This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft File: htqvTmjTIiSCMFRM2NspVo5s8AM.mft (raw, json) Hash identifier: vlJPof9iRslnXn/6Y6oQIS+R7rY4TpazqlBOylwgb4M= Subject key identifier: EC:C0:28:32:34:DF:3F:2C:B9:20:69:49:9D:21:F1:0D:40:EC:93:46 Authority key identifier: 86:DA:AF:4E:68:D3:22:24:82:30:54:4C:D8:DB:29:56:8E:6C:F0:03 Certificate issuer: /CN=86daaf4e68d322248230544cd8db29568e6cf003 Certificate serial: 019C42EBA2B6BCB23F8AA0EC2D153DE57130 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 15:01:04 +0000 Manifest this update: Mon 09 Feb 2026 15:01:04 +0000 Manifest next update: Tue 10 Feb 2026 15:01:04 +0000 Files and hashes: 1: LyQJZOiJBFj_CkncEm0AMCx8VkA.roa (hash: 0nBIH73/4Jum7OxlljaMAAXDP5B7wTyLZnA+y+yJXE4=) 2: htqvTmjTIiSCMFRM2NspVo5s8AM.crl (hash: Pq3OzznC/zxJ7FMBp2uCW/R+uWfLwsA57XiZGMeQjBs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:a2:b6:bc:b2:3f:8a:a0:ec:2d:15:3d:e5:71:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86daaf4e68d322248230544cd8db29568e6cf003 Validity Not Before: Feb 9 15:01:04 2026 GMT Not After : Feb 10 15:01:04 2026 GMT Subject: CN=ecc0283234df3f2cb92069499d21f10d40ec9346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:70:58:30:03:78:4e:18:ab:04:f1:6e:31:d5: 24:8f:4f:29:ba:58:13:a1:93:a6:6c:1d:64:17:2a: 50:d3:63:f0:28:92:c9:ca:52:43:9c:0a:7f:f6:76: a4:41:40:00:6b:b1:6e:1d:77:70:64:89:ec:3e:0e: d7:35:d8:2b:af:68:23:1c:d4:4c:51:6a:dc:77:07: 69:d0:eb:f0:83:97:ee:f6:fd:9f:4c:50:ca:1f:d3: b3:f0:d5:b3:2a:f6:29:c0:84:7a:9b:98:7c:77:b7: 86:0e:28:86:34:59:e4:f7:fe:89:ff:30:f3:f8:a2: 43:65:4f:7d:b3:b6:18:8f:a5:33:35:eb:86:1f:aa: d1:44:a2:38:4b:fc:a0:7b:82:66:39:6d:39:74:cc: 2d:37:1e:cc:5b:46:63:fc:72:15:8e:71:b4:3b:38: 8a:db:b5:62:44:fc:2f:9c:e8:29:2a:c9:31:22:20: 51:e4:4c:26:7a:34:6f:69:20:3e:c5:4d:a2:1c:93: 13:19:4b:3c:e9:db:d6:0f:36:7e:de:05:71:9d:f1: bb:17:d2:37:66:44:09:da:12:48:56:89:d2:ee:15: b7:bf:c1:8b:61:43:0b:90:e8:d9:42:98:08:47:b9: 6a:3b:48:83:1a:2d:78:b1:89:32:32:0b:99:c6:5e: 65:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:C0:28:32:34:DF:3F:2C:B9:20:69:49:9D:21:F1:0D:40:EC:93:46 X509v3 Authority Key Identifier: keyid:86:DA:AF:4E:68:D3:22:24:82:30:54:4C:D8:DB:29:56:8E:6C:F0:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:18:00:e4:9e:0d:2c:ba:39:ed:17:9f:14:ab:63:7e:fc:4c: aa:d0:65:19:93:e5:91:a6:2a:32:4d:4f:d7:09:40:e7:3a:df: 