This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.mft File: EHl-tfmqmr5SAIzn8hq0Sv3uoNA.mft (raw, json) Hash identifier: NEFKOW/S5FQ1qp8TOTrzWtogYPt3zK0Rs3Ftwa1WaTA= Subject key identifier: EA:2A:33:91:41:D6:7D:1E:EF:28:11:28:A9:34:FB:24:17:B5:58:CE Authority key identifier: 10:79:7E:B5:F9:AA:9A:BE:52:00:8C:E7:F2:1A:B4:4A:FD:EE:A0:D0 Certificate issuer: /CN=10797eb5f9aa9abe52008ce7f21ab44afdeea0d0 Certificate serial: 019C438FC87CC9CFC89B75259C9B823EA11D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 18:00:22 +0000 Manifest this update: Mon 09 Feb 2026 18:00:22 +0000 Manifest next update: Tue 10 Feb 2026 18:00:22 +0000 Files and hashes: 1: EHl-tfmqmr5SAIzn8hq0Sv3uoNA.crl (hash: 1eXKmtxka8TF706+qSJoHSAfe9XYgUPTF8DM+xScRq0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.mft rsync://rpki.ripe.net/repository/DEFAULT/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:c8:7c:c9:cf:c8:9b:75:25:9c:9b:82:3e:a1:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10797eb5f9aa9abe52008ce7f21ab44afdeea0d0 Validity Not Before: Feb 9 18:00:22 2026 GMT Not After : Feb 10 18:00:22 2026 GMT Subject: CN=ea2a339141d67d1eef281128a934fb2417b558ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8a:40:bf:e7:ea:0f:c2:38:30:08:64:b2:50: 29:b0:d2:56:e1:a6:65:c6:54:b3:1c:cc:0f:0c:9a: 2c:ed:8f:56:a3:f7:3c:9a:d7:12:e1:13:dd:74:b2: 0e:84:f6:e3:b6:cd:8b:b0:54:0b:50:da:30:82:da: e4:07:5a:ba:4b:9b:67:d7:0f:ab:40:9f:21:4e:19: 69:89:b1:bc:ae:3c:cc:c3:da:3d:e9:49:b5:f2:19: df:cf:38:70:88:e6:f7:59:77:ba:b1:1e:21:0b:ba: 29:2c:60:83:06:be:ed:54:7a:bf:e0:18:5e:e2:ae: 03:9e:4c:fb:6d:ed:0e:77:c4:49:7e:6c:c5:24:52: 85:d1:18:b3:93:1e:88:7b:7c:52:b9:a4:0a:11:a4: 33:1d:08:ca:93:49:ab:49:72:12:7a:f2:b5:82:59: 93:78:6c:a2:63:ed:63:ea:cc:f0:41:ab:38:c8:0e: 20:9c:98:74:27:ce:e6:c7:5e:be:95:df:d7:04:a7: 76:d7:1b:f5:c9:b0:bf:a7:cb:e1:23:b0:95:a1:a4: 40:31:cb:dc:31:ae:34:bb:b0:b8:27:78:da:be:ba: 5d:bb:2b:42:02:af:d0:92:cf:bf:c5:06:1e:a7:b9: 1d:ce:25:86:b7:97:3f:45:10:ae:1c:2e:4d:a5:80: a9:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:2A:33:91:41:D6:7D:1E:EF:28:11:28:A9:34:FB:24:17:B5:58:CE X509v3 Authority Key Identifier: keyid:10:79:7E:B5:F9:AA:9A:BE:52:00:8C:E7:F2:1A:B4:4A:FD:EE:A0:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:6b:23:d6:c2:55:40:9c:f4:47:ce:69:6d:b4:10:b0:fa:d6: 1a:2f:30:6b:97:3b:8a:36:18:d0:5a:ec:72:a5:81:f4:aa:b9: 