This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft File: hqSVrmh0HnnVjjiGviqoeMSME7Y.mft (raw, json) Hash identifier: LBceg/5AQ/dA1VO0U4TRbFheOcyuN4Yu2Fr3D7gKfac= Subject key identifier: D8:78:E0:05:B7:E1:F1:C0:93:22:C4:BD:25:B1:F3:11:6A:65:C2:68 Authority key identifier: 86:A4:95:AE:68:74:1E:79:D5:8E:38:86:BE:2A:A8:78:C4:8C:13:B6 Certificate issuer: /CN=86a495ae68741e79d58e3886be2aa878c48c13b6 Certificate serial: 019C420F4B22454BBDB241849FFBB1588335 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hqSVrmh0HnnVjjiGviqoeMSME7Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 11:00:24 +0000 Manifest this update: Mon 09 Feb 2026 11:00:24 +0000 Manifest next update: Tue 10 Feb 2026 11:00:24 +0000 Files and hashes: 1: hqSVrmh0HnnVjjiGviqoeMSME7Y.crl (hash: 6vhS1tVxPcZ7KkWTa7Plcbht2FOKW6HcrG5tt4vn+pE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.crl rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft rsync://rpki.ripe.net/repository/DEFAULT/hqSVrmh0HnnVjjiGviqoeMSME7Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:4b:22:45:4b:bd:b2:41:84:9f:fb:b1:58:83:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86a495ae68741e79d58e3886be2aa878c48c13b6 Validity Not Before: Feb 9 11:00:24 2026 GMT Not After : Feb 10 11:00:24 2026 GMT Subject: CN=d878e005b7e1f1c09322c4bd25b1f3116a65c268 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:a5:55:f5:69:4d:0f:50:d0:35:49:72:36:3a: 12:68:2c:cd:4e:44:df:3e:fc:82:e5:b5:e8:0e:43: 00:31:d9:cb:b3:19:ad:29:52:b8:fc:3c:0f:8b:39: 5f:7c:75:b1:78:b8:e3:f0:c4:d4:77:03:85:d7:71: 04:fc:1a:89:71:05:22:aa:d8:4e:f6:3f:3b:02:e0: 05:1c:8c:fc:50:ef:6d:f5:7b:d1:e5:b2:17:e7:14: 34:12:6b:82:27:36:0b:f7:8e:b7:30:9b:4a:a9:fd: 18:1f:1d:68:7a:6b:84:ed:00:c4:b8:c8:83:10:7d: 92:5f:44:a8:07:0c:d4:0e:77:d5:3a:f8:3a:e7:75: 9c:cc:8e:5c:ca:b0:0a:f2:51:51:0f:f4:d9:4d:c8: 40:05:bb:8e:8c:4d:b6:61:57:65:0d:c6:97:b3:2d: 53:5a:73:2c:07:fe:de:4e:46:16:23:0b:4a:44:b0: 9e:5e:0c:db:b8:72:2a:8e:12:7a:ed:82:99:eb:ab: 01:cc:2c:83:93:12:c8:3c:e9:ac:ee:fe:c7:92:18: 05:97:3f:a4:ed:24:f6:55:87:7b:d9:ba:1e:ad:b4: 0a:6b:ed:91:a2:87:97:fb:36:92:c0:6c:07:3d:31: 4e:8c:0c:95:7e:c2:66:f8:cb:4b:8d:4c:8f:bf:af: 31:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:78:E0:05:B7:E1:F1:C0:93:22:C4:BD:25:B1:F3:11:6A:65:C2:68 X509v3 Authority Key Identifier: keyid:86:A4:95:AE:68:74:1E:79:D5:8E:38:86:BE:2A:A8:78:C4:8C:13:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hqSVrmh0HnnVjjiGviqoeMSME7Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:e4:8b:f4:d5:61:bb:34:cc:3d:89:8d:d3:9f:f4:62:52:2d: 