This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft File: cHl9sHv21Fl6wtyL40-JKYAI8s0.mft (raw, json) Hash identifier: Ri3tUmQy1LDgajenPnue/HM2KzdmI1q0N1z169+y3JQ= Subject key identifier: 71:F4:E2:65:8F:A3:69:4C:02:03:DD:7F:35:F1:50:34:E8:4C:7B:7B Authority key identifier: 70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD Certificate issuer: /CN=70797db07bf6d4597ac2dc8be34f89298008f2cd Certificate serial: 019C4359438ABD0BD454B657F17671C3281B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft Manifest number: 1816 Signing time: Mon 09 Feb 2026 17:00:49 +0000 Manifest this update: Mon 09 Feb 2026 17:00:49 +0000 Manifest next update: Tue 10 Feb 2026 17:00:49 +0000 Files and hashes: 1: cAt58g0xkrFHt9-N3ZykhWH0ReM.roa (hash: zJIgtJYw+ptpKpZht1FAofTALod8Sw1aXf2YLrLjs1s=) 2: cHl9sHv21Fl6wtyL40-JKYAI8s0.crl (hash: CWD8ABBqZfVkeE41dEitBE8YaxWwSrqr+93xhpl+oyY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:43:8a:bd:0b:d4:54:b6:57:f1:76:71:c3:28:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70797db07bf6d4597ac2dc8be34f89298008f2cd Validity Not Before: Feb 9 17:00:49 2026 GMT Not After : Feb 10 17:00:49 2026 GMT Subject: CN=71f4e2658fa3694c0203dd7f35f15034e84c7b7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:c7:99:09:a9:9c:b1:9b:13:13:f5:5c:73:1b: 72:84:d1:8b:aa:1c:f5:3e:ea:8b:01:43:f2:62:11: 94:3a:dd:23:69:d8:20:94:e4:3e:a3:87:41:a3:cb: af:9b:04:32:54:af:49:f6:93:31:b2:93:c5:8d:80: 02:f0:58:d2:b6:b1:b4:92:15:6a:51:d7:a6:a9:a7: 62:60:7d:bb:cc:da:a0:67:e5:d3:7a:fe:53:a2:4c: 13:4f:80:1e:d8:ff:44:30:04:7e:46:35:e5:2c:cb: 31:a9:ab:25:85:82:80:02:e9:7d:34:bf:a2:db:45: 52:ef:ba:fc:29:14:09:db:61:09:13:6e:ff:e4:37: bf:bf:5b:87:99:91:c5:51:19:31:eb:47:86:6c:80: cb:13:df:85:fe:6d:38:b4:73:6f:83:cd:c2:0a:91: 4e:f5:07:7a:ce:01:d7:fa:65:53:7b:bc:5b:62:98: 83:4d:e9:90:42:e5:bf:46:bb:d7:c6:db:84:73:fd: ef:f9:fa:2c:4d:85:88:bb:02:a3:11:ce:ff:54:0c: 1d:c2:00:45:6a:6a:50:47:30:22:87:34:fa:e2:69: b4:bb:54:ec:86:2d:e9:29:ce:11:72:89:3b:22:6c: 1e:57:80:54:56:f8:71:98:f5:07:d6:e1:25:c0:ed: 53:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F4:E2:65:8F:A3:69:4C:02:03:DD:7F:35:F1:50:34:E8:4C:7B:7B X509v3 Authority Key Identifier: keyid:70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:78:7a:b9:37:8d:78:3c:b4:fc:f7:bc:58:32:47:eb:b0:f6: 3a:1f:5f:31:96:b4:60:62:35:18:95:f2:35:31:ea:09:8a:ec: 