This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.mft File: h9OLoS9GKcITH8YOiVDWwwO-fSI.mft (raw, json) Hash identifier: UBLPJ7aiTeLA4JgBBPRbgIZRZXDjp5+78PcNCuU91Jw= Subject key identifier: 06:87:81:D3:D1:D3:7B:B1:75:9A:44:6D:13:E4:6E:E5:7F:8A:F5:4B Authority key identifier: 87:D3:8B:A1:2F:46:29:C2:13:1F:C6:0E:89:50:D6:C3:03:BE:7D:22 Certificate issuer: /CN=87d38ba12f4629c2131fc60e8950d6c303be7d22 Certificate serial: 019C42B486CCC46799EBC57D9FD9E155F715 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9OLoS9GKcITH8YOiVDWwwO-fSI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.mft Manifest number: 0972 Signing time: Mon 09 Feb 2026 14:00:53 +0000 Manifest this update: Mon 09 Feb 2026 14:00:53 +0000 Manifest next update: Tue 10 Feb 2026 14:00:53 +0000 Files and hashes: 1: P9OMN6vgdLJtD09eskr6MgjyHfg.roa (hash: SopYEJD5bVxHlDcqx6I2t8+qQOHpKjNg8JsM2U0RHno=) 2: h9OLoS9GKcITH8YOiVDWwwO-fSI.crl (hash: 0yb79517II+KGAp55NJRrnRFllVIrLIgShbnTjwV3Vo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.mft rsync://rpki.ripe.net/repository/DEFAULT/h9OLoS9GKcITH8YOiVDWwwO-fSI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:86:cc:c4:67:99:eb:c5:7d:9f:d9:e1:55:f7:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87d38ba12f4629c2131fc60e8950d6c303be7d22 Validity Not Before: Feb 9 14:00:53 2026 GMT Not After : Feb 10 14:00:53 2026 GMT Subject: CN=068781d3d1d37bb1759a446d13e46ee57f8af54b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5d:eb:44:fa:3a:a9:51:46:ab:46:09:f2:c2: c4:3c:6a:b0:71:0f:81:ed:e8:49:89:2c:05:cc:bd: 75:cc:1b:91:5c:79:1a:c7:09:bb:f4:01:b6:52:85: c5:6a:31:9d:25:b1:b1:4c:02:70:6e:85:c0:21:41: 0e:78:b4:b3:51:3b:9e:a5:fe:2f:d3:ec:07:f0:7f: c6:e5:0f:a8:be:09:c8:10:a6:75:81:ff:5c:e7:15: c0:c8:51:c4:d0:b8:22:ac:5f:9f:ef:60:a9:ab:2c: 30:f7:64:20:f6:13:47:3e:90:11:da:52:aa:c3:9b: 86:54:f4:d7:15:d4:8f:6b:c3:42:64:2f:f3:91:78: 5d:10:27:04:e4:02:19:2e:c4:4b:90:32:ad:f8:f0: ec:fe:c8:f6:5b:c1:ab:21:6b:52:a2:4c:d1:18:45: 74:20:50:3c:91:1f:26:f0:b9:8a:13:57:20:6b:03: e7:28:96:f3:06:67:48:3c:d8:85:36:3f:94:73:fa: 07:a6:21:d3:63:b1:c5:9b:b9:b0:4a:f3:c3:f9:dc: 97:71:11:c3:bd:e8:d0:f4:73:78:1a:2c:d4:10:a2: 54:38:3c:98:f5:61:e1:6d:df:95:4e:02:66:ee:15: 1f:25:3f:1a:61:2d:f3:5f:60:b6:3f:0a:13:48:91: 5c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:87:81:D3:D1:D3:7B:B1:75:9A:44:6D:13:E4:6E:E5:7F:8A:F5:4B X509v3 Authority Key Identifier: keyid:87:D3:8B:A1:2F:46:29:C2:13:1F:C6:0E:89:50:D6:C3:03:BE:7D:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9OLoS9GKcITH8YOiVDWwwO-fSI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:56:b4:0b:6b:37:33:df:68:bc:32:10:a6:04:63:d3:7a:a2: 