This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft File: F3khM2kRpWiNeOk__l5HIRO7Gb4.mft (raw, json) Hash identifier: eJBnVwQPmW29fZYP0DLYr21PziVrlZr1VlInRAF0KCU= Subject key identifier: 40:B2:5A:A9:6F:49:70:99:C8:8C:3D:62:72:04:67:74:4F:94:10:21 Authority key identifier: 17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE Certificate issuer: /CN=177921336911a5688d78e93ffe5e472113bb19be Certificate serial: 019C43C6A412900AAAA93E6CE1569DA07922 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft Manifest number: 07F2 Signing time: Mon 09 Feb 2026 19:00:17 +0000 Manifest this update: Mon 09 Feb 2026 19:00:17 +0000 Manifest next update: Tue 10 Feb 2026 19:00:17 +0000 Files and hashes: 1: 00KPXaoeVFb3ZxS5PVmQU3i8VY4.roa (hash: HLzQZ86nyzCWCoL4HyX0cWOR0lVQ8RFQ8/UNt4CesgA=) 2: F3khM2kRpWiNeOk__l5HIRO7Gb4.crl (hash: kKW0jmu6dsPkDtUs5S5ot6GPgFIJHKhM56tVf9ADuOY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:a4:12:90:0a:aa:a9:3e:6c:e1:56:9d:a0:79:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=177921336911a5688d78e93ffe5e472113bb19be Validity Not Before: Feb 9 19:00:17 2026 GMT Not After : Feb 10 19:00:17 2026 GMT Subject: CN=40b25aa96f497099c88c3d62720467744f941021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:94:80:7e:b8:cd:ed:34:ac:47:13:c0:d8:9d: 99:0a:b8:04:5f:43:95:20:21:8d:29:e2:80:00:d8: a4:fb:7e:c7:ad:cd:65:ee:11:ba:2e:37:ec:b8:54: ce:ae:c1:c3:e7:66:7a:eb:52:eb:c0:0a:ad:4a:6a: cc:b4:02:bb:7b:f4:c8:8f:13:a5:c9:63:68:cf:10: a4:3c:07:8b:44:75:a2:9f:57:4c:a3:3f:ca:f3:f2: 08:2d:1c:05:de:11:49:b3:39:87:f0:f8:3e:7a:e0: 62:ae:56:fc:62:71:8f:c8:fa:c9:b6:db:60:9f:c6: 95:c7:ab:a9:35:cd:b0:68:83:11:4c:da:5d:26:12: 82:f9:48:8c:a3:61:8f:2b:23:e5:09:e9:03:0e:a2: 09:22:84:25:6b:e0:3b:78:70:05:34:89:68:9e:5d: 1c:4d:5d:2f:8f:72:91:b6:f4:c3:48:51:27:ba:d2: 3e:6c:ca:90:ad:0a:4a:ac:f8:be:88:c8:f7:da:19: b8:e2:7a:05:8a:1d:e9:4c:fe:3b:19:a2:be:43:22: 50:1e:09:30:48:fa:8d:e4:9d:b5:94:ca:a6:57:20: 7e:c6:18:57:6a:30:59:17:51:d6:58:6a:bc:bb:0f: 35:88:98:d0:16:a3:93:a6:9c:cc:77:95:4a:2f:22: 9d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:B2:5A:A9:6F:49:70:99:C8:8C:3D:62:72:04:67:74:4F:94:10:21 X509v3 Authority Key Identifier: keyid:17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:7f:9b:96:32:36:7e:c6:90:fa:34:5a:d7:82:1a:22:99:78: 15:64:53:7c:c0:3e:d7:17:29:54:50:b1:59:16:4d:5b:29:a8: 