This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft File: gh9un_H7vyH2QToTfnNn3YqMA1w.mft (raw, json) Hash identifier: tVDoG6mZf4FtqbRiJJtUN3Q+8yAJKW1lCIyQNRLzG9E= Subject key identifier: F6:D3:D8:E9:37:06:9B:E3:FF:9A:57:28:BF:8C:34:22:07:11:F1:58 Authority key identifier: 82:1F:6E:9F:F1:FB:BF:21:F6:41:3A:13:7E:73:67:DD:8A:8C:03:5C Certificate issuer: /CN=821f6e9ff1fbbf21f6413a137e7367dd8a8c035c Certificate serial: 019C420FF90AC3076AF0ECA326EC9201202F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gh9un_H7vyH2QToTfnNn3YqMA1w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft Manifest number: 1052 Signing time: Mon 09 Feb 2026 11:01:08 +0000 Manifest this update: Mon 09 Feb 2026 11:01:08 +0000 Manifest next update: Tue 10 Feb 2026 11:01:08 +0000 Files and hashes: 1: gh9un_H7vyH2QToTfnNn3YqMA1w.crl (hash: Uxkb+pYaS7ufXfKNICpZtzImveLgUIeJs8pLowsXwnQ=) 2: lHeFeB5XmUgMTZd-xp7pg5O2hRk.roa (hash: yDjRb/PwiyZiL5zE1UM9tbqgd31//MiOL1EvDdOA92U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft rsync://rpki.ripe.net/repository/DEFAULT/gh9un_H7vyH2QToTfnNn3YqMA1w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:f9:0a:c3:07:6a:f0:ec:a3:26:ec:92:01:20:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821f6e9ff1fbbf21f6413a137e7367dd8a8c035c Validity Not Before: Feb 9 11:01:08 2026 GMT Not After : Feb 10 11:01:08 2026 GMT Subject: CN=f6d3d8e937069be3ff9a5728bf8c34220711f158 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d4:be:5a:09:76:03:28:30:74:29:cf:76:69: d5:05:f2:d6:19:ab:ec:9f:10:c3:1c:79:ea:b0:a2: df:0c:60:fd:ab:2c:b5:6e:55:ad:86:1d:e6:18:82: ca:88:2d:9b:c5:65:e6:3c:33:76:83:44:7c:6b:ad: 75:3c:e5:c4:ae:43:df:d1:d7:8c:05:d9:9c:13:ef: a6:13:de:c9:81:34:79:a8:8c:4a:8d:92:69:fe:32: 8c:f5:b7:7a:83:17:1a:79:89:38:4d:bd:0c:af:ff: 57:cc:d4:cd:16:ea:e0:a8:51:60:bb:1b:7f:9f:aa: 53:14:0c:60:62:b5:02:90:42:ea:33:c9:2f:e2:32: de:af:5b:0d:db:72:58:75:58:8d:6f:db:2c:d9:e7: bd:a3:c6:57:3a:bc:95:c8:b9:0f:63:56:a4:e7:33: 2a:04:0b:4c:ca:01:0b:a2:65:d5:57:5f:9e:37:1b: ee:07:bf:32:4b:ba:3d:db:5c:bf:0b:8c:28:a8:55: a3:db:62:ab:7a:a7:e0:3c:5d:58:7b:08:45:10:8b: 82:2b:3e:cc:de:e7:f2:bc:10:64:b0:d2:9b:8d:db: 0f:32:31:56:7f:ba:90:77:06:5d:81:21:0e:5d:cc: 70:76:16:b8:e8:06:ca:51:d8:eb:8a:02:d1:6f:2c: 63:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:D3:D8:E9:37:06:9B:E3:FF:9A:57:28:BF:8C:34:22:07:11:F1:58 X509v3 Authority Key Identifier: