This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft File: hFNK68PtnHkETCI8iyXgEdq_L98.mft (raw, json) Hash identifier: bSX+ZzTJKQTBPtdhg7DPT2Zkv0L2oOW7i/23+XqaQ0o= Subject key identifier: 2D:BE:CA:C3:FD:A5:A7:0F:02:85:BC:91:BA:07:E1:F0:79:AA:86:C2 Authority key identifier: 84:53:4A:EB:C3:ED:9C:79:04:4C:22:3C:8B:25:E0:11:DA:BF:2F:DF Certificate issuer: /CN=84534aebc3ed9c79044c223c8b25e011dabf2fdf Certificate serial: 019C43C6E986C1FE1CBCC314DA9801776A81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFNK68PtnHkETCI8iyXgEdq_L98.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft Manifest number: 08F5 Signing time: Mon 09 Feb 2026 19:00:35 +0000 Manifest this update: Mon 09 Feb 2026 19:00:35 +0000 Manifest next update: Tue 10 Feb 2026 19:00:35 +0000 Files and hashes: 1: hFNK68PtnHkETCI8iyXgEdq_L98.crl (hash: sX8T+B6U8aOmu8TpSq9UOwLeb4D5CgTqwrW5VHDY1aE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft rsync://rpki.ripe.net/repository/DEFAULT/hFNK68PtnHkETCI8iyXgEdq_L98.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:e9:86:c1:fe:1c:bc:c3:14:da:98:01:77:6a:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84534aebc3ed9c79044c223c8b25e011dabf2fdf Validity Not Before: Feb 9 19:00:35 2026 GMT Not After : Feb 10 19:00:35 2026 GMT Subject: CN=2dbecac3fda5a70f0285bc91ba07e1f079aa86c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9e:30:b8:1c:8b:27:59:88:58:0e:51:5e:af: 9c:b4:30:db:5d:bf:4f:60:a7:ee:e9:6b:16:a6:b4: ea:bc:aa:05:78:a3:cc:80:ae:88:35:7e:75:0a:b6: b4:20:23:39:d6:c2:ea:5f:18:2d:58:2a:c3:a1:03: 8e:f9:4f:05:f8:20:bd:99:ec:bd:16:85:78:c2:cf: b2:65:42:3c:1c:8a:5d:b7:02:7d:b1:5c:5f:d6:8a: c1:a3:ec:a6:a1:59:92:e8:3e:67:0b:39:46:26:78: 95:2e:82:cf:10:1c:42:9e:1e:c9:45:06:b4:b7:97: 67:92:c0:f9:9f:36:a2:e9:04:05:47:11:50:86:aa: ef:ed:26:cd:8e:5b:6e:73:2b:1f:cf:4d:3f:17:a6: c4:e2:71:01:d3:ab:88:b4:43:6c:3e:6c:78:6e:0a: ae:f1:1e:7e:1d:6f:c5:e7:6f:ea:6d:50:a1:d3:f4: 5f:3a:18:83:50:4a:e0:56:ee:8b:cc:46:cc:35:16: 24:a2:6f:5c:c5:5c:1a:0f:9b:99:15:d0:6f:ee:04: ce:0b:24:70:13:74:28:d6:6b:06:64:b9:de:e8:78: cf:7c:f7:67:d8:c2:96:91:3f:9b:fd:9c:5a:92:a1: 78:3a:35:e4:09:3f:a2:ff:ed:e2:d5:26:b6:36:40: 16:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:BE:CA:C3:FD:A5:A7:0F:02:85:BC:91:BA:07:E1:F0:79:AA:86:C2 X509v3 Authority Key Identifier: keyid:84:53:4A:EB:C3:ED:9C:79:04:4C:22:3C:8B:25:E0:11:DA:BF:2F:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFNK68PtnHkETCI8iyXgEdq_L98.