This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.mft File: ihz-evMMHHJdI25KL8Kv1wn65kQ.mft (raw, json) Hash identifier: mfuGUbgHdg89yjQ/9XQinBifhDZnOGG8p0Lzx8gbHKg= Subject key identifier: 11:80:7D:32:01:17:09:43:9E:0D:68:F6:20:5E:B6:0A:46:97:0C:A1 Authority key identifier: 8A:1C:FE:7A:F3:0C:1C:72:5D:23:6E:4A:2F:C2:AF:D7:09:FA:E6:44 Certificate issuer: /CN=8a1cfe7af30c1c725d236e4a2fc2afd709fae644 Certificate serial: 019C43225FF9756B80ABF0F3BB60E290A4CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ihz-evMMHHJdI25KL8Kv1wn65kQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.mft Manifest number: 0BCE Signing time: Mon 09 Feb 2026 16:00:51 +0000 Manifest this update: Mon 09 Feb 2026 16:00:51 +0000 Manifest next update: Tue 10 Feb 2026 16:00:51 +0000 Files and hashes: 1: ihz-evMMHHJdI25KL8Kv1wn65kQ.crl (hash: zcRPGQ0ddrnn+YkFiK5v7b8+s+k0mQU6r+xPzoV2m0g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.crl rsync://rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.mft rsync://rpki.ripe.net/repository/DEFAULT/ihz-evMMHHJdI25KL8Kv1wn65kQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:5f:f9:75:6b:80:ab:f0:f3:bb:60:e2:90:a4:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8a1cfe7af30c1c725d236e4a2fc2afd709fae644 Validity Not Before: Feb 9 16:00:51 2026 GMT Not After : Feb 10 16:00:51 2026 GMT Subject: CN=11807d32011709439e0d68f6205eb60a46970ca1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:64:a8:18:3d:d9:6f:3e:a9:91:5e:a4:51:81: 55:25:71:f3:e9:86:15:03:32:5e:34:bf:64:5f:8c: ed:2a:a7:49:e3:6f:61:8f:ef:65:6c:49:01:bb:7c: c2:ec:16:19:1f:6d:32:90:ca:fb:91:69:a0:39:ac: 68:ae:29:8d:7d:d6:8b:c9:0d:a9:fa:6c:6a:58:64: 75:ff:58:e0:85:48:90:b9:15:40:7a:5f:5c:88:f4: 7e:b4:ac:b3:0f:3d:9d:f6:bf:1d:de:7c:54:80:34: cc:df:76:c8:24:34:f1:1f:f5:e1:01:1a:91:a6:7d: eb:10:35:12:03:b4:36:c8:04:28:a7:7a:a4:d1:2a: 1a:e1:f8:e4:b4:b0:22:56:10:35:70:3e:64:46:32: 7d:93:4d:96:2f:6b:22:5c:4b:5b:8d:ba:b5:cb:ff: 25:86:d9:4e:9c:c1:69:f0:6d:d9:44:cb:2c:69:82: 94:61:19:ab:29:d1:5b:9e:39:05:0f:4b:ef:af:da: df:16:5a:5a:ba:e1:c8:f1:f2:3a:ae:63:c5:f8:7f: 27:83:d0:92:eb:cb:fc:b0:7a:eb:b7:62:a6:6b:0f: 0a:00:d8:bb:06:74:6b:d0:1e:9e:d0:5c:2a:65:f4: e5:1b:06:dd:1d:2c:40:7e:34:f4:92:41:a1:36:08: 99:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:80:7D:32:01:17:09:43:9E:0D:68:F6:20:5E:B6:0A:46:97:0C:A1 X509v3 Authority Key Identifier: keyid:8A:1C:FE:7A:F3:0C:1C:72:5D:23:6E:4A:2F:C2:AF:D7:09:FA:E6:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihz-evMMHHJdI25KL8Kv1wn65kQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/64741b-70ad-44aa-b136-b8a3d1650396/1/ihz-evMMHHJdI25KL8Kv1wn65kQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:ea:c2:7b:67:32:f1:92:85:7f:ce:b4:d0:2d:44:89:53:f5: 