This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft File: hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft (raw, json) Hash identifier: G9cQQpLiq9bBymDN4aBlcsBdvX/SZEW8u5EKHVLXUzM= Subject key identifier: 0E:BE:9A:91:AD:41:22:65:33:9B:DF:44:7C:A4:0A:6F:64:19:4C:BC Authority key identifier: 84:8B:12:94:D2:76:9F:A3:7B:34:8A:CC:5D:AB:FC:B8:FE:6F:99:98 Certificate issuer: /CN=848b1294d2769fa37b348acc5dabfcb8fe6f9998 Certificate serial: 019C420FD9D59D4F148B6EDA42751730C5B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft Manifest number: 0310 Signing time: Mon 09 Feb 2026 11:01:00 +0000 Manifest this update: Mon 09 Feb 2026 11:01:00 +0000 Manifest next update: Tue 10 Feb 2026 11:01:00 +0000 Files and hashes: 1: hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl (hash: MQ50ohMLOo8EqFrnB8+X82H9AqMzvLKFcFBtsTzixUI=) 2: qjlzVUCaFQUZ4gX30tzeHb6m2Vc.roa (hash: O0FkDLh7vK3dEH2T/ZCf0yS5Z/Mux8DWSQvw+qcaVik=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:d9:d5:9d:4f:14:8b:6e:da:42:75:17:30:c5:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=848b1294d2769fa37b348acc5dabfcb8fe6f9998 Validity Not Before: Feb 9 11:01:00 2026 GMT Not After : Feb 10 11:01:00 2026 GMT Subject: CN=0ebe9a91ad412265339bdf447ca40a6f64194cbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:9b:aa:6f:22:1c:f3:66:d2:e6:cf:93:52:35: f6:d0:89:b2:c6:23:ab:f8:1d:59:ae:b3:98:0a:52: 5f:39:e0:25:c7:86:a4:2e:7a:0e:26:cb:84:9b:b3: 90:21:fb:c7:ea:3d:b1:ba:07:3c:43:51:b8:66:18: 3b:e5:0b:fa:ae:45:80:90:f2:7d:85:61:b3:a1:0c: bb:21:15:53:66:08:c6:48:8d:cd:d7:07:c6:a2:99: 88:de:de:a5:ce:74:2f:c0:75:1c:3a:81:0c:50:df: bd:8d:91:84:d8:86:3a:2e:e2:66:1d:65:91:b2:ba: 31:fd:86:c7:83:fa:4e:eb:5b:f1:5e:4c:b9:ed:a8: be:ae:75:3e:86:9c:78:a6:ce:f5:d9:34:7b:8d:56: f6:db:a4:cd:b0:02:e3:cc:ca:8c:e2:d6:77:88:de: cd:90:d7:52:99:6b:b6:fd:f2:52:91:5b:93:a0:3c: fd:06:03:10:e4:e3:19:94:01:79:a8:34:ce:5e:4a: d4:39:32:d9:d0:e3:24:7f:20:73:a6:8f:42:d1:b4: 85:a8:17:92:33:90:a7:33:73:90:c1:41:69:79:3c: 0a:82:c9:78:14:7e:70:d0:4f:dd:6d:67:32:bf:31: c3:3d:0f:ab:3b:1e:11:18:c2:d3:f2:d6:55:cd:51: 81:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:BE:9A:91:AD:41:22:65:33:9B:DF:44:7C:A4:0A:6F:64:19:4C:BC X509v3 Authority Key Identifier: keyid:84:8B:12:94:D2:76:9F:A3:7B:34:8A:CC:5D:AB:FC:B8:FE:6F:99:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:fe:76:65:46:dc:38:13:7c:08:53:17:ca:bf:26:93:33:7d: 