6f:3c:1c:12:22:6a:53:cd:b6:d6:87:51:74:04:9a:d1:37:2f: be:59:de:c5:54:5d:a7:40:bb:d9:c9:dd:b6:26:df:21:36:72: fe:69:2b:76:65:aa:3e:ba:49:7c:fd:d5:2e:e7:28:e4:a9:55: 63:e6:4a:85:4c:11:08:c4:f3:5d:99:a7:d6:8c:db:c1:8e:9a: 8b:2b:47:12:93:e0:91:94:fd:56:94:63:8c:9b:9f:e5:6a:c4: 5d:b8:ef:fb:28:e7:4c:92:cb:e6:66:f2:8b:03:78:f4:8b:a6: 1d:65:cd:25:42:34:85:18:18:f8:e3:d8:35:7b:54:1c:3e:8b: f7:d2:2c:44:b4:d9:63:04:50:ca:ed:5d:b6:43:e9:e8:70:a1: 16:cb:b6:2c:50:13:a3:29:77:38:60:d5:73:b0:ad:38:b8:0b: dc:3f:92:72:3f:cc:ca:6f:35:93:42:9f:f4:96:76:fa:1e:32: 46:9e:65:01:f0:d6:ae:77:6a:e8:ab:01:72:8f:17:07:37:02: d6:fb:93:e9:14:a6:fb:6d:8f:bf:53:bd:cc:ec:20:5d:83:30: 75:47:6a:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxqQSkAqqqT5s4VadoHkiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3NzkyMTMzNjkxMWE1Njg4ZDc4ZTkzZmZlNWU0NzIxMTNi YjE5YmUwHhcNMjYwMjA5MTkwMDE3WhcNMjYwMjEwMTkwMDE3WjAzMTEwLwYDVQQD Eyg0MGIyNWFhOTZmNDk3MDk5Yzg4YzNkNjI3MjA0Njc3NDRmOTQxMDIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4pSAfrjN7TSsRxPA2J2ZCrgEX0OV ICGNKeKAANik+37Hrc1l7hG6LjfsuFTOrsHD52Z661LrwAqtSmrMtAK7e/TIjxOl yWNozxCkPAeLRHWin1dMoz/K8/IILRwF3hFJszmH8Pg+euBirlb8YnGPyPrJtttg n8aVx6upNc2waIMRTNpdJhKC+UiMo2GPKyPlCekDDqIJIoQla+A7eHAFNIlonl0c TV0vj3KRtvTDSFEnutI+bMqQrQpKrPi+iMj32hm44noFih3pTP47GaK+QyJQHgkw SPqN5J21lMqmVyB+xhhXajBZF1HWWGq8uw81iJjQFqOTppzMd5VKLyKd4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFECyWqlvSXCZyIw9YnIEZ3RPlBAhMB8GA1UdIwQY MBaAFBd5ITNpEaVojXjpP/5eRyETuxm+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjNraE0ya1JwV2lOZU9rX19sNUhJUk83R2I0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC82MzEwN2MtYjU2MC00MTE2LWI0Nzgt YjVjM2QyNGVmZGNkLzEvRjNraE0ya1JwV2lOZU9rX19sNUhJUk83R2I0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC82MzEwN2MtYjU2MC00MTE2LWI0NzgtYjVjM2QyNGVmZGNk LzEvRjNraE0ya1JwV2lOZU9rX19sNUhJUk83R2I0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmX+bljI2 fsaQ+jRa14IaIpl4FWRTfMA+1xcpVFCxWRZNWymobzwcEiJqU8221odRdASa0Tcv vlnexVRdp0C72cndtibfITZy/mkrdmWqPrpJfP3VLuco5KlVY+ZKhUwRCMTzXZmn 1ozbwY6aiytHEpPgkZT9VpRjjJuf5WrEXbjv+yjnTJLL5mbyiwN49IumHWXNJUI0 hRgY+OPYNXtUHD6L99IsRLTZYwRQyu1dtkPp6HChFsu2LFAToyl3OGDVc7CtOLgL 3D+Scj/Mym81k0Kf9JZ2+h4yRp5lAfDWrndq6KsBco8XBzcC1vuT6RSm+22Pv1O9 zOwgXYMwdUdqKg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:04:38 2026 by rpki-client