This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft File: 0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft (raw, json) Hash identifier: oa2WgOd+iyOk6ZtQJudNlRrgbs8Z+hIK7qJ8zQV+UEI= Subject key identifier: D9:69:47:1D:D3:21:D2:3E:D4:54:CA:21:EF:1B:AE:67:F6:3F:4A:5B Authority key identifier: D2:71:E4:ED:84:25:38:3F:6C:81:C2:1A:48:94:A4:37:63:67:5E:FC Certificate issuer: /CN=d271e4ed8425383f6c81c21a4894a43763675efc Certificate serial: 019C427D822C88594A18C00FA00F3B9F8577 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nHk7YQlOD9sgcIaSJSkN2NnXvw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft Manifest number: 0317 Signing time: Mon 09 Feb 2026 13:00:47 +0000 Manifest this update: Mon 09 Feb 2026 13:00:47 +0000 Manifest next update: Tue 10 Feb 2026 13:00:47 +0000 Files and hashes: 1: 0nHk7YQlOD9sgcIaSJSkN2NnXvw.crl (hash: cqYLVaayw9WcacDgUMOZ95T0DDXz7zTekIUHL59T0sM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.crl rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft rsync://rpki.ripe.net/repository/DEFAULT/0nHk7YQlOD9sgcIaSJSkN2NnXvw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:82:2c:88:59:4a:18:c0:0f:a0:0f:3b:9f:85:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d271e4ed8425383f6c81c21a4894a43763675efc Validity Not Before: Feb 9 13:00:47 2026 GMT Not After : Feb 10 13:00:47 2026 GMT Subject: CN=d969471dd321d23ed454ca21ef1bae67f63f4a5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:61:53:ba:07:d0:d8:82:81:36:c6:a6:82:f5: 68:e6:63:16:57:72:2b:99:30:49:7b:69:57:e8:b1: c7:01:3f:17:81:c8:29:18:b6:a6:57:06:27:6f:44: ba:07:22:0e:a4:9b:9c:ec:9b:25:ca:54:44:83:dd: 50:de:d0:80:eb:78:4a:95:ee:dd:d2:12:08:1a:a4: 85:d5:d1:4e:5c:a7:94:60:bb:17:58:b8:50:d2:d0: 11:ba:ac:50:60:2e:0c:8f:14:93:f1:76:58:88:f5: c3:9b:9a:75:b1:69:a2:c1:95:02:2c:59:be:d0:15: 83:c6:5d:c7:69:30:60:78:85:67:05:f1:fd:e5:ec: 30:a5:59:78:e2:f8:11:ce:fa:30:a5:fd:e0:0e:ef: e0:2f:f9:4f:b7:e3:b1:6b:88:dc:12:2f:7a:66:87: 86:7c:15:be:a0:77:3e:f5:20:6c:9b:63:ce:17:7d: 42:d1:13:fb:61:ba:be:d0:73:89:82:18:f1:88:74: 3f:e0:d7:bb:54:b9:11:b8:37:e9:89:b2:bf:7a:13: c0:f3:7b:2b:a5:aa:8b:a1:5d:d3:73:d6:52:e4:e6: ba:ef:64:f2:0c:9b:35:71:30:43:cf:f0:90:d6:94: 9c:fb:f9:2b:d4:62:81:50:82:59:ac:68:a5:68:00: b4:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:69:47:1D:D3:21:D2:3E:D4:54:CA:21:EF:1B:AE:67:F6:3F:4A:5B X509v3 Authority Key Identifier: keyid:D2:71:E4:ED:84:25:38:3F:6C:81:C2:1A:48:94:A4:37:63:67:5E:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nHk7YQlOD9sgcIaSJSkN2NnXvw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:b0:10:58:a5:0b:82:f0:f3:bb:89:20:6e:c3:0f:33:9a:61: 