This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.mft File: hTq7t9e8xKXFbpEu76wbC7BFUCE.mft (raw, json) Hash identifier: cp6d16VrWSfk72k6vv5N9q8dpztnb3ztftzSwDRKQIw= Subject key identifier: B1:EA:DD:12:B3:84:45:23:73:96:E6:AE:6D:44:FB:FD:3A:73:3D:FE Authority key identifier: 85:3A:BB:B7:D7:BC:C4:A5:C5:6E:91:2E:EF:AC:1B:0B:B0:45:50:21 Certificate issuer: /CN=853abbb7d7bcc4a5c56e912eefac1b0bb0455021 Certificate serial: 019C42461AF789DCDEE4994930B6635080D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hTq7t9e8xKXFbpEu76wbC7BFUCE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.mft Manifest number: 075B Signing time: Mon 09 Feb 2026 12:00:16 +0000 Manifest this update: Mon 09 Feb 2026 12:00:16 +0000 Manifest next update: Tue 10 Feb 2026 12:00:16 +0000 Files and hashes: 1: hTq7t9e8xKXFbpEu76wbC7BFUCE.crl (hash: ssqaZ6EQDMzwT3JSaAi9R3rwdXaA0UZN88sslGvnx9g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.crl rsync://rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.mft rsync://rpki.ripe.net/repository/DEFAULT/hTq7t9e8xKXFbpEu76wbC7BFUCE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:1a:f7:89:dc:de:e4:99:49:30:b6:63:50:80:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=853abbb7d7bcc4a5c56e912eefac1b0bb0455021 Validity Not Before: Feb 9 12:00:16 2026 GMT Not After : Feb 10 12:00:16 2026 GMT Subject: CN=b1eadd12b38445237396e6ae6d44fbfd3a733dfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:05:b1:d7:1c:88:52:0c:69:52:7d:e4:8f:fa: 0c:be:4a:24:84:7a:b1:3f:53:fd:7f:c5:1f:d8:a9: a7:ea:a1:d8:1b:75:28:78:0f:69:5c:b4:7f:92:0e: 5f:4c:1b:eb:b6:09:11:e3:63:91:10:bc:84:c4:35: dd:4e:47:b0:7d:b1:c4:78:b5:f4:5f:2f:bf:7a:96: f0:e2:ec:e6:99:92:85:b5:e7:2a:92:6d:e4:b2:ca: 1c:f9:ba:c5:37:38:a8:52:29:8f:aa:86:cf:35:83: 0f:c9:e5:7c:c1:48:ef:1b:b6:01:85:7d:a8:c7:e6: f2:d6:b1:c5:83:8b:14:aa:6a:f0:1a:ad:36:3c:47: 85:0b:c2:4d:65:d6:6f:1e:10:cb:68:e7:b4:a9:78: 9b:56:a8:8d:94:a6:a1:18:b0:4a:37:14:51:82:ac: ca:5f:a0:29:ac:22:78:84:9d:c3:53:47:fc:51:ff: fb:47:42:da:47:30:54:4d:71:f3:b3:ed:bd:56:a8: b9:bb:d0:ea:d4:a1:7d:67:a2:47:9b:2c:89:60:ec: ba:75:63:47:62:ed:bf:c4:2e:e0:21:d4:b2:64:e1: 92:25:b2:0e:8b:af:1e:76:e9:57:4c:16:0a:2b:c4: 37:00:5f:f2:b6:bd:80:70:bd:2e:a4:08:8d:71:fd: 3b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:EA:DD:12:B3:84:45:23:73:96:E6:AE:6D:44:FB:FD:3A:73:3D:FE X509v3 Authority Key Identifier: keyid:85:3A:BB:B7:D7:BC:C4:A5:C5:6E:91:2E:EF:AC:1B:0B:B0:45:50:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hTq7t9e8xKXFbpEu76wbC7BFUCE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:08:15:70:02:2e:66:55:39:89:76:e7:21:2e:9e:52:4b:df: 