39:da:90:9b:76:3c:fc:d0:53:11:8a:14:26:5d:b6:40:62:f7: f5:76:82:e0:b6:69:82:3e:4a:e5:2e:28:e7:cf:ce:59:b2:b3: 71:73:25:11:5f:27:2c:f6:4a:b9:dc:3e:9e:f6:8c:11:33:be: 0a:86:77:ee:1f:cc:a4:36:e0:93:20:97:05:ab:34:ce:a8:df: 14:ad:e0:08:0e:07:54:84:dc:fb:e1:12:03:95:99:fd:ad:a0: 5a:44:33:24:1f:49:09:30:07:ad:e7:88:f9:36:17:87:60:3f: 8b:0e:a2:16:f2:49:61:b8:b0:09:36:fe:5d:35:91:3e:82:d7: eb:8a:05:d8:44:b6:3e:7c:63:c4:f3:b1:9a:c3:ec:22:ba:76: 4d:9c:b9:7d:1a:50:8c:20:98:45:44:68:bf:6b:3e:89:73:3e: 16:af:b6:43:cb:43:93:39:ce:7a:d4:75:b0:c8:ab:36:9b:e6: a6:27:52:c6:bc:8c:b1:20:6d:01:dd:06:18:4a:4e:41:89:d2: 7a:50:62:c5:78:ce:24:11:3b:9d:e4:9c:c7:7f:29:7f:2c:ed: e7:dd:27:47:cb:13:3e:6b:87:56:d8:6e:58:cd:ea:23:c3:ff: 24:67:88:02 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtIbMxGeZ68V9n9nhVfcVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3ZDM4YmExMmY0NjI5YzIxMzFmYzYwZTg5NTBkNmMzMDNi ZTdkMjIwHhcNMjYwMjA5MTQwMDUzWhcNMjYwMjEwMTQwMDUzWjAzMTEwLwYDVQQD EygwNjg3ODFkM2QxZDM3YmIxNzU5YTQ0NmQxM2U0NmVlNTdmOGFmNTRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1l3rRPo6qVFGq0YJ8sLEPGqwcQ+B 7ehJiSwFzL11zBuRXHkaxwm79AG2UoXFajGdJbGxTAJwboXAIUEOeLSzUTuepf4v 0+wH8H/G5Q+ovgnIEKZ1gf9c5xXAyFHE0LgirF+f72Cpqyww92Qg9hNHPpAR2lKq w5uGVPTXFdSPa8NCZC/zkXhdECcE5AIZLsRLkDKt+PDs/sj2W8GrIWtSokzRGEV0 IFA8kR8m8LmKE1cgawPnKJbzBmdIPNiFNj+Uc/oHpiHTY7HFm7mwSvPD+dyXcRHD vejQ9HN4GizUEKJUODyY9WHhbd+VTgJm7hUfJT8aYS3zX2C2PwoTSJFcUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAaHgdPR03uxdZpEbRPkbuV/ivVLMB8GA1UdIwQY MBaAFIfTi6EvRinCEx/GDolQ1sMDvn0iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDlPTG9TOUdLY0lUSDhZT2lWRFd3d08tZlNJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi8zZDIxNDEtZWNiOC00Mjg5LTk2Njkt ZmQ1NWM1OGVkYWY3LzEvaDlPTG9TOUdLY0lUSDhZT2lWRFd3d08tZlNJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi8zZDIxNDEtZWNiOC00Mjg5LTk2NjktZmQ1NWM1OGVkYWY3 LzEvaDlPTG9TOUdLY0lUSDhZT2lWRFd3d08tZlNJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgVa0C2s3 M99ovDIQpgRj03qiOdqQm3Y8/NBTEYoUJl22QGL39XaC4LZpgj5K5S4o58/OWbKz cXMlEV8nLPZKudw+nvaMETO+CoZ37h/MpDbgkyCXBas0zqjfFK3gCA4HVITc++ES A5WZ/a2gWkQzJB9JCTAHreeI+TYXh2A/iw6iFvJJYbiwCTb+XTWRPoLX64oF2ES2 PnxjxPOxmsPsIrp2TZy5fRpQjCCYRURov2s+iXM+Fq+2Q8tDkznOetR1sMirNpvm pidSxryMsSBtAd0GGEpOQYnSelBixXjOJBE7neScx38pfyzt590nR8sTPmuHVthu WM3qI8P/JGeIAg== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:11 2026 by rpki-client