8d:af:42:78:d6:f3:c9:1e:19:31:a8:cb:18:1f:38:85:95:e5: 7a:98:ef:cf:da:09:48:b1:da:ca:f9:b3:4a:44:ba:60:b8:19: f3:55:ff:92:16:90:44:e4:0d:01:b9:2a:17:8f:51:3f:03:94: c7:5d:5c:39:d1:5c:ef:5b:9e:1d:d3:00:43:d0:61:13:6d:7c: f9:e6:04:f6:0d:ec:ea:59:e7:53:55:49:a4:03:ab:94:46:82: 4e:41:1d:26:56:a0:fb:ed:1b:72:94:42:d4:c0:07:3f:5a:2f: 3f:f0:d2:99:86:d8:ab:22:60:ef:2e:70:d1:b0:c2:20:11:6f: 8f:61:39:7d:48:46:f6:b2:5e:82:21:16:c0:6c:75:d8:69:c9: 2d:7b:23:b1:ac:ae:66:d2:98:e7:61:07:65:aa:b1:12:2e:63: af:ef:d2:15:20:74:eb:ba:79:80:4a:b5:13:e6:8f:e1:a4:10: 62:55:50:92:f6:4e:f0:66:c8:0e:d4:a6:55:5f:13:77:8a:9e: c7:b0:46:c8:ce:e2:16:48:55:4e:0b:dc:62:5c:24:62:ed:a7: c9:19:45:c6:aa:4f:e1:bd:6b:d3:31:a3:47:26:a0:b6:b8:b4: c7:93:7a:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfYIsiFlKGMAPoA87n4V3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyNzFlNGVkODQyNTM4M2Y2YzgxYzIxYTQ4OTRhNDM3NjM2 NzVlZmMwHhcNMjYwMjA5MTMwMDQ3WhcNMjYwMjEwMTMwMDQ3WjAzMTEwLwYDVQQD EyhkOTY5NDcxZGQzMjFkMjNlZDQ1NGNhMjFlZjFiYWU2N2Y2M2Y0YTViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApWFTugfQ2IKBNsamgvVo5mMWV3Ir mTBJe2lX6LHHAT8XgcgpGLamVwYnb0S6ByIOpJuc7JslylREg91Q3tCA63hKle7d 0hIIGqSF1dFOXKeUYLsXWLhQ0tARuqxQYC4MjxST8XZYiPXDm5p1sWmiwZUCLFm+ 0BWDxl3HaTBgeIVnBfH95ewwpVl44vgRzvowpf3gDu/gL/lPt+Oxa4jcEi96ZoeG fBW+oHc+9SBsm2POF31C0RP7Ybq+0HOJghjxiHQ/4Ne7VLkRuDfpibK/ehPA83sr paqLoV3Tc9ZS5Oa672TyDJs1cTBDz/CQ1pSc+/kr1GKBUIJZrGilaAC0pwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNlpRx3TIdI+1FTKIe8brmf2P0pbMB8GA1UdIwQY MBaAFNJx5O2EJTg/bIHCGkiUpDdjZ178MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMG5IazdZUWxPRDlzZ2NJYVNKU2tOMk5uWHZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS84ZTE2Y2MtODIxZi00YmQ1LTlmZWQt YWI4MTBkNTM0YmRkLzEvMG5IazdZUWxPRDlzZ2NJYVNKU2tOMk5uWHZ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS84ZTE2Y2MtODIxZi00YmQ1LTlmZWQtYWI4MTBkNTM0YmRk LzEvMG5IazdZUWxPRDlzZ2NJYVNKU2tOMk5uWHZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXLAQWKUL gvDzu4kgbsMPM5phja9CeNbzyR4ZMajLGB84hZXlepjvz9oJSLHayvmzSkS6YLgZ 81X/khaQROQNAbkqF49RPwOUx11cOdFc71ueHdMAQ9BhE218+eYE9g3s6lnnU1VJ pAOrlEaCTkEdJlag++0bcpRC1MAHP1ovP/DSmYbYqyJg7y5w0bDCIBFvj2E5fUhG 9rJegiEWwGx12GnJLXsjsayuZtKY52EHZaqxEi5jr+/SFSB067p5gEq1E+aP4aQQ YlVQkvZO8GbIDtSmVV8Td4qex7BGyM7iFkhVTgvcYlwkYu2nyRlFxqpP4b1r0zGj Ryagtri0x5N6/Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:45:57 2026 by rpki-client