This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft File: GHRUZrThRoMLlit0kG2xxtCB_HA.mft (raw, json) Hash identifier: YIaEbFJlWJjI7/DUiw4YAK4Otl4X+Ci11fNwqcxGmcU= Subject key identifier: 6E:92:4D:17:0E:5D:CB:F4:2B:24:2E:BE:0B:93:E5:C3:5E:B0:E8:B8 Authority key identifier: 18:74:54:66:B4:E1:46:83:0B:96:2B:74:90:6D:B1:C6:D0:81:FC:70 Certificate issuer: /CN=18745466b4e146830b962b74906db1c6d081fc70 Certificate serial: 019C438FF47B80B446798ADBD03E6F918921 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GHRUZrThRoMLlit0kG2xxtCB_HA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft Manifest number: 17D6 Signing time: Mon 09 Feb 2026 18:00:33 +0000 Manifest this update: Mon 09 Feb 2026 18:00:33 +0000 Manifest next update: Tue 10 Feb 2026 18:00:33 +0000 Files and hashes: 1: GHRUZrThRoMLlit0kG2xxtCB_HA.crl (hash: k87HURkF13VaSTyxEv0Z4DNjWd3udCTimFnRguok9k4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft rsync://rpki.ripe.net/repository/DEFAULT/GHRUZrThRoMLlit0kG2xxtCB_HA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:f4:7b:80:b4:46:79:8a:db:d0:3e:6f:91:89:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18745466b4e146830b962b74906db1c6d081fc70 Validity Not Before: Feb 9 18:00:33 2026 GMT Not After : Feb 10 18:00:33 2026 GMT Subject: CN=6e924d170e5dcbf42b242ebe0b93e5c35eb0e8b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:bc:d7:d3:15:de:96:eb:40:4c:f4:9a:da:9c: 0e:15:8e:80:02:0d:3f:a7:80:1f:8e:26:d8:73:68: 2a:d0:bc:2e:b1:83:19:54:51:9a:a3:be:7e:8a:f5: 48:26:40:f9:40:e2:9c:bb:c2:22:fd:59:35:e2:05: 81:df:37:34:42:82:10:90:fb:49:3c:60:44:f6:62: 51:5e:82:b9:53:d5:89:3b:f2:23:c8:bf:1d:c2:11: cc:18:16:7d:28:a7:d6:67:90:4d:d5:b8:09:2e:dd: a2:25:3f:50:61:3d:1e:8b:be:c3:4e:48:db:49:29: ca:32:ab:ab:d4:06:5e:60:ea:f6:b3:02:11:1f:d2: 56:af:35:af:a6:8c:f1:b9:c3:e2:1c:18:b8:f7:e2: e2:fc:60:7c:41:6d:eb:79:30:7a:59:2b:50:77:f1: 9f:65:95:85:13:27:8f:d4:6e:fb:10:c7:75:95:91: d6:a2:df:bc:58:f4:75:fd:3b:9d:d0:8f:43:3d:ab: 77:c2:b7:41:1d:a2:5c:d9:0c:a9:d2:06:7d:8c:0c: 0c:ad:0c:9e:49:85:58:15:b6:3b:61:a4:3c:69:a8: 55:06:8b:19:ed:24:ef:6b:d2:2b:9f:d8:98:af:5e: 4a:3e:60:ef:08:42:ba:60:27:55:a2:3a:a2:38:85: 9d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:92:4D:17:0E:5D:CB:F4:2B:24:2E:BE:0B:93:E5:C3:5E:B0:E8:B8 X509v3 Authority Key Identifier: keyid:18:74:54:66:B4:E1:46:83:0B:96:2B:74:90:6D:B1:C6:D0:81:FC:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GHRUZrThRoMLlit0kG2xxtCB_HA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:e9:aa:62:23:76:14:45:16:66:86:8b:4b:a4:29:55:dd:61: 