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:92:06:b4:31:75:55:b7:db:df:2d:0d:cf:30:3b:1c:b3:02: b5:27:8e:80:62:f9:27:58:ca:4c:21:b2:cd:33:76:9c:b4:ed: 0b:ab:28:91:d8:15:bc:94:9b:80:d5:76:86:08:c4:8a:81:1c: 4b:f3:92:22:b3:17:11:a3:ba:80:5b:39:61:ef:32:2b:46:3f: e8:d8:f0:c2:6c:c7:52:a8:d0:f0:3a:31:2b:5f:a3:1c:bd:ad: f5:dd:a0:7a:8c:49:5d:79:75:8c:8d:9e:f8:da:9a:ec:2c:72: 64:3b:3d:a9:86:ad:37:ae:dc:3c:d0:1b:27:e9:1e:03:dc:52: 9c:4c:dc:cd:a5:4a:75:8f:5a:d1:b2:2f:8c:7b:36:5e:4c:a1: 62:fb:3a:16:a1:81:7a:62:b7:0f:5e:e6:7e:b6:06:51:46:28: e8:c6:40:4c:7c:83:3d:6a:09:ee:89:38:bc:b1:3d:dc:76:b4: 8d:46:5d:56:4b:21:ba:de:7c:52:2b:50:45:86:c5:e7:96:ed: 69:f9:aa:ce:66:f9:1e:39:f0:fd:7c:bd:4c:77:7f:98:69:72: d5:8f:c3:37:ee:f6:63:14:9b:a9:cc:85:4e:cb:08:e3:19:a3: 31:ea:4e:b4:f0:cf:72:20:52:94:92:e1:cb:a8:7a:a8:6d:08: 84:4a:4f:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxumGwf4cvMMU2pgBd2qBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0NTM0YWViYzNlZDljNzkwNDRjMjIzYzhiMjVlMDExZGFi ZjJmZGYwHhcNMjYwMjA5MTkwMDM1WhcNMjYwMjEwMTkwMDM1WjAzMTEwLwYDVQQD EygyZGJlY2FjM2ZkYTVhNzBmMDI4NWJjOTFiYTA3ZTFmMDc5YWE4NmMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Z4wuByLJ1mIWA5RXq+ctDDbXb9P YKfu6WsWprTqvKoFeKPMgK6INX51Cra0ICM51sLqXxgtWCrDoQOO+U8F+CC9mey9 FoV4ws+yZUI8HIpdtwJ9sVxf1orBo+ymoVmS6D5nCzlGJniVLoLPEBxCnh7JRQa0 t5dnksD5nzai6QQFRxFQhqrv7SbNjltucysfz00/F6bE4nEB06uItENsPmx4bgqu 8R5+HW/F52/qbVCh0/RfOhiDUErgVu6LzEbMNRYkom9cxVwaD5uZFdBv7gTOCyRw E3Qo1msGZLne6HjPfPdn2MKWkT+b/ZxakqF4OjXkCT+i/+3i1Sa2NkAWYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC2+ysP9pacPAoW8kboH4fB5qobCMB8GA1UdIwQY MBaAFIRTSuvD7Zx5BEwiPIsl4BHavy/fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEZOSzY4UHRuSGtFVENJOGl5WGdFZHFfTDk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9hOGUzMjktM2JkNy00MzdmLTgxMDct ZWJkZTc0OTMzYzc3LzEvaEZOSzY4UHRuSGtFVENJOGl5WGdFZHFfTDk4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi9hOGUzMjktM2JkNy00MzdmLTgxMDctZWJkZTc0OTMzYzc3 LzEvaEZOSzY4UHRuSGtFVENJOGl5WGdFZHFfTDk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACJIGtDF1 Vbfb3y0NzzA7HLMCtSeOgGL5J1jKTCGyzTN2nLTtC6sokdgVvJSbgNV2hgjEioEc S/OSIrMXEaO6gFs5Ye8yK0Y/6NjwwmzHUqjQ8DoxK1+jHL2t9d2geoxJXXl1jI2e +Nqa7CxyZDs9qYatN67cPNAbJ+keA9xSnEzczaVKdY9a0bIvjHs2XkyhYvs6FqGB emK3D17mfrYGUUYo6MZATHyDPWoJ7ok4vLE93Ha0jUZdVkshut58UitQRYbF55bt afmqzmb5Hjnw/Xy9THd/mGly1Y/DN+72YxSbqcyFTssI4xmjMepOtPDPciBSlJLh y6h6qG0IhEpPpg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:45:38 2026 by rpki-client