This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/2edfb1-cc91-4893-a14e-688f8fa22e98/1/hEnGCTJcOmYCBHJgydMAE1CVuLg.mft File: hEnGCTJcOmYCBHJgydMAE1CVuLg.mft (raw, json) Hash identifier: c9BfUdOskOS7ZInGco83iPupiy8+w6zegjd+ZGB3NlI= Subject key identifier: 6A:9A:CC:14:23:28:E0:2B:A3:A7:0A:0D:A3:33:81:A6:EF:B0:94:C3 Authority key identifier: 84:49:C6:09:32:5C:3A:66:02:04:72:60:C9:D3:00:13:50:95:B8:B8 Certificate issuer: /CN=8449c609325c3a6602047260c9d300135095b8b8 Certificate serial: 019C41A1DF9D8736851D4431C82027C95CB3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hEnGCTJcOmYCBHJgydMAE1CVuLg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/2edfb1-cc91-4893-a14e-688f8fa22e98/1/hEnGCTJcOmYCBHJgydMAE1CVuLg.mft Manifest number: 07E0 Signing time: Mon 09 Feb 2026 09:00:53 +0000 Manifest this update: Mon 09 Feb 2026 09:00:53 +0000 Manifest next update: Tue 10 Feb 2026 09:00:53 +0000 Files and hashes: 1: hEnGCTJcOmYCBHJgydMAE1CVuLg.crl (hash: h5lY67rJJtJnGWRthhxtFSvohn0xigLulrtfAB1/T2Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/2edfb1-cc91-4893-a14e-688f8fa22e98/1/hEnGCTJcOmYCBHJgydMAE1CVuLg.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/2edfb1-cc91-4893-a14e-688f8fa22e98/1/hEnGCTJcOmYCBHJgydMAE1CVuLg.mft rsync://rpki.ripe.net/repository/DEFAULT/hEnGCTJcOmYCBHJgydMAE1CVuLg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:df:9d:87:36:85:1d:44:31:c8:20:27:c9:5c:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8449c609325c3a6602047260c9d300135095b8b8 Validity Not Before: Feb 9 09:00:53 2026 GMT Not After : Feb 10 09:00:53 2026 GMT Subject: CN=6a9acc142328e02ba3a70a0da33381a6efb094c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d5:94:83:a9:e0:2d:14:35:c2:d3:13:fb:89: 01:4a:ed:52:34:05:62:a0:00:2d:ff:13:2b:7b:a1: aa:4d:18:70:1c:7b:b0:6e:57:28:a8:4d:aa:18:54: 40:1c:28:41:bb:bf:63:31:11:a4:b1:25:d3:14:27: bd:53:f2:b7:52:2a:a5:8e:59:ba:1b:27:1d:47:f6: 18:e8:cb:de:38:a7:d9:26:63:b3:f8:c1:6a:4e:94: 91:5a:4e:f4:35:d3:a8:91:1d:64:87:09:7e:c0:82: 4d:13:cf:2e:35:a4:64:18:39:b3:0e:98:86:98:23: 83:84:bc:96:48:a0:35:67:30:c3:df:29:fd:ca:74: ca:e5:10:35:26:1f:a1:53:1c:be:e5:eb:7f:54:78: 84:34:f2:28:1f:ba:bd:ca:d3:79:8a:ce:62:04:71: 44:c0:30:d6:8e:21:d4:c2:8d:02:10:26:79:d6:f6: 68:f7:64:e6:1a:63:c0:80:f2:26:1a:70:c0:26:9f: 2e:a0:26:43:89:f4:62:0b:ea:12:40:83:74:21:27: f6:42:db:9e:af:15:4e:87:3b:c7:ab:a0:31:d9:d2: cf:66:44:46:88:79:d4:26:0c:3c:71:b3:a5:1d:41: d4:97:c3:de:17:cc:f6:35:85:bc:da:b7:7c:cd:7b: 41:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:9A:CC:14:23:28:E0:2B:A3:A7:0A:0D:A3:33:81:A6:EF:B0:94:C3 X509v3 Authority Key Identifier: keyid:84:49:C6:09:32:5C:3A:66:02:04:72:60:C9:D3:00:13:50:95:B8:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hEnGCTJcOmYCBHJgydMAE1CVuLg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/2edfb1-cc91-4893-a14e-688f8fa22e98/1/hEnGCTJcOmYCBHJgydMAE1CVuLg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/2edfb1-cc91-4893-a14e-688f8fa22e98/1/hEnGCTJcOmYCBHJgydMAE1CVuLg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:94:32:35:a7:14:83:38:cf:f8:66:f6:b7:b9:11:de:ef:d6: ef:f4:3b:ff:f1:d3:d7:b2:74:73:5c:b3:b8:91:dc:06:1d:b9: 33:05:85:92:6f:48:0a:e0:7b:c8:b3:3f:1b:b7:86:42:34:35: e7:f0:2b:25:4f:6b:45:d1:43:ab:6e:c7:30:8e:25:56:4c:43: 3f:c6:92:87:35:99:43:a8:c6:37:eb:ff:a6:db:92:b6:8b:69: ef:25:b0:61:3e:51:fb:39:8f:b4:6c:ba:f2:60:c8:2e:bd:ec: 07:a0:ee:24:42:6b:3b:b4:a1:dd:d1:47:f2:91:44:42:ca:20: 8a:ad:81:ca:bc:a8:45:3d:af:84:bd:8b:c1:29:4a:ad:b4:01: 38:85:c6:3c:96:72:ba:55:b7:2c:53:0b:fd:38:1f:46:e5:0f: b7:f4:f1:4c:a0:73:4e:c0:0d:8b:d6:dd:70:f5:1d:a3:dd:fa: dc:21:83:48:39:fe:6a:e0:89:59:cc:2e:21:fb:61:98:c4:dc: 97:f2:7a:bd:62:f9:4f:d2:69:44:63:5c:49:bc:71:1e:fd:5c: 8c:db:49:da:3c:1a:49:80:6f:21:33:43:a1:63:6a:96:64:10: 21:82:c0:de:3d:17:c5:73:f0:0b:37:34:ed:c1:8f:29:17:89: 93:7d:ea:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBod+dhzaFHUQxyCAnyVyzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0NDljNjA5MzI1YzNhNjYwMjA0NzI2MGM5ZDMwMDEzNTA5 NWI4YjgwHhcNMjYwMjA5MDkwMDUzWhcNMjYwMjEwMDkwMDUzWjAzMTEwLwYDVQQD Eyg2YTlhY2MxNDIzMjhlMDJiYTNhNzBhMGRhMzMzODFhNmVmYjA5NGMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoNWUg6ngLRQ1wtMT+4kBSu1SNAVi oAAt/xMre6GqTRhwHHuwblcoqE2qGFRAHChBu79jMRGksSXTFCe9U/K3Uiqljlm6 GycdR/YY6MveOKfZJmOz+MFqTpSRWk70NdOokR1khwl+wIJNE88uNaRkGDmzDpiG mCODhLyWSKA1ZzDD3yn9ynTK5RA1Jh+hUxy+5et/VHiENPIoH7q9ytN5is5iBHFE wDDWjiHUwo0CECZ51vZo92TmGmPAgPImGnDAJp8uoCZDifRiC+oSQIN0ISf2Qtue rxVOhzvHq6Ax2dLPZkRGiHnUJgw8cbOlHUHUl8PeF8z2NYW82rd8zXtBkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGqazBQjKOAro6cKDaMzgabvsJTDMB8GA1UdIwQY MBaAFIRJxgkyXDpmAgRyYMnTABNQlbi4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEVuR0NUSmNPbVlDQkhKZ3lkTUFFMUNWdUxnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy8yZWRmYjEtY2M5MS00ODkzLWExNGUt Njg4ZjhmYTIyZTk4LzEvaEVuR0NUSmNPbVlDQkhKZ3lkTUFFMUNWdUxnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy8yZWRmYjEtY2M5MS00ODkzLWExNGUtNjg4ZjhmYTIyZTk4 LzEvaEVuR0NUSmNPbVlDQkhKZ3lkTUFFMUNWdUxnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASJQyNacU gzjP+Gb2t7kR3u/W7/Q7//HT17J0c1yzuJHcBh25MwWFkm9ICuB7yLM/G7eGQjQ1 5/ArJU9rRdFDq27HMI4lVkxDP8aShzWZQ6jGN+v/ptuStotp7yWwYT5R+zmPtGy6 8mDILr3sB6DuJEJrO7Sh3dFH8pFEQsogiq2ByryoRT2vhL2LwSlKrbQBOIXGPJZy ulW3LFML/TgfRuUPt/TxTKBzTsANi9bdcPUdo9363CGDSDn+auCJWcwuIfthmMTc l/J6vWL5T9JpRGNcSbxxHv1cjNtJ2jwaSYBvITNDoWNqlmQQIYLA3j0XxXPwCzc0 7cGPKReJk33qZw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:58 2026 by rpki-client