This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft File: aM_hqssnjBMjGzEORe5XaTL-m04.mft (raw, json) Hash identifier: hhZMwp81DfJC1leDP3bQwL7C64Qwj+oOis2z0vYCxKs= Subject key identifier: BA:EA:64:95:15:A5:39:25:7A:12:EF:DC:AA:BC:B0:EA:67:8D:82:7D Authority key identifier: 68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E Certificate issuer: /CN=68cfe1aacb278c13231b310e45ee576932fe9b4e Certificate serial: 019C42B43EDB0704146E751E25EF1C09E14E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft Manifest number: 14A5 Signing time: Mon 09 Feb 2026 14:00:34 +0000 Manifest this update: Mon 09 Feb 2026 14:00:34 +0000 Manifest next update: Tue 10 Feb 2026 14:00:34 +0000 Files and hashes: 1: CuVYq_7gkf_DrsINyOzhKZbktPU.roa (hash: /uHacyxGA33AcgKYOrlSIWvD9MdgqSXnE0I0qc9GHm0=) 2: aM_hqssnjBMjGzEORe5XaTL-m04.crl (hash: R3BDVaE2JafXcGUC3bRsWLal5iralY21wv7ysbTbREs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:3e:db:07:04:14:6e:75:1e:25:ef:1c:09:e1:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68cfe1aacb278c13231b310e45ee576932fe9b4e Validity Not Before: Feb 9 14:00:34 2026 GMT Not After : Feb 10 14:00:34 2026 GMT Subject: CN=baea649515a539257a12efdcaabcb0ea678d827d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:5f:bd:e5:7e:a6:fa:b6:d5:ad:60:db:02:d8: 76:9a:ba:bf:02:f5:4f:bb:03:31:50:a0:06:a8:f8: d3:e1:26:d3:3d:de:14:5c:0d:75:1a:67:da:ff:1c: 3b:df:8f:00:de:b9:03:a6:82:18:20:8f:38:eb:a5: 71:49:12:f0:cb:87:b8:c2:ab:8f:f0:be:b2:8b:b9: de:a5:68:80:ca:c2:97:29:8c:c6:97:39:54:22:7e: 1f:ae:53:2b:1b:26:b8:e7:17:1a:60:a3:db:d9:ce: fd:c6:75:a2:5f:35:19:85:79:fc:11:04:55:3b:c6: f5:16:02:2a:b1:3f:24:99:d6:dc:54:ac:c0:64:10: ed:c1:70:24:d8:5b:d2:6e:ee:a4:b7:21:0c:21:64: 70:85:d3:b8:2c:05:84:49:4c:51:ff:36:a6:ff:96: 77:6f:10:1d:75:f0:8c:66:e0:bb:d9:6f:58:8b:7c: 77:56:4a:ac:c0:c4:c3:04:da:27:57:ed:2f:ac:64: 77:d6:be:a5:8b:7c:94:06:db:b1:2f:1a:fc:cb:ab: 1a:33:bb:c4:1e:a6:f1:9f:00:51:25:13:27:6a:ec: 1e:07:93:9b:50:4c:f1:fc:a3:db:d7:84:72:f9:25: 2e:d6:b2:c3:5a:1b:a3:75:81:4a:48:63:65:d7:9b: 96:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:EA:64:95:15:A5:39:25:7A:12:EF:DC:AA:BC:B0:EA:67:8D:82:7D X509v3 Authority Key Identifier: keyid:68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:37:b7:28:e8:f9:42:5b:12:fc:ee:1e:8f:41:78:5c:de:3c: f0:82:12:87:ab:a1:ff:17:48:94:a7:fb:51:21:a8:e0:7e:bc: 