This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft File: hiGwt9-gp4iPde_yDzIUWgs_DdU.mft (raw, json) Hash identifier: z1i7GCUCeqwVAFM5k5aXbIhhRIYU3fs6IppcA6rNrx4= Subject key identifier: E2:C7:E1:12:D3:FC:40:FD:50:A8:A8:42:A9:5E:DD:C2:06:99:0F:2C Authority key identifier: 86:21:B0:B7:DF:A0:A7:88:8F:75:EF:F2:0F:32:14:5A:0B:3F:0D:D5 Certificate issuer: /CN=8621b0b7dfa0a7888f75eff20f32145a0b3f0dd5 Certificate serial: 019C42100A9214E55BDE502FE0898BA78EC6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 11:01:13 +0000 Manifest this update: Mon 09 Feb 2026 11:01:13 +0000 Manifest next update: Tue 10 Feb 2026 11:01:13 +0000 Files and hashes: 1: hiGwt9-gp4iPde_yDzIUWgs_DdU.crl (hash: BWdpouV2W/l2f0UWFRVbLsUZ5JyubBSt6Wx2GaBKcjg=) 2: kLUM1YAOMcHfG5kPB5ctMeQ6zO4.roa (hash: wZEOFTFIMct/33jsnIoNoec+GVySts9zmn8n8Vg4eB8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:0a:92:14:e5:5b:de:50:2f:e0:89:8b:a7:8e:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8621b0b7dfa0a7888f75eff20f32145a0b3f0dd5 Validity Not Before: Feb 9 11:01:13 2026 GMT Not After : Feb 10 11:01:13 2026 GMT Subject: CN=e2c7e112d3fc40fd50a8a842a95eddc206990f2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:17:7f:f2:37:6a:d9:8f:1e:ff:87:cb:c9:29: ce:ed:cf:7a:94:e9:26:e0:9b:48:b8:81:ef:16:a3: 80:bb:c4:d4:e0:37:55:7d:88:84:39:d2:1f:19:63: 5d:0c:d0:22:a9:7e:6e:29:43:10:c0:ef:c7:04:d2: 3b:23:32:eb:a8:7f:53:5d:2e:75:de:29:a3:75:66: cd:44:92:d0:a3:2b:47:7f:dc:18:01:0a:85:04:0f: 53:c1:f4:62:6a:64:de:fc:49:a7:6c:90:a0:11:3e: 90:f3:05:cc:e1:06:29:93:1b:47:2e:92:94:73:8f: f9:29:87:96:47:ee:c3:71:fb:f3:db:b5:b8:a1:de: 58:b2:be:4d:1a:8b:54:52:6c:a2:2d:1b:d4:14:ec: 34:72:b2:a8:ae:ba:dd:57:d9:5e:29:af:62:12:1a: 06:d1:37:01:32:58:2a:f0:e6:4b:e7:32:fd:c2:a7: 2c:29:1d:3c:e3:18:a6:a9:98:6f:24:04:4f:9c:ad: f3:70:c5:47:77:d2:35:15:0e:98:96:fb:51:d8:9f: 69:4f:c8:12:81:3f:61:e7:5a:b8:2c:6e:0e:ef:78: f1:05:f0:6c:a0:58:55:d6:43:9c:5e:03:8a:69:a9: d2:31:70:0e:44:d7:af:da:de:91:8b:17:51:de:b1: eb:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:C7:E1:12:D3:FC:40:FD:50:A8:A8:42:A9:5E:DD:C2:06:99:0F:2C X509v3 Authority Key Identifier: keyid:86:21:B0:B7:DF:A0:A7:88:8F:75:EF:F2:0F:32:14:5A:0B:3F:0D:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:cd:c7:e2:ee:27:2e:3b:a3:b2:2a:a6:77:31:01:26:c0:42: 59:81:24:a8:03:ed:50:29:d5:57:cf:5f:ef:e8:61:d7:c9:ee: