This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft File: hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft (raw, json) Hash identifier: bgISlPaEZiwPWXdEg/HQwNwn+NbhpPA13Rew0+LO27k= Subject key identifier: 0B:77:8E:92:A4:A9:7D:FA:BA:E3:52:94:E7:34:68:80:F5:9D:94:5F Authority key identifier: 84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74 Certificate issuer: /CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74 Certificate serial: 019C42B4518FFEB8C2E0C02037062287F6E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft Manifest number: 124C Signing time: Mon 09 Feb 2026 14:00:39 +0000 Manifest this update: Mon 09 Feb 2026 14:00:39 +0000 Manifest next update: Tue 10 Feb 2026 14:00:39 +0000 Files and hashes: 1: 4dg4kAKJ8YSOGy8c68PKhEx34vE.roa (hash: ry2ttY5wtlmGli2qcFEKHyBaFD3fHmgeyUWAJ6+46jE=) 2: hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl (hash: NjfOBBZk+PrJEhyaGX6JSWrliHfX7cWK9JcAQhbj6eg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:51:8f:fe:b8:c2:e0:c0:20:37:06:22:87:f6:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74 Validity Not Before: Feb 9 14:00:39 2026 GMT Not After : Feb 10 14:00:39 2026 GMT Subject: CN=0b778e92a4a97dfabae35294e7346880f59d945f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8e:9f:5f:0a:5f:a8:b5:b8:10:89:41:1f:88: b2:2a:14:92:e5:f2:3e:33:8c:c9:63:3e:62:f4:76: 6d:7a:e8:db:02:74:81:dd:ea:60:81:4e:a6:72:43: b0:83:60:de:86:cd:a0:6a:96:12:c2:30:d2:59:2b: fb:59:25:9f:59:e5:23:04:27:5c:17:9f:fc:13:d4: 9f:e7:39:6d:29:37:38:6c:59:f6:eb:3c:75:3b:95: 28:68:d2:3a:3d:e0:02:40:8b:00:4f:47:d2:b6:19: 33:22:4a:ff:90:ac:9a:ab:9a:1b:d5:fa:6c:0e:68: f3:7a:08:6a:c8:65:b8:f7:01:64:f9:87:cc:e3:e5: 1a:1f:dc:4c:e0:6c:2d:e8:32:81:77:f8:45:3e:da: 2d:20:1b:16:d8:50:2f:85:4d:54:6e:1f:81:fa:d7: 42:c0:6d:40:57:ca:ef:9e:ad:e2:39:b4:01:1e:6e: ae:2a:1d:22:7f:4d:f8:67:3b:a6:bb:57:4d:1d:f1: 04:f4:19:be:00:77:4e:ed:c1:b3:34:bb:b4:37:b8: 48:9b:19:cd:d6:e7:ea:1d:59:5f:c0:0f:75:fc:9d: 55:b3:4e:df:e7:36:a0:f9:b4:75:66:fd:0a:8e:0d: ca:52:e7:f6:94:fa:0d:fe:2a:0d:5b:ad:85:a9:52: 14:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:77:8E:92:A4:A9:7D:FA:BA:E3:52:94:E7:34:68:80:F5:9D:94:5F X509v3 Authority Key Identifier: keyid:84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:e9:3a:c6:f2:35:09:b1:15:c4:ef:e7:34:33:12:8a:e0:b3: 95:f3:c5:0c:a6:9b:62:e1:ae:46:e3:4e:6c:ca:36:b3:ce:3d: 