This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/a4a2cd-5dbf-4029-a8a1-d7f21fc1350e/1/FhfQr-q78zmwbbKDxLjgJ6BKvK4.mft File: FhfQr-q78zmwbbKDxLjgJ6BKvK4.mft (raw, json) Hash identifier: MtG6Z4SSz8/3xlZdwMU0I0w71Chy9+FK96p2HJcwxTE= Subject key identifier: D8:40:59:F1:67:80:0C:E8:06:FF:B5:1D:5A:BB:2C:19:FE:15:86:87 Authority key identifier: 16:17:D0:AF:EA:BB:F3:39:B0:6D:B2:83:C4:B8:E0:27:A0:4A:BC:AE Certificate issuer: /CN=1617d0afeabbf339b06db283c4b8e027a04abcae Certificate serial: 019C43FD8B277E3E09F41D5B4EEEB91C60C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FhfQr-q78zmwbbKDxLjgJ6BKvK4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4a2cd-5dbf-4029-a8a1-d7f21fc1350e/1/FhfQr-q78zmwbbKDxLjgJ6BKvK4.mft Manifest number: 05BF Signing time: Mon 09 Feb 2026 20:00:15 +0000 Manifest this update: Mon 09 Feb 2026 20:00:15 +0000 Manifest next update: Tue 10 Feb 2026 20:00:15 +0000 Files and hashes: 1: FhfQr-q78zmwbbKDxLjgJ6BKvK4.crl (hash: S62iuyirOsTHOYzamlevkEApbilL8qATG44Uzegi2p0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4a2cd-5dbf-4029-a8a1-d7f21fc1350e/1/FhfQr-q78zmwbbKDxLjgJ6BKvK4.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/a4a2cd-5dbf-4029-a8a1-d7f21fc1350e/1/FhfQr-q78zmwbbKDxLjgJ6BKvK4.mft rsync://rpki.ripe.net/repository/DEFAULT/FhfQr-q78zmwbbKDxLjgJ6BKvK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:8b:27:7e:3e:09:f4:1d:5b:4e:ee:b9:1c:60:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1617d0afeabbf339b06db283c4b8e027a04abcae Validity Not Before: Feb 9 20:00:15 2026 GMT Not After : Feb 10 20:00:15 2026 GMT Subject: CN=d84059f167800ce806ffb51d5abb2c19fe158687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3f:e3:48:59:58:d4:ce:f3:e8:21:43:65:86: 3e:7e:cf:1d:63:cb:91:b5:cd:c5:6c:51:b7:ef:0c: a0:cd:0f:f0:ca:b5:2d:7a:a3:f7:9e:05:64:f6:b9: eb:ad:c4:f2:64:3d:79:6e:fe:67:84:39:95:71:15: ab:9a:b1:0b:d0:1b:c4:9d:39:16:0f:7b:c9:51:c3: 2d:af:fc:34:5f:75:bd:65:8b:fd:79:a6:78:e8:ce: 22:f5:94:b4:08:0e:b9:aa:df:2d:5f:18:95:1f:77: cf:e7:28:82:dc:db:95:c6:b2:b2:d5:c6:5f:c9:6f: b6:6e:c2:ea:b9:96:94:59:fe:21:d0:fa:34:44:cc: a1:79:3b:07:b4:9c:3f:db:4d:b6:4f:5c:09:e1:90: ac:16:94:f1:f6:a2:4f:7f:a8:c2:52:d9:8d:5d:79: 1b:28:98:36:12:75:a9:58:ea:80:ad:f6:6c:0f:7f: fc:e2:dc:9a:0a:51:9b:ba:16:8f:d5:b0:d3:5d:49: 8c:d2:78:da:26:4f:18:3c:d7:d7:f4:a5:e7:24:bd: 06:fc:07:b9:43:da:73:70:fb:b9:3a:98:04:0c:ad: 8f:c7:de:10:fb:4d:a1:50:1e:a3:da:f2:2c:5b:9d: 8d:af:77:d3:56:82:00:40:83:fa:0b:53:e1:17:1b: ec:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:40:59:F1:67:80:0C:E8:06:FF:B5:1D:5A:BB:2C:19:FE:15:86:87 X509v3 Authority Key Identifier: keyid:16:17:D0:AF:EA:BB:F3:39:B0:6D:B2:83:C4:B8:E0:27:A0:4A:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FhfQr-q78zmwbbKDxLjgJ6BKvK4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4a2cd-5dbf-4029-a8a1-d7f21fc1350e/1/FhfQr-q78zmwbbKDxLjgJ6BKvK4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4a2cd-5dbf-4029-a8a1-d7f21fc1350e/1/FhfQr-q78zmwbbKDxLjgJ6BKvK4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b7:14:5b:64:0b:1a:39:39:33:f1:8b:f6:3e:35:f5:bc:ea:94: 8d:ef:8a:18:c7:66:95:99:12:2c:45:99:63:9b:fb:1b:2e:39: 48:d2:47:24:80:fd:66:a3:5f:30:c3:c9:f3:12:9b:20:4f:be: 8c:c5:50:45:13:4b:4b:98:68:55:43:b7:2d:7a:8f:5d:ad:5d: 21:bd:ed:7b:b3:20:e9:96:ba:59:cc:52:fa:34:ac:6c:e6:1d: 33:01:3f:d0:40:55:78:64:7d:be:32:d9:88:97:96:cb:ce:e9: c5:ae:76:d9:3d:3d:06:b4:ff:98:1f:52:91:bc:bb:bb:7e:17: 15:c9:96:8f:07:9e:56:57:81:83:e1:0a:d5:4f:ab:d4:33:65: fb:63:40:34:43:67:7e:3d:c5:10:a6:55:bb:3a:c5:23:dc:90: d0:63:bb:47:d0:42:91:86:01:61:83:a5:aa:f0:3c:7e:a7:11: ea:a9:d6:1d:34:88:96:cc:6f:69:fe:3f:1b:bd:ef:49:fc:c6: 54:e1:5b:8c:f1:b6:1c:28:31:de:60:52:2b:c3:05:b3:39:f4: d9:c7:92:1b:ee:8e:19:cb:44:0e:15:0c:e0:b5:62:05:f7:36: 69:ed:2e:97:a7:48:77:dc:8b:cd:b1:c0:0a:aa:2a:0d:58:51: 09:05:1a:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/Ysnfj4J9B1bTu65HGDEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2MTdkMGFmZWFiYmYzMzliMDZkYjI4M2M0YjhlMDI3YTA0 YWJjYWUwHhcNMjYwMjA5MjAwMDE1WhcNMjYwMjEwMjAwMDE1WjAzMTEwLwYDVQQD EyhkODQwNTlmMTY3ODAwY2U4MDZmZmI1MWQ1YWJiMmMxOWZlMTU4Njg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwj/jSFlY1M7z6CFDZYY+fs8dY8uR tc3FbFG37wygzQ/wyrUteqP3ngVk9rnrrcTyZD15bv5nhDmVcRWrmrEL0BvEnTkW D3vJUcMtr/w0X3W9ZYv9eaZ46M4i9ZS0CA65qt8tXxiVH3fP5yiC3NuVxrKy1cZf yW+2bsLquZaUWf4h0Po0RMyheTsHtJw/2022T1wJ4ZCsFpTx9qJPf6jCUtmNXXkb KJg2EnWpWOqArfZsD3/84tyaClGbuhaP1bDTXUmM0njaJk8YPNfX9KXnJL0G/Ae5 Q9pzcPu5OpgEDK2Px94Q+02hUB6j2vIsW52Nr3fTVoIAQIP6C1PhFxvsSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNhAWfFngAzoBv+1HVq7LBn+FYaHMB8GA1UdIwQY MBaAFBYX0K/qu/M5sG2yg8S44CegSryuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRmhmUXItcTc4em13YmJLRHhMamdKNkJLdks0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9hNGEyY2QtNWRiZi00MDI5LWE4YTEt ZDdmMjFmYzEzNTBlLzEvRmhmUXItcTc4em13YmJLRHhMamdKNkJLdks0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy9hNGEyY2QtNWRiZi00MDI5LWE4YTEtZDdmMjFmYzEzNTBl LzEvRmhmUXItcTc4em13YmJLRHhMamdKNkJLdks0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtxRbZAsa OTkz8Yv2PjX1vOqUje+KGMdmlZkSLEWZY5v7Gy45SNJHJID9ZqNfMMPJ8xKbIE++ jMVQRRNLS5hoVUO3LXqPXa1dIb3te7Mg6Za6WcxS+jSsbOYdMwE/0EBVeGR9vjLZ iJeWy87pxa522T09BrT/mB9Skby7u34XFcmWjweeVleBg+EK1U+r1DNl+2NANENn fj3FEKZVuzrFI9yQ0GO7R9BCkYYBYYOlqvA8fqcR6qnWHTSIlsxvaf4/G73vSfzG VOFbjPG2HCgx3mBSK8MFszn02ceSG+6OGctEDhUM4LViBfc2ae0ul6dId9yLzbHA CqoqDVhRCQUaPg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:31 2026 by rpki-client