2b:13:e7:3f:5f:01:c5:a0:99:36:b9:ac:73:30:97:ce:1c:a8: ce:6a:91:ad:80:0c:eb:0a:5d:95:f8:4b:00:ae:5e:48:eb:79: 74:f3:8c:26:71:68:5c:b3:db:cf:85:68:7f:2b:9d:f8:5e:a5: 40:bf:b7:67:96:8f:f9:76:fa:3a:e3:7d:0a:37:00:90:ad:46: 8f:0d:61:4e:2d:e7:ac:23:92:8e:63:cb:b7:ca:6e:01:3f:60: ba:cc:f2:04:09:19:f8:fb:cb:f9:70:05:c5:41:ca:aa:d4:45: c3:23:63:ae:79:f4:d9:2c:d2:72:b4:fd:ab:c2:c6:e7:55:2a: f1:b3:82:96:93:fe:a6:84:24:10:ee:78:de:12:dd:28:e1:a3: e9:63:0a:43:1a:75:bd:c1:5d:f5:a8:a5:56:c0:b4:d1:dc:07: 17:a1:10:55:ad:4c:fa:87:bd:81:05:63:30:78:1e:bc:8b:f3: 23:da:47:32:78:45:01:3f:08:7c:86:73:9a:2f:e2:20:c0:6d: 20:8d:41:75:6e:f7:1c:e0:f4:02:f3:83:3d:08:fc:3a:ee:77: 80:73:d0:7e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC66K2vLI/iqDsLRU95XEwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2ZGFhZjRlNjhkMzIyMjQ4MjMwNTQ0Y2Q4ZGIyOTU2OGU2 Y2YwMDMwHhcNMjYwMjA5MTUwMTA0WhcNMjYwMjEwMTUwMTA0WjAzMTEwLwYDVQQD EyhlY2MwMjgzMjM0ZGYzZjJjYjkyMDY5NDk5ZDIxZjEwZDQwZWM5MzQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAznBYMAN4ThirBPFuMdUkj08pulgT oZOmbB1kFypQ02PwKJLJylJDnAp/9nakQUAAa7FuHXdwZInsPg7XNdgrr2gjHNRM UWrcdwdp0Ovwg5fu9v2fTFDKH9Oz8NWzKvYpwIR6m5h8d7eGDiiGNFnk9/6J/zDz +KJDZU99s7YYj6UzNeuGH6rRRKI4S/yge4JmOW05dMwtNx7MW0Zj/HIVjnG0OziK 27ViRPwvnOgpKskxIiBR5EwmejRvaSA+xU2iHJMTGUs86dvWDzZ+3gVxnfG7F9I3 ZkQJ2hJIVonS7hW3v8GLYUMLkOjZQpgIR7lqO0iDGi14sYkyMguZxl5liwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOzAKDI03z8suSBpSZ0h8Q1A7JNGMB8GA1UdIwQY MBaAFIbar05o0yIkgjBUTNjbKVaObPADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHRxdlRtalRJaVNDTUZSTTJOc3BWbzVzOEFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS81N2QxZGItZDhlYi00OWUwLTgxMzMt NWJjOTA1MDVkOGNhLzEvaHRxdlRtalRJaVNDTUZSTTJOc3BWbzVzOEFNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS81N2QxZGItZDhlYi00OWUwLTgxMzMtNWJjOTA1MDVkOGNh LzEvaHRxdlRtalRJaVNDTUZSTTJOc3BWbzVzOEFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANRgA5J4N LLo57RefFKtjfvxMqtBlGZPlkaYqMk1P1wlA5zrfKxPnP18BxaCZNrmsczCXzhyo zmqRrYAM6wpdlfhLAK5eSOt5dPOMJnFoXLPbz4Vofyud+F6lQL+3Z5aP+Xb6OuN9 CjcAkK1Gjw1hTi3nrCOSjmPLt8puAT9guszyBAkZ+PvL+XAFxUHKqtRFwyNjrnn0 2SzScrT9q8LG51Uq8bOClpP+poQkEO543hLdKOGj6WMKQxp1vcFd9ailVsC00dwH F6EQVa1M+oe9gQVjMHgevIvzI9pHMnhFAT8IfIZzmi/iIMBtII1BdW73HOD0AvOD PQj8Ou53gHPQfg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:46 2026 by rpki-client