This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft File: 43HOIIaAX5EvhRK3nF5mqcn01NI.mft (raw, json) Hash identifier: SArES49O0rzyyoKRaT3K833EFb5h3A3Rf7l1Ujtdu54= Subject key identifier: 98:42:06:B6:CA:41:84:44:A3:2E:A6:8C:BB:84:EB:0B:FF:95:D0:C1 Authority key identifier: E3:71:CE:20:86:80:5F:91:2F:85:12:B7:9C:5E:66:A9:C9:F4:D4:D2 Certificate issuer: /CN=e371ce2086805f912f8512b79c5e66a9c9f4d4d2 Certificate serial: 019C42466E04A4A6CAA75915F7799309D0CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/43HOIIaAX5EvhRK3nF5mqcn01NI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft Manifest number: 0C69 Signing time: Mon 09 Feb 2026 12:00:37 +0000 Manifest this update: Mon 09 Feb 2026 12:00:37 +0000 Manifest next update: Tue 10 Feb 2026 12:00:37 +0000 Files and hashes: 1: 43HOIIaAX5EvhRK3nF5mqcn01NI.crl (hash: QHpZWyyVmb1+3jxNsKB9wBAP5uMaCzZMhYqspgA6l5Q=) 2: Gfq6OwngWw1fRn8U15Pj1V8Qgo4.roa (hash: THRrDATBehizQuRMdoUMH27yXofDZyuSKLWoSx5aX+M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft rsync://rpki.ripe.net/repository/DEFAULT/43HOIIaAX5EvhRK3nF5mqcn01NI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:6e:04:a4:a6:ca:a7:59:15:f7:79:93:09:d0:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e371ce2086805f912f8512b79c5e66a9c9f4d4d2 Validity Not Before: Feb 9 12:00:37 2026 GMT Not After : Feb 10 12:00:37 2026 GMT Subject: CN=984206b6ca418444a32ea68cbb84eb0bff95d0c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:46:ec:cc:d7:53:a5:bf:03:43:ce:1a:1f:8e: 63:45:f0:7e:bb:80:8d:01:8c:02:b0:b2:b2:8c:15: 09:9a:d4:63:f1:17:94:40:99:32:76:17:5b:89:5f: 28:68:75:b7:e1:f3:b5:12:5f:1e:7e:6b:f5:94:32: 0c:bc:9b:6d:bd:02:17:1e:fe:fe:e1:0d:2b:33:b2: 4f:01:09:4b:1f:62:69:34:f7:91:eb:56:c9:c8:21: ae:78:22:f9:b8:ba:30:8a:33:ba:3f:3e:89:00:3f: c0:dd:cc:ae:0f:c7:34:7e:fb:5e:84:2b:f5:7d:38: 8d:e9:5a:6d:0a:1d:e5:fd:18:4f:d4:70:69:df:d7: 17:c1:ad:23:2f:f1:fc:0b:4f:b8:3f:ea:0e:75:17: c4:38:28:9f:93:4c:b8:97:6d:d5:9c:35:0d:f4:97: 9b:0e:a5:c3:f4:58:f8:5c:ff:99:0c:ea:e2:39:c6: 83:fb:6e:91:35:5a:b2:67:e7:1a:9f:d3:71:98:04: 8d:56:40:d2:49:a4:74:7e:05:bf:23:a9:86:2f:f8: a3:1c:0c:14:b1:b3:67:f7:21:cc:da:5b:66:98:c0: ff:a5:19:ff:4a:28:4a:69:bf:81:6a:4b:99:a2:04: 83:c1:7c:9f:36:3c:99:62:67:24:cb:38:11:68:ed: 29:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:42:06:B6:CA:41:84:44:A3:2E:A6:8C:BB:84:EB:0B:FF:95:D0:C1 X509v3 Authority Key Identifier: keyid:E3:71:CE:20:86:80:5F:91:2F:85:12:B7:9C:5E:66:A9:C9:F4:D4:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/43HOIIaAX5EvhRK3nF5mqcn01NI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c0:3f:40:6a:f7:cb:64:ba:4b:4f:a8:0c:1a:f6:d1:cb:82:0f: c3:1b:8c:55:c4:a6:38:79:c5:e1:ff:34:cd:01:eb:5b:76:20: 19:64:b9:e6:20:4c:05:a0:0e:5b:a8:28:7a:a9:ac:d8:ea:3f: 0a:e8:56:4c:26:16:5e:2e:b4:1c:5d:98:f6:f2:20:b1:53:fb: 56:f5:b9:ce:f0:ad:b5:97:0a:c8:74:64:9a:22:21:c8:6d:63: 19:16:aa:4e:f2:6e:e1:47:86:38:47:36:b3:d7:5e:4e:bc:83: d9:51:f0:96:47:a6:f0:53:11:c2:7f:2f:f9:93:51:71:a7:cf: a5:a2:a6:11:91:35:f6:de:18:4b:c6:21:43:ea:39:15:ad:d3: be:b6:84:cc:2d:6d:36:db:aa:b2:70:2a:1b:e0:09:ae:25:88: ee:a5:86:34:5a:11:e2:69:c0:ab:57:e3:da:03:dd:49:db:56: a9:68:c1:fa:2a:8e:fe:a9:71:36:5d:46:75:c4:00:36:51:5a: ae:38:48:63:68:9c:54:ba:6c:ea:ca:5b:b4:d2:18:53:16:b2: 1f:d0:25:79:e0:75:a4:63:61:21:40:8c:d6:e0:36:8d:5b:80: 42:9d:7a:bf:f0:13:77:94:1e:07:cc:ab:85:b6:93:47:c5:09: 32:28:f2:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRm4EpKbKp1kV93mTCdDPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzNzFjZTIwODY4MDVmOTEyZjg1MTJiNzljNWU2NmE5Yzlm NGQ0ZDIwHhcNMjYwMjA5MTIwMDM3WhcNMjYwMjEwMTIwMDM3WjAzMTEwLwYDVQQD Eyg5ODQyMDZiNmNhNDE4NDQ0YTMyZWE2OGNiYjg0ZWIwYmZmOTVkMGMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyEbszNdTpb8DQ84aH45jRfB+u4CN AYwCsLKyjBUJmtRj8ReUQJkydhdbiV8oaHW34fO1El8efmv1lDIMvJttvQIXHv7+ 4Q0rM7JPAQlLH2JpNPeR61bJyCGueCL5uLowijO6Pz6JAD/A3cyuD8c0fvtehCv1 fTiN6VptCh3l/RhP1HBp39cXwa0jL/H8C0+4P+oOdRfEOCifk0y4l23VnDUN9Jeb DqXD9Fj4XP+ZDOriOcaD+26RNVqyZ+can9NxmASNVkDSSaR0fgW/I6mGL/ijHAwU sbNn9yHM2ltmmMD/pRn/SihKab+BakuZogSDwXyfNjyZYmckyzgRaO0p3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJhCBrbKQYREoy6mjLuE6wv/ldDBMB8GA1UdIwQY MBaAFONxziCGgF+RL4USt5xeZqnJ9NTSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNDNIT0lJYUFYNUV2aFJLM25GNW1xY24wMU5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC82ZGJkYWYtNTQ5NS00Y2M1LWI3NzAt NzM1OTBhYTI5MGYxLzEvNDNIT0lJYUFYNUV2aFJLM25GNW1xY24wMU5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC82ZGJkYWYtNTQ5NS00Y2M1LWI3NzAtNzM1OTBhYTI5MGYx LzEvNDNIT0lJYUFYNUV2aFJLM25GNW1xY24wMU5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwD9AavfL ZLpLT6gMGvbRy4IPwxuMVcSmOHnF4f80zQHrW3YgGWS55iBMBaAOW6goeqms2Oo/ CuhWTCYWXi60HF2Y9vIgsVP7VvW5zvCttZcKyHRkmiIhyG1jGRaqTvJu4UeGOEc2 s9deTryD2VHwlkem8FMRwn8v+ZNRcafPpaKmEZE19t4YS8YhQ+o5Fa3TvraEzC1t NtuqsnAqG+AJriWI7qWGNFoR4mnAq1fj2gPdSdtWqWjB+iqO/qlxNl1GdcQANlFa rjhIY2icVLps6spbtNIYUxayH9AleeB1pGNhIUCM1uA2jVuAQp16v/ATd5QeB8yr hbaTR8UJMijybg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:55:03 2026 by rpki-client