This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/627987-235d-4194-96b1-af8c75a93cd1/1/r_HNv5fWyiB-XciFq8_2ccwVyRA.mft File: r_HNv5fWyiB-XciFq8_2ccwVyRA.mft (raw, json) Hash identifier: FuNUK6Be6Tb4g9Kosf2cogaTNG50z7ci7bDaZ+U3xaM= Subject key identifier: 02:3A:C7:D2:11:68:C8:E6:CA:C2:42:83:6C:0C:2C:B7:9B:AB:7A:18 Authority key identifier: AF:F1:CD:BF:97:D6:CA:20:7E:5D:C8:85:AB:CF:F6:71:CC:15:C9:10 Certificate issuer: /CN=aff1cdbf97d6ca207e5dc885abcff671cc15c910 Certificate serial: 019C42EB4F4CA657A82D0D3E31CFC68A203C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_HNv5fWyiB-XciFq8_2ccwVyRA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/627987-235d-4194-96b1-af8c75a93cd1/1/r_HNv5fWyiB-XciFq8_2ccwVyRA.mft Manifest number: 0D05 Signing time: Mon 09 Feb 2026 15:00:43 +0000 Manifest this update: Mon 09 Feb 2026 15:00:43 +0000 Manifest next update: Tue 10 Feb 2026 15:00:43 +0000 Files and hashes: 1: r_HNv5fWyiB-XciFq8_2ccwVyRA.crl (hash: OBLI43dVBIRGFzGvCqS0MhLCYJ41kRbDimcoeZNUe9k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/627987-235d-4194-96b1-af8c75a93cd1/1/r_HNv5fWyiB-XciFq8_2ccwVyRA.crl rsync://rpki.ripe.net/repository/DEFAULT/da/627987-235d-4194-96b1-af8c75a93cd1/1/r_HNv5fWyiB-XciFq8_2ccwVyRA.mft rsync://rpki.ripe.net/repository/DEFAULT/r_HNv5fWyiB-XciFq8_2ccwVyRA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:4f:4c:a6:57:a8:2d:0d:3e:31:cf:c6:8a:20:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aff1cdbf97d6ca207e5dc885abcff671cc15c910 Validity Not Before: Feb 9 15:00:43 2026 GMT Not After : Feb 10 15:00:43 2026 GMT Subject: CN=023ac7d21168c8e6cac242836c0c2cb79bab7a18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3f:20:76:a5:22:78:e7:a3:0e:5c:af:5d:59: e0:cd:61:4d:1c:4a:29:c6:83:34:19:ec:53:ef:1e: c9:96:88:95:dd:5e:18:99:bf:dc:b0:b0:54:71:53: e5:dc:01:36:d5:f2:5e:51:15:19:e9:6b:ce:25:6b: c2:88:84:25:40:84:be:fb:da:35:b2:a5:79:7a:59: 3a:6a:db:ab:6c:e8:3f:e7:ee:ef:d1:d3:b8:da:22: f5:5a:ff:8f:54:69:de:05:27:1a:b7:88:d1:23:e1: e9:aa:55:32:85:a7:a3:68:81:06:f4:fa:a6:6b:37: 4c:31:a0:8b:25:c9:59:cb:e0:32:fe:e9:86:45:be: f5:f0:1b:eb:f3:f6:70:ed:ff:72:61:47:3e:8a:8f: 50:7d:67:29:30:1d:d8:8e:cb:1a:e2:f5:4d:17:80: 2b:e8:1d:a5:e8:1c:b8:58:99:c8:38:ca:c9:c9:a9: 7c:c0:d9:20:26:e2:e2:61:0c:a0:72:5c:11:00:cf: c3:1a:be:34:4f:50:a5:5d:b1:42:a0:32:20:46:3f: 47:9e:5f:97:80:82:f0:35:9b:9e:b9:43:8e:b0:be: de:10:98:79:6b:97:45:f9:b4:e8:db:c6:e2:b7:28: ab:ce:19:03:93:90:93:47:35:73:f7:4b:d3:86:58: 32:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:3A:C7:D2:11:68:C8:E6:CA:C2:42:83:6C:0C:2C:B7:9B:AB:7A:18 X509v3 Authority Key Identifier: keyid:AF:F1:CD:BF:97:D6:CA:20:7E:5D:C8:85:AB:CF:F6:71:CC:15:C9:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_HNv5fWyiB-XciFq8_2ccwVyRA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/627987-235d-4194-96b1-af8c75a93cd1/1/r_HNv5fWyiB-XciFq8_2ccwVyRA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/627987-235d-4194-96b1-af8c75a93cd1/1/r_HNv5fWyiB-XciFq8_2ccwVyRA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:4d:dd:21:a6:7a:d4:cc:40:51:01:7a:7f:1c:90:f5:77:ab: 8e:19:e2:d1:87:cf:ad:e7:e2:c9:e1:c9:89:3d:07:40:c5:e8: d2:c9:64:a7:7d:b5:08:b1:71:a1:39:4e:c5:27:d2:ce:fa:17: 04:fb:71:d5:7d:e5:3e:2e:b9:99:b1:f7:37:d3:fc:e5:8d:72: 1a:7e:ee:b4:10:d9:0a:9e:c8:19:0f:44:49:35:80:88:75:3b: 97:c4:68:dd:f9:08:16:c1:d4:1c:0e:1f:ea:9c:6c:5c:a2:6d: 81:7f:c6:9c:78:c0:74:62:08:ee:45:4f:ef:d0:38:84:5a:7e: aa:f9:4b:d4:b6:2b:3e:b1:65:28:4e:c2:2c:a1:b6:0d:5e:87: 55:1c:8a:44:de:82:0b:6e:99:f5:50:ab:66:e1:d7:16:8b:ac: a5:54:d8:3d:0b:34:47:ab:61:78:1c:71:05:d7:6d:41:86:d0: e1:44:73:29:79:c3:c8:43:94:f5:8e:86:ad:cb:b6:23:c9:43: 9d:41:fd:26:b6:5f:63:b7:31:4c:68:6b:19:99:d3:62:94:9d: 49:50:a5:95:63:a1:59:8d:42:f3:cd:43:78:0e:39:fb:74:5f: fe:2f:4b:20:af:fc:4f:f3:15:06:f8:f6:3e:a5:7d:7f:dd:92: d7:14:93:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC609MpleoLQ0+Mc/GiiA8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmZjFjZGJmOTdkNmNhMjA3ZTVkYzg4NWFiY2ZmNjcxY2Mx NWM5MTAwHhcNMjYwMjA5MTUwMDQzWhcNMjYwMjEwMTUwMDQzWjAzMTEwLwYDVQQD EygwMjNhYzdkMjExNjhjOGU2Y2FjMjQyODM2YzBjMmNiNzliYWI3YTE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArz8gdqUieOejDlyvXVngzWFNHEop xoM0GexT7x7JloiV3V4Ymb/csLBUcVPl3AE21fJeURUZ6WvOJWvCiIQlQIS++9o1 sqV5elk6aturbOg/5+7v0dO42iL1Wv+PVGneBScat4jRI+HpqlUyhaejaIEG9Pqm azdMMaCLJclZy+Ay/umGRb718Bvr8/Zw7f9yYUc+io9QfWcpMB3Yjssa4vVNF4Ar 6B2l6By4WJnIOMrJyal8wNkgJuLiYQygclwRAM/DGr40T1ClXbFCoDIgRj9Hnl+X gILwNZueuUOOsL7eEJh5a5dF+bTo28bityirzhkDk5CTRzVz90vThlgyGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAI6x9IRaMjmysJCg2wMLLebq3oYMB8GA1UdIwQY MBaAFK/xzb+X1sogfl3IhavP9nHMFckQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcl9ITnY1Zld5aUItWGNpRnE4XzJjY3dWeVJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS82Mjc5ODctMjM1ZC00MTk0LTk2YjEt YWY4Yzc1YTkzY2QxLzEvcl9ITnY1Zld5aUItWGNpRnE4XzJjY3dWeVJBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS82Mjc5ODctMjM1ZC00MTk0LTk2YjEtYWY4Yzc1YTkzY2Qx LzEvcl9ITnY1Zld5aUItWGNpRnE4XzJjY3dWeVJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEU3dIaZ6 1MxAUQF6fxyQ9Xerjhni0YfPrefiyeHJiT0HQMXo0slkp321CLFxoTlOxSfSzvoX BPtx1X3lPi65mbH3N9P85Y1yGn7utBDZCp7IGQ9ESTWAiHU7l8Ro3fkIFsHUHA4f 6pxsXKJtgX/GnHjAdGII7kVP79A4hFp+qvlL1LYrPrFlKE7CLKG2DV6HVRyKRN6C C26Z9VCrZuHXFouspVTYPQs0R6theBxxBddtQYbQ4URzKXnDyEOU9Y6Grcu2I8lD nUH9JrZfY7cxTGhrGZnTYpSdSVCllWOhWY1C881DeA45+3Rf/i9LIK/8T/MVBvj2 PqV9f92S1xSTvw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:08:33 2026 by rpki-client