This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft File: h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft (raw, json) Hash identifier: YPZ723HU83bLSvLe73spHVMMl0g/11NW3O/J8LGEBZY= Subject key identifier: 4D:25:86:AF:EC:39:78:71:3C:D5:8A:E6:8F:02:4D:D7:3A:4F:BB:17 Authority key identifier: 87:C0:A7:B4:3D:42:92:49:17:A5:90:59:8B:44:32:5E:4C:C9:2E:E4 Certificate issuer: /CN=87c0a7b43d42924917a590598b44325e4cc92ee4 Certificate serial: 019C420F5E44C1BB9F44AFD2005D786008DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h8CntD1CkkkXpZBZi0QyXkzJLuQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft Manifest number: 0BE3 Signing time: Mon 09 Feb 2026 11:00:29 +0000 Manifest this update: Mon 09 Feb 2026 11:00:29 +0000 Manifest next update: Tue 10 Feb 2026 11:00:29 +0000 Files and hashes: 1: h8CntD1CkkkXpZBZi0QyXkzJLuQ.crl (hash: wh2XL1AcgvTNz7g8pLWQVhiuF5dYtR7cfp+gppD6lf4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft rsync://rpki.ripe.net/repository/DEFAULT/h8CntD1CkkkXpZBZi0QyXkzJLuQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:5e:44:c1:bb:9f:44:af:d2:00:5d:78:60:08:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87c0a7b43d42924917a590598b44325e4cc92ee4 Validity Not Before: Feb 9 11:00:29 2026 GMT Not After : Feb 10 11:00:29 2026 GMT Subject: CN=4d2586afec3978713cd58ae68f024dd73a4fbb17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:99:6e:79:99:2f:ef:aa:57:29:4c:69:a5:f4: fd:f5:cb:6a:19:1f:cd:62:2a:ff:6f:42:fc:69:37: e7:94:ce:ce:8e:aa:5f:2b:ac:7a:5e:4f:9b:dd:eb: 2a:b5:3d:36:15:4c:02:1f:13:5c:11:e2:ee:b5:d1: 68:d0:1a:e7:51:d9:cb:42:6a:13:16:94:51:8d:23: b2:42:20:f0:db:a1:69:e6:e3:7e:3e:42:43:96:94: e1:4f:e2:77:52:e1:b4:ed:2e:23:12:72:7b:c7:95: 40:be:c8:c5:a2:22:4b:b6:ec:13:18:8d:45:ee:fc: 3a:11:4d:2f:78:2c:1b:8e:4b:d0:c3:6a:62:69:4a: 02:9a:81:0c:30:5d:ec:2a:9a:89:00:d7:d8:a5:33: e8:3c:5f:16:ca:6c:2a:78:8e:58:da:44:d2:36:4d: d7:b0:47:db:80:1a:be:53:90:92:52:e6:b7:07:76: d5:08:6e:2f:f4:3a:6f:cf:63:70:52:8d:da:00:55: 78:74:34:f2:f3:4a:c8:92:40:04:ad:38:ce:5e:72: ac:3d:6b:39:86:4e:37:8e:c8:db:94:ba:b4:3e:75: 7a:48:56:c3:a3:b2:c2:2d:53:11:75:b9:ef:9b:d6: b2:bb:f5:9d:f5:7a:ce:c3:ce:7c:03:9c:5b:a2:6f: 99:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:25:86:AF:EC:39:78:71:3C:D5:8A:E6:8F:02:4D:D7:3A:4F:BB:17 X509v3 Authority Key Identifier: keyid:87:C0:A7:B4:3D:42:92:49:17:A5:90:59:8B:44:32:5E:4C:C9:2E:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h8CntD1CkkkXpZBZi0QyXkzJLuQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:19:53:78:71:7c:d0:84:d7:19:67:ca:31:1c:75:58:dd:c2: 