This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/a58a1e-f733-4d9e-88f6-3414367b2d7e/1/h6xJPPKny2pLNPTYtva3eyqVXpc.mft File: h6xJPPKny2pLNPTYtva3eyqVXpc.mft (raw, json) Hash identifier: Xku/NdnsSJr7VWHmIE9UKtdQb0xzCeifxcfWInxHrtE= Subject key identifier: 06:26:EB:80:F2:9C:9B:26:A2:45:2B:ED:AC:F1:FD:70:BD:32:18:A1 Authority key identifier: 87:AC:49:3C:F2:A7:CB:6A:4B:34:F4:D8:B6:F6:B7:7B:2A:95:5E:97 Certificate issuer: /CN=87ac493cf2a7cb6a4b34f4d8b6f6b77b2a955e97 Certificate serial: 019C427D53D4B75E40CEA0959AC37C87172B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h6xJPPKny2pLNPTYtva3eyqVXpc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/a58a1e-f733-4d9e-88f6-3414367b2d7e/1/h6xJPPKny2pLNPTYtva3eyqVXpc.mft Manifest number: 0D54 Signing time: Mon 09 Feb 2026 13:00:35 +0000 Manifest this update: Mon 09 Feb 2026 13:00:35 +0000 Manifest next update: Tue 10 Feb 2026 13:00:35 +0000 Files and hashes: 1: h6xJPPKny2pLNPTYtva3eyqVXpc.crl (hash: CnxxTmIslxXqqG2OY3RiPYjUzV30lXG91yJFWuusQV4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/a58a1e-f733-4d9e-88f6-3414367b2d7e/1/h6xJPPKny2pLNPTYtva3eyqVXpc.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/a58a1e-f733-4d9e-88f6-3414367b2d7e/1/h6xJPPKny2pLNPTYtva3eyqVXpc.mft rsync://rpki.ripe.net/repository/DEFAULT/h6xJPPKny2pLNPTYtva3eyqVXpc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:53:d4:b7:5e:40:ce:a0:95:9a:c3:7c:87:17:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87ac493cf2a7cb6a4b34f4d8b6f6b77b2a955e97 Validity Not Before: Feb 9 13:00:35 2026 GMT Not After : Feb 10 13:00:35 2026 GMT Subject: CN=0626eb80f29c9b26a2452bedacf1fd70bd3218a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c0:73:79:1f:82:28:69:29:ca:58:7c:7f:39: b9:3b:fb:8e:3e:2e:1e:78:2a:0c:9c:cc:c8:67:5a: 97:19:c9:9b:8c:35:ef:f0:8a:c2:0b:7c:d2:1c:69: 17:79:81:b5:47:46:b9:84:4b:77:1c:f8:92:65:0b: 0a:e6:2c:3d:b9:5a:9e:be:7f:69:0f:ab:c9:88:8f: e5:ad:b3:c3:03:b3:a9:b8:1e:e9:ef:0c:aa:54:6f: 1e:ca:20:33:d4:f1:9d:e6:7e:76:ec:55:b4:19:91: 32:d5:ea:e3:07:8c:16:25:a5:d1:f9:9e:1e:35:70: 7c:6e:ae:ca:49:44:84:93:b1:2d:b7:68:da:09:13: 41:f5:69:0c:1d:87:23:3b:87:d8:af:7c:78:c7:40: 83:98:83:aa:89:c6:ee:28:96:c8:56:f1:81:d3:c5: 13:19:00:36:10:df:ac:77:67:fe:2e:03:28:1d:81: de:b0:2e:bc:91:c6:08:bb:1d:50:2a:37:cd:11:99: a9:bc:aa:3b:83:ad:10:a6:e1:7f:87:48:e3:a3:c3: a7:06:df:2f:3d:aa:d4:b2:5c:02:bc:7a:d4:07:76: c7:d2:fd:04:97:82:74:d6:96:db:a9:29:01:7b:23: d0:82:ee:a0:1a:fb:24:16:71:d1:96:aa:a9:87:ab: 8d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:26:EB:80:F2:9C:9B:26:A2:45:2B:ED:AC:F1:FD:70:BD:32:18:A1 X509v3 Authority Key Identifier: keyid:87:AC:49:3C:F2:A7:CB:6A:4B:34:F4:D8:B6:F6:B7:7B:2A:95:5E:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h6xJPPKny2pLNPTYtva3eyqVXpc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/a58a1e-f733-4d9e-88f6-3414367b2d7e/1/h6xJPPKny2pLNPTYtva3eyqVXpc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/a58a1e-f733-4d9e-88f6-3414367b2d7e/1/h6xJPPKny2pLNPTYtva3eyqVXpc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:a6:22:76:ae:29:7f:aa:40:ee:74:b7:52:89:50:be:c2:b7: 78:03:14:0b:f4:d1:d3:68:43:f4:9a:9a:4e:a9:ca:2a:78:13: 28:de:31:e1:39:64:34:8b:35:46:02:74:dd:1f:83:cf:50:42: 84:54:1f:eb:ff:ea:29:bd:8d:b4:09:47:f1:60:48:b5:fd:66: 28:ed:76:04:2c:27:5e:db:86:0a:ec:87:8c:30:9c:b9:29:1b: bf:75:3b:57:1c:1b:58:a0:64:8c:e1:29:a4:88:e4:cf:b1:94: 79:4c:e7:9e:16:d1:9a:13:ea:1d:24:66:20:e0:0d:49:a5:cc: 13:b9:50:d5:5f:79:de:76:11:3d:df:be:f1:3c:f3:16:73:4f: 0f:61:c5:6a:a9:c0:c9:10:5d:d8:1a:10:89:1a:22:ce:ec:7a: 15:0e:7d:31:17:9c:77:7d:07:90:90:3c:3d:b3:e7:6d:f3:f7: 27:2f:10:8c:63:3b:22:3e:c3:90:65:ea:d3:8c:7b:a8:a8:3e: bb:86:ae:f1:8c:ea:51:5e:04:76:e6:7b:d9:67:cd:54:a8:ac: 9d:71:de:1c:e5:63:4f:1a:fa:d6:19:72:fd:4b:ae:41:b3:8f: 80:87:9f:f1:f1:2a:24:40:4e:1b:07:96:83:b0:78:4f:bd:f4: f6:66:b0:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfVPUt15AzqCVmsN8hxcrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3YWM0OTNjZjJhN2NiNmE0YjM0ZjRkOGI2ZjZiNzdiMmE5 NTVlOTcwHhcNMjYwMjA5MTMwMDM1WhcNMjYwMjEwMTMwMDM1WjAzMTEwLwYDVQQD EygwNjI2ZWI4MGYyOWM5YjI2YTI0NTJiZWRhY2YxZmQ3MGJkMzIxOGExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtsBzeR+CKGkpylh8fzm5O/uOPi4e eCoMnMzIZ1qXGcmbjDXv8IrCC3zSHGkXeYG1R0a5hEt3HPiSZQsK5iw9uVqevn9p D6vJiI/lrbPDA7OpuB7p7wyqVG8eyiAz1PGd5n527FW0GZEy1erjB4wWJaXR+Z4e NXB8bq7KSUSEk7Ett2jaCRNB9WkMHYcjO4fYr3x4x0CDmIOqicbuKJbIVvGB08UT GQA2EN+sd2f+LgMoHYHesC68kcYIux1QKjfNEZmpvKo7g60QpuF/h0jjo8OnBt8v ParUslwCvHrUB3bH0v0El4J01pbbqSkBeyPQgu6gGvskFnHRlqqph6uNSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAYm64DynJsmokUr7azx/XC9MhihMB8GA1UdIwQY MBaAFIesSTzyp8tqSzT02Lb2t3sqlV6XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDZ4SlBQS255MnBMTlBUWXR2YTNleXFWWHBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy9hNThhMWUtZjczMy00ZDllLTg4ZjYt MzQxNDM2N2IyZDdlLzEvaDZ4SlBQS255MnBMTlBUWXR2YTNleXFWWHBjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy9hNThhMWUtZjczMy00ZDllLTg4ZjYtMzQxNDM2N2IyZDdl LzEvaDZ4SlBQS255MnBMTlBUWXR2YTNleXFWWHBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADqYidq4p f6pA7nS3UolQvsK3eAMUC/TR02hD9JqaTqnKKngTKN4x4TlkNIs1RgJ03R+Dz1BC hFQf6//qKb2NtAlH8WBItf1mKO12BCwnXtuGCuyHjDCcuSkbv3U7VxwbWKBkjOEp pIjkz7GUeUznnhbRmhPqHSRmIOANSaXME7lQ1V953nYRPd++8TzzFnNPD2HFaqnA yRBd2BoQiRoizux6FQ59MRecd30HkJA8PbPnbfP3Jy8QjGM7Ij7DkGXq04x7qKg+ u4au8YzqUV4EduZ72WfNVKisnXHeHOVjTxr61hly/UuuQbOPgIef8fEqJEBOGweW g7B4T7309mawtA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:49:11 2026 by rpki-client