85:47:92:98:fe:ba:26:a0:9e:09:e3:08:6e:9f:10:94:40:62: 6a:85:7c:df:79:aa:cc:35:1e:df:e4:ae:3a:e8:9f:d2:6a:d0: 2f:04:c0:03:c3:37:74:01:bb:78:23:95:49:1c:1c:7c:28:ef: fb:c0:ae:10:42:c0:b8:d2:30:51:ff:83:2a:33:cd:26:d7:b2: d5:fe:51:09:e3:fa:6a:88:a6:03:bb:b5:a0:b2:bd:f7:03:0a: e2:41:5d:1e:9f:d2:dd:96:97:5b:e3:f3:bb:b9:5e:0b:58:68: a3:0f:01:80:2f:8e:f5:a6:2a:3c:45:02:c3:51:5c:c4:42:0b: 7a:17:a0:df:ad:2c:98:0a:4d:b3:5d:92:02:1c:9c:02:a5:a8: 5a:48:aa:df:a5:ac:f1:47:47:90:5d:1f:61:8d:b5:bc:25:14: d1:3a:0c:6f:eb:21:c7:03:0f:66:63:18:48:48:1c:87:b6:b8: be:d7:18:eb:75:6d:e7:b5:1a:f6:18:31:65:7d:91:9a:ea:cf: 60:e4:c0:b4:3a:0c:da:80:5f:b8:de:06:e8:13:ac:bf:61:a6: 53:37:7e:fe -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtD7bBwQUbnUeJe8cCeFOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4Y2ZlMWFhY2IyNzhjMTMyMzFiMzEwZTQ1ZWU1NzY5MzJm ZTliNGUwHhcNMjYwMjA5MTQwMDM0WhcNMjYwMjEwMTQwMDM0WjAzMTEwLwYDVQQD EyhiYWVhNjQ5NTE1YTUzOTI1N2ExMmVmZGNhYWJjYjBlYTY3OGQ4MjdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkF+95X6m+rbVrWDbAth2mrq/AvVP uwMxUKAGqPjT4SbTPd4UXA11Gmfa/xw7348A3rkDpoIYII8466VxSRLwy4e4wquP 8L6yi7nepWiAysKXKYzGlzlUIn4frlMrGya45xcaYKPb2c79xnWiXzUZhXn8EQRV O8b1FgIqsT8kmdbcVKzAZBDtwXAk2FvSbu6ktyEMIWRwhdO4LAWESUxR/zam/5Z3 bxAddfCMZuC72W9Yi3x3VkqswMTDBNonV+0vrGR31r6li3yUBtuxLxr8y6saM7vE HqbxnwBRJRMnauweB5ObUEzx/KPb14Ry+SUu1rLDWhujdYFKSGNl15uWwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLrqZJUVpTklehLv3Kq8sOpnjYJ9MB8GA1UdIwQY MBaAFGjP4arLJ4wTIxsxDkXuV2ky/ptOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU1faHFzc25qQk1qR3pFT1JlNVhhVEwtbTA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9iZTllODgtNTEyZi00YjA2LWIxOTYt ODljMmY2NjZlOTA1LzEvYU1faHFzc25qQk1qR3pFT1JlNVhhVEwtbTA0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS9iZTllODgtNTEyZi00YjA2LWIxOTYtODljMmY2NjZlOTA1 LzEvYU1faHFzc25qQk1qR3pFT1JlNVhhVEwtbTA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIze3KOj5 QlsS/O4ej0F4XN488IISh6uh/xdIlKf7USGo4H68hUeSmP66JqCeCeMIbp8QlEBi aoV833mqzDUe3+SuOuif0mrQLwTAA8M3dAG7eCOVSRwcfCjv+8CuEELAuNIwUf+D KjPNJtey1f5RCeP6aoimA7u1oLK99wMK4kFdHp/S3ZaXW+Pzu7leC1hoow8BgC+O 9aYqPEUCw1FcxEILeheg360smApNs12SAhycAqWoWkiq36Ws8UdHkF0fYY21vCUU 0ToMb+shxwMPZmMYSEgch7a4vtcY63Vt57Ua9hgxZX2RmurPYOTAtDoM2oBfuN4G 6BOsv2GmUzd+/g== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:26 2026 by rpki-client