14:1a:c8:8c:0d:60:ff:5e:c7:6d:30:fd:96:0b:50:51:5c:f3: 88:c6:ff:5f:52:41:fa:6b:04:8a:dc:46:88:ad:8e:0f:4d:b4: e7:c7:e9:93:26:3e:1a:1b:2d:88:b3:a5:76:c0:2e:d5:68:cd: ad:c5:41:de:4e:73:aa:9b:46:b1:55:37:8f:be:a4:c4:70:b4: db:98:63:64:bc:aa:9d:2c:dc:88:99:be:ed:b8:32:a1:df:7b: 63:20:54:1d:7b:16:76:d1:67:09:8f:00:28:86:8d:a4:69:83: be:59:34:3c:9f:27:3d:fd:d3:e7:05:6b:4c:9f:25:73:2d:82: 06:56:7e:0e:19:76:68:12:09:97:ee:ad:7e:19:a2:a5:40:ce: 02:79:68:03:2f:70:60:2d:cb:90:06:ad:c3:86:7f:a0:f6:f3: 69:31:0e:ee:d1:78:60:9c:3f:29:a8:b6:e5:9f:30:37:76:32: 10:f1:e9:23:a4:13:e2:f5:24:97:37:1a:f1:51:63:60:a3:6c: 9b:0b:43:c4:69:2c:78:db:ca:83:99:49:cd:b9:93:15:8e:4d: 61:d9:1e:12:07:9a:7d:34:d1:d5:7b:6a:50:bc:f0:5a:6f:09: dc:bf:59:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD15EwbufRK/SAF14YAjbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3YzBhN2I0M2Q0MjkyNDkxN2E1OTA1OThiNDQzMjVlNGNj OTJlZTQwHhcNMjYwMjA5MTEwMDI5WhcNMjYwMjEwMTEwMDI5WjAzMTEwLwYDVQQD Eyg0ZDI1ODZhZmVjMzk3ODcxM2NkNThhZTY4ZjAyNGRkNzNhNGZiYjE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp5lueZkv76pXKUxppfT99ctqGR/N Yir/b0L8aTfnlM7OjqpfK6x6Xk+b3esqtT02FUwCHxNcEeLutdFo0BrnUdnLQmoT FpRRjSOyQiDw26Fp5uN+PkJDlpThT+J3UuG07S4jEnJ7x5VAvsjFoiJLtuwTGI1F 7vw6EU0veCwbjkvQw2piaUoCmoEMMF3sKpqJANfYpTPoPF8WymwqeI5Y2kTSNk3X sEfbgBq+U5CSUua3B3bVCG4v9Dpvz2NwUo3aAFV4dDTy80rIkkAErTjOXnKsPWs5 hk43jsjblLq0PnV6SFbDo7LCLVMRdbnvm9ayu/Wd9XrOw858A5xbom+ZUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE0lhq/sOXhxPNWK5o8CTdc6T7sXMB8GA1UdIwQY MBaAFIfAp7Q9QpJJF6WQWYtEMl5MyS7kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDhDbnREMUNra2tYcFpCWmkwUXlYa3pKTHVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9hMDA4M2MtZDBhOC00ZDhhLTk0YjQt NzM1NjI1ZTBkMjk3LzEvaDhDbnREMUNra2tYcFpCWmkwUXlYa3pKTHVRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS9hMDA4M2MtZDBhOC00ZDhhLTk0YjQtNzM1NjI1ZTBkMjk3 LzEvaDhDbnREMUNra2tYcFpCWmkwUXlYa3pKTHVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmxlTeHF8 0ITXGWfKMRx1WN3CFBrIjA1g/17HbTD9lgtQUVzziMb/X1JB+msEitxGiK2OD020 58fpkyY+GhstiLOldsAu1WjNrcVB3k5zqptGsVU3j76kxHC025hjZLyqnSzciJm+ 7bgyod97YyBUHXsWdtFnCY8AKIaNpGmDvlk0PJ8nPf3T5wVrTJ8lcy2CBlZ+Dhl2 aBIJl+6tfhmipUDOAnloAy9wYC3LkAatw4Z/oPbzaTEO7tF4YJw/Kai25Z8wN3Yy EPHpI6QT4vUklzca8VFjYKNsmwtDxGkseNvKg5lJzbmTFY5NYdkeEgeafTTR1Xtq ULzwWm8J3L9ZkA== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:12 2026 by rpki-client