This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft File: h5WLpmHENczSXCBgRi72ANJxnuA.mft (raw, json) Hash identifier: TyYlJwBOTqxmH4fFLZDP9DXAJ7pHSct2gW0YBTJqb34= Subject key identifier: 57:CE:AF:C6:F0:2D:C3:1D:3F:F2:D8:4E:99:18:EB:27:3C:09:75:F0 Authority key identifier: 87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0 Certificate issuer: /CN=87958ba661c435ccd25c2060462ef600d2719ee0 Certificate serial: 019C43909C54A2510C1E6CF9CD71B447768F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft Manifest number: 1812 Signing time: Mon 09 Feb 2026 18:01:16 +0000 Manifest this update: Mon 09 Feb 2026 18:01:16 +0000 Manifest next update: Tue 10 Feb 2026 18:01:16 +0000 Files and hashes: 1: ff3rWotipxB5dvlUy4f5nYkMPs0.roa (hash: 0kFsDh0f69aGD5kG+8GzoVmb9MJyy9m9HMkqJTww73U=) 2: h5WLpmHENczSXCBgRi72ANJxnuA.crl (hash: 88gin9E1HV2W5zEpTxDVAnHiezkIKw+xJ3r5k/AqWl0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:9c:54:a2:51:0c:1e:6c:f9:cd:71:b4:47:76:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87958ba661c435ccd25c2060462ef600d2719ee0 Validity Not Before: Feb 9 18:01:16 2026 GMT Not After : Feb 10 18:01:16 2026 GMT Subject: CN=57ceafc6f02dc31d3ff2d84e9918eb273c0975f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c9:56:f7:b7:46:50:54:c3:0d:ba:81:65:fd: aa:cd:18:98:69:b8:a8:ba:5f:54:cf:b2:97:a8:f6: c1:88:70:98:c1:f1:63:bb:26:04:aa:20:6f:0b:14: cb:98:ea:dd:44:59:ee:af:90:30:6a:74:c1:f1:0e: ee:da:46:40:10:16:c2:76:4c:c2:8e:ac:eb:39:20: 29:4d:03:80:51:76:a7:dd:af:0f:6e:ee:c2:df:4d: 47:82:8b:65:da:d5:f3:37:a1:f7:97:7b:25:a5:33: 8e:c8:13:05:de:79:02:ef:77:4f:12:2b:80:98:90: f4:48:cc:e5:8e:10:fb:43:f7:64:7f:52:4b:9a:ab: 24:d9:47:e4:c0:74:c5:69:bc:53:89:a5:f6:11:73: d3:8a:32:6a:45:23:7c:48:71:09:31:2a:eb:10:20: d4:77:1d:75:79:e1:3d:14:4a:0c:86:9e:29:ed:63: f0:f9:de:72:f3:b2:44:3b:ed:37:e6:89:1a:db:fe: ea:54:14:47:46:d5:f5:e0:3a:8c:92:cc:d4:2e:1b: 8f:ca:f2:d8:3e:7d:b9:5b:33:e6:ad:65:c6:8a:90: ff:4f:8c:93:18:27:37:f8:79:a4:73:a4:0e:aa:8a: a3:ad:03:ea:88:67:e2:16:55:ca:a2:fe:15:f2:30: ef:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:CE:AF:C6:F0:2D:C3:1D:3F:F2:D8:4E:99:18:EB:27:3C:09:75:F0 X509v3 Authority Key Identifier: keyid:87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:30:c8:3a:1f:b3:76:f9:85:6e:72:73:b5:31:69:48:e0:e5: 6e:24:67:f6:72:18:cd:a4:6f:8f:a2:3e:d2:2d:b8:04:d7:d4: 