This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/ab8055-389c-43ed-abde-bf0de2bb1c3c/1/eH0Q8i5f-ksg99W3goxVuVCal1k.mft File: eH0Q8i5f-ksg99W3goxVuVCal1k.mft (raw, json) Hash identifier: XQ4hPLlHBo+fyCVPGHEoX8Li6CRq6lK/4vW8Oxby0Vo= Subject key identifier: 6E:DD:D4:02:C2:6C:5C:F0:7F:3E:51:75:7F:FB:73:9E:7D:BC:29:14 Authority key identifier: 78:7D:10:F2:2E:5F:FA:4B:20:F7:D5:B7:82:8C:55:B9:50:9A:97:59 Certificate issuer: /CN=787d10f22e5ffa4b20f7d5b7828c55b9509a9759 Certificate serial: 019C41D8F9AB3B566B5CD8233FF62A3BFEF2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eH0Q8i5f-ksg99W3goxVuVCal1k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/ab8055-389c-43ed-abde-bf0de2bb1c3c/1/eH0Q8i5f-ksg99W3goxVuVCal1k.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 10:01:04 +0000 Manifest this update: Mon 09 Feb 2026 10:01:04 +0000 Manifest next update: Tue 10 Feb 2026 10:01:04 +0000 Files and hashes: 1: eH0Q8i5f-ksg99W3goxVuVCal1k.crl (hash: d3lbBHoZ/nFRfIIPgRKq+U81ww67J0dSVHY64lZZH2o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/ab8055-389c-43ed-abde-bf0de2bb1c3c/1/eH0Q8i5f-ksg99W3goxVuVCal1k.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/ab8055-389c-43ed-abde-bf0de2bb1c3c/1/eH0Q8i5f-ksg99W3goxVuVCal1k.mft rsync://rpki.ripe.net/repository/DEFAULT/eH0Q8i5f-ksg99W3goxVuVCal1k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:f9:ab:3b:56:6b:5c:d8:23:3f:f6:2a:3b:fe:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=787d10f22e5ffa4b20f7d5b7828c55b9509a9759 Validity Not Before: Feb 9 10:01:04 2026 GMT Not After : Feb 10 10:01:04 2026 GMT Subject: CN=6eddd402c26c5cf07f3e51757ffb739e7dbc2914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:bf:76:89:af:bd:b5:0a:e0:fc:b6:4b:c4:42: 6c:36:f0:23:fb:7b:ec:64:c2:46:ff:cb:99:fa:6f: 78:88:a7:74:97:e8:5c:f4:fc:77:04:ad:50:18:40: 97:b7:d0:e4:92:cc:21:4c:e2:92:8c:56:3b:59:69: b9:fc:a1:15:c3:6e:a7:19:df:be:71:59:13:63:6f: 43:55:46:17:5b:0c:68:93:1f:1d:68:cd:a0:2e:78: 97:ae:6d:47:79:f9:33:ff:1a:a0:2f:4e:a6:e3:9d: 8f:a4:b3:4a:f4:4d:86:c8:fc:67:88:ba:0a:00:f2: de:9e:6f:df:5e:f1:d9:d8:e4:6c:5f:3b:e0:15:31: 3a:a8:ac:b7:95:e2:c7:11:40:ed:27:b1:61:27:34: eb:9c:f2:ef:81:fb:d1:bb:e6:ec:e9:74:b3:0d:48: 88:8a:bc:e6:38:26:e7:03:90:59:16:d3:8c:5f:f7: 8f:83:1f:03:b6:9f:ee:ea:95:db:a1:60:b4:84:0a: 73:21:bb:08:86:60:e1:4c:ed:c8:61:b1:2d:2a:28: b3:1d:8f:9e:de:a5:2f:80:ba:6d:f4:58:d4:cb:38: d4:53:66:38:69:99:7e:f6:3a:54:d8:cc:c2:1e:0e: d0:1c:31:5d:3d:3d:7e:21:77:95:18:87:9f:e5:82: 43:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:DD:D4:02:C2:6C:5C:F0:7F:3E:51:75:7F:FB:73:9E:7D:BC:29:14 X509v3 Authority Key Identifier: keyid:78:7D:10:F2:2E:5F:FA:4B:20:F7:D5:B7:82:8C:55:B9:50:9A:97:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eH0Q8i5f-ksg99W3goxVuVCal1k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/ab8055-389c-43ed-abde-bf0de2bb1c3c/1/eH0Q8i5f-ksg99W3goxVuVCal1k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/ab8055-389c-43ed-abde-bf0de2bb1c3c/1/eH0Q8i5f-ksg99W3goxVuVCal1k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:ca:c4:6e:25:5a:31:08:7e:36:47:a3:19:91:ba:2d:36:8a: 4d:08:ef:e7:bd:f7:ce:45:cf:0c:38:f1:d3:50:21:33:f0:4d: c2:8e:a3:9f:51:9d:ac:77:64:f5:f5:a9:6c:98:be:41:e3:d6: 5b:60:2c:8f:3a:26:0e:27:bc:f2:21:eb:82:6a:21:c0:b0:97: 16:3e:d9:18:0a:d6:bf:62:32:32:9f:cd:72:dc:30:15:6a:46: 50:f7:12:7e:1a:f8:3a:e1:29:39:14:ba:47:43:7e:20:85:a7: 45:3a:b9:ed:bc:34:ac:96:17:1b:59:81:d7:ee:2b:f4:08:98: d3:c9:5c:af:44:f4:18:45:f8:10:4a:7a:b3:d4:02:68:5c:74: 2f:e0:39:16:97:1e:a6:d2:de:f7:84:19:05:c1:6e:86:3a:15: b6:5e:26:26:8a:e4:f8:d0:bd:4e:d5:f9:d8:b6:d0:db:38:28: 9f:8e:4d:7e:fa:ba:85:13:ba:42:4b:75:cd:09:7b:e4:29:a5: 1b:45:d0:41:44:e6:4a:c0:9f:04:51:95:39:41:54:07:41:62: 15:8f:c6:2c:a9:ea:88:16:a5:3a:a9:f4:57:5c:e6:7c:08:79: 8a:f3:5c:ef:08:94:fa:77:8e:77:c1:2e:77:09:ff:ae:d9:a4: 61:67:1b:56 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2PmrO1ZrXNgjP/YqO/7yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc4N2QxMGYyMmU1ZmZhNGIyMGY3ZDViNzgyOGM1NWI5NTA5 YTk3NTkwHhcNMjYwMjA5MTAwMTA0WhcNMjYwMjEwMTAwMTA0WjAzMTEwLwYDVQQD Eyg2ZWRkZDQwMmMyNmM1Y2YwN2YzZTUxNzU3ZmZiNzM5ZTdkYmMyOTE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2L92ia+9tQrg/LZLxEJsNvAj+3vs ZMJG/8uZ+m94iKd0l+hc9Px3BK1QGECXt9DkkswhTOKSjFY7WWm5/KEVw26nGd++ cVkTY29DVUYXWwxokx8daM2gLniXrm1Hefkz/xqgL06m452PpLNK9E2GyPxniLoK APLenm/fXvHZ2ORsXzvgFTE6qKy3leLHEUDtJ7FhJzTrnPLvgfvRu+bs6XSzDUiI irzmOCbnA5BZFtOMX/ePgx8Dtp/u6pXboWC0hApzIbsIhmDhTO3IYbEtKiizHY+e 3qUvgLpt9FjUyzjUU2Y4aZl+9jpU2MzCHg7QHDFdPT1+IXeVGIef5YJDYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG7d1ALCbFzwfz5RdX/7c559vCkUMB8GA1UdIwQY MBaAFHh9EPIuX/pLIPfVt4KMVblQmpdZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZUgwUThpNWYta3NnOTlXM2dveFZ1VkNhbDFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9hYjgwNTUtMzg5Yy00M2VkLWFiZGUt YmYwZGUyYmIxYzNjLzEvZUgwUThpNWYta3NnOTlXM2dveFZ1VkNhbDFrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC9hYjgwNTUtMzg5Yy00M2VkLWFiZGUtYmYwZGUyYmIxYzNj LzEvZUgwUThpNWYta3NnOTlXM2dveFZ1VkNhbDFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKMrEbiVa MQh+NkejGZG6LTaKTQjv5733zkXPDDjx01AhM/BNwo6jn1GdrHdk9fWpbJi+QePW W2AsjzomDie88iHrgmohwLCXFj7ZGArWv2IyMp/NctwwFWpGUPcSfhr4OuEpORS6 R0N+IIWnRTq57bw0rJYXG1mB1+4r9AiY08lcr0T0GEX4EEp6s9QCaFx0L+A5Fpce ptLe94QZBcFuhjoVtl4mJork+NC9TtX52LbQ2zgon45Nfvq6hRO6Qkt1zQl75Cml G0XQQUTmSsCfBFGVOUFUB0FiFY/GLKnqiBalOqn0V1zmfAh5ivNc7wiU+neOd8Eu dwn/rtmkYWcbVg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:15 2026 by rpki-client