This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.mft File: MhbvzNFel4pwQKXUt5xBf7lmvyg.mft (raw, json) Hash identifier: 7cqnGPOO30B/t4WMS242vf16LSXJfV2JVnZ42B6UR5k= Subject key identifier: B8:42:4A:5B:5F:7A:C3:A0:BC:35:53:4D:AA:5A:90:7E:64:F8:6E:7C Authority key identifier: 32:16:EF:CC:D1:5E:97:8A:70:40:A5:D4:B7:9C:41:7F:B9:66:BF:28 Certificate issuer: /CN=3216efccd15e978a7040a5d4b79c417fb966bf28 Certificate serial: 019C420F3DBFD2442B116607DE83DE132F99 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MhbvzNFel4pwQKXUt5xBf7lmvyg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.mft Manifest number: 027C Signing time: Mon 09 Feb 2026 11:00:20 +0000 Manifest this update: Mon 09 Feb 2026 11:00:20 +0000 Manifest next update: Tue 10 Feb 2026 11:00:20 +0000 Files and hashes: 1: HK3a_MSoCFsWxP7dXHlGkzJCrow.roa (hash: 9PqcF0/wOP05Xf/mJxyWiie3iSsWOLdkJsmMvxWY/NI=) 2: MhbvzNFel4pwQKXUt5xBf7lmvyg.crl (hash: SJIKovrh16Q6RMWRHcODawbsLHfkuFWHi/gmSRAyGx4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.mft rsync://rpki.ripe.net/repository/DEFAULT/MhbvzNFel4pwQKXUt5xBf7lmvyg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:3d:bf:d2:44:2b:11:66:07:de:83:de:13:2f:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3216efccd15e978a7040a5d4b79c417fb966bf28 Validity Not Before: Feb 9 11:00:20 2026 GMT Not After : Feb 10 11:00:20 2026 GMT Subject: CN=b8424a5b5f7ac3a0bc35534daa5a907e64f86e7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f2:90:3e:b9:82:e6:be:ed:97:2c:cb:db:00: 0e:e1:02:f1:d2:82:8a:a5:bc:33:77:93:cd:8e:fb: 65:bd:1b:3a:e1:8c:9f:d6:10:b7:40:18:72:9b:3c: 2c:4a:b6:40:1e:57:f3:35:c1:09:8f:17:8e:c2:52: 03:db:b3:a8:65:20:29:c0:86:f9:eb:be:8f:b8:b8: 43:be:e3:d2:c3:4c:9f:5a:c7:93:86:13:86:77:7b: 02:06:64:1d:e6:ee:8c:d7:23:5b:45:e0:d7:36:9b: 56:0e:f2:30:14:87:90:83:dd:57:52:69:e7:a2:68: 8b:35:a9:b3:9d:f4:13:98:bb:89:af:5f:16:54:76: 7e:55:d9:65:32:30:27:a5:b9:ab:73:b5:de:0f:ea: 48:3a:15:65:f7:36:1c:0c:cb:e4:dd:25:8a:93:32: e3:13:7f:3b:a9:59:8c:a7:6a:39:62:1a:d2:02:4a: 40:41:96:b2:f9:b5:75:6a:83:12:80:a7:18:59:68: 4e:d5:5b:c5:06:d1:64:6b:a2:38:d9:fa:3d:fc:0a: b6:a1:af:25:fb:32:ae:1f:d9:17:1e:bb:87:50:49: a4:36:e3:b3:02:c5:4f:0c:c4:e1:50:e7:c7:ef:8e: 91:45:db:9f:b8:4d:40:db:7f:30:07:04:1b:19:03: 27:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:42:4A:5B:5F:7A:C3:A0:BC:35:53:4D:AA:5A:90:7E:64:F8:6E:7C X509v3 Authority Key Identifier: keyid:32:16:EF:CC:D1:5E:97:8A:70:40:A5:D4:B7:9C:41:7F:B9:66:BF:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MhbvzNFel4pwQKXUt5xBf7lmvyg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:54:d7:62:a7:d9:fc:b9:0c:df:a5:60:50:04:4a:eb:b1:bb: f5:d3:2e:b5:21:0a:18:81:0f:ee:f6:da:92:9b:ab:f8:d9:da: e0:fb:f8:78:b8:c2:45:2c:4a:a6:f1:72:64:71:ab:72:ea:67: 40:e0:d7:ce:ff:c6:a5:e7:3d:70:b7:b8:ef:4a:5e:ea:b8:e5: b2:ea:c1:5c:c9:e3:15:83:4d:5d:db:49:54:2f:60:d8:23:08: f2:4e:c2:8b:3c:20:d1:e1:ee:0d:45:17:c1:b6:65:9e:c5:3d: 89:27:b1:9b:27:c5:9d:4b:15:f0:46:bb:8e:e7:6c:4c:85:70: 29:8b:e7:4e:f3:6b:fc:bd:03:72:4a:64:cc:45:e3:4e:1d:4d: 2d:e0:d1:ce:4b:9c:fb:4f:47:a7:bf:bf:e1:c8:37:0c:ca:b7: df:a8:57:b6:8d:6d:5c:46:a5:07:cc:97:9a:c7:b5:cd:58:67: 9a:e6:04:a1:9f:d0:c9:6b:c2:9e:bf:ad:75:06:56:73:d0:de: 11:4d:f9:86:b1:a9:34:74:33:dd:91:77:58:8a:92:cd:21:d5: 5c:a4:ef:f1:45:32:87:2f:0e:d7:30:5c:ae:b1:bb:80:86:2a: bf:3b:a4:35:d6:91:eb:a7:6a:3c:24:0e:7e:8f:d0:73:e9:c3: 64:fe:db:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCDz2/0kQrEWYH3oPeEy+ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyMTZlZmNjZDE1ZTk3OGE3MDQwYTVkNGI3OWM0MTdmYjk2 NmJmMjgwHhcNMjYwMjA5MTEwMDIwWhcNMjYwMjEwMTEwMDIwWjAzMTEwLwYDVQQD EyhiODQyNGE1YjVmN2FjM2EwYmMzNTUzNGRhYTVhOTA3ZTY0Zjg2ZTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2fKQPrmC5r7tlyzL2wAO4QLx0oKK pbwzd5PNjvtlvRs64Yyf1hC3QBhymzwsSrZAHlfzNcEJjxeOwlID27OoZSApwIb5 676PuLhDvuPSw0yfWseThhOGd3sCBmQd5u6M1yNbReDXNptWDvIwFIeQg91XUmnn omiLNamznfQTmLuJr18WVHZ+VdllMjAnpbmrc7XeD+pIOhVl9zYcDMvk3SWKkzLj E387qVmMp2o5YhrSAkpAQZay+bV1aoMSgKcYWWhO1VvFBtFka6I42fo9/Aq2oa8l +zKuH9kXHruHUEmkNuOzAsVPDMThUOfH746RRdufuE1A238wBwQbGQMnFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLhCSltfesOgvDVTTapakH5k+G58MB8GA1UdIwQY MBaAFDIW78zRXpeKcECl1LecQX+5Zr8oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWhidnpORmVsNHB3UUtYVXQ1eEJmN2xtdnlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC8zYTlkYmYtMDFkMi00ZjEwLTgxM2Qt ZWFiNjFkZGI4OThhLzEvTWhidnpORmVsNHB3UUtYVXQ1eEJmN2xtdnlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZC8zYTlkYmYtMDFkMi00ZjEwLTgxM2QtZWFiNjFkZGI4OThh LzEvTWhidnpORmVsNHB3UUtYVXQ1eEJmN2xtdnlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdlTXYqfZ /LkM36VgUARK67G79dMutSEKGIEP7vbakpur+Nna4Pv4eLjCRSxKpvFyZHGrcupn QODXzv/Gpec9cLe470pe6rjlsurBXMnjFYNNXdtJVC9g2CMI8k7Cizwg0eHuDUUX wbZlnsU9iSexmyfFnUsV8Ea7judsTIVwKYvnTvNr/L0DckpkzEXjTh1NLeDRzkuc +09Hp7+/4cg3DMq336hXto1tXEalB8yXmse1zVhnmuYEoZ/QyWvCnr+tdQZWc9De EU35hrGpNHQz3ZF3WIqSzSHVXKTv8UUyhy8O1zBcrrG7gIYqvzukNdaR66dqPCQO fo/Qc+nDZP7bNQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:07 2026 by rpki-client