This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft File: 8HHkN5gsw0b26BfKZIknI-21QZo.mft (raw, json) Hash identifier: hNW1YQ/p4cc1mUCC+ZDmDLnlyfg4gEvtmQBe8sPpGdc= Subject key identifier: 14:08:01:75:63:07:4B:E4:59:FC:01:19:FA:E6:7C:2E:8E:42:D1:23 Authority key identifier: F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A Certificate issuer: /CN=f071e437982cc346f6e817ca64892723edb5419a Certificate serial: 019C41D87B76E859E5DD0FB8198D22CA863C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft Manifest number: 1171 Signing time: Mon 09 Feb 2026 10:00:32 +0000 Manifest this update: Mon 09 Feb 2026 10:00:32 +0000 Manifest next update: Tue 10 Feb 2026 10:00:32 +0000 Files and hashes: 1: 4dTiivW_bvCIIr9OKslRJ2ttAH0.roa (hash: nywsABEuvSZWyJVu4fBV0raW88OjCnUfbkwJDiN85oo=) 2: 8HHkN5gsw0b26BfKZIknI-21QZo.crl (hash: yWnAyxbm22r9ef2QVCfbBzbyMuXJzz26iGOR0m9LJxE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:7b:76:e8:59:e5:dd:0f:b8:19:8d:22:ca:86:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f071e437982cc346f6e817ca64892723edb5419a Validity Not Before: Feb 9 10:00:32 2026 GMT Not After : Feb 10 10:00:32 2026 GMT Subject: CN=1408017563074be459fc0119fae67c2e8e42d123 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:33:6e:35:d4:77:8d:0b:64:32:59:70:a4:95: 1a:d0:e6:ca:ec:d5:d2:6f:66:37:6a:4a:d1:e6:21: ea:98:13:77:0b:5f:f1:cd:47:d9:f7:98:22:68:96: 2c:e2:3f:83:b6:f8:e9:f7:5c:04:30:f4:fe:b7:b4: e8:b0:88:50:7e:8b:66:13:92:8f:88:b5:02:07:76: e8:0f:25:26:44:fe:66:c1:cf:35:53:d9:ce:8f:27: 15:a2:c9:f7:62:cb:0d:4f:fe:01:86:d9:6e:83:07: 09:ac:0e:34:b1:d3:d6:a3:71:ea:6d:3f:0b:bc:9e: 6c:18:e5:6d:fe:d4:52:f4:6d:51:77:e4:b1:16:30: 7d:da:3b:70:e0:a2:54:cd:7c:c4:b2:89:69:67:51: 2e:fb:c2:12:72:a6:01:69:c9:d8:57:04:03:df:34: 5d:cf:9f:c4:56:3f:2e:6f:11:45:e9:46:17:69:c2: 45:c2:a7:38:a3:52:8d:df:20:da:4d:2d:0f:5c:e9: 12:63:52:f0:4f:77:ee:14:29:f1:2d:c6:3f:87:f6: 2e:93:95:ac:53:ef:63:d4:8f:e8:f2:e7:3d:51:58: d7:66:16:66:00:82:09:03:10:61:70:f3:dd:0d:df: a3:00:c5:aa:60:d8:8f:c9:22:cc:03:31:65:e4:57: ef:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:08:01:75:63:07:4B:E4:59:FC:01:19:FA:E6:7C:2E:8E:42:D1:23 X509v3 Authority Key Identifier: keyid:F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c1:39:b0:10:6b:db:e7:80:27:4d:65:13:4d:93:e3:05:1c:e0: 22:1a:bf:d1:d3:f8:cc:30:43:70:8a:43:20:39:82:ee:07:45: 