6f:92:a1:0e:8e:c4:b5:29:5f:4c:e6:73:d6:9d:a5:6e:1b:ef: f1:27:57:39:0c:e1:27:54:a3:73:4a:97:b8:35:ed:0e:31:4a: 1b:50:1b:d7:00:e2:cf:a7:ab:0f:f4:22:f6:94:08:8c:52:db: 4c:e4:26:38:57:3c:77:55:94:c2:7c:b4:3a:b9:5d:d5:0c:39: 06:ab:13:db:09:2b:24:66:3d:97:ac:0b:ef:15:29:b6:dc:fd: f2:1b:f3:47:3d:70:4a:f1:06:98:16:77:34:2e:bc:38:10:68: e7:e2:41:31:c7:5f:c7:05:c7:b6:0b:1f:97:99:89:de:99:bc: ec:80:dd:17:b4:6e:fd:cb:32:7d:e8:58:bb:29:1f:c0:cb:c4: c1:3a:17:55:dc:17:98:e6:4f:05:5e:75:36:62:1e:1a:cd:d9: d9:40:51:9e:35:5b:ed:b0:b5:69:9c:b1:d9:51:f0:a4:1e:01: b6:0e:d1:97:5f:d6:6f:32:cd:04:74:95:7b:91:d3:ea:cc:19: 3f:16:8d:b6:b4:10:f8:0a:85:ce:44:6f:d2:47:53:65:ed:35: 34:44:39:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkJxUolEMHmz5zXG0R3aPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3OTU4YmE2NjFjNDM1Y2NkMjVjMjA2MDQ2MmVmNjAwZDI3 MTllZTAwHhcNMjYwMjA5MTgwMTE2WhcNMjYwMjEwMTgwMTE2WjAzMTEwLwYDVQQD Eyg1N2NlYWZjNmYwMmRjMzFkM2ZmMmQ4NGU5OTE4ZWIyNzNjMDk3NWYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx8lW97dGUFTDDbqBZf2qzRiYabio ul9Uz7KXqPbBiHCYwfFjuyYEqiBvCxTLmOrdRFnur5AwanTB8Q7u2kZAEBbCdkzC jqzrOSApTQOAUXan3a8Pbu7C301Hgotl2tXzN6H3l3slpTOOyBMF3nkC73dPEiuA mJD0SMzljhD7Q/dkf1JLmqsk2UfkwHTFabxTiaX2EXPTijJqRSN8SHEJMSrrECDU dx11eeE9FEoMhp4p7WPw+d5y87JEO+035oka2/7qVBRHRtX14DqMkszULhuPyvLY Pn25WzPmrWXGipD/T4yTGCc3+Hmkc6QOqoqjrQPqiGfiFlXKov4V8jDvgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFfOr8bwLcMdP/LYTpkY6yc8CXXwMB8GA1UdIwQY MBaAFIeVi6ZhxDXM0lwgYEYu9gDScZ7gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDVXTHBtSEVOY3pTWENCZ1JpNzJBTkp4bnVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni82NWNmMGEtYWRlMy00MGIxLTk5ODct OGMzNGU0Y2Y5MDI2LzEvaDVXTHBtSEVOY3pTWENCZ1JpNzJBTkp4bnVBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni82NWNmMGEtYWRlMy00MGIxLTk5ODctOGMzNGU0Y2Y5MDI2 LzEvaDVXTHBtSEVOY3pTWENCZ1JpNzJBTkp4bnVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUTDIOh+z dvmFbnJztTFpSODlbiRn9nIYzaRvj6I+0i24BNfUb5KhDo7EtSlfTOZz1p2lbhvv 8SdXOQzhJ1Sjc0qXuDXtDjFKG1Ab1wDiz6erD/Qi9pQIjFLbTOQmOFc8d1WUwny0 Orld1Qw5BqsT2wkrJGY9l6wL7xUpttz98hvzRz1wSvEGmBZ3NC68OBBo5+JBMcdf xwXHtgsfl5mJ3pm87IDdF7Ru/csyfehYuykfwMvEwToXVdwXmOZPBV51NmIeGs3Z 2UBRnjVb7bC1aZyx2VHwpB4Btg7Rl1/WbzLNBHSVe5HT6swZPxaNtrQQ+AqFzkRv 0kdTZe01NEQ5DQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:37:36 2026 by rpki-client