keyid:82:1F:6E:9F:F1:FB:BF:21:F6:41:3A:13:7E:73:67:DD:8A:8C:03:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gh9un_H7vyH2QToTfnNn3YqMA1w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:c9:23:4a:59:b7:08:1e:64:e9:3d:02:43:1e:f6:62:0a:32: 23:4c:38:62:2c:b2:7a:ee:f5:96:3d:1c:3f:81:c6:74:21:c5: 39:ce:54:75:bb:f3:e8:f5:0a:ba:2f:28:33:77:f7:41:e4:57: 24:4a:f7:eb:97:49:a9:78:14:1e:4c:ba:75:dd:b0:70:8c:34: c9:3d:df:57:22:26:3c:60:cb:ba:bb:57:e2:e5:b8:c4:77:03: 43:5f:16:07:c8:5e:18:b5:fa:b7:8a:84:22:44:05:0c:5e:4b: dd:7f:1f:fb:48:7b:5f:c7:ac:45:3c:de:e9:95:6f:0b:ea:38: 6a:c0:04:b9:47:e1:31:7a:22:f1:12:be:e6:ac:5c:65:21:e2: 66:02:87:b9:42:75:fb:e9:85:c4:a8:20:64:1d:08:a5:6a:df: 7f:3d:89:f5:ea:2b:bb:fd:5c:21:b6:6d:26:f7:ae:7e:1a:e4: 29:03:43:05:b7:d5:9a:86:aa:16:3d:4a:5b:c6:c0:ed:76:37: 29:fd:55:26:38:96:fd:33:2a:0b:db:0e:5b:c6:2a:4e:97:8a: 97:44:cd:50:f7:e4:f1:75:86:28:d9:29:85:1a:5a:cf:74:19: 04:b6:38:bf:cb:f9:7a:8e:16:2f:f4:e9:98:b6:8c:63:ff:9a: b4:b6:82:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD/kKwwdq8OyjJuySASAvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWY2ZTlmZjFmYmJmMjFmNjQxM2ExMzdlNzM2N2RkOGE4 YzAzNWMwHhcNMjYwMjA5MTEwMTA4WhcNMjYwMjEwMTEwMTA4WjAzMTEwLwYDVQQD EyhmNmQzZDhlOTM3MDY5YmUzZmY5YTU3MjhiZjhjMzQyMjA3MTFmMTU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAttS+Wgl2AygwdCnPdmnVBfLWGavs nxDDHHnqsKLfDGD9qyy1blWthh3mGILKiC2bxWXmPDN2g0R8a611POXErkPf0deM BdmcE++mE97JgTR5qIxKjZJp/jKM9bd6gxcaeYk4Tb0Mr/9XzNTNFurgqFFguxt/ n6pTFAxgYrUCkELqM8kv4jLer1sN23JYdViNb9ss2ee9o8ZXOryVyLkPY1ak5zMq BAtMygELomXVV1+eNxvuB78yS7o921y/C4woqFWj22KreqfgPF1YewhFEIuCKz7M 3ufyvBBksNKbjdsPMjFWf7qQdwZdgSEOXcxwdha46AbKUdjrigLRbyxjLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPbT2Ok3Bpvj/5pXKL+MNCIHEfFYMB8GA1UdIwQY MBaAFIIfbp/x+78h9kE6E35zZ92KjANcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2g5dW5fSDd2eUgyUVRvVGZuTm4zWXFNQTF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9lMDc2ZGMtMTBkOC00NGNjLThhYTUt NWE5NGFkMTMzMTE4LzEvZ2g5dW5fSDd2eUgyUVRvVGZuTm4zWXFNQTF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy9lMDc2ZGMtMTBkOC00NGNjLThhYTUtNWE5NGFkMTMzMTE4 LzEvZ2g5dW5fSDd2eUgyUVRvVGZuTm4zWXFNQTF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKskjSlm3 CB5k6T0CQx72YgoyI0w4Yiyyeu71lj0cP4HGdCHFOc5Udbvz6PUKui8oM3f3QeRX JEr365dJqXgUHky6dd2wcIw0yT3fVyImPGDLurtX4uW4xHcDQ18WB8heGLX6t4qE IkQFDF5L3X8f+0h7X8esRTze6ZVvC+o4asAEuUfhMXoi8RK+5qxcZSHiZgKHuUJ1 ++mFxKggZB0IpWrffz2J9eoru/1cIbZtJveufhrkKQNDBbfVmoaqFj1KW8bA7XY3 Kf1VJjiW/TMqC9sOW8YqTpeKl0TNUPfk8XWGKNkphRpaz3QZBLY4v8v5eo4WL/Tp mLaMY/+atLaCtA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:24 2026 by rpki-client