This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft File: ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft (raw, json) Hash identifier: AifwGdz4Neeb+2J6E4aprXX2MfYWYJ4Ug73dXHRACLE= Subject key identifier: 68:16:4D:A6:B4:35:76:FA:17:CF:33:FA:F9:81:FB:B1:BB:1F:CE:8C Authority key identifier: 82:14:DC:48:B3:E9:19:E5:5C:E8:18:4D:3A:96:90:D1:49:25:BC:BD Certificate issuer: /CN=8214dc48b3e919e55ce8184d3a9690d14925bcbd Certificate serial: 019C432214051107C13AD5D7E3FCA9360320 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ghTcSLPpGeVc6BhNOpaQ0UklvL0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft Manifest number: 09F6 Signing time: Mon 09 Feb 2026 16:00:32 +0000 Manifest this update: Mon 09 Feb 2026 16:00:32 +0000 Manifest next update: Tue 10 Feb 2026 16:00:32 +0000 Files and hashes: 1: ghTcSLPpGeVc6BhNOpaQ0UklvL0.crl (hash: ccR9MYmJVdLnJztgmiSwhsIjIADfSMi6WrBBv6HA8JI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft rsync://rpki.ripe.net/repository/DEFAULT/ghTcSLPpGeVc6BhNOpaQ0UklvL0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:14:05:11:07:c1:3a:d5:d7:e3:fc:a9:36:03:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8214dc48b3e919e55ce8184d3a9690d14925bcbd Validity Not Before: Feb 9 16:00:32 2026 GMT Not After : Feb 10 16:00:32 2026 GMT Subject: CN=68164da6b43576fa17cf33faf981fbb1bb1fce8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:c5:78:87:75:a8:f6:2d:66:b4:ae:aa:05:f1: 15:63:c6:8a:20:51:42:f5:ae:1f:f2:1f:78:c9:65: 51:bc:4f:43:39:c1:82:76:0d:70:02:9d:c6:01:1e: 22:a0:3c:1a:00:5b:4f:9d:00:2a:c7:b8:8a:e0:e1: f8:1d:3a:63:4c:1f:64:55:fe:e5:d8:fe:9f:43:b2: b5:02:9c:56:e7:da:83:12:b9:f5:a5:76:da:09:f6: a4:be:49:a4:8d:db:4f:8e:65:f0:85:de:8f:6c:41: 51:f7:88:b4:43:98:84:49:52:74:1e:9f:26:de:86: 8e:e9:43:be:c5:84:ec:b0:aa:cb:c5:79:b2:0d:08: a3:f5:8d:25:f0:24:16:91:bb:ff:e3:2e:75:4b:8b: 60:a1:bc:6f:d9:45:bf:c5:2d:48:32:07:70:c6:c2: d6:07:e5:cf:7d:69:1c:11:0b:ae:aa:ed:88:b1:e8: dd:d4:57:c7:66:dd:b9:82:61:d7:e5:46:3b:7c:98: c8:eb:73:45:20:fb:c3:58:ab:c3:96:61:bb:c4:1f: 0a:c4:3a:60:57:bd:8c:80:e5:52:67:52:ca:a1:5c: 97:9f:81:8c:10:dd:d3:20:de:e5:e6:0a:67:0c:6c: 9c:ab:c4:52:27:c8:ee:da:2e:0c:fb:c0:6d:29:8c: 65:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:16:4D:A6:B4:35:76:FA:17:CF:33:FA:F9:81:FB:B1:BB:1F:CE:8C X509v3 Authority Key Identifier: keyid:82:14:DC:48:B3:E9:19:E5:5C:E8:18:4D:3A:96:90:D1:49:25:BC:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ghTcSLPpGeVc6BhNOpaQ0UklvL0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:77:a2:09:96:77:ba:d3:bf:4f:b5:ed:b2:eb:58:e8:92:9a: 