This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft File: 8hWid5SXEbLAHNxmnkDhcTlYVbs.mft (raw, json) Hash identifier: 3dbKy1Ha8trLPDOTGzhTVCg+bSlErLcuPYkpUvITM/U= Subject key identifier: C8:06:CD:E3:67:FF:B9:AA:1E:A1:73:25:5C:65:09:92:17:43:CC:83 Authority key identifier: F2:15:A2:77:94:97:11:B2:C0:1C:DC:66:9E:40:E1:71:39:58:55:BB Certificate issuer: /CN=f215a277949711b2c01cdc669e40e171395855bb Certificate serial: 019C41A1B8C5B3B6BD7A8D69446A83306A42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8hWid5SXEbLAHNxmnkDhcTlYVbs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 09:00:43 +0000 Manifest this update: Mon 09 Feb 2026 09:00:43 +0000 Manifest next update: Tue 10 Feb 2026 09:00:43 +0000 Files and hashes: 1: 1-c2ltkv81E7EaN3If-RGRVyYa_4.roa (hash: qSMZzei9N2ZpotVQ68DijxfquLxjFkRKA3l/57HyNug=) 2: 8hWid5SXEbLAHNxmnkDhcTlYVbs.crl (hash: DS39MLevoftO7hHhuHsfD3vpURztSntlSR00USKf/cE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft rsync://rpki.ripe.net/repository/DEFAULT/8hWid5SXEbLAHNxmnkDhcTlYVbs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:b8:c5:b3:b6:bd:7a:8d:69:44:6a:83:30:6a:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f215a277949711b2c01cdc669e40e171395855bb Validity Not Before: Feb 9 09:00:43 2026 GMT Not After : Feb 10 09:00:43 2026 GMT Subject: CN=c806cde367ffb9aa1ea173255c6509921743cc83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:5b:d3:88:ca:75:90:81:14:b1:e2:32:b5:7d: 4f:9f:41:2a:46:7f:4c:06:e6:cb:1f:ce:88:3f:ca: 68:71:c4:d9:40:7e:38:04:2a:cb:26:58:be:46:9f: 78:8f:bd:3f:bb:bb:a9:6a:1b:1d:51:9a:5a:72:92: 9e:75:68:0e:62:c1:b3:19:d7:4f:83:f9:bb:30:30: c4:8a:b3:3b:b1:92:b3:d0:43:b0:0e:3a:ae:2d:c3: a8:ee:16:45:79:b1:40:0c:17:ce:98:4b:02:3c:d4: 47:9c:a1:2b:d7:38:6a:58:f8:8f:4b:f4:5d:07:6d: a3:53:e5:f2:92:2b:09:f5:7d:dc:b4:40:0b:cc:3d: 2e:c6:f3:9b:71:ce:44:27:bf:29:26:c3:70:f2:ed: 2f:2d:7d:a9:d8:22:49:68:dd:ee:7c:54:d3:d0:d5: f8:9b:74:02:be:75:89:19:76:5f:57:9e:b4:a7:f4: a4:b6:be:63:31:f1:0d:65:bf:de:68:40:0a:ac:de: ac:c3:de:ff:de:75:52:0d:a9:7b:f2:d4:2b:27:42: e8:2f:10:4d:70:5c:cf:a1:1b:23:73:26:a2:a3:a4: cc:06:0f:1a:8a:2b:a2:79:85:1a:b5:cd:12:c9:b4: f5:1e:04:b6:fe:55:e5:8d:22:da:23:e4:7c:15:3c: d8:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:06:CD:E3:67:FF:B9:AA:1E:A1:73:25:5C:65:09:92:17:43:CC:83 X509v3 Authority Key Identifier: keyid:F2:15:A2:77:94:97:11:B2:C0:1C:DC:66:9E:40:E1:71:39:58:55:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8hWid5SXEbLAHNxmnkDhcTlYVbs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:12:77:9d:af:59:4d:c9:b1:96:94:0c:5b:b8:5c:89:6d:38: f8:bf:e6:0a:71:74:61:ae:10:fb:11:57:21:35:07:67:62:95: d2:87:77:5e:f0:7e:42:d2:e4:24:64:1b:8b:e0:20:5e:a5:4a: 21:d5:6d:31:b1:17:ac:f5:7e:09:28:0d:2b:60:79:43:7a:16: e3:74:95:4a:da:55:28:ca:2f:30:b8:91:55:94:3c:33:4e:ca: 38:90:8d:7a:12:05:f6:58:b9:37:0a:4e:d2:2c:40:ed:1b:f5: 86:91:b8:2b:a3:0c:28:ff:fd:0e:7f:a4:d1:39:6a:87:2c:e0: 84:9a:78:c5:08:64:91:88:06:b8:fa:9d:cc:62:9a:81:0e:df: 85:62:be:5c:88:98:33:b7:14:46:e7:c2:a1:ed:2f:a1:62:d6: 89:09:5c:56:04:0b:d8:c6:67:94:14:da:11:60:19:80:b4:98: 06:69:20:0f:d7:75:25:40:53:da:88:4a:f6:bf:3d:2b:43:0e: b4:c1:9d:82:1e:1d:74:43:be:7e:27:5f:52:3c:b0:45:63:49: c4:7b:06:c6:10:5e:96:73:42:4b:50:c7:b3:7a:86:cf:82:6e: ce:86:e1:6c:28:62:46:a1:8d:2d:bf:18:ce:82:12:d2:ab:51: 84:37:17:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBobjFs7a9eo1pRGqDMGpCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYyMTVhMjc3OTQ5NzExYjJjMDFjZGM2NjllNDBlMTcxMzk1 ODU1YmIwHhcNMjYwMjA5MDkwMDQzWhcNMjYwMjEwMDkwMDQzWjAzMTEwLwYDVQQD EyhjODA2Y2RlMzY3ZmZiOWFhMWVhMTczMjU1YzY1MDk5MjE3NDNjYzgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoFvTiMp1kIEUseIytX1Pn0EqRn9M BubLH86IP8poccTZQH44BCrLJli+Rp94j70/u7upahsdUZpacpKedWgOYsGzGddP g/m7MDDEirM7sZKz0EOwDjquLcOo7hZFebFADBfOmEsCPNRHnKEr1zhqWPiPS/Rd B22jU+XykisJ9X3ctEALzD0uxvObcc5EJ78pJsNw8u0vLX2p2CJJaN3ufFTT0NX4 m3QCvnWJGXZfV560p/Sktr5jMfENZb/eaEAKrN6sw97/3nVSDal78tQrJ0LoLxBN cFzPoRsjcyaio6TMBg8aiiuieYUatc0SybT1HgS2/lXljSLaI+R8FTzYRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMgGzeNn/7mqHqFzJVxlCZIXQ8yDMB8GA1UdIwQY MBaAFPIVoneUlxGywBzcZp5A4XE5WFW7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOGhXaWQ1U1hFYkxBSE54bW5rRGhjVGxZVmJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9mMDhkNDUtNTQzYy00OWY3LTllNzgt OTAzYzE5ODU5MGZhLzEvOGhXaWQ1U1hFYkxBSE54bW5rRGhjVGxZVmJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS9mMDhkNDUtNTQzYy00OWY3LTllNzgtOTAzYzE5ODU5MGZh LzEvOGhXaWQ1U1hFYkxBSE54bW5rRGhjVGxZVmJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZRJ3na9Z TcmxlpQMW7hciW04+L/mCnF0Ya4Q+xFXITUHZ2KV0od3XvB+QtLkJGQbi+AgXqVK IdVtMbEXrPV+CSgNK2B5Q3oW43SVStpVKMovMLiRVZQ8M07KOJCNehIF9li5NwpO 0ixA7Rv1hpG4K6MMKP/9Dn+k0TlqhyzghJp4xQhkkYgGuPqdzGKagQ7fhWK+XIiY M7cURufCoe0voWLWiQlcVgQL2MZnlBTaEWAZgLSYBmkgD9d1JUBT2ohK9r89K0MO tMGdgh4ddEO+fidfUjywRWNJxHsGxhBelnNCS1DHs3qGz4JuzobhbChiRqGNLb8Y zoIS0qtRhDcXIA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:26 2026 by rpki-client