This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft File: hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft (raw, json) Hash identifier: XPDkbU77goK0I2UYcJLbyGHot2V2pkoM9h/q3Qr7QNw= Subject key identifier: CA:3F:E3:1F:9F:2F:5E:41:D5:EB:54:0B:84:BC:B2:9C:A3:21:B2:FB Authority key identifier: 84:2B:18:F8:D1:DB:1F:94:76:21:B2:D8:F7:86:60:3E:2B:1B:D5:0C Certificate issuer: /CN=842b18f8d1db1f947621b2d8f786603e2b1bd50c Certificate serial: 019C41348661A4C34BDD64A5A4B9EF101BD6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hCsY-NHbH5R2IbLY94ZgPisb1Qw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft Manifest number: 0AF4 Signing time: Mon 09 Feb 2026 07:01:27 +0000 Manifest this update: Mon 09 Feb 2026 07:01:27 +0000 Manifest next update: Tue 10 Feb 2026 07:01:27 +0000 Files and hashes: 1: hCsY-NHbH5R2IbLY94ZgPisb1Qw.crl (hash: 7sQk9F/qP93mPLtlHcHgMhZOoibe8agnQw72DJlYa1I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.crl rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft rsync://rpki.ripe.net/repository/DEFAULT/hCsY-NHbH5R2IbLY94ZgPisb1Qw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:86:61:a4:c3:4b:dd:64:a5:a4:b9:ef:10:1b:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=842b18f8d1db1f947621b2d8f786603e2b1bd50c Validity Not Before: Feb 9 07:01:27 2026 GMT Not After : Feb 10 07:01:27 2026 GMT Subject: CN=ca3fe31f9f2f5e41d5eb540b84bcb29ca321b2fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ff:f7:03:49:85:aa:55:92:c3:a5:ab:57:f1: 7f:a7:87:72:57:05:99:45:63:67:98:94:c4:e8:59: 62:e9:17:a6:c0:c9:1c:36:04:19:39:6a:87:4d:56: 7d:ad:9b:21:ff:5a:a8:37:35:c7:00:8c:b2:ec:b9: 68:b8:ee:13:ce:d9:9b:31:73:b9:b9:4c:12:b1:80: 40:d0:1e:a2:ca:02:11:7c:18:92:88:05:94:ac:fc: fb:0f:fc:e9:63:8c:0e:da:7a:03:94:5b:e8:7b:43: 00:5f:2d:07:aa:8c:f0:a8:a0:1f:70:79:6e:29:90: aa:1a:0b:f1:9c:83:cb:61:06:94:73:18:1c:1a:7f: fd:1d:54:0d:77:0f:df:7f:f2:ab:41:9b:9c:d6:0f: a9:63:b1:a3:e0:d4:cf:e6:74:1e:fb:70:e9:11:d9: 14:00:86:ac:00:1a:c8:ce:40:5c:10:f8:cf:78:1d: 0c:e1:66:ad:3f:5a:ad:88:be:ce:be:b5:b1:6b:1e: 67:8c:b9:72:36:19:bb:e1:31:e4:f4:c4:ee:02:a3: 27:d9:bf:77:1b:a5:eb:61:66:8f:4f:35:44:f4:01: 84:70:06:f7:68:61:9a:02:a3:e1:24:46:a3:48:90: 4d:32:c2:cf:1a:6a:81:5b:5f:ec:6a:45:da:21:a4: d7:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:3F:E3:1F:9F:2F:5E:41:D5:EB:54:0B:84:BC:B2:9C:A3:21:B2:FB X509v3 Authority Key Identifier: keyid:84:2B:18:F8:D1:DB:1F:94:76:21:B2:D8:F7:86:60:3E:2B:1B:D5:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hCsY-NHbH5R2IbLY94ZgPisb1Qw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:98:20:90:c2:61:35:d5:5e:ec:ba:59:f5:fd:b2:f5:2c:3f: 