This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/5fdc69-64c2-4b47-a4f8-ab39be656057/1/WAFhHoC63kAvvWDnhvNPtxctIlo.mft File: WAFhHoC63kAvvWDnhvNPtxctIlo.mft (raw, json) Hash identifier: eDHdspMOiDUMOBmkg6/sEXteY6SP0B+ucqFEk18mPzI= Subject key identifier: 8A:BE:5B:81:FE:EF:78:FD:A9:7F:DB:73:0A:ED:AD:9A:DB:8F:CB:23 Authority key identifier: 58:01:61:1E:80:BA:DE:40:2F:BD:60:E7:86:F3:4F:B7:17:2D:22:5A Certificate issuer: /CN=5801611e80bade402fbd60e786f34fb7172d225a Certificate serial: 019C420FFB52801FEA191E5203824D73ECDB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WAFhHoC63kAvvWDnhvNPtxctIlo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/5fdc69-64c2-4b47-a4f8-ab39be656057/1/WAFhHoC63kAvvWDnhvNPtxctIlo.mft Manifest number: 156F Signing time: Mon 09 Feb 2026 11:01:09 +0000 Manifest this update: Mon 09 Feb 2026 11:01:09 +0000 Manifest next update: Tue 10 Feb 2026 11:01:09 +0000 Files and hashes: 1: WAFhHoC63kAvvWDnhvNPtxctIlo.crl (hash: lCRqosFnoWTlqozb5RGVYa6YVNOmyRTNuIYqHCklgAw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/5fdc69-64c2-4b47-a4f8-ab39be656057/1/WAFhHoC63kAvvWDnhvNPtxctIlo.crl rsync://rpki.ripe.net/repository/DEFAULT/66/5fdc69-64c2-4b47-a4f8-ab39be656057/1/WAFhHoC63kAvvWDnhvNPtxctIlo.mft rsync://rpki.ripe.net/repository/DEFAULT/WAFhHoC63kAvvWDnhvNPtxctIlo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:fb:52:80:1f:ea:19:1e:52:03:82:4d:73:ec:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5801611e80bade402fbd60e786f34fb7172d225a Validity Not Before: Feb 9 11:01:09 2026 GMT Not After : Feb 10 11:01:09 2026 GMT Subject: CN=8abe5b81feef78fda97fdb730aedad9adb8fcb23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1c:af:ac:72:c4:f3:24:94:81:00:96:a0:98: 2a:54:bf:56:90:5e:d2:30:a4:3f:96:b2:aa:5f:6c: bd:15:01:93:18:7d:31:b8:82:a1:9a:35:b8:e1:65: 71:ec:fa:a1:de:cc:00:de:9f:40:15:58:2e:77:7b: 66:7b:f9:a4:20:cb:20:e3:88:69:2d:50:bb:42:4c: c5:3a:6b:e6:dd:4f:87:ee:24:a2:84:93:f8:cd:72: d6:1d:6a:8c:fc:74:10:52:ed:50:85:4e:9b:fe:48: 23:97:50:ea:c9:87:cc:73:65:56:51:5d:bf:9b:7e: 27:de:d8:d9:02:2f:d7:b9:f8:de:bb:e1:73:72:03: 1f:3b:a7:a3:d2:f9:87:e1:f0:a8:e2:12:ed:7e:f2: 67:bd:f4:ae:00:fd:17:7d:59:06:0d:87:59:6d:a4: 12:f9:ef:fe:d7:2c:a6:7c:fb:a9:38:d0:87:29:8e: fc:55:f2:28:0d:bc:69:e6:72:aa:3e:e0:fd:26:5e: b4:9e:4a:05:86:d5:6e:f2:89:11:89:6f:b8:7b:f7: 4c:54:78:e8:ae:33:f3:ae:3a:f1:6b:93:f0:b5:8e: b0:7e:b8:8c:df:30:dc:ea:d5:5e:d5:35:37:c7:03: 28:93:02:d6:72:18:4a:d1:00:39:8d:1d:f9:f2:bb: 4c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:BE:5B:81:FE:EF:78:FD:A9:7F:DB:73:0A:ED:AD:9A:DB:8F:CB:23 X509v3 Authority Key Identifier: keyid:58:01:61:1E:80:BA:DE:40:2F:BD:60:E7:86:F3:4F:B7:17:2D:22:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WAFhHoC63kAvvWDnhvNPtxctIlo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5fdc69-64c2-4b47-a4f8-ab39be656057/1/WAFhHoC63kAvvWDnhvNPtxctIlo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5fdc69-64c2-4b47-a4f8-ab39be656057/1/WAFhHoC63kAvvWDnhvNPtxctIlo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:d9:ab:e3:43:37:e3:7d:36:5c:6e:53:06:1b:90:13:01:bb: c3:ab:09:63:85:a4:ca:2d:cd:e9:ee:b0:ae:c4:77:91:34:47: 8c:cd:e5:c7:84:ba:11:3f:8b:c1:ad:b2:a4:49:eb:b9:cc:12: 0b:65:41:56:6f:cb:96:0e:0f:02:41:a4:ef:f6:ed:5b:62:41: 92:7f:d3:ec:5a:47:af:d8:8a:d3:17:02:ac:a0:ba:d0:a6:13: d9:79:94:39:38:da:13:4c:6d:59:b3:bd:05:d2:37:a0:60:80: 68:9d:4a:32:6a:99:cd:cc:3c:eb:e5:a0:27:fa:9a:d5:7f:d2: cc:a5:db:91:07:fc:d1:81:5c:87:bb:50:cf:b7:f4:f6:70:1b: 2e:85:91:82:a1:d4:b8:8a:cb:4d:4d:49:6b:ab:f9:db:f5:dd: 7e:19:4f:8d:cc:79:dd:20:e3:e9:f1:b8:a8:cb:98:23:f1:74: aa:6b:5d:62:ce:8a:57:f3:11:f5:fd:16:85:da:04:df:32:22: f6:6c:a8:a2:15:c7:98:e6:ab:10:99:d7:f6:26:0e:36:89:42: fe:96:ac:87:c6:0f:a3:c0:d4:33:e8:36:74:74:45:fc:20:e3: 33:ee:2f:9b:db:e8:ee:fc:bf:a0:ad:a8:bf:fd:52:fa:d2:2b: 4b:3c:4f:60 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD/tSgB/qGR5SA4JNc+zbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4MDE2MTFlODBiYWRlNDAyZmJkNjBlNzg2ZjM0ZmI3MTcy ZDIyNWEwHhcNMjYwMjA5MTEwMTA5WhcNMjYwMjEwMTEwMTA5WjAzMTEwLwYDVQQD Eyg4YWJlNWI4MWZlZWY3OGZkYTk3ZmRiNzMwYWVkYWQ5YWRiOGZjYjIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRyvrHLE8ySUgQCWoJgqVL9WkF7S MKQ/lrKqX2y9FQGTGH0xuIKhmjW44WVx7Pqh3swA3p9AFVgud3tme/mkIMsg44hp LVC7QkzFOmvm3U+H7iSihJP4zXLWHWqM/HQQUu1QhU6b/kgjl1DqyYfMc2VWUV2/ m34n3tjZAi/Xufjeu+FzcgMfO6ej0vmH4fCo4hLtfvJnvfSuAP0XfVkGDYdZbaQS +e/+1yymfPupONCHKY78VfIoDbxp5nKqPuD9Jl60nkoFhtVu8okRiW+4e/dMVHjo rjPzrjrxa5PwtY6wfriM3zDc6tVe1TU3xwMokwLWchhK0QA5jR358rtMHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIq+W4H+73j9qX/bcwrtrZrbj8sjMB8GA1UdIwQY MBaAFFgBYR6Aut5AL71g54bzT7cXLSJaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0FGaEhvQzYza0F2dldEbmh2TlB0eGN0SWxvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni81ZmRjNjktNjRjMi00YjQ3LWE0Zjgt YWIzOWJlNjU2MDU3LzEvV0FGaEhvQzYza0F2dldEbmh2TlB0eGN0SWxvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni81ZmRjNjktNjRjMi00YjQ3LWE0ZjgtYWIzOWJlNjU2MDU3 LzEvV0FGaEhvQzYza0F2dldEbmh2TlB0eGN0SWxvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB9mr40M3 4302XG5TBhuQEwG7w6sJY4Wkyi3N6e6wrsR3kTRHjM3lx4S6ET+Lwa2ypEnrucwS C2VBVm/Llg4PAkGk7/btW2JBkn/T7FpHr9iK0xcCrKC60KYT2XmUOTjaE0xtWbO9 BdI3oGCAaJ1KMmqZzcw86+WgJ/qa1X/SzKXbkQf80YFch7tQz7f09nAbLoWRgqHU uIrLTU1Ja6v52/XdfhlPjcx53SDj6fG4qMuYI/F0qmtdYs6KV/MR9f0WhdoE3zIi 9myoohXHmOarEJnX9iYONolC/pash8YPo8DUM+g2dHRF/CDjM+4vm9vo7vy/oK2o v/1S+tIrSzxPYA== -----END CERTIFICATE-----Generated at Mon Feb 9 20:54:24 2026 by rpki-client