32:b0:52:a3:08:7f:3b:1e:44:24:4d:10:08:78:df:d4:69:df: cb:bc:8b:ba:70:94:95:2e:79:4b:38:33:99:cf:27:2c:ab:2f: 29:93:c0:20:25:49:8c:3d:5b:bf:68:cb:9c:78:cd:5b:03:1a: 99:a5:15:d6:90:3b:44:7b:74:b9:68:ef:94:2f:75:f5:a9:90: 7b:3e:dc:5b:62:ef:18:52:71:3a:23:e4:13:8a:07:7e:8c:90: d1:5c:f4:27:1a:ff:4f:db:bd:ec:bf:60:b6:0e:5b:43:94:12: 63:d8:4b:e0:a3:4a:30:9c:c3:51:ca:72:c0:53:72:df:c2:b9: 24:88:86:07:e5:28:c8:07:f5:e6:44:3f:34:2e:fa:29:dd:4e: 74:d8:4b:1c:c3:6e:9d:96:84:dd:87:ce:5d:e4:f2:8d:72:b6: 06:88:ed:e9:e3:92:e4:05:9e:db:34:43:1e:4b:b0:40:1b:41: 18:eb:7e:73:dd:0b:eb:d9:88:bc:04:73:c6:25:54:eb:f9:80: 4b:73:bc:de:81:d8:32:2d:d7:2b:6f:c2:96:89:07:ef:08:ef: 66:16:84:62:f5:94:42:1c:68:d2:f4:0c:6a:5f:72:73:79:f0: f9:68:72:1a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIl/5dWuAq/Dzu2DikKTLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhMWNmZTdhZjMwYzFjNzI1ZDIzNmU0YTJmYzJhZmQ3MDlm YWU2NDQwHhcNMjYwMjA5MTYwMDUxWhcNMjYwMjEwMTYwMDUxWjAzMTEwLwYDVQQD EygxMTgwN2QzMjAxMTcwOTQzOWUwZDY4ZjYyMDVlYjYwYTQ2OTcwY2ExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApGSoGD3Zbz6pkV6kUYFVJXHz6YYV AzJeNL9kX4ztKqdJ429hj+9lbEkBu3zC7BYZH20ykMr7kWmgOaxorimNfdaLyQ2p +mxqWGR1/1jghUiQuRVAel9ciPR+tKyzDz2d9r8d3nxUgDTM33bIJDTxH/XhARqR pn3rEDUSA7Q2yAQop3qk0Soa4fjktLAiVhA1cD5kRjJ9k02WL2siXEtbjbq1y/8l htlOnMFp8G3ZRMssaYKUYRmrKdFbnjkFD0vvr9rfFlpauuHI8fI6rmPF+H8ng9CS 68v8sHrrt2Kmaw8KANi7BnRr0B6e0FwqZfTlGwbdHSxAfjT0kkGhNgiZPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBGAfTIBFwlDng1o9iBetgpGlwyhMB8GA1UdIwQY MBaAFIoc/nrzDBxyXSNuSi/Cr9cJ+uZEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWh6LWV2TU1ISEpkSTI1S0w4S3Yxd242NWtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny82NDc0MWItNzBhZC00NGFhLWIxMzYt YjhhM2QxNjUwMzk2LzEvaWh6LWV2TU1ISEpkSTI1S0w4S3Yxd242NWtRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny82NDc0MWItNzBhZC00NGFhLWIxMzYtYjhhM2QxNjUwMzk2 LzEvaWh6LWV2TU1ISEpkSTI1S0w4S3Yxd242NWtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOerCe2cy 8ZKFf8600C1EiVP1MrBSowh/Ox5EJE0QCHjf1Gnfy7yLunCUlS55Szgzmc8nLKsv KZPAICVJjD1bv2jLnHjNWwMamaUV1pA7RHt0uWjvlC919amQez7cW2LvGFJxOiPk E4oHfoyQ0Vz0Jxr/T9u97L9gtg5bQ5QSY9hL4KNKMJzDUcpywFNy38K5JIiGB+Uo yAf15kQ/NC76Kd1OdNhLHMNunZaE3YfOXeTyjXK2Bojt6eOS5AWe2zRDHkuwQBtB GOt+c90L69mIvARzxiVU6/mAS3O83oHYMi3XK2/ClokH7wjvZhaEYvWUQhxo0vQM al9yc3nw+WhyGg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:11 2026 by rpki-client