3a:4a:17:46:68:4d:f0:cd:0e:38:7a:48:48:3b:19:d8:1c:fc: c4:fa:d7:bc:df:72:14:6e:90:48:88:26:2d:8b:da:6d:21:88: 91:76:3d:91:2b:28:9e:c2:d6:b8:d3:cd:d0:0f:74:33:47:7d: f6:bc:90:52:0a:0f:62:72:ca:ac:b3:4b:e5:3b:88:a3:4a:70: 99:cf:55:12:4a:01:72:fd:4e:48:ab:90:aa:87:ad:b6:30:82: d6:0b:95:7c:53:ec:86:f6:5a:ed:06:13:1b:e2:fa:04:d8:be: a1:63:76:aa:34:ec:ba:3b:45:55:40:79:e2:62:60:21:62:22: 0f:e7:ab:0a:c4:9f:80:7a:2e:e4:ab:bd:41:1f:23:f4:d3:ed: 23:d7:39:f9:c9:99:f3:9a:ac:59:a0:12:59:90:8c:3a:0b:24: 3e:c8:8d:e3:81:51:f4:3e:95:6a:e9:ca:32:43:f3:5e:c6:85: e3:8f:c2:51:a4:04:9b:67:52:bb:de:4d:e5:99:43:ee:f6:72: b6:0a:7d:29:25:8c:9b:30:91:b4:a1:9b:95:bc:30:e2:ae:54: 61:c0:e6:99:48:ad:fb:c9:91:ab:f4:56:47:fe:c0:cb:7a:0a: 9c:d6:8b:bd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNIZhpMNL3WSlpLnvEBvWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0MmIxOGY4ZDFkYjFmOTQ3NjIxYjJkOGY3ODY2MDNlMmIx YmQ1MGMwHhcNMjYwMjA5MDcwMTI3WhcNMjYwMjEwMDcwMTI3WjAzMTEwLwYDVQQD EyhjYTNmZTMxZjlmMmY1ZTQxZDVlYjU0MGI4NGJjYjI5Y2EzMjFiMmZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArf/3A0mFqlWSw6WrV/F/p4dyVwWZ RWNnmJTE6Fli6RemwMkcNgQZOWqHTVZ9rZsh/1qoNzXHAIyy7LlouO4TztmbMXO5 uUwSsYBA0B6iygIRfBiSiAWUrPz7D/zpY4wO2noDlFvoe0MAXy0HqozwqKAfcHlu KZCqGgvxnIPLYQaUcxgcGn/9HVQNdw/ff/KrQZuc1g+pY7Gj4NTP5nQe+3DpEdkU AIasABrIzkBcEPjPeB0M4WatP1qtiL7OvrWxax5njLlyNhm74THk9MTuAqMn2b93 G6XrYWaPTzVE9AGEcAb3aGGaAqPhJEajSJBNMsLPGmqBW1/sakXaIaTXsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMo/4x+fL15B1etUC4S8spyjIbL7MB8GA1UdIwQY MBaAFIQrGPjR2x+UdiGy2PeGYD4rG9UMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaENzWS1OSGJINVIySWJMWTk0WmdQaXNiMVF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8zYzhlNzgtZGZhMC00NjE2LWIyMjgt MGI5NzBiOTZjOTBiLzEvaENzWS1OSGJINVIySWJMWTk0WmdQaXNiMVF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC8zYzhlNzgtZGZhMC00NjE2LWIyMjgtMGI5NzBiOTZjOTBi LzEvaENzWS1OSGJINVIySWJMWTk0WmdQaXNiMVF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAepggkMJh NdVe7LpZ9f2y9Sw/OkoXRmhN8M0OOHpISDsZ2Bz8xPrXvN9yFG6QSIgmLYvabSGI kXY9kSsonsLWuNPN0A90M0d99ryQUgoPYnLKrLNL5TuIo0pwmc9VEkoBcv1OSKuQ qoettjCC1guVfFPshvZa7QYTG+L6BNi+oWN2qjTsujtFVUB54mJgIWIiD+erCsSf gHou5Ku9QR8j9NPtI9c5+cmZ85qsWaASWZCMOgskPsiN44FR9D6VaunKMkPzXsaF 44/CUaQEm2dSu95N5ZlD7vZytgp9KSWMmzCRtKGblbww4q5UYcDmmUit+8mRq/RW R/7Ay3oKnNaLvQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:35 2026 by rpki-client