This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft File: hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft (raw, json) Hash identifier: GBFxGHO8wmDo3uTWTwSPV3WB/O5h9eZLqHC3+3Q2DwU= Subject key identifier: C7:C1:71:F0:7A:B3:CA:C8:84:EC:8E:10:4F:2B:64:6B:CB:66:52:21 Authority key identifier: 84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02 Certificate issuer: /CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02 Certificate serial: 019C42EBA5193083B11FEF2FF91BA2293EE6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft Manifest number: 0B2B Signing time: Mon 09 Feb 2026 15:01:05 +0000 Manifest this update: Mon 09 Feb 2026 15:01:05 +0000 Manifest next update: Tue 10 Feb 2026 15:01:05 +0000 Files and hashes: 1: GPPNPmR8KUY_sEY8Xyw8dhEolxg.roa (hash: JjmXr+ibRaRGfx0pfBbomv1IH9Jgiuy25aSKoWiXJmg=) 2: hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl (hash: rfURhiJ96slcFerpdF4c19PIwxy0TNWq5szn+muYh5w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:a5:19:30:83:b1:1f:ef:2f:f9:1b:a2:29:3e:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02 Validity Not Before: Feb 9 15:01:05 2026 GMT Not After : Feb 10 15:01:05 2026 GMT Subject: CN=c7c171f07ab3cac884ec8e104f2b646bcb665221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:26:e4:4a:1b:6d:c1:e1:63:d2:ab:39:d7:2f: 70:b9:53:7a:57:49:99:3e:92:b1:30:51:33:33:f2: 68:49:da:b9:70:43:5a:14:95:03:f5:d6:c1:e2:89: e0:e8:71:be:f0:5e:b3:ea:39:11:97:d1:bf:e7:c5: 17:bb:42:97:68:04:fc:3d:93:23:ce:4c:2b:1a:20: cf:e2:94:2e:0a:a3:e6:06:6d:5a:94:d8:3f:b1:0f: d3:21:02:89:c9:e2:b0:fc:44:47:da:c1:07:9e:41: cb:22:10:b4:e7:20:3b:35:cf:a9:2f:0e:3c:95:51: a9:21:fb:ce:2a:f0:22:b8:47:d8:6d:f9:a4:34:51: 8a:c2:df:39:8c:07:42:d5:0d:77:08:39:16:84:88: e7:e4:cc:27:02:9e:b8:d4:6d:34:e1:4d:62:01:12: da:1c:d9:2c:be:98:2f:6a:a1:1b:62:2a:09:cf:3e: 2c:ab:f7:42:b7:15:bc:f3:db:cc:06:f8:c3:b7:0c: fe:87:55:7f:ab:99:e0:06:3e:65:96:f9:84:30:1b: b8:35:2a:dd:6b:f9:45:08:76:86:e0:2b:9a:18:b9: 3e:db:d1:e9:a1:a2:83:41:70:fa:0c:bb:ad:12:61: be:ea:d6:b4:fd:a4:34:02:d5:d8:33:44:73:8f:6a: 87:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:C1:71:F0:7A:B3:CA:C8:84:EC:8E:10:4F:2B:64:6B:CB:66:52:21 X509v3 Authority Key Identifier: keyid:84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:96:03:ec:bb:d4:5f:d8:ae:5a:33:85:2c:a5:bd:35:b5:c1: 59:76:44:cb:0a:e9:90:56:63:43:0f:f0:65:18:11:5b:a7:52: