This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft File: MHoDlQLUamuZCREM4qsTlod70I4.mft (raw, json) Hash identifier: d3gdiMM2nHM10YMjUJZlThZKHZkzNRMNc+pAIwhmSjI= Subject key identifier: FA:F4:7C:A7:80:1A:4B:31:EC:11:3E:31:55:9C:7D:2F:B2:00:DE:BB Authority key identifier: 30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E Certificate issuer: /CN=307a039502d46a6b9909110ce2ab1396877bd08e Certificate serial: 019C1D27B3558615B2EDCCE7379B24C5F20F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft Manifest number: 0C5C Signing time: Mon 02 Feb 2026 07:01:06 +0000 Manifest this update: Mon 02 Feb 2026 07:01:06 +0000 Manifest next update: Tue 03 Feb 2026 07:01:06 +0000 Files and hashes: 1: MHoDlQLUamuZCREM4qsTlod70I4.crl (hash: Vp4jR/pGCUlPQNMZdHsrPYC8Dp+2bCcSB4u72wHaGss=) 2: N_ijFCSvEAh4jcjSazZABa1f9xI.roa (hash: +4BuilcfoCDx9HbGYCFSYCKk2WOaVXp2uqEtuszVVIU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1d:27:b3:55:86:15:b2:ed:cc:e7:37:9b:24:c5:f2:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=307a039502d46a6b9909110ce2ab1396877bd08e Validity Not Before: Feb 2 07:01:06 2026 GMT Not After : Feb 3 07:01:06 2026 GMT Subject: CN=faf47ca7801a4b31ec113e31559c7d2fb200debb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:53:24:e2:5d:16:f1:05:81:7e:0d:5c:4d:e0: 0a:3f:26:3d:95:30:e2:a7:b1:e4:41:3a:e3:03:41: 7c:bd:ed:a4:1d:4f:bb:22:cc:da:f2:3d:42:c2:5d: 84:45:d7:a9:f3:5b:98:23:46:5f:d3:9e:16:30:5e: 78:f3:fc:34:3d:79:e4:d5:ea:6d:b4:f5:4d:7e:92: d6:06:c6:6f:60:36:0c:ef:86:bd:94:e2:e1:36:d5: 14:c4:aa:61:e2:2a:83:4f:03:21:6e:ad:f8:55:a1: bb:a1:f3:90:73:75:7a:05:34:fa:43:41:f5:a3:2d: aa:79:0f:cf:c3:37:ba:42:1c:b1:1e:b9:46:a9:9a: b2:cc:06:49:0c:7b:de:e1:af:cf:f8:5c:cb:8d:f5: 00:55:35:8f:4f:7d:24:5a:ab:4a:be:dc:f6:0d:d0: 08:79:8b:ce:2d:fe:be:bd:60:dd:b0:7e:dd:cf:eb: 93:8b:01:e9:2f:22:94:b8:26:20:14:73:4a:c5:78: 39:df:64:3f:69:45:36:0d:26:40:6b:09:4b:7e:0d: ce:11:49:d0:b5:40:4b:4b:97:66:41:54:a1:7f:b4: 9b:b4:28:84:b8:a8:31:7c:61:b8:ef:df:d2:d9:89: 4f:3b:20:21:d4:22:cb:7c:de:30:e1:3d:f3:14:62: f8:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:F4:7C:A7:80:1A:4B:31:EC:11:3E:31:55:9C:7D:2F:B2:00:DE:BB X509v3 Authority Key Identifier: keyid:30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:e4:c9:69:1e:dc:21:84:88:be:e1:5d:a4:f1:15:75:82:40: a9:33:d4:eb:f8:40:7a:08:98:52:e4:3f:f5:e2:70:b6:3d:72: a7:cc:a0:78:1b:0a:55:bc:1b:68:a4:2b:d7:9f:9e:a9:d1:f0: f3:23:99:42:5a:fa:35:08:b2:cb:2c:8a:9e:bb:ac:09:69:35: 2f:ea:ba:bf:5d:fd:8e:5b:92:87:d7:13:07:c6:dd:9d:3f:fc: 88:17:58:00:2b:76:88:26:19:9f:4e:e3:2a:fd:53:75:d3:0a: 66:a4:b9:37:30:dd:81:c3:6f:4f:57:71:15:2e:a0:85:3f:d4: 50:37:12:c2:bf:74:22:32:b2:22:e5:bb:67:4a:67:78:c9:e2: 6b:bd:3d:80:2b:d9:62:7a:c3:e0:ee:ad:1b:48:b5:2f:b4:d7: 2f:d3:c4:d0:d6:29:9d:39:9e:e3:c5:83:44:a2:17:ed:a3:87: 2b:bf:88:da:d6:91:95:39:e9:1b:0f:d6:18:52:e5:9c:c7:9f: c5:ca:58:5d:49:34:1f:b5:ca:1a:cc:98:2a:fc:49:8f:69:29: e7:ca:79:3b:68:8e:8a:08:95:55:e9:b1:ce:f7:a0:d2:ee:a1: 9a:93:10:a6:9f:1c:4b:9b:07:4a:91:46:8c:24:14:51:b7:a2: fa:ec:61:ad -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwdJ7NVhhWy7cznN5skxfIPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwN2EwMzk1MDJkNDZhNmI5OTA5MTEwY2UyYWIxMzk2ODc3 YmQwOGUwHhcNMjYwMjAyMDcwMTA2WhcNMjYwMjAzMDcwMTA2WjAzMTEwLwYDVQQD EyhmYWY0N2NhNzgwMWE0YjMxZWMxMTNlMzE1NTljN2QyZmIyMDBkZWJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyVMk4l0W8QWBfg1cTeAKPyY9lTDi p7HkQTrjA0F8ve2kHU+7Isza8j1Cwl2ERdep81uYI0Zf054WMF548/w0PXnk1ept tPVNfpLWBsZvYDYM74a9lOLhNtUUxKph4iqDTwMhbq34VaG7ofOQc3V6BTT6Q0H1 oy2qeQ/Pwze6QhyxHrlGqZqyzAZJDHve4a/P+FzLjfUAVTWPT30kWqtKvtz2DdAI eYvOLf6+vWDdsH7dz+uTiwHpLyKUuCYgFHNKxXg532Q/aUU2DSZAawlLfg3OEUnQ tUBLS5dmQVShf7SbtCiEuKgxfGG479/S2YlPOyAh1CLLfN4w4T3zFGL4fQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPr0fKeAGksx7BE+MVWcfS+yAN67MB8GA1UdIwQY MBaAFDB6A5UC1GprmQkRDOKrE5aHe9COMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUhvRGxRTFVhbXVaQ1JFTTRxc1Rsb2Q3MEk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9kNTEyMTEtZDBiYi00YTU3LTkzOTAt Y2UyYTQ5NmZlZTg2LzEvTUhvRGxRTFVhbXVaQ1JFTTRxc1Rsb2Q3MEk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC9kNTEyMTEtZDBiYi00YTU3LTkzOTAtY2UyYTQ5NmZlZTg2 LzEvTUhvRGxRTFVhbXVaQ1JFTTRxc1Rsb2Q3MEk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjuTJaR7c IYSIvuFdpPEVdYJAqTPU6/hAegiYUuQ/9eJwtj1yp8ygeBsKVbwbaKQr15+eqdHw 8yOZQlr6NQiyyyyKnrusCWk1L+q6v139jluSh9cTB8bdnT/8iBdYACt2iCYZn07j Kv1TddMKZqS5NzDdgcNvT1dxFS6ghT/UUDcSwr90IjKyIuW7Z0pneMnia709gCvZ YnrD4O6tG0i1L7TXL9PE0NYpnTme48WDRKIX7aOHK7+I2taRlTnpGw/WGFLlnMef xcpYXUk0H7XKGsyYKvxJj2kp58p5O2iOigiVVemxzveg0u6hmpMQpp8cS5sHSpFG jCQUUbei+uxhrQ== -----END CERTIFICATE-----Generated at Mon Feb 2 15:46:46 2026 by rpki-client