This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/63d28b-d152-44cd-b504-5d8fce0a0bb2/1/FhQcZCnqr_caNR-yVz32A7uV8nA.mft File: FhQcZCnqr_caNR-yVz32A7uV8nA.mft (raw, json) Hash identifier: yeMyHjMpfLl0uEmlZ84a9D6OxI/NssY2oMeu2iaJd4o= Subject key identifier: 50:BE:DF:E7:03:11:5B:2D:B8:46:2B:58:52:CA:83:B0:30:17:CF:B9 Authority key identifier: 16:14:1C:64:29:EA:AF:F7:1A:35:1F:B2:57:3D:F6:03:BB:95:F2:70 Certificate issuer: /CN=16141c6429eaaff71a351fb2573df603bb95f270 Certificate serial: 019C4322EC9A6B5C6FB397D1D238BBA592E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FhQcZCnqr_caNR-yVz32A7uV8nA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/63d28b-d152-44cd-b504-5d8fce0a0bb2/1/FhQcZCnqr_caNR-yVz32A7uV8nA.mft Manifest number: 02C4 Signing time: Mon 09 Feb 2026 16:01:28 +0000 Manifest this update: Mon 09 Feb 2026 16:01:28 +0000 Manifest next update: Tue 10 Feb 2026 16:01:28 +0000 Files and hashes: 1: FhQcZCnqr_caNR-yVz32A7uV8nA.crl (hash: vMqSLMqlWmmQzS804YxnPxw6hnB1P1ONL2OGkbaQyRw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/63d28b-d152-44cd-b504-5d8fce0a0bb2/1/FhQcZCnqr_caNR-yVz32A7uV8nA.crl rsync://rpki.ripe.net/repository/DEFAULT/97/63d28b-d152-44cd-b504-5d8fce0a0bb2/1/FhQcZCnqr_caNR-yVz32A7uV8nA.mft rsync://rpki.ripe.net/repository/DEFAULT/FhQcZCnqr_caNR-yVz32A7uV8nA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:ec:9a:6b:5c:6f:b3:97:d1:d2:38:bb:a5:92:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16141c6429eaaff71a351fb2573df603bb95f270 Validity Not Before: Feb 9 16:01:28 2026 GMT Not After : Feb 10 16:01:28 2026 GMT Subject: CN=50bedfe703115b2db8462b5852ca83b03017cfb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:dc:ab:ea:b0:c7:4f:cb:85:4a:b0:15:96:04: bc:85:ff:da:fe:9b:d7:0c:df:7c:34:94:b6:e7:b4: 50:f4:88:f2:b9:ce:59:e6:15:82:5a:44:5d:1c:d2: 66:5d:93:65:ad:98:dc:34:74:4a:da:40:7b:60:b6: bc:7f:ab:23:4f:4b:75:4d:05:0d:cd:79:ae:e6:63: b4:3c:36:06:b0:e4:75:c3:1d:9a:0b:05:ae:02:a7: 13:79:6a:f5:28:1a:57:59:6b:ce:df:9d:62:a5:ad: 99:19:8a:6f:a8:c9:93:7f:29:e4:14:68:52:15:3e: 9d:44:8d:bf:e7:bf:30:f9:41:69:5a:10:94:23:3f: 08:7d:4b:bc:8b:55:1e:45:12:e5:5e:d6:c5:4d:64: ca:3a:46:cd:1d:c3:87:02:16:7b:2a:a0:3f:e6:17: 2d:a6:d6:3c:88:15:b8:e2:24:06:f7:2a:af:39:e5: ff:4a:ce:6c:7f:a9:2e:57:3e:f0:32:30:15:af:20: f2:92:63:09:92:54:15:09:e4:13:3c:c0:3f:f3:1d: ac:0d:29:48:c5:46:6b:91:7f:35:a1:cd:0e:25:0d: 38:b0:b3:1c:cb:4c:a9:c0:33:04:4d:62:8f:7d:ce: 0b:43:36:a4:dd:de:2a:77:78:26:b0:d2:88:a5:1f: a7:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:BE:DF:E7:03:11:5B:2D:B8:46:2B:58:52:CA:83:B0:30:17:CF:B9 X509v3 Authority Key Identifier: keyid:16:14:1C:64:29:EA:AF:F7:1A:35:1F:B2:57:3D:F6:03:BB:95:F2:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FhQcZCnqr_caNR-yVz32A7uV8nA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/63d28b-d152-44cd-b504-5d8fce0a0bb2/1/FhQcZCnqr_caNR-yVz32A7uV8nA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/63d28b-d152-44cd-b504-5d8fce0a0bb2/1/FhQcZCnqr_caNR-yVz32A7uV8nA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:a0:ac:56:a4:96:c5:54:0d:99:4e:ba:a0:65:f3:8c:5d:41: c5:cb:d4:e3:ad:89:46:84:96:51:ac:fb:31:5e:ff:fe:20:5b: 25:f2:3c:d7:bb:05:52:c3:f0:e7:14:cd:5a:8f:36:8b:4f:f2: 47:0e:bf:a9:49:b3:57:44:69:6c:46:4c:d5:05:63:41:5a:c8: 28:94:ef:6c:4b:bd:e8:38:c4:14:f5:43:2a:cf:0a:74:d9:f3: d2:ed:e5:1b:a2:63:a3:78:10:2b:84:08:ed:fc:9d:22:c8:e4: f5:43:dd:b9:1a:dd:5a:0c:ec:e2:41:0f:e7:1b:ca:c0:91:d6: 13:25:2b:43:49:fe:5a:95:87:88:ec:eb:8d:5f:2f:94:68:80: 74:e8:8a:bc:f0:45:bd:17:88:d9:0f:91:ad:d6:b5:63:6e:68: e1:4f:df:ad:0a:3d:41:14:fd:16:bb:de:e8:96:e9:57:9b:34: 3f:0c:9b:40:2b:2a:05:f5:e6:bc:2b:c0:bb:c9:23:a7:27:cd: 6b:91:8a:45:78:5f:8c:55:4b:43:6e:a2:32:f9:42:37:10:1b: 01:3c:fa:4b:32:c4:43:1d:9e:57:03:0a:f5:fd:aa:41:9e:6c: 6e:bd:19:a6:77:71:a0:4e:5d:00:c7:12:9d:09:a6:2d:b2:1f: b9:81:c9:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIuyaa1xvs5fR0ji7pZLgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2MTQxYzY0MjllYWFmZjcxYTM1MWZiMjU3M2RmNjAzYmI5 NWYyNzAwHhcNMjYwMjA5MTYwMTI4WhcNMjYwMjEwMTYwMTI4WjAzMTEwLwYDVQQD Eyg1MGJlZGZlNzAzMTE1YjJkYjg0NjJiNTg1MmNhODNiMDMwMTdjZmI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Nyr6rDHT8uFSrAVlgS8hf/a/pvX DN98NJS257RQ9Ijyuc5Z5hWCWkRdHNJmXZNlrZjcNHRK2kB7YLa8f6sjT0t1TQUN zXmu5mO0PDYGsOR1wx2aCwWuAqcTeWr1KBpXWWvO351ipa2ZGYpvqMmTfynkFGhS FT6dRI2/578w+UFpWhCUIz8IfUu8i1UeRRLlXtbFTWTKOkbNHcOHAhZ7KqA/5hct ptY8iBW44iQG9yqvOeX/Ss5sf6kuVz7wMjAVryDykmMJklQVCeQTPMA/8x2sDSlI xUZrkX81oc0OJQ04sLMcy0ypwDMETWKPfc4LQzak3d4qd3gmsNKIpR+nJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFC+3+cDEVstuEYrWFLKg7AwF8+5MB8GA1UdIwQY MBaAFBYUHGQp6q/3GjUfslc99gO7lfJwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRmhRY1pDbnFyX2NhTlIteVZ6MzJBN3VWOG5BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny82M2QyOGItZDE1Mi00NGNkLWI1MDQt NWQ4ZmNlMGEwYmIyLzEvRmhRY1pDbnFyX2NhTlIteVZ6MzJBN3VWOG5BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny82M2QyOGItZDE1Mi00NGNkLWI1MDQtNWQ4ZmNlMGEwYmIy LzEvRmhRY1pDbnFyX2NhTlIteVZ6MzJBN3VWOG5BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGaCsVqSW xVQNmU66oGXzjF1BxcvU462JRoSWUaz7MV7//iBbJfI817sFUsPw5xTNWo82i0/y Rw6/qUmzV0RpbEZM1QVjQVrIKJTvbEu96DjEFPVDKs8KdNnz0u3lG6Jjo3gQK4QI 7fydIsjk9UPduRrdWgzs4kEP5xvKwJHWEyUrQ0n+WpWHiOzrjV8vlGiAdOiKvPBF vReI2Q+Rrda1Y25o4U/frQo9QRT9Frve6JbpV5s0PwybQCsqBfXmvCvAu8kjpyfN a5GKRXhfjFVLQ26iMvlCNxAbATz6SzLEQx2eVwMK9f2qQZ5sbr0ZpndxoE5dAMcS nQmmLbIfuYHJuQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:41:55 2026 by rpki-client