This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft File: ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft (raw, json) Hash identifier: QlO9+upA8Y1BrnEdJFR+8n2rucAPkaDY+5h0rKXl9RA= Subject key identifier: 25:B2:63:5C:B7:FB:86:42:B9:A0:5F:F4:79:E5:C8:BE:59:95:DD:F4 Authority key identifier: 7A:17:25:9A:86:3C:3D:63:7D:45:7E:11:9B:75:0D:F9:5E:00:3F:D6 Certificate issuer: /CN=7a17259a863c3d637d457e119b750df95e003fd6 Certificate serial: 019C42B44B64C538DA14F1B6D1284FB8559B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft Manifest number: 180F Signing time: Mon 09 Feb 2026 14:00:37 +0000 Manifest this update: Mon 09 Feb 2026 14:00:37 +0000 Manifest next update: Tue 10 Feb 2026 14:00:37 +0000 Files and hashes: 1: 5tBrp55-EAXMGlNBrWNqj744wk4.roa (hash: rV+tN1f8sl1mzbaoUz6eUbNwGQ89OtRS1uDIueamB+M=) 2: ehclmoY8PWN9RX4Rm3UN-V4AP9Y.crl (hash: gl1CoYoHzk+UDQvsqd+F6UxtBKeHa+yiUIcC0HoneGI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft rsync://rpki.ripe.net/repository/DEFAULT/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:4b:64:c5:38:da:14:f1:b6:d1:28:4f:b8:55:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7a17259a863c3d637d457e119b750df95e003fd6 Validity Not Before: Feb 9 14:00:37 2026 GMT Not After : Feb 10 14:00:37 2026 GMT Subject: CN=25b2635cb7fb8642b9a05ff479e5c8be5995ddf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:92:04:dc:b7:61:c0:8d:f4:65:8a:73:2f:74: 88:48:48:ef:ec:37:0a:96:88:bc:71:ed:5b:6f:6a: 4c:2f:37:98:78:8b:88:3e:68:e2:88:ea:5f:f1:80: 71:46:64:6d:c6:03:90:ac:0d:fa:95:89:39:99:ab: df:89:44:23:75:1e:e8:be:d5:e2:d0:f1:c8:18:40: 5b:bb:6b:55:d3:3b:1e:06:f1:d3:47:10:79:9c:d1: 75:7a:f7:ef:1e:d3:c9:c8:b4:72:8a:4d:84:23:33: d1:af:1f:b8:e4:86:62:72:61:a8:88:ad:17:4b:ed: 5f:d3:ab:7f:5f:61:9b:49:d6:51:26:85:f7:c6:4c: 0a:15:25:55:ae:c8:c6:ea:c1:d0:3b:05:f9:9b:15: 54:72:57:58:8c:64:8e:e1:be:25:49:24:c0:f7:03: d3:88:b3:35:b2:80:d5:7c:09:3a:b9:f0:42:d7:cf: 08:bb:75:60:cd:15:6a:4f:54:5e:4d:9a:de:aa:dc: e2:2c:6d:65:e4:b7:b9:99:37:e8:12:66:58:70:1d: 6b:80:16:90:db:da:f3:d3:4d:43:f3:96:15:6d:d5: 54:0f:b3:16:d6:ff:e7:92:45:ab:8e:07:be:31:a7: 36:58:83:50:09:f3:43:be:21:8e:dd:d8:b6:0f:b6: 3b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:B2:63:5C:B7:FB:86:42:B9:A0:5F:F4:79:E5:C8:BE:59:95:DD:F4 X509v3 Authority Key Identifier: keyid:7A:17:25:9A:86:3C:3D:63:7D:45:7E:11:9B:75:0D:F9:5E:00:3F:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/00849e-d8e6-4bb1-ad30-ad8bc8bc7967/1/ehclmoY8PWN9RX4Rm3UN-V4AP9Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:47:d1:c6:3a:2a:1b:2f:58:43:bc:ec:04:bb:8d:c9:07:2e: 