This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft File: hB6IIdAaloi57nryrruVnLvtBys.mft (raw, json) Hash identifier: oU9M6QOEU30hwVUq56zhyAWhyTrVHgRxdxgnhJ7utSI= Subject key identifier: F2:E8:8B:BF:80:65:47:47:04:BC:D5:3B:F9:00:FB:C2:43:A0:41:C1 Authority key identifier: 84:1E:88:21:D0:1A:96:88:B9:EE:7A:F2:AE:BB:95:9C:BB:ED:07:2B Certificate issuer: /CN=841e8821d01a9688b9ee7af2aebb959cbbed072b Certificate serial: 019C28869F0BC0C29357ABB4B737C555F65E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hB6IIdAaloi57nryrruVnLvtBys.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft Manifest number: 37 Signing time: Wed 04 Feb 2026 12:00:37 +0000 Manifest this update: Wed 04 Feb 2026 12:00:37 +0000 Manifest next update: Thu 05 Feb 2026 12:00:37 +0000 Files and hashes: 1: eQ8pUqqadp9cp4FYzeNplhCqiz8.roa (hash: RF09/EJZQF5XIgJSe7QHfYgaZkhCRVhxSpLB2BRdPks=) 2: hB6IIdAaloi57nryrruVnLvtBys.crl (hash: pRaZ+Qf1fXjU6RaGgXE5csmIFu+HDMBzYR1DvMBbJqg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft rsync://rpki.ripe.net/repository/DEFAULT/hB6IIdAaloi57nryrruVnLvtBys.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:28:86:9f:0b:c0:c2:93:57:ab:b4:b7:37:c5:55:f6:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=841e8821d01a9688b9ee7af2aebb959cbbed072b Validity Not Before: Feb 4 12:00:37 2026 GMT Not After : Feb 5 12:00:37 2026 GMT Subject: CN=f2e88bbf8065474704bcd53bf900fbc243a041c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b4:53:38:78:6b:86:fc:88:83:49:b9:9b:e8: 43:bd:6a:79:ae:4a:cb:d0:8d:93:e1:fe:8d:2e:02: 78:9e:7b:f5:ce:13:1e:c5:99:ff:ff:7c:2a:bc:bb: 15:a5:46:04:87:eb:15:2d:ac:08:cc:31:1d:40:8b: fa:0c:71:8b:31:36:a8:5a:9a:49:95:ab:a1:f2:b5: 7f:ca:f0:cc:bc:10:1e:21:46:0c:f0:8d:44:3c:dc: 61:28:f8:1d:36:45:18:93:7d:c1:6d:d6:01:c7:43: 03:b0:5b:50:46:8e:da:0f:4f:d2:18:eb:e3:67:1b: 8e:45:02:17:c6:0d:e0:87:ef:bb:1d:ee:c1:a1:9d: 36:57:82:6c:3c:9d:d1:f9:04:a2:58:2d:f2:b5:af: 9e:ce:05:61:cb:36:aa:8c:8d:8b:46:20:e9:cb:41: e5:aa:89:f4:22:1e:4e:5f:58:b0:a1:5b:de:93:c4: 20:8c:63:2b:e8:ab:9d:72:bb:4f:a9:3b:ab:32:7e: f7:6b:65:ef:01:91:72:35:1c:b3:0c:97:a6:fc:fe: 64:74:91:b2:11:92:d2:60:46:63:6b:61:43:f4:91: 5f:95:c8:74:61:30:f7:2b:01:89:a0:81:83:54:ac: d3:00:22:75:cc:af:3e:2e:cd:07:61:9e:e7:6f:8e: 8d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:E8:8B:BF:80:65:47:47:04:BC:D5:3B:F9:00:FB:C2:43:A0:41:C1 X509v3 Authority Key Identifier: keyid:84:1E:88:21:D0:1A:96:88:B9:EE:7A:F2:AE:BB:95:9C:BB:ED:07:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hB6IIdAaloi57nryrruVnLvtBys.