e8:c3:57:93:de:34:e6:a4:2f:8d:0e:44:7a:90:5e:96:65:55: 8c:9b:a3:fd:ba:69:e9:2d:34:e1:6b:e1:61:06:ec:49:38:74: 9e:98:45:4a:d7:2e:1f:47:dc:3f:f4:3a:a7:89:ce:0a:03:74: e3:c0:1c:ed:2f:4d:ff:63:66:c9:0f:62:bc:39:85:8f:84:f2: 46:57:8c:1b:79:a5:7a:94:41:08:e0:d5:64:0b:47:1e:fd:44: fc:bb:bf:da:ae:a3:3e:1b:de:19:0c:11:54:be:e6:07:bc:ff: 24:f7:89:41:77:93:d4:aa:5c:28:02:69:8a:91:bb:f9:7b:16: ca:8b:c7:87:c6:61:48:b3:e7:b5:07:76:93:42:84:c5:62:a5: ce:af:c9:0f:e1:c1:cf:a8:9b:b7:34:83:02:d4:f8:f6:93:5a: 32:ce:f1:ff:08:98:40:33:80:34:18:6d:4b:b5:f7:e9:b1:5b: 88:42:ea:d1:1b:5a:94:f8:9c:44:1b:81:16:dc:92:11:ab:d1: 19:7b:fe:91:a4:ce:e5:e5:bc:c7:69:37:a8:f1:94:38:12:23: e5:2e:c8:89 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC66UZMIOxH+8v+RuiKT7mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0ZDYwMWE4YjBlYTVjYjI0YzVlYzRmODVkMjI2N2Q4MjE5 MzFjMDIwHhcNMjYwMjA5MTUwMTA1WhcNMjYwMjEwMTUwMTA1WjAzMTEwLwYDVQQD EyhjN2MxNzFmMDdhYjNjYWM4ODRlYzhlMTA0ZjJiNjQ2YmNiNjY1MjIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6ybkShttweFj0qs51y9wuVN6V0mZ PpKxMFEzM/JoSdq5cENaFJUD9dbB4ong6HG+8F6z6jkRl9G/58UXu0KXaAT8PZMj zkwrGiDP4pQuCqPmBm1alNg/sQ/TIQKJyeKw/ERH2sEHnkHLIhC05yA7Nc+pLw48 lVGpIfvOKvAiuEfYbfmkNFGKwt85jAdC1Q13CDkWhIjn5MwnAp641G004U1iARLa HNksvpgvaqEbYioJzz4sq/dCtxW889vMBvjDtwz+h1V/q5ngBj5llvmEMBu4NSrd a/lFCHaG4CuaGLk+29HpoaKDQXD6DLutEmG+6ta0/aQ0AtXYM0Rzj2qH1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMfBcfB6s8rIhOyOEE8rZGvLZlIhMB8GA1UdIwQY MBaAFITWAaiw6lyyTF7E+F0iZ9ghkxwCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaE5ZQnFMRHFYTEpNWHNUNFhTSm4yQ0dUSEFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC8yNTA5NDYtZGE2Ni00YTk0LWJhZTYt ZWU3N2Q3NWMzMjVlLzEvaE5ZQnFMRHFYTEpNWHNUNFhTSm4yQ0dUSEFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC8yNTA5NDYtZGE2Ni00YTk0LWJhZTYtZWU3N2Q3NWMzMjVl LzEvaE5ZQnFMRHFYTEpNWHNUNFhTSm4yQ0dUSEFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq5YD7LvU X9iuWjOFLKW9NbXBWXZEywrpkFZjQw/wZRgRW6dS6MNXk9405qQvjQ5EepBelmVV jJuj/bpp6S004WvhYQbsSTh0nphFStcuH0fcP/Q6p4nOCgN048Ac7S9N/2NmyQ9i vDmFj4TyRleMG3mlepRBCODVZAtHHv1E/Lu/2q6jPhveGQwRVL7mB7z/JPeJQXeT 1KpcKAJpipG7+XsWyovHh8ZhSLPntQd2k0KExWKlzq/JD+HBz6ibtzSDAtT49pNa Ms7x/wiYQDOANBhtS7X36bFbiELq0RtalPicRBuBFtySEavRGXv+kaTO5eW8x2k3 qPGUOBIj5S7IiQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:15 2026 by rpki-client