This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft File: hnWNin7SGnQXLM7sM4xk02sDeNQ.mft (raw, json) Hash identifier: eDVlEijtAxRBgaQvM3Ut6zaQPTm6wg2UyWOmhbr6Tkw= Subject key identifier: 5F:7F:D3:D8:77:E8:6E:2E:18:99:D1:E0:F9:45:BF:07:3F:7C:38:A5 Authority key identifier: 86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4 Certificate issuer: /CN=86758d8a7ed21a74172cceec338c64d36b0378d4 Certificate serial: 019C43FDBB306AC90E5043C6462CE40F73A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft Manifest number: 0679 Signing time: Mon 09 Feb 2026 20:00:27 +0000 Manifest this update: Mon 09 Feb 2026 20:00:27 +0000 Manifest next update: Tue 10 Feb 2026 20:00:27 +0000 Files and hashes: 1: OpVP9Jc1xVaXbqJf86X7XVLPEVg.roa (hash: hPcfxfvwY6smKQuTD+0Hf69aqpf3jRgfObWjITTCQao=) 2: hnWNin7SGnQXLM7sM4xk02sDeNQ.crl (hash: L3WdJ83DdhhOmgsd7PMwW0yXUR++SAp7CeQ3sAEVUPY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:bb:30:6a:c9:0e:50:43:c6:46:2c:e4:0f:73:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86758d8a7ed21a74172cceec338c64d36b0378d4 Validity Not Before: Feb 9 20:00:27 2026 GMT Not After : Feb 10 20:00:27 2026 GMT Subject: CN=5f7fd3d877e86e2e1899d1e0f945bf073f7c38a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fd:58:c8:11:1f:6f:6f:ea:e1:05:00:76:12: b2:ca:96:3b:f7:6b:e9:45:8d:aa:18:6c:97:e5:51: 1b:da:bb:15:ce:4e:05:b7:08:f7:91:17:d3:51:69: eb:fa:45:a3:b2:4e:d9:3e:46:6c:cb:57:d2:de:d8: 2e:0b:d5:f5:00:dd:af:5e:7e:61:cc:02:0b:69:67: 1f:a4:67:20:a7:34:1a:9e:1b:32:f4:8d:e4:76:fa: a2:a8:da:23:96:dc:20:e9:ec:79:7c:7d:7d:92:e5: 16:88:c2:ec:69:09:48:37:f2:29:b7:8d:59:76:2d: 9d:b4:a7:38:94:a5:0c:2f:3d:24:f1:8f:d3:ef:eb: b3:42:4e:d8:d1:69:1e:54:d4:f5:ce:cc:ed:3f:eb: cb:1e:d0:13:e3:d3:84:71:2a:74:5b:0f:5e:eb:8c: d8:11:20:51:4e:15:27:92:2a:1f:b3:32:9b:a6:39: 17:6b:42:52:3c:c7:c7:fa:76:e1:54:fa:2f:a5:0d: 87:20:2a:5b:3d:9e:4d:12:0b:2c:76:88:45:3c:05: 0f:8c:8d:22:b9:b1:bb:15:fd:e3:0a:7c:3e:c3:8a: 84:e9:02:9f:f1:df:67:cf:93:18:d4:9f:ff:e2:5c: a2:14:f7:6f:8e:fa:8a:f3:af:78:b6:cf:04:5d:04: f4:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:7F:D3:D8:77:E8:6E:2E:18:99:D1:E0:F9:45:BF:07:3F:7C:38:A5 X509v3 Authority Key Identifier: keyid:86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:d1:4d:f4:7f:12:1f:29:59:49:a9:71:66:86:4b:e2:1c:e7: 18:c6:61:00:d9:c5:2a:dc:d8:3f:9b:78:b2:91:f6:36:09:7f: b1:51:76:27:f6:84:ce:c8:d6:20:5b:20:ca:1f:6d:f7:a1:6c: 41:59:cf:18:1b:7b:a1:16:32:37:29:cd:69:34:17:ad:fa:d5: 2d:af:c1:f1:a7:61:b3:3a:b9:8a:af:9b:6e:76:41:27:f9:6a: ad:33:76:d9:d9:a2:06:26:2b:9c:03:66:d0:52:67:c3:9e:95: 1a:f2:8f:96:61:7c:e8:58:90:b3:c0:8e:d6:ed:cf:32:4f:56: 44:5b:89:a6:6f:31:eb:3a:65:99:74:7f:8e:1b:0e:58:bd:21: 3e:04:66:6f:da:11:35:3f:6f:29:b2:f2:9d:77:23:4c:7b:8b: 42:63:0d:0c:8e:fc:65:38:c3:0d:ab:5e:75:f9:83:1f:19:6c: 4c:65:4b:cc:21:11:08:66:26:6d:7b:39:f3:33:6c:f6:a5:61: 33:81:6c:01:c6:0b:67:2b:51:6c:b2:b0:4e:53:fe:c3:0b:9e: f6:51:ef:c2:c0:7a:79:a0:43:bf:3f:f6:e0:e6:c5:a0:84:6f: 24:e3:ee:b6:26:0e:56:ca:d2:89:db:c0:22:db:09:8e:ea:f6: 83:e1:50:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/bswaskOUEPGRizkD3OlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2NzU4ZDhhN2VkMjFhNzQxNzJjY2VlYzMzOGM2NGQzNmIw Mzc4ZDQwHhcNMjYwMjA5MjAwMDI3WhcNMjYwMjEwMjAwMDI3WjAzMTEwLwYDVQQD Eyg1ZjdmZDNkODc3ZTg2ZTJlMTg5OWQxZTBmOTQ1YmYwNzNmN2MzOGE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu/1YyBEfb2/q4QUAdhKyypY792vp RY2qGGyX5VEb2rsVzk4Ftwj3kRfTUWnr+kWjsk7ZPkZsy1fS3tguC9X1AN2vXn5h zAILaWcfpGcgpzQanhsy9I3kdvqiqNojltwg6ex5fH19kuUWiMLsaQlIN/Ipt41Z di2dtKc4lKUMLz0k8Y/T7+uzQk7Y0WkeVNT1zsztP+vLHtAT49OEcSp0Ww9e64zY ESBRThUnkiofszKbpjkXa0JSPMfH+nbhVPovpQ2HICpbPZ5NEgssdohFPAUPjI0i ubG7Ff3jCnw+w4qE6QKf8d9nz5MY1J//4lyiFPdvjvqK8694ts8EXQT00wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF9/09h36G4uGJnR4PlFvwc/fDilMB8GA1UdIwQY MBaAFIZ1jYp+0hp0FyzO7DOMZNNrA3jUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaG5XTmluN1NHblFYTE03c000eGswMnNEZU5RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9lNTVhOWItMmZhMC00YWY0LTkwZGQt Y2RhY2I4NDY3MTg3LzEvaG5XTmluN1NHblFYTE03c000eGswMnNEZU5RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi9lNTVhOWItMmZhMC00YWY0LTkwZGQtY2RhY2I4NDY3MTg3 LzEvaG5XTmluN1NHblFYTE03c000eGswMnNEZU5RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACNFN9H8S HylZSalxZoZL4hznGMZhANnFKtzYP5t4spH2Ngl/sVF2J/aEzsjWIFsgyh9t96Fs QVnPGBt7oRYyNynNaTQXrfrVLa/B8adhszq5iq+bbnZBJ/lqrTN22dmiBiYrnANm 0FJnw56VGvKPlmF86FiQs8CO1u3PMk9WRFuJpm8x6zplmXR/jhsOWL0hPgRmb9oR NT9vKbLynXcjTHuLQmMNDI78ZTjDDatedfmDHxlsTGVLzCERCGYmbXs58zNs9qVh M4FsAcYLZytRbLKwTlP+wwue9lHvwsB6eaBDvz/24ObFoIRvJOPutiYOVsrSidvA ItsJjur2g+FQuA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:49 2026 by rpki-client