This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.mft File: hRwoH1drQ6HKuVPJIEHOlZknDHg.mft (raw, json) Hash identifier: MKvBXqjVd+PyjZee7iZjzfc6+OooLa87aleLUSZn25E= Subject key identifier: 7B:61:AE:81:B8:B1:B9:69:FF:A9:69:F0:FB:56:9B:24:BC:37:05:72 Authority key identifier: 85:1C:28:1F:57:6B:43:A1:CA:B9:53:C9:20:41:CE:95:99:27:0C:78 Certificate issuer: /CN=851c281f576b43a1cab953c92041ce9599270c78 Certificate serial: 019C427E0C4271E2EE0F4B457A537712F06F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hRwoH1drQ6HKuVPJIEHOlZknDHg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.mft Manifest number: 1697 Signing time: Mon 09 Feb 2026 13:01:22 +0000 Manifest this update: Mon 09 Feb 2026 13:01:22 +0000 Manifest next update: Tue 10 Feb 2026 13:01:22 +0000 Files and hashes: 1: VpPJ4ZzReaEohaymqptLaOAjr1o.roa (hash: lqwSOhzaFJrXfe0L7Qw99FbYMDPv5g1eewbWIKteNLY=) 2: hRwoH1drQ6HKuVPJIEHOlZknDHg.crl (hash: 1Hhk3RJHrDMNBPb+B0rFUK3i/FzlbDE5QFmIIlzoaUQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.crl rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.mft rsync://rpki.ripe.net/repository/DEFAULT/hRwoH1drQ6HKuVPJIEHOlZknDHg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7e:0c:42:71:e2:ee:0f:4b:45:7a:53:77:12:f0:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=851c281f576b43a1cab953c92041ce9599270c78 Validity Not Before: Feb 9 13:01:22 2026 GMT Not After : Feb 10 13:01:22 2026 GMT Subject: CN=7b61ae81b8b1b969ffa969f0fb569b24bc370572 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:5c:f1:cc:e5:b5:4a:9f:eb:4d:4e:10:33:72: fd:a4:84:a3:d3:3b:d5:a1:3a:08:86:83:06:b5:be: 41:2e:d5:0f:86:cd:49:50:2c:32:85:69:6d:20:5c: f3:1d:32:d3:58:43:fd:b7:80:51:8f:bd:a5:13:69: 7b:7f:72:8a:c5:80:e3:23:10:2f:01:47:bc:61:72: 02:57:2d:eb:c1:9a:ed:e9:15:dd:05:b1:9d:33:fd: 6f:a3:6a:a0:3a:06:d9:75:e1:ac:16:95:63:f6:c8: 9d:d5:04:90:29:8d:c9:10:bb:14:06:58:d9:db:46: dc:7c:d0:c5:58:61:52:1c:26:6d:0f:c1:45:a0:0b: 1b:88:7f:8e:ea:f5:d1:e7:bf:d9:ed:47:7d:77:81: 68:4e:93:c7:75:b8:cd:a9:3e:4a:0d:21:6a:f2:d8: 30:be:c0:51:8c:fa:ba:25:d7:ab:d1:2b:18:a3:8e: 99:bf:33:c8:7a:60:a1:ae:bf:93:3f:ae:14:30:4c: 9c:b3:c4:d2:c8:b4:e7:1c:45:9b:ca:6f:59:0b:c7: ce:42:66:28:e3:ee:f1:34:26:f6:8f:06:7d:23:2d: 3e:5e:13:07:56:8d:d9:07:e3:54:61:78:01:0e:ed: 12:be:23:77:f6:78:83:87:90:5a:d9:c3:77:3b:c6: 8e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:61:AE:81:B8:B1:B9:69:FF:A9:69:F0:FB:56:9B:24:BC:37:05:72 X509v3 Authority Key Identifier: keyid:85:1C:28:1F:57:6B:43:A1:CA:B9:53:C9:20:41:CE:95:99:27:0C:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hRwoH1drQ6HKuVPJIEHOlZknDHg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:ab:fc:f4:1f:20:98:bb:5c:c3:49:cc:ef:96:75:37:8a:74: 1c:cf:ef:78:58:a4:77:2e:d1:54:fc:e5:2c:fa:71:2c:11:d3: 06:2a:b8:a9:0b:82:4a:84:ba:a4:61:6b:41:9c:4a:d6:32:b8: 30:3d:fb:55:b5:62:85:de:e5:f5:5d:a5:de:c3:0b:6d:10:f3: 43:04:6b:d8:77:fd:2a:71:fc:81:25:4f:7f:b3:f8:6e:16:3f: 8a:81:5f:9a:0b:f2:36:02:dd:82:b9:0b:01:af:c3:20:93:81: 3b:2f:66:b4:20:e4:c2:f0:48:5d:37:9a:eb:20:b4:f1:4f:2b: 3f:2c:8d:61:8d:fa:37:81:1f:69:8c:2c:32:6c:44:f0:88:18: db:5e:b0:a7:58:94:04:55:45:77:41:8f:37:87:bf:0e:ce:70: 04:98:d1:d3:66:d5:af:5c:e8:5d:1a:58:5d:a9:df:66:51:19: 8d:2a:50:f4:8c:26:ef:65:57:b2:3e:e5:45:f5:37:43:e0:bb: 5c:9a:88:62:94:e7:31:3b:9d:97:a7:82:84:87:aa:4a:f1:92: 6f:08:1d:7e:2b:fa:28:a5:12:9e:64:c6:dd:8c:38:19:15:17: 86:7c:61:b4:3c:b7:4a:68:43:34:eb:d9:ed:ec:d3:2b:a4:6b: a8:27:0f:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfgxCceLuD0tFelN3EvBvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1MWMyODFmNTc2YjQzYTFjYWI5NTNjOTIwNDFjZTk1OTky NzBjNzgwHhcNMjYwMjA5MTMwMTIyWhcNMjYwMjEwMTMwMTIyWjAzMTEwLwYDVQQD Eyg3YjYxYWU4MWI4YjFiOTY5ZmZhOTY5ZjBmYjU2OWIyNGJjMzcwNTcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmVzxzOW1Sp/rTU4QM3L9pISj0zvV oToIhoMGtb5BLtUPhs1JUCwyhWltIFzzHTLTWEP9t4BRj72lE2l7f3KKxYDjIxAv AUe8YXICVy3rwZrt6RXdBbGdM/1vo2qgOgbZdeGsFpVj9sid1QSQKY3JELsUBljZ 20bcfNDFWGFSHCZtD8FFoAsbiH+O6vXR57/Z7Ud9d4FoTpPHdbjNqT5KDSFq8tgw vsBRjPq6Jder0SsYo46ZvzPIemChrr+TP64UMEycs8TSyLTnHEWbym9ZC8fOQmYo 4+7xNCb2jwZ9Iy0+XhMHVo3ZB+NUYXgBDu0SviN39niDh5Ba2cN3O8aO4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHthroG4sblp/6lp8PtWmyS8NwVyMB8GA1UdIwQY MBaAFIUcKB9Xa0OhyrlTySBBzpWZJwx4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFJ3b0gxZHJRNkhLdVZQSklFSE9sWmtuREhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC80YTY4YTctZGMzMS00MGZhLWExMTAt OTFkNTYyMDBiYWY0LzEvaFJ3b0gxZHJRNkhLdVZQSklFSE9sWmtuREhnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC80YTY4YTctZGMzMS00MGZhLWExMTAtOTFkNTYyMDBiYWY0 LzEvaFJ3b0gxZHJRNkhLdVZQSklFSE9sWmtuREhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZav89B8g mLtcw0nM75Z1N4p0HM/veFikdy7RVPzlLPpxLBHTBiq4qQuCSoS6pGFrQZxK1jK4 MD37VbVihd7l9V2l3sMLbRDzQwRr2Hf9KnH8gSVPf7P4bhY/ioFfmgvyNgLdgrkL Aa/DIJOBOy9mtCDkwvBIXTea6yC08U8rPyyNYY36N4EfaYwsMmxE8IgY216wp1iU BFVFd0GPN4e/Ds5wBJjR02bVr1zoXRpYXanfZlEZjSpQ9Iwm72VXsj7lRfU3Q+C7 XJqIYpTnMTudl6eChIeqSvGSbwgdfiv6KKUSnmTG3Yw4GRUXhnxhtDy3SmhDNOvZ 7ezTK6RrqCcP4w== -----END CERTIFICATE-----Generated at Mon Feb 9 22:44:22 2026 by rpki-client