This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/e401d0-69fe-4326-a042-411c3d2d069e/1/H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.mft File: H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.mft (raw, json) Hash identifier: dlGTua1aVxxQwLqT5yXw5f1l64vKLidlO0XEOC4uT7U= Subject key identifier: B5:1E:66:7C:71:05:26:7C:C0:77:DC:26:A6:AA:D7:6E:C6:53:7D:80 Authority key identifier: 1F:89:7D:BF:F0:1A:FD:9D:1E:77:B6:F9:FE:08:D9:77:42:F5:6D:32 Certificate issuer: /CN=1f897dbff01afd9d1e77b6f9fe08d97742f56d32 Certificate serial: 019C446BEC9B4B656753FCEEA9788C13244B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/e401d0-69fe-4326-a042-411c3d2d069e/1/H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.mft Manifest number: 057F Signing time: Mon 09 Feb 2026 22:00:49 +0000 Manifest this update: Mon 09 Feb 2026 22:00:49 +0000 Manifest next update: Tue 10 Feb 2026 22:00:49 +0000 Files and hashes: 1: H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.crl (hash: Kun2/MFCsTLSJzjzCvjVtUVqHVbER7kM63Sb7nyoiaQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/e401d0-69fe-4326-a042-411c3d2d069e/1/H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/e401d0-69fe-4326-a042-411c3d2d069e/1/H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.mft rsync://rpki.ripe.net/repository/DEFAULT/H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:ec:9b:4b:65:67:53:fc:ee:a9:78:8c:13:24:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f897dbff01afd9d1e77b6f9fe08d97742f56d32 Validity Not Before: Feb 9 22:00:49 2026 GMT Not After : Feb 10 22:00:49 2026 GMT Subject: CN=b51e667c7105267cc077dc26a6aad76ec6537d80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ef:44:10:57:d1:cf:17:19:9d:1b:a1:bb:69: 39:8e:75:18:83:e1:d0:f5:e0:b6:95:b0:ea:49:92: af:67:8a:f7:b6:b4:e3:6e:cc:3f:a7:27:76:d6:c6: 39:6b:24:37:bd:d1:79:a4:1d:e4:38:3e:0f:3b:22: e9:cb:3e:d8:13:57:9e:7e:92:be:59:e8:26:2e:5e: 39:61:3c:79:89:99:59:56:9e:39:6d:e8:ad:5d:61: d1:d3:8f:45:dd:00:c9:44:b1:a8:f8:6f:1a:09:9a: 7d:c3:06:a9:0a:82:f4:f2:3c:dd:68:11:aa:af:85: d3:b0:4b:da:6f:cf:72:0b:0e:10:03:d7:d2:7b:e8: f8:76:99:15:4a:0c:0f:66:44:ec:bc:fa:a6:d7:d9: 2e:d5:09:83:f7:1a:a0:84:25:50:95:c2:49:31:9c: c6:e2:54:59:a4:f6:7c:48:b0:19:37:8c:95:f8:90: df:95:e0:0e:a4:f2:df:bd:a3:5f:ed:a1:65:3b:56: 99:58:b9:a5:f6:68:ed:5c:5d:85:29:92:56:a2:f9: a9:e6:88:6f:d7:94:5f:46:33:86:43:a4:f6:ab:06: 1b:a4:b2:c1:67:93:fa:9f:36:58:d2:b4:3c:bc:0b: 3b:0d:64:4f:c8:61:44:a1:98:c0:38:df:9e:21:6c: 66:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:1E:66:7C:71:05:26:7C:C0:77:DC:26:A6:AA:D7:6E:C6:53:7D:80 X509v3 Authority Key Identifier: keyid:1F:89:7D:BF:F0:1A:FD:9D:1E:77:B6:F9:FE:08:D9:77:42:F5:6D:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/e401d0-69fe-4326-a042-411c3d2d069e/1/H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/e401d0-69fe-4326-a042-411c3d2d069e/1/H4l9v_Aa_Z0ed7b5_gjZd0L1bTI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:e2:a0:7c:70:37:1f:92:b7:c7:59:f1:15:cb:e7:de:e8:55: c5:a4:b5:f6:9c:80:1e:0e:31:d7:ee:74:e2:bf:33:28:c7:40: d5:8a:30:5d:db:48:c9:bd:59:d6:2d:7b:58:e6:cc:51:ee:f3: 35:53:96:f5:be:7c:16:cd:59:3a:9b:3c:56:7f:ea:b1:9e:c9: 3a:b5:ee:3d:6c:a7:4d:09:26:c3:3b:67:5a:00:ee:d0:38:66: 2a:6e:2b:f9:48:0f:04:b0:95:83:49:55:45:8a:5d:ff:cf:ee: d4:b5:ee:f0:c7:1a:1e:f4:82:51:6e:f5:ce:1e:53:11:ff:8f: 15:80:f5:33:bd:e1:e5:a5:80:5f:d7:1a:fd:dd:4b:c9:99:7d: c3:b3:2a:68:65:4b:00:69:a9:79:0c:b1:8e:d8:3a:a5:11:93: 59:67:0c:7f:e3:c0:7e:d3:89:2c:8f:8b:04:71:e7:9d:c9:90: 12:76:a4:f1:28:2b:03:58:10:ba:f8:95:8b:8b:24:02:3b:bf: a6:f4:9c:84:be:97:9a:74:b0:aa:36:a5:f5:d9:75:e3:f0:9c: 01:49:6b:7e:f2:be:77:5f:ba:0d:0f:41:b7:c0:f6:42:75:98: 42:a1:99:8a:fd:fb:ff:e9:0c:1d:6a:cf:cd:8b:1c:79:ee:99: d8:2c:a3:89 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa+ybS2VnU/zuqXiMEyRLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmODk3ZGJmZjAxYWZkOWQxZTc3YjZmOWZlMDhkOTc3NDJm NTZkMzIwHhcNMjYwMjA5MjIwMDQ5WhcNMjYwMjEwMjIwMDQ5WjAzMTEwLwYDVQQD EyhiNTFlNjY3YzcxMDUyNjdjYzA3N2RjMjZhNmFhZDc2ZWM2NTM3ZDgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvu9EEFfRzxcZnRuhu2k5jnUYg+HQ 9eC2lbDqSZKvZ4r3trTjbsw/pyd21sY5ayQ3vdF5pB3kOD4POyLpyz7YE1eefpK+ WegmLl45YTx5iZlZVp45beitXWHR049F3QDJRLGo+G8aCZp9wwapCoL08jzdaBGq r4XTsEvab89yCw4QA9fSe+j4dpkVSgwPZkTsvPqm19ku1QmD9xqghCVQlcJJMZzG 4lRZpPZ8SLAZN4yV+JDfleAOpPLfvaNf7aFlO1aZWLml9mjtXF2FKZJWovmp5ohv 15RfRjOGQ6T2qwYbpLLBZ5P6nzZY0rQ8vAs7DWRPyGFEoZjAON+eIWxmVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLUeZnxxBSZ8wHfcJqaq127GU32AMB8GA1UdIwQY MBaAFB+Jfb/wGv2dHne2+f4I2XdC9W0yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDRsOXZfQWFfWjBlZDdiNV9nalpkMEwxYlRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9lNDAxZDAtNjlmZS00MzI2LWEwNDIt NDExYzNkMmQwNjllLzEvSDRsOXZfQWFfWjBlZDdiNV9nalpkMEwxYlRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy9lNDAxZDAtNjlmZS00MzI2LWEwNDItNDExYzNkMmQwNjll LzEvSDRsOXZfQWFfWjBlZDdiNV9nalpkMEwxYlRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABuKgfHA3 H5K3x1nxFcvn3uhVxaS19pyAHg4x1+504r8zKMdA1YowXdtIyb1Z1i17WObMUe7z NVOW9b58Fs1ZOps8Vn/qsZ7JOrXuPWynTQkmwztnWgDu0DhmKm4r+UgPBLCVg0lV RYpd/8/u1LXu8McaHvSCUW71zh5TEf+PFYD1M73h5aWAX9ca/d1LyZl9w7MqaGVL AGmpeQyxjtg6pRGTWWcMf+PAftOJLI+LBHHnncmQEnak8SgrA1gQuviVi4skAju/ pvSchL6XmnSwqjal9dl14/CcAUlrfvK+d1+6DQ9Bt8D2QnWYQqGZiv37/+kMHWrP zYscee6Z2CyjiQ== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:05 2026 by rpki-client