This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft File: hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft (raw, json) Hash identifier: gOsLl2pAr6dnKF+KqN85xNVsJPVlbnQgunyt4zp2gpk= Subject key identifier: 3C:39:07:28:82:B9:9C:D2:15:16:66:5A:BD:8C:D1:C5:7B:E9:F1:E9 Authority key identifier: 85:51:2D:19:D3:79:46:CD:4C:23:6F:89:04:69:63:57:51:F5:D9:04 Certificate issuer: /CN=85512d19d37946cd4c236f890469635751f5d904 Certificate serial: 019C41A1F279AC07F9185E831F20458F5FAE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVEtGdN5Rs1MI2-JBGljV1H12QQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft Manifest number: 180A Signing time: Mon 09 Feb 2026 09:00:58 +0000 Manifest this update: Mon 09 Feb 2026 09:00:58 +0000 Manifest next update: Tue 10 Feb 2026 09:00:58 +0000 Files and hashes: 1: hVEtGdN5Rs1MI2-JBGljV1H12QQ.crl (hash: eUGBWQhJpCk//aRCpCMt3F6Fcxuzxssg09/0T6hs7Bg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hVEtGdN5Rs1MI2-JBGljV1H12QQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:f2:79:ac:07:f9:18:5e:83:1f:20:45:8f:5f:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85512d19d37946cd4c236f890469635751f5d904 Validity Not Before: Feb 9 09:00:58 2026 GMT Not After : Feb 10 09:00:58 2026 GMT Subject: CN=3c39072882b99cd21516665abd8cd1c57be9f1e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:1a:2f:93:41:3c:fa:62:03:6d:26:53:8c:14: 92:f2:79:56:ea:79:96:a2:48:e0:86:25:ee:7b:02: 7e:1e:b3:0d:a5:ec:b0:f2:50:76:f6:af:ef:8e:d4: 67:bc:22:92:79:fd:81:d8:c6:f6:fc:fe:1e:ae:cf: d4:cf:a3:ee:55:ee:e5:87:6c:5b:09:e7:a9:2a:23: 39:af:35:82:2b:2b:56:c6:77:48:6f:8b:ec:23:63: 06:47:78:32:da:92:47:74:7b:31:6f:e9:5f:0e:75: 7a:41:61:ef:d4:e5:df:d0:bb:2d:9e:e6:84:92:51: 3e:01:d3:33:20:bf:f2:4a:2b:c3:ef:11:a1:e3:38: 2e:62:3f:4b:c4:66:bb:8d:f9:4d:86:96:03:b3:f1: 45:d3:6e:fd:93:ba:e5:c4:d2:dc:aa:cb:d8:bd:a2: 7a:8f:2e:82:8d:83:30:b3:47:6d:39:c9:43:50:c0: 08:27:52:62:57:f1:17:cc:ea:60:4d:53:ed:32:3b: 02:47:c5:f8:16:e6:79:b4:bd:ac:7f:3e:0d:3f:aa: bf:76:a0:dc:8e:d0:0f:98:af:ed:79:bb:80:3d:87: b8:b9:94:fe:1e:cf:14:c7:fc:38:98:a2:cc:57:1f: e3:08:52:38:9e:49:fe:78:b2:b4:37:b9:a2:de:59: 54:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:39:07:28:82:B9:9C:D2:15:16:66:5A:BD:8C:D1:C5:7B:E9:F1:E9 X509v3 Authority Key Identifier: keyid:85:51:2D:19:D3:79:46:CD:4C:23:6F:89:04:69:63:57:51:F5:D9:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVEtGdN5Rs1MI2-JBGljV1H12QQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:40:cf:0c:55:fb:35:74:67:f1:a7:12:89:c1:db:10:ce:b7: f1:ea:18:e8:0f:71:5a:a2:42:04:5a:06:ce:23:13:cc:8a:82: 04:2d:e3:e1:23:57:db:bb:58:05:a5:c4:8e:85:bd:e8:a3:ff: bf:de:71:3b:ee:15:89:c9:2c:38:79:b1:40:d2:9a:a1:e9:96: d6:88:c6:42:27:44:7d:69:b8:c7:50:58:ad:b5:fc:a9:35:10: 6a:42:06:51:44:25:6a:8c:70:06:73:07:7c:1b:58:5b:86:d5: 79:16:30:16:43:ab:08:7c:2e:70:d4:b3:b6:e1:e8:f7:85:f8: c8:c5:5b:fa:7a:f3:f3:e1:ea:1f:6c:98:8f:a3:4a:39:7a:77: 2d:c1:16:dc:95:50:1b:b7:ae:ff:5f:2d:58:cb:ab:b9:8b:8a: f9:44:74:5d:f5:2e:39:19:da:94:66:24:21:f4:fb:48:7d:eb: 9e:57:e1:a9:e3:8e:9f:0e:cf:cc:cc:61:08:dd:f8:18:7d:a6: e5:b4:72:5b:4c:a1:35:82:e4:4c:21:8b:f7:99:78:52:25:f2: 0f:e9:36:97:df:15:c1:0f:de:51:bf:cf:dd:9f:b3:ec:87:a9: c5:80:0d:e0:77:12:b9:b9:44:60:8f:2f:36:e4:93:58:ae:1d: b5:b3:ed:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBofJ5rAf5GF6DHyBFj1+uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1NTEyZDE5ZDM3OTQ2Y2Q0YzIzNmY4OTA0Njk2MzU3NTFm NWQ5MDQwHhcNMjYwMjA5MDkwMDU4WhcNMjYwMjEwMDkwMDU4WjAzMTEwLwYDVQQD EygzYzM5MDcyODgyYjk5Y2QyMTUxNjY2NWFiZDhjZDFjNTdiZTlmMWU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmBovk0E8+mIDbSZTjBSS8nlW6nmW okjghiXuewJ+HrMNpeyw8lB29q/vjtRnvCKSef2B2Mb2/P4ers/Uz6PuVe7lh2xb CeepKiM5rzWCKytWxndIb4vsI2MGR3gy2pJHdHsxb+lfDnV6QWHv1OXf0LstnuaE klE+AdMzIL/ySivD7xGh4zguYj9LxGa7jflNhpYDs/FF0279k7rlxNLcqsvYvaJ6 jy6CjYMws0dtOclDUMAIJ1JiV/EXzOpgTVPtMjsCR8X4FuZ5tL2sfz4NP6q/dqDc jtAPmK/tebuAPYe4uZT+Hs8Ux/w4mKLMVx/jCFI4nkn+eLK0N7mi3llUXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDw5ByiCuZzSFRZmWr2M0cV76fHpMB8GA1UdIwQY MBaAFIVRLRnTeUbNTCNviQRpY1dR9dkEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFZFdEdkTjVSczFNSTItSkJHbGpWMUgxMlFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9lMjE1Y2UtOGRlNy00ODRiLWJhYTMt OGZmZmQ4ZjVlYmZiLzEvaFZFdEdkTjVSczFNSTItSkJHbGpWMUgxMlFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy9lMjE1Y2UtOGRlNy00ODRiLWJhYTMtOGZmZmQ4ZjVlYmZi LzEvaFZFdEdkTjVSczFNSTItSkJHbGpWMUgxMlFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIEDPDFX7 NXRn8acSicHbEM638eoY6A9xWqJCBFoGziMTzIqCBC3j4SNX27tYBaXEjoW96KP/ v95xO+4VicksOHmxQNKaoemW1ojGQidEfWm4x1BYrbX8qTUQakIGUUQlaoxwBnMH fBtYW4bVeRYwFkOrCHwucNSztuHo94X4yMVb+nrz8+HqH2yYj6NKOXp3LcEW3JVQ G7eu/18tWMuruYuK+UR0XfUuORnalGYkIfT7SH3rnlfhqeOOnw7PzMxhCN34GH2m 5bRyW0yhNYLkTCGL95l4UiXyD+k2l98VwQ/eUb/P3Z+z7IepxYAN4HcSublEYI8v NuSTWK4dtbPt9w== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:45 2026 by rpki-client