This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft File: hD524S0l3izPRxnfAlToU5UO7rk.mft (raw, json) Hash identifier: UCD9rUnaFDpW/iAQ+H4pHk+4aRD838VpcHzwQucJa68= Subject key identifier: 48:B2:B5:2E:11:9F:2F:79:35:CF:A2:D3:98:5F:7A:17:C3:50:B3:95 Authority key identifier: 84:3E:76:E1:2D:25:DE:2C:CF:47:19:DF:02:54:E8:53:95:0E:EE:B9 Certificate issuer: /CN=843e76e12d25de2ccf4719df0254e853950eeeb9 Certificate serial: 019C4321F024B0EB9AADD076BD1B0AAB63C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft Manifest number: 0E65 Signing time: Mon 09 Feb 2026 16:00:23 +0000 Manifest this update: Mon 09 Feb 2026 16:00:23 +0000 Manifest next update: Tue 10 Feb 2026 16:00:23 +0000 Files and hashes: 1: hD524S0l3izPRxnfAlToU5UO7rk.crl (hash: eBIwKxSMUZ3bsfFQu0rrkMF56BcG+ldRZG2x5N9RPjw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:f0:24:b0:eb:9a:ad:d0:76:bd:1b:0a:ab:63:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=843e76e12d25de2ccf4719df0254e853950eeeb9 Validity Not Before: Feb 9 16:00:23 2026 GMT Not After : Feb 10 16:00:23 2026 GMT Subject: CN=48b2b52e119f2f7935cfa2d3985f7a17c350b395 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3a:ba:c9:39:2c:09:97:da:df:ef:0f:c6:65: 99:76:65:66:1a:ea:7f:bc:80:47:d9:aa:94:d1:71: 59:66:04:bb:ec:db:87:df:9e:f7:34:15:5b:ec:77: e9:36:f9:3e:63:de:7b:24:02:7c:5b:e4:c2:b9:b6: df:1d:9f:32:33:01:33:8d:0b:af:94:e2:5f:71:9e: 9e:94:59:b0:f0:f4:e3:15:64:b0:84:13:09:2c:b2: 04:7d:ee:ed:3a:c9:ee:dd:89:5b:9c:53:fa:34:c0: 84:8d:27:08:24:9b:2b:3e:d3:f8:cb:64:05:cc:3f: 66:fc:d1:5f:0a:ea:e4:f9:79:5a:6a:55:66:30:1d: 58:ce:d0:fc:bb:94:90:5f:59:1a:e1:f4:c0:0d:69: 7a:8b:c5:c3:7b:c7:8e:a6:3e:7d:69:a4:f1:c5:70: 31:49:d3:1e:3e:2f:93:27:1b:58:8a:d5:e8:f6:81: 4b:f7:af:c4:04:0a:c7:df:a7:f6:69:05:f5:b0:87: f9:7d:fe:20:d9:81:d2:1c:d9:30:b3:76:41:00:bc: 5a:96:a5:b6:0b:8a:3a:9d:d3:31:78:38:0c:6b:ac: 27:be:5b:86:4e:76:0b:98:25:0a:62:0b:43:de:2a: 82:2b:b4:db:95:b2:e4:5a:f8:b3:ca:22:6c:33:0a: 4b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:B2:B5:2E:11:9F:2F:79:35:CF:A2:D3:98:5F:7A:17:C3:50:B3:95 X509v3 Authority Key Identifier: keyid:84:3E:76:E1:2D:25:DE:2C:CF:47:19:DF:02:54:E8:53:95:0E:EE:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:47:9a:98:dd:c4:ca:d4:65:3b:18:99:fc:0e:d0:a3:b2:9b: e3:65:8d:7d:db:f3:e9:47:88:99:27:1f:4b:10:bd:04:55:6f: d6:63:d5:c1:f1:98:0c:99:99:5c:69:56:c2:de:e3:4a:89:ea: 32:9f:18:ac:3f:ad:0c:ac:19:9f:c7:a6:36:24:d1:d5:97:1f: 3d:e0:d3:da:e8:79:e3:ad:17:d3:a8:ca:b5:0b:7f:53:7f:8a: 8e:3f:05:e8:5c:93:69:46:1b:f9:92:95:c3:8c:0b:5e:ed:99: 73:84:f3:c7:1b:d4:9b:79:3f:50:1f:c8:00:6a:63:5d:df:5a: d4:04:0d:70:f8:1b:fa:d4:40:5b:af:ac:0a:eb:25:de:d2:59: be:33:3f:df:92:2f:ad:b6:cc:06:7f:76:cc:f6:50:87:5a:30: 88:0f:66:a8:29:db:73:c2:d8:d8:4b:56:80:09:ca:3b:26:63: 25:a5:ef:92:4c:5e:85:f6:81:0f:a5:62:b1:74:5d:68:2e:ac: 86:c0:05:06:98:e9:a7:23:ad:47:62:2d:21:7e:7a:fb:f4:1e: 81:c9:50:0d:4a:61:b5:c8:cd:ce:b3:e2:38:61:26:c5:0a:96: f7:f5:fe:12:14:c7:09:77:7e:29:ce:51:2e:3d:69:ca:ac:ef: 04:11:bd:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIfAksOuardB2vRsKq2PHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0M2U3NmUxMmQyNWRlMmNjZjQ3MTlkZjAyNTRlODUzOTUw ZWVlYjkwHhcNMjYwMjA5MTYwMDIzWhcNMjYwMjEwMTYwMDIzWjAzMTEwLwYDVQQD Eyg0OGIyYjUyZTExOWYyZjc5MzVjZmEyZDM5ODVmN2ExN2MzNTBiMzk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwjq6yTksCZfa3+8PxmWZdmVmGup/ vIBH2aqU0XFZZgS77NuH3573NBVb7HfpNvk+Y957JAJ8W+TCubbfHZ8yMwEzjQuv lOJfcZ6elFmw8PTjFWSwhBMJLLIEfe7tOsnu3YlbnFP6NMCEjScIJJsrPtP4y2QF zD9m/NFfCurk+XlaalVmMB1YztD8u5SQX1ka4fTADWl6i8XDe8eOpj59aaTxxXAx SdMePi+TJxtYitXo9oFL96/EBArH36f2aQX1sIf5ff4g2YHSHNkws3ZBALxalqW2 C4o6ndMxeDgMa6wnvluGTnYLmCUKYgtD3iqCK7TblbLkWvizyiJsMwpLyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEiytS4Rny95Nc+i05hfehfDULOVMB8GA1UdIwQY MBaAFIQ+duEtJd4sz0cZ3wJU6FOVDu65MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEQ1MjRTMGwzaXpQUnhuZkFsVG9VNVVPN3JrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS85MzI1NmItYzkxMy00OTVhLWE3Zjkt NjdmYzhkMjA2NWIxLzEvaEQ1MjRTMGwzaXpQUnhuZkFsVG9VNVVPN3JrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS85MzI1NmItYzkxMy00OTVhLWE3ZjktNjdmYzhkMjA2NWIx LzEvaEQ1MjRTMGwzaXpQUnhuZkFsVG9VNVVPN3JrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR0eamN3E ytRlOxiZ/A7Qo7Kb42WNfdvz6UeImScfSxC9BFVv1mPVwfGYDJmZXGlWwt7jSonq Mp8YrD+tDKwZn8emNiTR1ZcfPeDT2uh5460X06jKtQt/U3+Kjj8F6FyTaUYb+ZKV w4wLXu2Zc4TzxxvUm3k/UB/IAGpjXd9a1AQNcPgb+tRAW6+sCusl3tJZvjM/35Iv rbbMBn92zPZQh1owiA9mqCnbc8LY2EtWgAnKOyZjJaXvkkxehfaBD6VisXRdaC6s hsAFBpjppyOtR2ItIX56+/QegclQDUphtcjNzrPiOGEmxQqW9/X+EhTHCXd+Kc5R Lj1pyqzvBBG9qg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:06 2026 by rpki-client