43:4f:58:c1:46:5d:cc:7e:3f:b2:e6:0d:61:b0:98:de:da:bb: 95:13:04:03:c4:2f:ea:7d:4a:e6:f0:23:4c:2d:e9:5d:63:0c: a5:54:cc:bd:18:44:21:19:40:e0:ab:fb:84:a5:8a:7f:77:65: cb:18:f9:86:d2:2c:43:2c:cc:6f:02:86:59:fd:d1:3d:31:c0: 4a:9e:61:66:11:59:8f:24:e0:73:ae:e3:b2:45:04:68:1c:3f: 6f:55:22:f3:ff:39:82:ef:3b:6b:24:cc:75:fe:66:cd:d6:1c: 40:b4:90:85:3b:47:42:6b:3d:04:a4:a1:c6:3c:59:9b:8d:fb: 66:5d:ad:3d:66:a1:30:e1:04:e1:e5:f3:62:e5:1f:3c:25:c0: 40:fe:f9:b1:03:6e:07:2c:9c:d4:93:c1:d6:5e:59:e1:30:75: 5a:b0:bd:91:04:4b:00:99:f4:d6:e3:71:26:08:d3:4c:df:c7: 35:5e:39:f5:2c:a3:22:90:02:23:b1:a7:5f:59:7a:cb:58:e9: 14:86:5a:70:bd:fe:0c:58:0b:fb:01:4a:4b:0f:e5:7a:68:c4: 51:74:20:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj8h8yc/Im3UlnJuCPqEdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwNzk3ZWI1ZjlhYTlhYmU1MjAwOGNlN2YyMWFiNDRhZmRl ZWEwZDAwHhcNMjYwMjA5MTgwMDIyWhcNMjYwMjEwMTgwMDIyWjAzMTEwLwYDVQQD EyhlYTJhMzM5MTQxZDY3ZDFlZWYyODExMjhhOTM0ZmIyNDE3YjU1OGNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApYpAv+fqD8I4MAhkslApsNJW4aZl xlSzHMwPDJos7Y9Wo/c8mtcS4RPddLIOhPbjts2LsFQLUNowgtrkB1q6S5tn1w+r QJ8hThlpibG8rjzMw9o96Um18hnfzzhwiOb3WXe6sR4hC7opLGCDBr7tVHq/4Bhe 4q4Dnkz7be0Od8RJfmzFJFKF0Rizkx6Ie3xSuaQKEaQzHQjKk0mrSXISevK1glmT eGyiY+1j6szwQas4yA4gnJh0J87mx16+ld/XBKd21xv1ybC/p8vhI7CVoaRAMcvc Ma40u7C4J3javrpduytCAq/Qks+/xQYep7kdziWGt5c/RRCuHC5NpYCpGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOoqM5FB1n0e7ygRKKk0+yQXtVjOMB8GA1UdIwQY MBaAFBB5frX5qpq+UgCM5/IatEr97qDQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRUhsLXRmbXFtcjVTQUl6bjhocTBTdjN1b05BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS9mNWM4YTMtZTVjYS00MWFlLWFmOGEt OGRiNzA4MzQ3NDM4LzEvRUhsLXRmbXFtcjVTQUl6bjhocTBTdjN1b05BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS9mNWM4YTMtZTVjYS00MWFlLWFmOGEtOGRiNzA4MzQ3NDM4 LzEvRUhsLXRmbXFtcjVTQUl6bjhocTBTdjN1b05BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADWsj1sJV QJz0R85pbbQQsPrWGi8wa5c7ijYY0FrscqWB9Kq5Q09YwUZdzH4/suYNYbCY3tq7 lRMEA8Qv6n1K5vAjTC3pXWMMpVTMvRhEIRlA4Kv7hKWKf3dlyxj5htIsQyzMbwKG Wf3RPTHASp5hZhFZjyTgc67jskUEaBw/b1Ui8/85gu87ayTMdf5mzdYcQLSQhTtH Qms9BKShxjxZm437Zl2tPWahMOEE4eXzYuUfPCXAQP75sQNuByyc1JPB1l5Z4TB1 WrC9kQRLAJn01uNxJgjTTN/HNV459SyjIpACI7GnX1l6y1jpFIZacL3+DFgL+wFK Sw/lemjEUXQguw== -----END CERTIFICATE-----Generated at Tue Feb 10 00:11:14 2026 by rpki-client