79:bc:79:61:5b:7f:df:3f:22:8a:70:04:c0:31:31:67:20:1d: 96:63:67:35:3c:3b:0d:f0:42:68:82:d5:9a:f0:4c:78:1f:60: ed:16:ff:bd:01:02:d0:78:6d:a6:2e:c5:48:07:87:b5:f2:74: 44:9a:69:e5:c9:15:da:06:cf:54:c1:12:ec:e5:33:3f:6d:30: 33:c7:a1:6b:f6:04:6b:7b:b3:02:29:df:28:bd:27:ef:00:80: 9b:4c:34:27:17:12:2e:83:4c:e9:59:71:27:bb:de:6e:c4:c8: 7b:f3:74:12:40:d4:00:ea:f6:c1:b9:f4:c2:c6:8e:7e:a5:e8: ad:77:00:8b:3a:55:a4:96:44:97:e8:69:35:a3:95:6c:0f:e8: 03:95:18:f9:0a:4c:f0:ae:4b:9b:a6:9b:a5:e2:f5:1f:eb:18: 1b:6f:d1:7b:95:cb:40:88:80:f9:72:86:c0:bd:40:d8:1e:9a: c4:e7:bd:1b:36:18:f0:a2:04:18:39:c3:17:e8:0c:bc:ae:be: a0:22:2c:87:46:0b:e6:cb:4b:78:d0:2e:2b:99:cb:ae:cd:12: 98:c0:1b:c5:01:c6:d6:03:bb:7f:9b:e0:9d:87:91:e1:60:eb: 03:88:f1:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj/R7gLRGeYrb0D5vkYkhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE4NzQ1NDY2YjRlMTQ2ODMwYjk2MmI3NDkwNmRiMWM2ZDA4 MWZjNzAwHhcNMjYwMjA5MTgwMDMzWhcNMjYwMjEwMTgwMDMzWjAzMTEwLwYDVQQD Eyg2ZTkyNGQxNzBlNWRjYmY0MmIyNDJlYmUwYjkzZTVjMzVlYjBlOGI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArrzX0xXelutATPSa2pwOFY6AAg0/ p4AfjibYc2gq0LwusYMZVFGao75+ivVIJkD5QOKcu8Ii/Vk14gWB3zc0QoIQkPtJ PGBE9mJRXoK5U9WJO/IjyL8dwhHMGBZ9KKfWZ5BN1bgJLt2iJT9QYT0ei77DTkjb SSnKMqur1AZeYOr2swIRH9JWrzWvpozxucPiHBi49+Li/GB8QW3reTB6WStQd/Gf ZZWFEyeP1G77EMd1lZHWot+8WPR1/Tud0I9DPat3wrdBHaJc2Qyp0gZ9jAwMrQye SYVYFbY7YaQ8aahVBosZ7STva9Irn9iYr15KPmDvCEK6YCdVojqiOIWdCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG6STRcOXcv0KyQuvguT5cNesOi4MB8GA1UdIwQY MBaAFBh0VGa04UaDC5YrdJBtscbQgfxwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR0hSVVpyVGhSb01MbGl0MGtHMnh4dENCX0hBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS83Yjk4MWMtMDFlMy00ODk1LWJmMWYt ZjFmYzA1NDFjNjQ5LzEvR0hSVVpyVGhSb01MbGl0MGtHMnh4dENCX0hBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS83Yjk4MWMtMDFlMy00ODk1LWJmMWYtZjFmYzA1NDFjNjQ5 LzEvR0hSVVpyVGhSb01MbGl0MGtHMnh4dENCX0hBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARumqYiN2 FEUWZoaLS6QpVd1hebx5YVt/3z8iinAEwDExZyAdlmNnNTw7DfBCaILVmvBMeB9g 7Rb/vQEC0Hhtpi7FSAeHtfJ0RJpp5ckV2gbPVMES7OUzP20wM8eha/YEa3uzAinf KL0n7wCAm0w0JxcSLoNM6VlxJ7vebsTIe/N0EkDUAOr2wbn0wsaOfqXorXcAizpV pJZEl+hpNaOVbA/oA5UY+QpM8K5Lm6abpeL1H+sYG2/Re5XLQIiA+XKGwL1A2B6a xOe9GzYY8KIEGDnDF+gMvK6+oCIsh0YL5stLeNAuK5nLrs0SmMAbxQHG1gO7f5vg nYeR4WDrA4jxRg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:42 2026 by rpki-client