72:0c:b6:7f:27:74:12:02:0e:f2:62:9d:57:37:e1:93:e1:30: 12:28:ed:4e:62:5b:9f:4a:0b:64:ce:02:0f:9d:63:67:8d:7c: 3b:7b:26:da:dc:33:cf:ee:79:3e:85:bd:1b:69:94:c4:36:56: a0:df:42:5d:bc:c7:1c:89:40:5c:9a:b2:1c:48:27:e9:2a:26: 84:e6:17:0f:3b:85:c7:74:58:ce:7c:35:79:eb:fa:2f:5f:c9: fb:e1:fa:98:b8:6a:32:c4:47:62:76:e6:0d:72:40:3b:83:28: aa:8d:36:f8:4c:16:da:4b:2a:c1:df:a3:da:3d:3f:21:16:fa: e4:35:52:3e:91:99:e7:da:aa:dd:71:b1:51:a0:bf:10:40:39: b6:12:08:f8:5e:74:63:11:06:12:3f:0d:6b:9c:42:34:e6:2b: ee:f1:f2:e6:78:f4:62:d2:b6:41:7e:14:6d:f1:74:19:2d:c5: 35:0d:28:8a:0f:4f:6a:7d:70:4d:cf:c3:2b:e6:57:71:7f:40: c7:2f:71:b3:06:70:2b:22:05:a9:30:ec:b7:42:a0:f5:24:bb: 6a:11:71:c3:3e:a8:83:f7:08:45:e2:6b:a2:85:5b:f1:5b:c5: bf:05:d8:f6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD9nVnU8Ui27aQnUXMMWyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0OGIxMjk0ZDI3NjlmYTM3YjM0OGFjYzVkYWJmY2I4ZmU2 Zjk5OTgwHhcNMjYwMjA5MTEwMTAwWhcNMjYwMjEwMTEwMTAwWjAzMTEwLwYDVQQD EygwZWJlOWE5MWFkNDEyMjY1MzM5YmRmNDQ3Y2E0MGE2ZjY0MTk0Y2JjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm5uqbyIc82bS5s+TUjX20ImyxiOr +B1ZrrOYClJfOeAlx4akLnoOJsuEm7OQIfvH6j2xugc8Q1G4Zhg75Qv6rkWAkPJ9 hWGzoQy7IRVTZgjGSI3N1wfGopmI3t6lznQvwHUcOoEMUN+9jZGE2IY6LuJmHWWR srox/YbHg/pO61vxXky57ai+rnU+hpx4ps712TR7jVb226TNsALjzMqM4tZ3iN7N kNdSmWu2/fJSkVuToDz9BgMQ5OMZlAF5qDTOXkrUOTLZ0OMkfyBzpo9C0bSFqBeS M5CnM3OQwUFpeTwKgsl4FH5w0E/dbWcyvzHDPQ+rOx4RGMLT8tZVzVGBQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA6+mpGtQSJlM5vfRHykCm9kGUy8MB8GA1UdIwQY MBaAFISLEpTSdp+jezSKzF2r/Lj+b5mYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaElzU2xOSjJuNk43TklyTVhhdjh1UDV2bVpnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy85YTIzNGMtNjUxMi00NDQ3LTgyM2Mt MGRiNzI1OWYyMGI4LzEvaElzU2xOSjJuNk43TklyTVhhdjh1UDV2bVpnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy85YTIzNGMtNjUxMi00NDQ3LTgyM2MtMGRiNzI1OWYyMGI4 LzEvaElzU2xOSjJuNk43TklyTVhhdjh1UDV2bVpnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoP52ZUbc OBN8CFMXyr8mkzN9cgy2fyd0EgIO8mKdVzfhk+EwEijtTmJbn0oLZM4CD51jZ418 O3sm2twzz+55PoW9G2mUxDZWoN9CXbzHHIlAXJqyHEgn6SomhOYXDzuFx3RYznw1 eev6L1/J++H6mLhqMsRHYnbmDXJAO4Moqo02+EwW2ksqwd+j2j0/IRb65DVSPpGZ 59qq3XGxUaC/EEA5thII+F50YxEGEj8Na5xCNOYr7vHy5nj0YtK2QX4UbfF0GS3F NQ0oig9Pan1wTc/DK+ZXcX9Axy9xswZwKyIFqTDst0Kg9SS7ahFxwz6og/cIReJr ooVb8VvFvwXY9g== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:51 2026 by rpki-client