51:68:f4:49:e6:23:49:e8:70:93:2f:79:89:5a:8c:85:e6:e0: 3a:c7:fb:6d:b2:03:b6:50:5c:35:39:61:8f:cc:8e:a4:46:ca: 63:79:21:72:1e:f3:be:f9:1a:f7:2e:c6:0d:0a:1e:a6:c3:5f: 26:45:5c:9b:25:5b:f0:b3:16:28:78:90:72:c1:d1:b6:f9:c6: a5:55:cf:97:53:a4:e6:a0:96:3f:21:01:ec:83:ff:be:6b:34: 64:19:6a:82:a4:7b:02:32:26:73:e2:70:3e:5c:3d:dc:1f:f6: aa:8c:ce:07:52:1e:66:4e:92:be:29:44:3f:a4:3a:be:c2:ed: 46:f4:19:ed:06:a1:25:d4:a2:b8:4c:e2:d4:c1:af:d1:42:bb: 54:a4:c2:e4:f9:30:53:22:a9:67:66:ee:05:78:a2:98:38:d6: dd:58:68:44:37:c2:65:ed:05:38:19:41:06:f5:96:02:f3:80: ce:80:d4:62:cd:5d:e7:10:e4:d6:7a:40:46:62:c2:fa:77:30: 59:50:88:44:4e:01:27:7a:62:76:b2:20:63:14:52:99:af:77: b5:aa:1a:6b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2Ht26Fnl3Q+4GY0iyoY8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNzFlNDM3OTgyY2MzNDZmNmU4MTdjYTY0ODkyNzIzZWRi NTQxOWEwHhcNMjYwMjA5MTAwMDMyWhcNMjYwMjEwMTAwMDMyWjAzMTEwLwYDVQQD EygxNDA4MDE3NTYzMDc0YmU0NTlmYzAxMTlmYWU2N2MyZThlNDJkMTIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApTNuNdR3jQtkMllwpJUa0ObK7NXS b2Y3akrR5iHqmBN3C1/xzUfZ95giaJYs4j+Dtvjp91wEMPT+t7TosIhQfotmE5KP iLUCB3boDyUmRP5mwc81U9nOjycVosn3YssNT/4BhtlugwcJrA40sdPWo3HqbT8L vJ5sGOVt/tRS9G1Rd+SxFjB92jtw4KJUzXzEsolpZ1Eu+8IScqYBacnYVwQD3zRd z5/EVj8ubxFF6UYXacJFwqc4o1KN3yDaTS0PXOkSY1LwT3fuFCnxLcY/h/Yuk5Ws U+9j1I/o8uc9UVjXZhZmAIIJAxBhcPPdDd+jAMWqYNiPySLMAzFl5FfvJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBQIAXVjB0vkWfwBGfrmfC6OQtEjMB8GA1UdIwQY MBaAFPBx5DeYLMNG9ugXymSJJyPttUGaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEhIa041Z3N3MGIyNkJmS1pJa25JLTIxUVpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi8wMDcyNWEtMTllZi00MjQ0LTg4OTct NzhjYjU5Yjc4YTRmLzEvOEhIa041Z3N3MGIyNkJmS1pJa25JLTIxUVpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi8wMDcyNWEtMTllZi00MjQ0LTg4OTctNzhjYjU5Yjc4YTRm LzEvOEhIa041Z3N3MGIyNkJmS1pJa25JLTIxUVpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwTmwEGvb 54AnTWUTTZPjBRzgIhq/0dP4zDBDcIpDIDmC7gdFUWj0SeYjSehwky95iVqMhebg Osf7bbIDtlBcNTlhj8yOpEbKY3khch7zvvka9y7GDQoepsNfJkVcmyVb8LMWKHiQ csHRtvnGpVXPl1Ok5qCWPyEB7IP/vms0ZBlqgqR7AjImc+JwPlw93B/2qozOB1Ie Zk6SvilEP6Q6vsLtRvQZ7QahJdSiuEzi1MGv0UK7VKTC5PkwUyKpZ2buBXiimDjW 3VhoRDfCZe0FOBlBBvWWAvOAzoDUYs1d5xDk1npARmLC+ncwWVCIRE4BJ3pidrIg YxRSma93taoaaw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:22 2026 by rpki-client