:65:2f: 04:21:0e:36:00:06:4e:a3:61:63:12:b5:1e:7f:2c: 63:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:CF:CA:E1:52:B9:42:B6:CF:A2:5B:9D:C0:13:8F:08:1D:3F:47:AE X509v3 Authority Key Identifier: keyid:44:78:67:AF:EC:9E:2F:29:39:4A:8F:5F:97:F9:09:29:D9:28:21:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RHhnr-yeLyk5So9fl_kJKdkoIQI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a322b-6482-44a5-b3d2-3e109107ceb6/1/RHhnr-yeLyk5So9fl_kJKdkoIQI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:98:77:12:e0:2d:e7:5c:a7:d9:c2:eb:dc:d5:50:e8:33:62: 63:db:84:de:c8:a1:90:37:8b:dd:f5:2b:8c:b7:19:a1:c7:2b: 4f:1f:00:0d:c2:92:f9:9b:e1:df:4d:d8:5c:54:21:46:ea:05: 1a:b0:42:ba:67:c4:7c:3d:09:e1:7d:a5:de:c8:cc:9d:6c:85: 6c:d7:da:ad:3c:dc:c8:b7:bc:9d:c7:64:1b:03:87:c1:08:ac: d9:74:49:98:23:7a:66:fe:d6:1f:7d:95:8f:e2:4f:b0:cf:da: 5b:c4:fa:50:57:f9:0f:90:4c:cc:d5:80:62:1b:41:90:1e:d2: 70:b3:82:a1:17:91:69:ac:0b:96:1f:f0:8d:6d:d9:4f:ca:2c: 8a:cc:b3:97:b5:1e:3e:2a:12:ef:ff:a4:c9:52:c2:5c:f6:67: aa:17:5a:6a:40:75:97:02:43:3b:6c:d4:13:1d:78:8e:f3:7a: d7:34:5a:a9:82:4e:53:63:09:a7:ec:17:7b:3d:a8:d0:a2:ba: 9a:95:82:e1:fb:34:25:54:04:a5:33:ca:4a:4b:e6:96:84:a7: 16:03:fe:42:ec:4f:d5:54:9c:9c:b3:29:74:64:21:e1:47:bc: 1e:e1:1b:58:82:27:5c:4d:09:8d:2c:49:41:da:a6:59:1f:e8: 4a:7e:8f:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIqmpTNC4TIR6SAa8y8ekMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0Nzg2N2FmZWM5ZTJmMjkzOTRhOGY1Zjk3ZjkwOTI5ZDky ODIxMDIwHhcNMjYwMjA5MTYwMTEwWhcNMjYwMjEwMTYwMTEwWjAzMTEwLwYDVQQD Eyg5MWNmY2FlMTUyYjk0MmI2Y2ZhMjViOWRjMDEzOGYwODFkM2Y0N2FlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuo7eU2MwzE9EqsLosplFtAT8CLNl Mz50CjxG1FI1oHSVucA0YCj2I65W1s4lniSsu/E4Jpm32/0uRQd0XX7zke6jAe8o Cuo8QJQV8fyiEuSvALanD/Lt6SHGe8n3gh6g74LQ0Kmt7mOi6j0FxW0rhaG2RVO+ h4JWucMVwVuvhWKFPSIvMpvJ99Nu/pR69jzBCmIHF8tftAhV8DCcMMGqHaB1TYhY JdyK8mpGK6zG7FHmEy6v28nsWBQX/9maPPUDR9mJ73wWnE+Tff2pOJlGhPzlSAeS XyZePROkoSD1/xWPgMCskH/3aO2C0HRSZS8EIQ42AAZOo2FjErUefyxjkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJHPyuFSuUK2z6JbncATjwgdP0euMB8GA1UdIwQY MBaAFER4Z6/sni8pOUqPX5f5CSnZKCECMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUkhobnIteWVMeWs1U285Zmxfa0pLZGtvSVFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC83YTMyMmItNjQ4Mi00NGE1LWIzZDIt M2UxMDkxMDdjZWI2LzEvUkhobnIteWVMeWs1U285Zmxfa0pLZGtvSVFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC83YTMyMmItNjQ4Mi00NGE1LWIzZDItM2UxMDkxMDdjZWI2 LzEvUkhobnIteWVMeWs1U285Zmxfa0pLZGtvSVFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANJh3EuAt 51yn2cLr3NVQ6DNiY9uE3sihkDeL3fUrjLcZoccrTx8ADcKS+Zvh303YXFQhRuoF GrBCumfEfD0J4X2l3sjMnWyFbNfarTzcyLe8ncdkGwOHwQis2XRJmCN6Zv7WH32V j+JPsM/aW8T6UFf5D5BMzNWAYhtBkB7ScLOCoReRaawLlh/wjW3ZT8osisyzl7Ue PioS7/+kyVLCXPZnqhdaakB1lwJDO2zUEx14jvN61zRaqYJOU2MJp+wXez2o0KK6 mpWC4fs0JVQEpTPKSkvmloSnFgP+QuxP1VScnLMpdGQh4Ue8HuEbWIInXE0JjSxJ QdqmWR/oSn6P6g== -----END CERTIFICATE-----Generated at Mon Feb 9 21:08:00 2026 by rpki-client