b2:e2:64:95:01:12:0b:62:67:ae:4e:84:fc:d2:04:a0:e5:d5: 33:29:65:c0:8a:b4:84:65:5f:8b:18:34:d4:95:05:47:fb:4e: b5:ab:f2:e8:ca:97:fa:0a:ac:04:2e:d6:b7:e1:c1:78:b0:a5: 71:ab:d8:09:b7:0b:ee:36:93:c3:3d:b0:62:a3:3b:46:c0:93: 21:34:c8:21:21:13:90:6d:40:65:b9:88:a8:0f:ad:f5:13:cd: cb:ad:5b:2b:15:33:fa:6a:58:ad:0e:ae:a5:aa:23:fd:50:30: b3:aa:00:68:67:55:89:e1:ec:cd:d2:c9:6f:7a:49:54:38:a3: 3e:7c:f1:ad:d2:1f:79:6e:7d:ff:5a:24:58:de:b5:6f:ae:b0: a3:aa:be:f3:4c:30:a1:85:73:8c:1c:6c:77:d5:77:9c:97:44: 46:6c:0d:bb:d2:b9:2e:3a:75:df:02:ad:1f:d1:cb:4f:66:d5: db:76:51:85:58:26:3b:d9:86:f7:ad:ca:62:ad:5a:57:7e:d5: dc:ee:92:57:4f:d5:80:17:d6:a1:a3:51:ca:1d:19:b5:d5:ba: b0:87:8d:7a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEAqSFOVb3lAv4ImLp47GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2MjFiMGI3ZGZhMGE3ODg4Zjc1ZWZmMjBmMzIxNDVhMGIz ZjBkZDUwHhcNMjYwMjA5MTEwMTEzWhcNMjYwMjEwMTEwMTEzWjAzMTEwLwYDVQQD EyhlMmM3ZTExMmQzZmM0MGZkNTBhOGE4NDJhOTVlZGRjMjA2OTkwZjJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArRd/8jdq2Y8e/4fLySnO7c96lOkm 4JtIuIHvFqOAu8TU4DdVfYiEOdIfGWNdDNAiqX5uKUMQwO/HBNI7IzLrqH9TXS51 3imjdWbNRJLQoytHf9wYAQqFBA9TwfRiamTe/EmnbJCgET6Q8wXM4QYpkxtHLpKU c4/5KYeWR+7Dcfvz27W4od5Ysr5NGotUUmyiLRvUFOw0crKorrrdV9leKa9iEhoG 0TcBMlgq8OZL5zL9wqcsKR084ximqZhvJARPnK3zcMVHd9I1FQ6YlvtR2J9pT8gS gT9h51q4LG4O73jxBfBsoFhV1kOcXgOKaanSMXAORNev2t6RixdR3rHrOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOLH4RLT/ED9UKioQqle3cIGmQ8sMB8GA1UdIwQY MBaAFIYhsLffoKeIj3Xv8g8yFFoLPw3VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGlHd3Q5LWdwNGlQZGVfeUR6SVVXZ3NfRGRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9iYTA1NzktYTFlNy00YjI0LTgwMzMt NmIzZTBhYTJjYmIyLzEvaGlHd3Q5LWdwNGlQZGVfeUR6SVVXZ3NfRGRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi9iYTA1NzktYTFlNy00YjI0LTgwMzMtNmIzZTBhYTJjYmIy LzEvaGlHd3Q5LWdwNGlQZGVfeUR6SVVXZ3NfRGRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIM3H4u4n LjujsiqmdzEBJsBCWYEkqAPtUCnVV89f7+hh18nusuJklQESC2Jnrk6E/NIEoOXV MyllwIq0hGVfixg01JUFR/tOtavy6MqX+gqsBC7Wt+HBeLClcavYCbcL7jaTwz2w YqM7RsCTITTIISETkG1AZbmIqA+t9RPNy61bKxUz+mpYrQ6upaoj/VAws6oAaGdV ieHszdLJb3pJVDijPnzxrdIfeW59/1okWN61b66wo6q+80wwoYVzjBxsd9V3nJdE RmwNu9K5Ljp13wKtH9HLT2bV23ZRhVgmO9mG963KYq1aV37V3O6SV0/VgBfWoaNR yh0ZtdW6sIeNeg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:55:58 2026 by rpki-client