This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft File: hlEiwOVi5AeXaCPZThnip5T4y2I.mft (raw, json) Hash identifier: 1pAH+acX8FrQYj1bHFmp7YRDvmHs7O+us8gRSv6ddHE= Subject key identifier: 04:2B:C4:30:D7:D9:1C:EE:DB:C5:BB:2E:B9:29:EB:F8:03:24:5C:7A Authority key identifier: 86:51:22:C0:E5:62:E4:07:97:68:23:D9:4E:19:E2:A7:94:F8:CB:62 Certificate issuer: /CN=865122c0e562e407976823d94e19e2a794f8cb62 Certificate serial: 019C439009F8CBCA6D4A89E2B3F2C1A6FB56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlEiwOVi5AeXaCPZThnip5T4y2I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft Manifest number: 17A0 Signing time: Mon 09 Feb 2026 18:00:39 +0000 Manifest this update: Mon 09 Feb 2026 18:00:39 +0000 Manifest next update: Tue 10 Feb 2026 18:00:39 +0000 Files and hashes: 1: YvcDMestY9X7wmYPi3GUVazWTT8.roa (hash: XANK4dLT4WRniF1gFGKD3AM4xZkWl+FQBiK8+nHkS3E=) 2: hlEiwOVi5AeXaCPZThnip5T4y2I.crl (hash: 1iGe/pWWo89jZerFjuszWNg+clE9EiZrQwM/3QJRRjg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.crl rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft rsync://rpki.ripe.net/repository/DEFAULT/hlEiwOVi5AeXaCPZThnip5T4y2I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:09:f8:cb:ca:6d:4a:89:e2:b3:f2:c1:a6:fb:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=865122c0e562e407976823d94e19e2a794f8cb62 Validity Not Before: Feb 9 18:00:39 2026 GMT Not After : Feb 10 18:00:39 2026 GMT Subject: CN=042bc430d7d91ceedbc5bb2eb929ebf803245c7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2f:43:85:9a:f8:f5:84:3b:7b:00:84:88:79: 48:79:0f:dd:4f:0a:f8:98:40:2a:b2:c3:2e:0c:5b: 57:d6:4e:11:21:21:93:5f:25:e3:be:32:a1:06:1b: 50:ca:f8:0d:e4:fb:23:27:f3:cf:85:47:af:6e:79: 10:b8:af:cd:ee:2a:ba:00:10:82:9c:a9:e4:50:aa: 4c:e0:bf:90:79:32:da:0f:74:72:95:dc:2a:dc:34: 5a:48:29:a7:ec:75:a0:23:44:f9:b7:89:be:9c:55: 66:a5:aa:63:e1:76:11:02:15:5c:96:47:11:08:9b: 97:0a:84:5a:e8:3f:4d:fb:58:15:2a:17:bc:3e:ae: 3d:8c:0b:84:5e:94:68:d4:67:be:02:0c:84:42:ac: e0:b8:3b:fe:bb:5c:5c:0a:de:39:f8:f0:20:21:23: c4:fb:73:7b:d5:82:2a:20:14:25:6a:60:b9:b0:ea: 11:9c:a4:22:a7:ad:c9:30:3c:68:19:ee:73:49:d6: 98:64:79:96:57:12:7a:72:6a:fa:07:c7:1e:ea:22: 4a:4d:f0:e1:74:53:0d:cd:18:2d:e7:bb:99:75:1c: cd:db:c9:16:01:1f:bc:4d:d3:cb:6a:a5:df:d9:0a: 61:dc:8d:49:bd:eb:78:6f:95:ff:f5:65:3d:3a:4f: bb:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:2B:C4:30:D7:D9:1C:EE:DB:C5:BB:2E:B9:29:EB:F8:03:24:5C:7A X509v3 Authority Key Identifier: keyid:86:51:22:C0:E5:62:E4:07:97:68:23:D9:4E:19:E2:A7:94:F8:CB:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlEiwOVi5AeXaCPZThnip5T4y2I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/028b82-fe03-4025-9765-b8dd18e48e86/1/hlEiwOVi5AeXaCPZThnip5T4y2I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:3c:e9:01:c2:c3:2e:ec:37:d9:84:f6:b3:62:a2:c5:bb:57: e6:d6:9d:dc:54:81:08:15:8e:35:e7:91:8a:59:af:ab:10:57: 76:2e:8f:d8:1b:da:b3:a2:6e:bb:eb:96:3b:af:ef:da:b6:93: 59:74:a2:fb:b2:25:4f:d7:72:76:a5:ca:68:b4:10:4a:fb:20: 26:8e:09:7e:5e:65:43:d2:50:cb:2c:d7:9f:27:13:2d:76:95: c9:21:56:28:f7:5f:e8:f8:6f:a6:79:20:bc:a9:60:5d:55:e8: b3:99:bb:80:21:89:67:ca:10:07:d7:09:db:8c:48:9e:60:0b: 38:cb:95:91:d3:55:2f:22:50:a2:01:91:86:23:41:d7:a2:e9: b9:13:32:67:6c:ff:d5:1a:5d:b1:56:0a:f3:fd:3a:ee:71:d2: 3b:f4:f6:77:02:cd:c3:8a:4d:81:c4:14:72:64:6b:f5:bd:e4: 54:d5:91:fd:78:25:eb:93:a5:ce:4a:b3:00:81:ec:5f:fc:75: c1:01:3f:11:ec:a6:d8:e2:a7:78:a9:58:aa:2f:60:d7:8f:ac: bf:48:03:c5:f7:2a:86:b6:a0:2a:cf:11:05:88:59:ab:f5:c0: 7c:35:5f:d1:3c:58:c4:7d:47:af:12:6b:3a:a2:7f:aa:a5:e1: 9d:2f:42:ad -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkAn4y8ptSonis/LBpvtWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2NTEyMmMwZTU2MmU0MDc5NzY4MjNkOTRlMTllMmE3OTRm OGNiNjIwHhcNMjYwMjA5MTgwMDM5WhcNMjYwMjEwMTgwMDM5WjAzMTEwLwYDVQQD EygwNDJiYzQzMGQ3ZDkxY2VlZGJjNWJiMmViOTI5ZWJmODAzMjQ1YzdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAti9DhZr49YQ7ewCEiHlIeQ/dTwr4 mEAqssMuDFtX1k4RISGTXyXjvjKhBhtQyvgN5PsjJ/PPhUevbnkQuK/N7iq6ABCC nKnkUKpM4L+QeTLaD3Ryldwq3DRaSCmn7HWgI0T5t4m+nFVmpapj4XYRAhVclkcR CJuXCoRa6D9N+1gVKhe8Pq49jAuEXpRo1Ge+AgyEQqzguDv+u1xcCt45+PAgISPE +3N71YIqIBQlamC5sOoRnKQip63JMDxoGe5zSdaYZHmWVxJ6cmr6B8ce6iJKTfDh dFMNzRgt57uZdRzN28kWAR+8TdPLaqXf2Qph3I1Jvet4b5X/9WU9Ok+7yQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAQrxDDX2Rzu28W7Lrkp6/gDJFx6MB8GA1UdIwQY MBaAFIZRIsDlYuQHl2gj2U4Z4qeU+MtiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGxFaXdPVmk1QWVYYUNQWlRobmlwNVQ0eTJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni8wMjhiODItZmUwMy00MDI1LTk3NjUt YjhkZDE4ZTQ4ZTg2LzEvaGxFaXdPVmk1QWVYYUNQWlRobmlwNVQ0eTJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni8wMjhiODItZmUwMy00MDI1LTk3NjUtYjhkZDE4ZTQ4ZTg2 LzEvaGxFaXdPVmk1QWVYYUNQWlRobmlwNVQ0eTJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAazzpAcLD Luw32YT2s2KixbtX5tad3FSBCBWONeeRilmvqxBXdi6P2Bvas6Juu+uWO6/v2raT WXSi+7IlT9dydqXKaLQQSvsgJo4Jfl5lQ9JQyyzXnycTLXaVySFWKPdf6Phvpnkg vKlgXVXos5m7gCGJZ8oQB9cJ24xInmALOMuVkdNVLyJQogGRhiNB16LpuRMyZ2z/ 1RpdsVYK8/067nHSO/T2dwLNw4pNgcQUcmRr9b3kVNWR/Xgl65OlzkqzAIHsX/x1 wQE/Eeym2OKneKlYqi9g14+sv0gDxfcqhragKs8RBYhZq/XAfDVf0TxYxH1HrxJr OqJ/qqXhnS9CrQ== -----END CERTIFICATE-----Generated at Tue Feb 10 02:52:16 2026 by rpki-client