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:a3:b8:c1:63:a6:5e:cb:d6:32:0b:74:f2:9d:e6:2f:07:7d: 13:7e:7f:01:da:1c:54:e1:5d:fd:0e:de:c8:67:e0:e7:d2:26: 54:b8:37:ad:1c:24:cd:04:4d:d1:74:d0:9f:cb:39:cc:9c:cc: 2b:cc:cb:1c:af:da:3c:c0:97:66:e1:eb:47:ff:0a:86:7b:89: f5:40:00:1f:e4:52:94:e4:95:45:fd:97:b2:b8:ab:cb:78:bc: 1f:d6:51:eb:3a:61:63:15:40:9a:d1:47:e7:b1:86:1d:2c:16: 19:48:8c:88:99:cf:b4:09:60:51:a5:f9:79:24:ab:7c:ec:9a: 33:c7:bf:13:60:67:7a:dd:2a:53:13:b9:09:70:7f:e2:eb:6f: 72:42:01:fb:97:23:9e:5e:db:d5:ed:c5:54:70:e3:12:6d:6f: dc:8e:82:d9:22:4f:bb:a5:60:3c:fa:c4:15:aa:44:4a:d8:6a: 5c:0d:83:ca:b3:76:2f:ec:0c:f8:ec:88:02:6f:b7:ec:fe:c4: 6e:81:44:b4:44:31:0a:21:95:d5:8f:75:a3:d7:a9:02:13:18: 31:0a:03:8a:cd:85:53:07:03:14:ba:83:3e:c9:19:08:3d:f5: fc:62:05:5a:39:27:58:26:ac:33:5f:10:aa:c5:2c:98:2c:5b: 8f:99:d3:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwohp8LwMKTV6u0tzfFVfZeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0MWU4ODIxZDAxYTk2ODhiOWVlN2FmMmFlYmI5NTljYmJl ZDA3MmIwHhcNMjYwMjA0MTIwMDM3WhcNMjYwMjA1MTIwMDM3WjAzMTEwLwYDVQQD EyhmMmU4OGJiZjgwNjU0NzQ3MDRiY2Q1M2JmOTAwZmJjMjQzYTA0MWMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnrRTOHhrhvyIg0m5m+hDvWp5rkrL 0I2T4f6NLgJ4nnv1zhMexZn//3wqvLsVpUYEh+sVLawIzDEdQIv6DHGLMTaoWppJ lauh8rV/yvDMvBAeIUYM8I1EPNxhKPgdNkUYk33BbdYBx0MDsFtQRo7aD0/SGOvj ZxuORQIXxg3gh++7He7BoZ02V4JsPJ3R+QSiWC3yta+ezgVhyzaqjI2LRiDpy0Hl qon0Ih5OX1iwoVvek8QgjGMr6KudcrtPqTurMn73a2XvAZFyNRyzDJem/P5kdJGy EZLSYEZja2FD9JFflch0YTD3KwGJoIGDVKzTACJ1zK8+Ls0HYZ7nb46NfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPLoi7+AZUdHBLzVO/kA+8JDoEHBMB8GA1UdIwQY MBaAFIQeiCHQGpaIue568q67lZy77QcrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEI2SUlkQWFsb2k1N25yeXJydVZuTHZ0QnlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9iMDY3ZGItOWFiMS00YjEzLTliNzAt YTEzMjM3NjEzNDU5LzEvaEI2SUlkQWFsb2k1N25yeXJydVZuTHZ0QnlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC9iMDY3ZGItOWFiMS00YjEzLTliNzAtYTEzMjM3NjEzNDU5 LzEvaEI2SUlkQWFsb2k1N25yeXJydVZuTHZ0QnlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOKO4wWOm XsvWMgt08p3mLwd9E35/AdocVOFd/Q7eyGfg59ImVLg3rRwkzQRN0XTQn8s5zJzM K8zLHK/aPMCXZuHrR/8KhnuJ9UAAH+RSlOSVRf2Xsriry3i8H9ZR6zphYxVAmtFH 57GGHSwWGUiMiJnPtAlgUaX5eSSrfOyaM8e/E2Bnet0qUxO5CXB/4utvckIB+5cj nl7b1e3FVHDjEm1v3I6C2SJPu6VgPPrEFapESthqXA2DyrN2L+wM+OyIAm+37P7E boFEtEQxCiGV1Y91o9epAhMYMQoDis2FUwcDFLqDPskZCD31/GIFWjknWCasM18Q qsUsmCxbj5nTSQ== -----END CERTIFICATE-----Generated at Wed Feb 4 15:08:30 2026 by rpki-client