42:69:fc:96:84:a0:ec:eb:37:98:3b:c6:2f:98:4f:61:97:42: 6f:09:3a:20:24:d7:b4:71:04:81:d6:73:aa:2d:a4:8d:b0:39: f8:68:e2:32:ae:56:67:d1:f6:2c:30:89:cb:e6:a1:d9:5f:72: a5:8d:9c:63:77:72:58:80:ab:2c:4a:95:bc:26:f2:d2:8c:e4: 24:4b:1a:13:f0:54:44:7d:26:56:0c:ec:1e:70:59:d8:4e:b6: 67:65:b9:f4:9e:85:27:7b:73:4e:ae:17:9e:1d:f0:22:50:33: ee:f1:f8:27:ad:7f:95:ac:f4:7d:41:b0:3e:af:78:74:35:ab: 7d:76:be:e3:34:6b:aa:ad:27:27:89:46:2e:2e:7e:e3:14:d2: fd:ea:11:d6:94:b6:5c:57:74:46:b1:f6:a3:09:79:2b:5b:1c: 37:ac:b4:6d:74:84:63:bc:a5:b1:39:38:be:b8:48:bd:92:71: 21:8c:cd:16:9d:be:0c:d3:4e:7c:44:76:89:26:60:c0:75:ad: f7:f3:50:7d:60:a8:00:4e:44:4e:61:1c:34:82:2c:11:43:98: 3d:ca:6f:74:9f:1f:ba:a8:54:e3:d8:e8:9c:db:85:a0:4e:2f: 1f:fa:00:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIhQFEQfBOtXX4/ypNgMgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMTRkYzQ4YjNlOTE5ZTU1Y2U4MTg0ZDNhOTY5MGQxNDky NWJjYmQwHhcNMjYwMjA5MTYwMDMyWhcNMjYwMjEwMTYwMDMyWjAzMTEwLwYDVQQD Eyg2ODE2NGRhNmI0MzU3NmZhMTdjZjMzZmFmOTgxZmJiMWJiMWZjZThjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlcV4h3Wo9i1mtK6qBfEVY8aKIFFC 9a4f8h94yWVRvE9DOcGCdg1wAp3GAR4ioDwaAFtPnQAqx7iK4OH4HTpjTB9kVf7l 2P6fQ7K1ApxW59qDErn1pXbaCfakvkmkjdtPjmXwhd6PbEFR94i0Q5iESVJ0Hp8m 3oaO6UO+xYTssKrLxXmyDQij9Y0l8CQWkbv/4y51S4tgobxv2UW/xS1IMgdwxsLW B+XPfWkcEQuuqu2Isejd1FfHZt25gmHX5UY7fJjI63NFIPvDWKvDlmG7xB8KxDpg V72MgOVSZ1LKoVyXn4GMEN3TIN7l5gpnDGycq8RSJ8ju2i4M+8BtKYxl1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGgWTaa0NXb6F88z+vmB+7G7H86MMB8GA1UdIwQY MBaAFIIU3Eiz6RnlXOgYTTqWkNFJJby9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hUY1NMUHBHZVZjNkJoTk9wYVEwVWtsdkwwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8yYTdhMTgtOGQ0YS00ZTgxLTkwYTAt ZmJjMDI2OTE3ZjYyLzEvZ2hUY1NMUHBHZVZjNkJoTk9wYVEwVWtsdkwwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC8yYTdhMTgtOGQ0YS00ZTgxLTkwYTAtZmJjMDI2OTE3ZjYy LzEvZ2hUY1NMUHBHZVZjNkJoTk9wYVEwVWtsdkwwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKHeiCZZ3 utO/T7XtsutY6JKaQmn8loSg7Os3mDvGL5hPYZdCbwk6ICTXtHEEgdZzqi2kjbA5 +GjiMq5WZ9H2LDCJy+ah2V9ypY2cY3dyWICrLEqVvCby0ozkJEsaE/BURH0mVgzs HnBZ2E62Z2W59J6FJ3tzTq4Xnh3wIlAz7vH4J61/laz0fUGwPq94dDWrfXa+4zRr qq0nJ4lGLi5+4xTS/eoR1pS2XFd0RrH2owl5K1scN6y0bXSEY7ylsTk4vrhIvZJx IYzNFp2+DNNOfER2iSZgwHWt9/NQfWCoAE5ETmEcNIIsEUOYPcpvdJ8fuqhU49jo nNuFoE4vH/oAyA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:44 2026 by rpki-client