This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/f60d31-c748-4eb7-b781-098d3bd0b951/1/rh967y8S0HaqitWli8uNyvPwvUw.mft File: rh967y8S0HaqitWli8uNyvPwvUw.mft (raw, json) Hash identifier: twB5AGGt3LvqiUbkHF9l6hwl7zZFxgMvHvqd5VjUpLQ= Subject key identifier: BF:03:5F:EB:51:45:08:63:DE:E4:AC:2C:80:DE:0B:3B:3A:E3:B3:51 Authority key identifier: AE:1F:7A:EF:2F:12:D0:76:AA:8A:D5:A5:8B:CB:8D:CA:F3:F0:BD:4C Certificate issuer: /CN=ae1f7aef2f12d076aa8ad5a58bcb8dcaf3f0bd4c Certificate serial: 019C43906389D706CEE2281E786BDEDEA02E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rh967y8S0HaqitWli8uNyvPwvUw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/f60d31-c748-4eb7-b781-098d3bd0b951/1/rh967y8S0HaqitWli8uNyvPwvUw.mft Manifest number: 135F Signing time: Mon 09 Feb 2026 18:01:01 +0000 Manifest this update: Mon 09 Feb 2026 18:01:01 +0000 Manifest next update: Tue 10 Feb 2026 18:01:01 +0000 Files and hashes: 1: rh967y8S0HaqitWli8uNyvPwvUw.crl (hash: mlUysLsXFv6vK5HtjNeLn/hVhgVEC6INIsVTmEbNBH0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/f60d31-c748-4eb7-b781-098d3bd0b951/1/rh967y8S0HaqitWli8uNyvPwvUw.crl rsync://rpki.ripe.net/repository/DEFAULT/91/f60d31-c748-4eb7-b781-098d3bd0b951/1/rh967y8S0HaqitWli8uNyvPwvUw.mft rsync://rpki.ripe.net/repository/DEFAULT/rh967y8S0HaqitWli8uNyvPwvUw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:63:89:d7:06:ce:e2:28:1e:78:6b:de:de:a0:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae1f7aef2f12d076aa8ad5a58bcb8dcaf3f0bd4c Validity Not Before: Feb 9 18:01:01 2026 GMT Not After : Feb 10 18:01:01 2026 GMT Subject: CN=bf035feb51450863dee4ac2c80de0b3b3ae3b351 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:72:ea:0b:3b:f1:a2:2d:cb:99:fa:1d:a4:44: 95:c5:15:cc:9e:00:a5:d7:5a:87:ff:eb:9e:40:5a: a4:36:e6:18:42:85:cb:03:33:ef:83:89:d2:78:78: 49:60:e8:ae:69:ab:6c:c7:39:71:7d:e4:ef:9d:c0: 87:79:21:e5:76:62:4e:88:f6:f3:cd:c2:88:8a:b5: 73:f8:dc:90:17:f6:07:8a:63:68:2a:90:9d:8d:eb: fc:6d:54:33:79:43:af:b4:d6:4c:21:c4:d4:6c:fe: e9:98:61:10:5a:d7:4f:4e:8e:9b:a3:72:c6:6c:cd: a3:75:b0:40:d6:d4:14:4e:cc:64:11:cd:ff:4b:85: d8:3c:5b:76:9d:c7:dd:7c:a0:3a:36:aa:75:9d:fd: 71:02:b5:8f:e2:74:4a:ea:1a:ee:d4:e9:b3:e8:1b: 60:a0:33:38:58:9c:dc:0f:4e:e7:53:ca:a3:8b:31: 8b:fc:17:c2:ef:23:a7:7f:e9:88:42:21:d2:90:5f: ab:2f:d8:d6:ea:78:df:a4:13:ac:f0:5f:d8:00:47: b1:d0:d3:75:47:84:21:9a:02:1d:36:06:4d:39:43: 5d:f4:de:94:b6:8e:ed:95:f1:11:0e:80:33:da:4f: 5b:d4:f9:6b:9c:d7:5f:26:ad:95:9b:f6:66:8c:83: e6:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:03:5F:EB:51:45:08:63:DE:E4:AC:2C:80:DE:0B:3B:3A:E3:B3:51 X509v3 Authority Key Identifier: keyid:AE:1F:7A:EF:2F:12:D0:76:AA:8A:D5:A5:8B:CB:8D:CA:F3:F0:BD:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rh967y8S0HaqitWli8uNyvPwvUw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/f60d31-c748-4eb7-b781-098d3bd0b951/1/rh967y8S0HaqitWli8uNyvPwvUw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/91/f60d31-c748-4eb7-b781-098d3bd0b951/1/rh967y8S0HaqitWli8uNyvPwvUw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:34:7d:31:cd:78:56:a4:18:50:e2:c9:fd:5a:29:01:6c:54: fc:07:76:8a:a2:90:42:af:0c:6a:0b:c2:b5:e8:c1:be:76:92: bc:de:f6:25:9d:37:3a:30:95:7e:87:66:36:92:13:f8:86:94: d8:c3:d5:ae:a4:35:8e:a6:de:7e:9b:04:a3:95:bc:1a:f4:93: 63:e5:92:c5:47:af:54:c2:1b:e8:ea:73:17:e4:04:2e:bd:5f: 35:ea:28:2d:5c:7d:b1:b4:d4:9e:19:c9:5f:5c:eb:d8:c8:c5: 58:e0:d7:46:5b:d2:b4:f6:6f:22:0a:9c:f1:1c:8b:d4:54:30: 15:ef:f6:57:87:ff:20:02:35:1f:2a:8c:31:f3:da:06:39:c5: 2b:e5:f4:16:1d:df:ae:13:d1:b8:98:8e:30:73:f7:0f:96:22: 67:17:6d:c5:49:56:ac:e6:da:0b:b7:36:6d:17:ed:12:73:36: f4:a7:e8:ac:bc:99:90:dd:44:27:21:b1:19:b5:ef:d1:61:29: 7a:5e:a0:1f:44:55:93:60:69:98:b6:e0:05:87:a5:b9:cd:ef: 9d:76:24:b6:fa:7a:9b:b4:c4:31:2c:9a:24:46:79:4e:91:82: ea:b8:5c:a9:a3:7a:f0:f2:9f:af:9c:56:29:26:30:77:c5:68: a6:bc:b2:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkGOJ1wbO4igeeGve3qAuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlMWY3YWVmMmYxMmQwNzZhYThhZDVhNThiY2I4ZGNhZjNm MGJkNGMwHhcNMjYwMjA5MTgwMTAxWhcNMjYwMjEwMTgwMTAxWjAzMTEwLwYDVQQD EyhiZjAzNWZlYjUxNDUwODYzZGVlNGFjMmM4MGRlMGIzYjNhZTNiMzUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq3LqCzvxoi3LmfodpESVxRXMngCl 11qH/+ueQFqkNuYYQoXLAzPvg4nSeHhJYOiuaatsxzlxfeTvncCHeSHldmJOiPbz zcKIirVz+NyQF/YHimNoKpCdjev8bVQzeUOvtNZMIcTUbP7pmGEQWtdPTo6bo3LG bM2jdbBA1tQUTsxkEc3/S4XYPFt2ncfdfKA6Nqp1nf1xArWP4nRK6hru1Omz6Btg oDM4WJzcD07nU8qjizGL/BfC7yOnf+mIQiHSkF+rL9jW6njfpBOs8F/YAEex0NN1 R4QhmgIdNgZNOUNd9N6Uto7tlfERDoAz2k9b1PlrnNdfJq2Vm/ZmjIPmUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL8DX+tRRQhj3uSsLIDeCzs647NRMB8GA1UdIwQY MBaAFK4feu8vEtB2qorVpYvLjcrz8L1MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmg5Njd5OFMwSGFxaXRXbGk4dU55dlB3dlV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS9mNjBkMzEtYzc0OC00ZWI3LWI3ODEt MDk4ZDNiZDBiOTUxLzEvcmg5Njd5OFMwSGFxaXRXbGk4dU55dlB3dlV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MS9mNjBkMzEtYzc0OC00ZWI3LWI3ODEtMDk4ZDNiZDBiOTUx LzEvcmg5Njd5OFMwSGFxaXRXbGk4dU55dlB3dlV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjzR9Mc14 VqQYUOLJ/VopAWxU/Ad2iqKQQq8MagvCtejBvnaSvN72JZ03OjCVfodmNpIT+IaU 2MPVrqQ1jqbefpsEo5W8GvSTY+WSxUevVMIb6OpzF+QELr1fNeooLVx9sbTUnhnJ X1zr2MjFWODXRlvStPZvIgqc8RyL1FQwFe/2V4f/IAI1HyqMMfPaBjnFK+X0Fh3f rhPRuJiOMHP3D5YiZxdtxUlWrObaC7c2bRftEnM29KforLyZkN1EJyGxGbXv0WEp el6gH0RVk2BpmLbgBYeluc3vnXYktvp6m7TEMSyaJEZ5TpGC6rhcqaN68PKfr5xW KSYwd8Vopryydg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:09:59 2026 by rpki-client