91:3e:73:44:dd:d0:0d:d8:f2:be:fc:bd:96:27:b2:83:6f:80: 77:7e:5d:5a:3f:ba:5f:f7:ff:8e:e7:3b:2e:ba:d3:b7:04:85: 99:03:e4:d8:d2:95:e1:2d:03:25:1a:3f:6e:07:f5:2b:fc:d0: 31:21:4d:5f:78:2a:9a:6c:c2:ae:85:03:09:35:4d:66:13:55: fd:d6:88:d9:75:41:8f:b2:8e:2f:f0:0f:dc:d9:7b:8b:25:65: d7:10:f2:1f:16:16:9a:1c:6b:bc:6d:4d:d3:c8:37:62:07:49: 22:48:51:59:e4:01:2d:06:9c:9b:ad:97:4e:c2:76:2a:a9:f4: d8:89:34:04:fc:1d:81:84:47:a8:7e:bd:8b:02:f4:0e:ec:7d: 40:52:d8:59:6f:04:e9:b4:fb:f1:42:39:4d:ba:b9:f4:dd:fe: 07:f7:8a:3a:6e:1a:2f:33:30:8e:63:18:e5:8c:b5:ae:38:ab: 75:a5:07:c8:c6:72:db:f7:f2:79:02:a2:55:30:fc:d4:95:de: 47:12:c7:05:4b:cc:95:e7:1c:ae:56:b5:91:b2:b4:45:0a:1a: 36:b0:5c:0e:3c:42:b8:c0:7e:5c:83:b0:56:c7:ba:6b:cd:5e: 08:54:5c:51 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRhr3idze5JlJMLZjUIDUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1M2FiYmI3ZDdiY2M0YTVjNTZlOTEyZWVmYWMxYjBiYjA0 NTUwMjEwHhcNMjYwMjA5MTIwMDE2WhcNMjYwMjEwMTIwMDE2WjAzMTEwLwYDVQQD EyhiMWVhZGQxMmIzODQ0NTIzNzM5NmU2YWU2ZDQ0ZmJmZDNhNzMzZGZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5gWx1xyIUgxpUn3kj/oMvkokhHqx P1P9f8Uf2Kmn6qHYG3UoeA9pXLR/kg5fTBvrtgkR42ORELyExDXdTkewfbHEeLX0 Xy+/epbw4uzmmZKFtecqkm3kssoc+brFNzioUimPqobPNYMPyeV8wUjvG7YBhX2o x+by1rHFg4sUqmrwGq02PEeFC8JNZdZvHhDLaOe0qXibVqiNlKahGLBKNxRRgqzK X6AprCJ4hJ3DU0f8Uf/7R0LaRzBUTXHzs+29Vqi5u9Dq1KF9Z6JHmyyJYOy6dWNH Yu2/xC7gIdSyZOGSJbIOi68edulXTBYKK8Q3AF/ytr2AcL0upAiNcf07oQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLHq3RKzhEUjc5bmrm1E+/06cz3+MB8GA1UdIwQY MBaAFIU6u7fXvMSlxW6RLu+sGwuwRVAhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFRxN3Q5ZTh4S1hGYnBFdTc2d2JDN0JGVUNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS80MjM4YWUtYTcyZi00NzFjLWE5YTkt NTgyM2Y4NzAxNDFiLzEvaFRxN3Q5ZTh4S1hGYnBFdTc2d2JDN0JGVUNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS80MjM4YWUtYTcyZi00NzFjLWE5YTktNTgyM2Y4NzAxNDFi LzEvaFRxN3Q5ZTh4S1hGYnBFdTc2d2JDN0JGVUNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATwgVcAIu ZlU5iXbnIS6eUkvfkT5zRN3QDdjyvvy9lieyg2+Ad35dWj+6X/f/juc7LrrTtwSF mQPk2NKV4S0DJRo/bgf1K/zQMSFNX3gqmmzCroUDCTVNZhNV/daI2XVBj7KOL/AP 3Nl7iyVl1xDyHxYWmhxrvG1N08g3YgdJIkhRWeQBLQacm62XTsJ2Kqn02Ik0BPwd gYRHqH69iwL0Dux9QFLYWW8E6bT78UI5Tbq59N3+B/eKOm4aLzMwjmMY5Yy1rjir daUHyMZy2/fyeQKiVTD81JXeRxLHBUvMleccrla1kbK0RQoaNrBcDjxCuMB+XIOw Vse6a81eCFRcUQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:02 2026 by rpki-client