This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/680c79-2735-4cf0-85b4-503414e9e328/1/hIlOT1Dowmz4rHR-mb8Gfgp9Rdw.mft File: hIlOT1Dowmz4rHR-mb8Gfgp9Rdw.mft (raw, json) Hash identifier: LaOdRCBiWRgrt77XiT+GnlHQKBYTs7faVVk5WiBUqmo= Subject key identifier: A1:AB:06:05:03:57:F5:21:C8:EA:DE:4F:87:DC:27:52:A0:0A:19:7B Authority key identifier: 84:89:4E:4F:50:E8:C2:6C:F8:AC:74:7E:99:BF:06:7E:0A:7D:45:DC Certificate issuer: /CN=84894e4f50e8c26cf8ac747e99bf067e0a7d45dc Certificate serial: 019C435912E282BCF454419FB1064EFC6F9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hIlOT1Dowmz4rHR-mb8Gfgp9Rdw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/680c79-2735-4cf0-85b4-503414e9e328/1/hIlOT1Dowmz4rHR-mb8Gfgp9Rdw.mft Manifest number: 6C Signing time: Mon 09 Feb 2026 17:00:36 +0000 Manifest this update: Mon 09 Feb 2026 17:00:36 +0000 Manifest next update: Tue 10 Feb 2026 17:00:36 +0000 Files and hashes: 1: hIlOT1Dowmz4rHR-mb8Gfgp9Rdw.crl (hash: bMVECocwUAfBbJ6QkvxS3SvXhdJJM7CuBcarquVmrHg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/680c79-2735-4cf0-85b4-503414e9e328/1/hIlOT1Dowmz4rHR-mb8Gfgp9Rdw.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/680c79-2735-4cf0-85b4-503414e9e328/1/hIlOT1Dowmz4rHR-mb8Gfgp9Rdw.mft rsync://rpki.ripe.net/repository/DEFAULT/hIlOT1Dowmz4rHR-mb8Gfgp9Rdw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:12:e2:82:bc:f4:54:41:9f:b1:06:4e:fc:6f:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84894e4f50e8c26cf8ac747e99bf067e0a7d45dc Validity Not Before: Feb 9 17:00:36 2026 GMT Not After : Feb 10 17:00:36 2026 GMT Subject: CN=a1ab06050357f521c8eade4f87dc2752a00a197b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:2f:95:b6:02:7d:90:6f:9a:31:ee:25:a3:2d: 86:cb:09:a1:91:59:e4:ff:28:2b:c0:12:3b:3b:65: 59:33:0c:23:21:94:32:c8:da:2b:87:58:04:43:23: 5e:ca:3f:55:17:ec:9a:62:34:40:64:07:e4:3e:d3: d2:9c:3d:b8:3b:42:0b:20:6f:05:9c:df:22:eb:32: 6c:da:64:6b:95:ee:6f:c3:af:51:4c:8d:18:3d:91: be:e9:2c:79:6c:68:b8:6d:31:12:cb:05:b8:02:77: d1:07:55:d1:01:a9:b7:41:a7:1a:3c:af:39:e8:be: 2b:66:85:8a:7b:7e:3f:e5:91:61:2f:ee:f2:cb:9a: ea:d3:03:0a:bc:f0:e0:02:be:0a:b3:68:9c:8f:8b: 86:19:3c:a7:81:09:87:a0:a2:50:dc:2f:4b:50:cb: f4:3a:54:0c:21:70:50:84:97:0e:53:08:b9:b3:ce: e5:d4:f3:a5:39:bb:62:06:a7:d9:c7:c9:a4:0a:12: ee:ae:ab:bc:85:82:b9:f1:f1:4b:be:81:b3:9d:b3: 2f:0b:9a:6b:f4:d3:fc:a4:28:f4:70:28:5a:39:3e: 88:11:e1:a2:84:25:7f:62:69:d6:8e:0f:35:2a:30: a5:33:71:1d:6d:2f:a3:81:0e:d4:6e:c7:c9:8c:a5: 5b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:AB:06:05:03:57:F5:21:C8:EA:DE:4F:87:DC:27:52:A0:0A:19:7B X509v3 Authority Key Identifier: keyid:84:89:4E:4F:50:E8:C2:6C:F8:AC:74:7E:99:BF:06:7E:0A:7D:45:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hIlOT1Dowmz4rHR-mb8Gfgp9Rdw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/680c79-2735-4cf0-85b4-503414e9e328/1/hIlOT1Dowmz4rHR-mb8Gfgp9Rdw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/680c79-2735-4cf0-85b4-503414e9e328/1/hIlOT1Dowmz4rHR-mb8Gfgp9Rdw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:94:9f:39:4b:17:98:ce:bf:4d:87:65:59:47:52:0f:63:db: 83:a8:2f:35:ee:13:f9:ef:10:17:e7:71:a6:04:5f:a4:ae:ff: e4:47:e8:5a:47:3e:76:df:8a:bc:f6:a1:a9:28:de:f2:e1:2e: be:a9:d3:e3:66:21:17:66:77:f1:d6:07:38:82:c4:d6:56:a1: 96:c5:7d:7e:62:07:75:8a:33:37:33:16:52:a8:b4:b7:65:f6: 81:07:61:13:24:e6:a0:52:f8:25:fc:c2:4b:29:7c:94:75:69: 90:2d:6a:1c:de:4f:3e:06:3d:6d:32:3a:86:92:b7:91:d4:ee: db:58:07:34:77:58:7e:f5:e6:a2:f8:e2:b8:79:2b:1e:ca:08: 54:6c:8f:86:be:7e:33:5b:4d:80:08:f0:0b:b0:ed:42:bf:28: f2:6b:30:59:97:a1:92:39:36:2a:c2:b0:55:4a:9b:68:09:06: ae:27:b0:28:29:3f:a9:ba:04:f1:79:c0:36:67:88:88:b5:8d: 47:b8:30:c4:e8:7d:a2:e6:99:33:6f:a1:e6:c3:7f:91:e6:1b: 37:a8:5b:f5:45:cf:f1:2a:e6:9d:89:5b:4a:9c:bd:0e:17:7e: 49:b6:89:43:23:d2:cb:af:97:84:ff:94:a0:9e:31:81:9e:b0: 8d:49:3a:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWRLigrz0VEGfsQZO/G+aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0ODk0ZTRmNTBlOGMyNmNmOGFjNzQ3ZTk5YmYwNjdlMGE3 ZDQ1ZGMwHhcNMjYwMjA5MTcwMDM2WhcNMjYwMjEwMTcwMDM2WjAzMTEwLwYDVQQD EyhhMWFiMDYwNTAzNTdmNTIxYzhlYWRlNGY4N2RjMjc1MmEwMGExOTdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnC+VtgJ9kG+aMe4loy2GywmhkVnk /ygrwBI7O2VZMwwjIZQyyNorh1gEQyNeyj9VF+yaYjRAZAfkPtPSnD24O0ILIG8F nN8i6zJs2mRrle5vw69RTI0YPZG+6Sx5bGi4bTESywW4AnfRB1XRAam3QacaPK85 6L4rZoWKe34/5ZFhL+7yy5rq0wMKvPDgAr4Ks2icj4uGGTyngQmHoKJQ3C9LUMv0 OlQMIXBQhJcOUwi5s87l1POlObtiBqfZx8mkChLurqu8hYK58fFLvoGznbMvC5pr 9NP8pCj0cChaOT6IEeGihCV/YmnWjg81KjClM3EdbS+jgQ7UbsfJjKVbEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKGrBgUDV/UhyOreT4fcJ1KgChl7MB8GA1UdIwQY MBaAFISJTk9Q6MJs+Kx0fpm/Bn4KfUXcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaElsT1QxRG93bXo0ckhSLW1iOEdmZ3A5UmR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC82ODBjNzktMjczNS00Y2YwLTg1YjQt NTAzNDE0ZTllMzI4LzEvaElsT1QxRG93bXo0ckhSLW1iOEdmZ3A5UmR3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC82ODBjNzktMjczNS00Y2YwLTg1YjQtNTAzNDE0ZTllMzI4 LzEvaElsT1QxRG93bXo0ckhSLW1iOEdmZ3A5UmR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACJSfOUsX mM6/TYdlWUdSD2Pbg6gvNe4T+e8QF+dxpgRfpK7/5EfoWkc+dt+KvPahqSje8uEu vqnT42YhF2Z38dYHOILE1lahlsV9fmIHdYozNzMWUqi0t2X2gQdhEyTmoFL4JfzC Syl8lHVpkC1qHN5PPgY9bTI6hpK3kdTu21gHNHdYfvXmovjiuHkrHsoIVGyPhr5+ M1tNgAjwC7DtQr8o8mswWZehkjk2KsKwVUqbaAkGriewKCk/qboE8XnANmeIiLWN R7gwxOh9ouaZM2+h5sN/keYbN6hb9UXP8SrmnYlbSpy9Dhd+SbaJQyPSy6+XhP+U oJ4xgZ6wjUk6Nw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:23:36 2026 by rpki-client