8c:5b:fe:c5:2e:51:8e:89:15:16:fe:bc:a3:e3:be:12:05:e3: 24:4c:cc:b3:94:1c:c3:27:63:b1:cb:c0:06:b6:e6:43:96:7a: b2:e0:f7:4f:31:8f:01:0a:b1:d1:7c:ca:67:f1:5b:53:b3:0a: 72:1c:52:e8:0e:15:a0:4d:d0:9c:80:32:56:24:ef:dd:da:23: 10:09:84:a5:b1:a3:d7:c3:d8:f6:73:fd:04:98:33:1b:48:da: f5:50:aa:36:34:ba:55:c1:25:52:9d:94:d8:19:cc:08:38:6d: 90:cf:a3:ca:30:52:65:30:1f:58:2a:e1:79:59:b8:a7:15:5e: 05:6b:85:fc:a5:da:df:5e:48:75:00:36:4c:bb:dd:6e:87:12: 5f:39:07:d8:1d:e4:70:95:63:43:40:c4:36:24:bc:91:1c:b6: 88:a8:ba:a1:41:b0:ea:ad:32:a5:78:f4:c5:56:df:da:23:33: 4a:f1:f5:fb:da:8c:27:4b:2e:73:9b:9c:98:10:60:75:09:94: 74:c8:86:02:d0:e4:d3:8d:c2:c2:f2:36:b1:15:de:6c:49:a1: 36:f2:f6:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWUOKvQvUVLZX8XZxwygbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwNzk3ZGIwN2JmNmQ0NTk3YWMyZGM4YmUzNGY4OTI5ODAw OGYyY2QwHhcNMjYwMjA5MTcwMDQ5WhcNMjYwMjEwMTcwMDQ5WjAzMTEwLwYDVQQD Eyg3MWY0ZTI2NThmYTM2OTRjMDIwM2RkN2YzNWYxNTAzNGU4NGM3YjdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkseZCamcsZsTE/VccxtyhNGLqhz1 PuqLAUPyYhGUOt0jadgglOQ+o4dBo8uvmwQyVK9J9pMxspPFjYAC8FjStrG0khVq UdemqadiYH27zNqgZ+XTev5TokwTT4Ae2P9EMAR+RjXlLMsxqaslhYKAAul9NL+i 20VS77r8KRQJ22EJE27/5De/v1uHmZHFURkx60eGbIDLE9+F/m04tHNvg83CCpFO 9Qd6zgHX+mVTe7xbYpiDTemQQuW/RrvXxtuEc/3v+fosTYWIuwKjEc7/VAwdwgBF ampQRzAihzT64mm0u1Tshi3pKc4Rcok7ImweV4BUVvhxmPUH1uElwO1TjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHH04mWPo2lMAgPdfzXxUDToTHt7MB8GA1UdIwQY MBaAFHB5fbB79tRZesLci+NPiSmACPLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0hsOXNIdjIxRmw2d3R5TDQwLUpLWUFJOHMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9jMmVlN2EtY2JiNy00NzBlLWI5NjUt OTA3ZGFhNDY0NjNiLzEvY0hsOXNIdjIxRmw2d3R5TDQwLUpLWUFJOHMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9jMmVlN2EtY2JiNy00NzBlLWI5NjUtOTA3ZGFhNDY0NjNi LzEvY0hsOXNIdjIxRmw2d3R5TDQwLUpLWUFJOHMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJXh6uTeN eDy0/Pe8WDJH67D2Oh9fMZa0YGI1GJXyNTHqCYrsjFv+xS5RjokVFv68o+O+EgXj JEzMs5QcwydjscvABrbmQ5Z6suD3TzGPAQqx0XzKZ/FbU7MKchxS6A4VoE3QnIAy ViTv3dojEAmEpbGj18PY9nP9BJgzG0ja9VCqNjS6VcElUp2U2BnMCDhtkM+jyjBS ZTAfWCrheVm4pxVeBWuF/KXa315IdQA2TLvdbocSXzkH2B3kcJVjQ0DENiS8kRy2 iKi6oUGw6q0ypXj0xVbf2iMzSvH1+9qMJ0suc5ucmBBgdQmUdMiGAtDk043CwvI2 sRXebEmhNvL24A== -----END CERTIFICATE-----Generated at Mon Feb 9 19:48:24 2026 by rpki-client