2a:30:a6:ce:5e:19:38:a0:fa:01:29:58:bc:dd:d3:46:63:d8: 35:4e:05:7d:b7:f8:3b:13:f4:98:84:08:24:09:03:2b:56:67: 22:c8:0e:d3:6c:18:5c:da:08:86:1b:0a:e4:a2:14:dd:b4:63: 67:f8:00:11:c2:cd:96:8a:f8:b8:b2:a0:36:9a:a5:b9:68:77: 20:a4:84:2c:2c:c1:8e:a2:6d:b8:cb:45:f2:73:e6:0d:c7:48: c3:65:dc:77:ee:1a:be:5c:90:13:6d:f3:ea:21:1c:73:97:1b: 72:4a:56:7f:ab:3a:f3:c5:f1:13:2b:41:7d:30:1b:c2:25:ab: ee:20:0e:ff:07:c7:3a:1f:ad:17:6f:10:01:3e:6d:0c:ff:10: 82:5a:df:52:b2:5d:d9:e0:8e:15:71:64:22:f7:aa:a6:66:8a: 5e:5a:d7:87:10:ba:af:db:1a:45:7b:5d:de:1c:ad:77:38:73: 83:04:c6:35:1a:f4:8c:e6:b9:4d:ef:35:6d:14:89:8f:cb:a7: 21:74:c7:51:25:e9:6c:1b:2c:6c:6d:4e:81:01:d1:65:a7:55: 3d:93:14:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtFGP/rjC4MAgNwYih/bnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0Mjg0ZDY3YzlhYmFmNmZhOGZlYTYxNDJhNWIyNTU4Yzlj YmNmNzQwHhcNMjYwMjA5MTQwMDM5WhcNMjYwMjEwMTQwMDM5WjAzMTEwLwYDVQQD EygwYjc3OGU5MmE0YTk3ZGZhYmFlMzUyOTRlNzM0Njg4MGY1OWQ5NDVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxI6fXwpfqLW4EIlBH4iyKhSS5fI+ M4zJYz5i9HZteujbAnSB3epggU6mckOwg2Dehs2gapYSwjDSWSv7WSWfWeUjBCdc F5/8E9Sf5zltKTc4bFn26zx1O5UoaNI6PeACQIsAT0fSthkzIkr/kKyaq5ob1fps DmjzeghqyGW49wFk+YfM4+UaH9xM4Gwt6DKBd/hFPtotIBsW2FAvhU1Ubh+B+tdC wG1AV8rvnq3iObQBHm6uKh0if034Zzumu1dNHfEE9Bm+AHdO7cGzNLu0N7hImxnN 1ufqHVlfwA91/J1Vs07f5zag+bR1Zv0Kjg3KUuf2lPoN/ioNW62FqVIU2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAt3jpKkqX36uuNSlOc0aID1nZRfMB8GA1UdIwQY MBaAFIQoTWfJq69vqP6mFCpbJVjJy890MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaENoTlo4bXJyMi1vX3FZVUtsc2xXTW5MejNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8zMGFmNDYtMjdlZC00NDgyLTg0MGUt NjVmODU2ZjEyNDllLzEvaENoTlo4bXJyMi1vX3FZVUtsc2xXTW5MejNRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi8zMGFmNDYtMjdlZC00NDgyLTg0MGUtNjVmODU2ZjEyNDll LzEvaENoTlo4bXJyMi1vX3FZVUtsc2xXTW5MejNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQek6xvI1 CbEVxO/nNDMSiuCzlfPFDKabYuGuRuNObMo2s849KjCmzl4ZOKD6ASlYvN3TRmPY NU4Ffbf4OxP0mIQIJAkDK1ZnIsgO02wYXNoIhhsK5KIU3bRjZ/gAEcLNlor4uLKg NpqluWh3IKSELCzBjqJtuMtF8nPmDcdIw2Xcd+4avlyQE23z6iEcc5cbckpWf6s6 88XxEytBfTAbwiWr7iAO/wfHOh+tF28QAT5tDP8QglrfUrJd2eCOFXFkIveqpmaK XlrXhxC6r9saRXtd3hytdzhzgwTGNRr0jOa5Te81bRSJj8unIXTHUSXpbBssbG1O gQHRZadVPZMUJQ== -----END CERTIFICATE-----Generated at Mon Feb 9 17:01:54 2026 by rpki-client