27:de:29:5b:ad:7e:05:d5:b0:32:dd:3b:62:8e:01:eb:6c:19: a3:47:b0:29:a1:8d:c4:34:bc:28:ae:52:43:aa:d0:fc:dc:1c: 01:3c:e0:0f:b6:fc:d6:d4:36:03:5a:f5:c6:dc:2d:2b:f5:90: d4:7a:1a:57:cd:63:07:6c:de:b5:38:0e:94:d6:de:74:63:81: 79:45:e1:78:5a:98:b7:29:2a:e8:d9:71:b9:74:48:9d:5c:fd: 5c:43:bf:32:11:b1:0f:0c:2c:b0:86:b7:df:78:ca:13:c0:82: 1f:1b:a1:2c:a9:7f:04:74:f2:21:05:3c:ce:ff:2e:47:f5:15: 20:30:09:0f:ef:8a:c5:ee:3f:94:ea:14:dd:7b:2f:b5:a6:23: a2:cc:bc:e9:de:19:7b:84:1a:dc:de:f6:c2:e3:da:04:fe:2b: 45:99:22:8d:59:1f:d7:8d:f0:e7:b3:96:87:82:f2:c0:55:b9: e9:70:eb:59:97:17:ea:d2:b8:25:c7:f9:2e:76:f5:c8:68:ff: ca:b2:ef:4b:b5:99:55:2b:07:53:f5:95:eb:84:a3:6a:41:3a: 32:31:13:dc:ed:aa:d0:48:a2:5e:f5:59:c3:24:50:fd:04:de: db:14:2c:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD0siRUu9skGEn/uxWIM1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2YTQ5NWFlNjg3NDFlNzlkNThlMzg4NmJlMmFhODc4YzQ4 YzEzYjYwHhcNMjYwMjA5MTEwMDI0WhcNMjYwMjEwMTEwMDI0WjAzMTEwLwYDVQQD EyhkODc4ZTAwNWI3ZTFmMWMwOTMyMmM0YmQyNWIxZjMxMTZhNjVjMjY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmKVV9WlND1DQNUlyNjoSaCzNTkTf PvyC5bXoDkMAMdnLsxmtKVK4/DwPizlffHWxeLjj8MTUdwOF13EE/BqJcQUiqthO 9j87AuAFHIz8UO9t9XvR5bIX5xQ0EmuCJzYL9463MJtKqf0YHx1oemuE7QDEuMiD EH2SX0SoBwzUDnfVOvg653WczI5cyrAK8lFRD/TZTchABbuOjE22YVdlDcaXsy1T WnMsB/7eTkYWIwtKRLCeXgzbuHIqjhJ67YKZ66sBzCyDkxLIPOms7v7HkhgFlz+k 7ST2VYd72boerbQKa+2RooeX+zaSwGwHPTFOjAyVfsJm+MtLjUyPv68xkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNh44AW34fHAkyLEvSWx8xFqZcJoMB8GA1UdIwQY MBaAFIakla5odB551Y44hr4qqHjEjBO2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHFTVnJtaDBIbm5WamppR3ZpcW9lTVNNRTdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8xNWMzOWMtZjdkNC00YTFmLWE0OWEt NDkxOGIwMjc0MmM3LzEvaHFTVnJtaDBIbm5WamppR3ZpcW9lTVNNRTdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS8xNWMzOWMtZjdkNC00YTFmLWE0OWEtNDkxOGIwMjc0MmM3 LzEvaHFTVnJtaDBIbm5WamppR3ZpcW9lTVNNRTdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT+SL9NVh uzTMPYmN05/0YlItJ94pW61+BdWwMt07Yo4B62wZo0ewKaGNxDS8KK5SQ6rQ/Nwc ATzgD7b81tQ2A1r1xtwtK/WQ1HoaV81jB2zetTgOlNbedGOBeUXheFqYtykq6Nlx uXRInVz9XEO/MhGxDwwssIa333jKE8CCHxuhLKl/BHTyIQU8zv8uR/UVIDAJD++K xe4/lOoU3XsvtaYjosy86d4Ze4Qa3N72wuPaBP4rRZkijVkf143w57OWh4LywFW5 6XDrWZcX6tK4Jcf5Lnb1yGj/yrLvS7WZVSsHU/WV64SjakE6MjET3O2q0EiiXvVZ wyRQ/QTe2xQskA== -----END CERTIFICATE-----Generated at Mon Feb 9 20:01:15 2026 by rpki-client