34:05:f6:ef:19:ad:b2:b2:75:f6:55:64:11:4e:19:c4:a8:6f: 0f:03:2f:3b:78:71:74:f4:26:a3:1e:14:d4:bd:b4:6d:57:9a: 2a:7d:1d:2e:94:2f:fa:14:26:88:a8:70:84:97:0b:73:7c:25: df:01:c8:5a:a9:07:a1:9b:85:af:d5:56:55:a8:37:8e:1b:7d: 1c:f2:fe:fd:d4:bb:a3:cc:93:5f:35:e8:aa:c3:31:64:a8:ac: a3:19:62:c3:f0:e4:dd:aa:dc:46:2d:ea:08:7b:db:8d:1e:bb: 1d:7b:4c:41:1c:4a:c8:60:7e:c8:57:50:a6:3a:a5:1e:25:eb: c2:16:63:4e:21:da:19:43:b2:3d:af:d2:73:54:12:61:c6:d0: cc:77:8f:8c:04:37:b1:22:75:a5:bb:81:06:89:29:fe:a6:6a: 0a:3b:ab:c2:b4:00:6b:9f:fa:d5:e4:e5:46:94:2b:22:d9:96: c3:7a:78:50:17:7e:c9:c4:03:dd:61:74:fd:5e:0a:65:47:5d: 19:2a:27:17:ad:52:22:82:d4:85:76:f0:81:eb:39:1e:fd:f4: 10:b0:2e:73:08:e4:61:0b:38:68:e8:a7:94:31:70:bd:fa:cb: 08:a9:73:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtEtkxTjaFPG20ShPuFWbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhMTcyNTlhODYzYzNkNjM3ZDQ1N2UxMTliNzUwZGY5NWUw MDNmZDYwHhcNMjYwMjA5MTQwMDM3WhcNMjYwMjEwMTQwMDM3WjAzMTEwLwYDVQQD EygyNWIyNjM1Y2I3ZmI4NjQyYjlhMDVmZjQ3OWU1YzhiZTU5OTVkZGY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxJIE3LdhwI30ZYpzL3SISEjv7DcK loi8ce1bb2pMLzeYeIuIPmjiiOpf8YBxRmRtxgOQrA36lYk5mavfiUQjdR7ovtXi 0PHIGEBbu2tV0zseBvHTRxB5nNF1evfvHtPJyLRyik2EIzPRrx+45IZicmGoiK0X S+1f06t/X2GbSdZRJoX3xkwKFSVVrsjG6sHQOwX5mxVUcldYjGSO4b4lSSTA9wPT iLM1soDVfAk6ufBC188Iu3VgzRVqT1ReTZreqtziLG1l5Le5mTfoEmZYcB1rgBaQ 29rz001D85YVbdVUD7MW1v/nkkWrjge+Mac2WINQCfNDviGO3di2D7Y7PQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCWyY1y3+4ZCuaBf9HnlyL5Zld30MB8GA1UdIwQY MBaAFHoXJZqGPD1jfUV+EZt1DfleAD/WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWhjbG1vWThQV045Ulg0Um0zVU4tVjRBUDlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy8wMDg0OWUtZDhlNi00YmIxLWFkMzAt YWQ4YmM4YmM3OTY3LzEvZWhjbG1vWThQV045Ulg0Um0zVU4tVjRBUDlZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy8wMDg0OWUtZDhlNi00YmIxLWFkMzAtYWQ4YmM4YmM3OTY3 LzEvZWhjbG1vWThQV045Ulg0Um0zVU4tVjRBUDlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhkfRxjoq Gy9YQ7zsBLuNyQcuNAX27xmtsrJ19lVkEU4ZxKhvDwMvO3hxdPQmox4U1L20bVea Kn0dLpQv+hQmiKhwhJcLc3wl3wHIWqkHoZuFr9VWVag3jht9HPL+/dS7o8yTXzXo qsMxZKisoxliw/Dk3arcRi3qCHvbjR67HXtMQRxKyGB+yFdQpjqlHiXrwhZjTiHa GUOyPa/Sc1QSYcbQzHePjAQ3sSJ1pbuBBokp/qZqCjurwrQAa5/61eTlRpQrItmW w3p4UBd+ycQD3WF0/V4KZUddGSonF61SIoLUhXbwges5Hv30ELAucwjkYQs4aOin lDFwvfrLCKlzuw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:55:06 2026 by rpki-client