This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.mft File: hpA1wxdzT2Ybv4XCGEFVofNhat0.mft (raw, json) Hash identifier: FjTI3rC7d5KfU+vME4iyW/8+xGz355VMVJnCaR+FLcc= Subject key identifier: ED:B3:88:53:05:97:5E:8C:45:25:9C:4D:52:80:12:D7:08:57:1B:D1 Authority key identifier: 86:90:35:C3:17:73:4F:66:1B:BF:85:C2:18:41:55:A1:F3:61:6A:DD Certificate issuer: /CN=869035c317734f661bbf85c2184155a1f3616add Certificate serial: 019C41D8ADBE66952DB4FBAF95C7F8C1B19A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpA1wxdzT2Ybv4XCGEFVofNhat0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.mft Manifest number: 1396 Signing time: Mon 09 Feb 2026 10:00:45 +0000 Manifest this update: Mon 09 Feb 2026 10:00:45 +0000 Manifest next update: Tue 10 Feb 2026 10:00:45 +0000 Files and hashes: 1: hpA1wxdzT2Ybv4XCGEFVofNhat0.crl (hash: +egQqSPG4p+Rshcj0favBE96wJjino9LR7f1NOjRB/w=) 2: xICMKArLvTx29numTiutzmAayDM.roa (hash: Lqd0tIHATER1ygDumfjqbLFR0sPowEmoXTK5gpQqBN0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.crl rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.mft rsync://rpki.ripe.net/repository/DEFAULT/hpA1wxdzT2Ybv4XCGEFVofNhat0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:ad:be:66:95:2d:b4:fb:af:95:c7:f8:c1:b1:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=869035c317734f661bbf85c2184155a1f3616add Validity Not Before: Feb 9 10:00:45 2026 GMT Not After : Feb 10 10:00:45 2026 GMT Subject: CN=edb3885305975e8c45259c4d528012d708571bd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:27:44:05:b9:31:96:cc:e8:3e:f3:cb:08:29: 9f:6d:36:d5:cc:d1:38:a3:b2:d7:80:25:00:09:55: fe:36:ad:5c:8f:5e:55:ae:39:6e:ec:cc:d3:84:23: 93:86:fb:33:f6:f3:5b:de:a9:a5:9d:42:54:0e:74: 85:5e:be:b0:45:64:5b:2f:80:73:ee:61:3d:ea:22: 7b:a1:92:20:bd:0b:bd:d2:5b:e4:1a:91:e9:ed:68: a3:02:d0:4f:f5:2f:f2:82:aa:96:a3:19:b2:b2:5d: a9:cb:87:8a:b9:da:05:40:4b:13:b6:23:a4:49:06: b7:ee:49:8b:3e:83:40:7a:51:8a:d7:14:7f:2d:d4: 98:64:d7:f4:74:15:52:87:3c:33:44:82:de:0b:b5: 1c:01:14:38:9a:0d:fb:ca:9e:a2:4d:a5:7b:7b:40: b1:2c:7f:9e:18:d0:07:61:e6:23:ef:1d:e3:51:c5: f7:fe:9b:74:9a:b4:71:e6:de:4f:30:81:15:9a:98: 67:8f:b4:3c:e6:71:a9:98:7f:6d:da:ec:65:7e:b6: c5:5d:68:0d:e9:b1:f3:1f:61:77:e6:e5:0e:49:46: 6a:e2:92:61:3e:d0:1f:31:e5:89:ba:3f:15:1c:5c: 9b:70:a7:22:25:ed:8c:0d:53:de:e2:a3:d8:8e:0c: 36:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:B3:88:53:05:97:5E:8C:45:25:9C:4D:52:80:12:D7:08:57:1B:D1 X509v3 Authority Key Identifier: keyid:86:90:35:C3:17:73:4F:66:1B:BF:85:C2:18:41:55:A1:F3:61:6A:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpA1wxdzT2Ybv4XCGEFVofNhat0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3fd774-3d79-44b1-878a-6028c2654940/1/hpA1wxdzT2Ybv4XCGEFVofNhat0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b8:45:17:39:6c:63:c1:db:c5:a8:20:2f:6d:d8:d6:3c:61:47: 6e:b7:f4:38:3a:cc:62:f9:3f:b3:75:92:db:93:6b:d3:ac:90: 99:2d:5f:a8:cd:81:17:2b:fa:97:6a:cd:b3:21:08:26:03:b0: 86:57:b8:43:2f:04:85:98:69:dd:65:e5:f1:1a:9e:1d:b5:cc: d3:3d:b6:7d:5f:4c:33:18:e4:a4:27:90:27:f0:cb:b1:8d:e3: 2e:75:4d:3b:43:03:0a:fe:04:ff:d3:c4:b1:4f:eb:6e:2e:4d: 3b:c1:12:03:77:43:21:7f:e8:0c:91:96:ad:54:62:de:8b:aa: c0:f1:35:7a:5d:8f:4a:e3:1f:b1:ee:79:cb:1b:17:53:6e:51: d2:3c:70:92:77:b7:ac:c6:04:2a:49:ce:18:4c:91:3e:f4:24: 15:73:58:78:af:8c:3d:4d:8b:86:7b:73:92:98:9d:59:11:74: 5b:e4:ce:eb:ce:3e:f6:72:5f:0a:ac:74:28:b2:82:ed:31:53: 4e:94:e8:4a:8e:a1:60:d3:10:6a:60:16:fa:77:37:82:cd:14: 48:fd:5e:08:ba:4f:9e:a6:9c:2d:9a:b0:70:34:6c:61:17:19: 64:c2:52:7f:e8:1b:35:f0:05:3c:81:c3:ca:28:0e:69:c2:ec: 69:09:8e:53 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2K2+ZpUttPuvlcf4wbGaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2OTAzNWMzMTc3MzRmNjYxYmJmODVjMjE4NDE1NWExZjM2 MTZhZGQwHhcNMjYwMjA5MTAwMDQ1WhcNMjYwMjEwMTAwMDQ1WjAzMTEwLwYDVQQD EyhlZGIzODg1MzA1OTc1ZThjNDUyNTljNGQ1MjgwMTJkNzA4NTcxYmQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5SdEBbkxlszoPvPLCCmfbTbVzNE4 o7LXgCUACVX+Nq1cj15Vrjlu7MzThCOThvsz9vNb3qmlnUJUDnSFXr6wRWRbL4Bz 7mE96iJ7oZIgvQu90lvkGpHp7WijAtBP9S/ygqqWoxmysl2py4eKudoFQEsTtiOk SQa37kmLPoNAelGK1xR/LdSYZNf0dBVShzwzRILeC7UcARQ4mg37yp6iTaV7e0Cx LH+eGNAHYeYj7x3jUcX3/pt0mrRx5t5PMIEVmphnj7Q85nGpmH9t2uxlfrbFXWgN 6bHzH2F35uUOSUZq4pJhPtAfMeWJuj8VHFybcKciJe2MDVPe4qPYjgw2xwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO2ziFMFl16MRSWcTVKAEtcIVxvRMB8GA1UdIwQY MBaAFIaQNcMXc09mG7+FwhhBVaHzYWrdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHBBMXd4ZHpUMllidjRYQ0dFRlZvZk5oYXQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS8zZmQ3NzQtM2Q3OS00NGIxLTg3OGEt NjAyOGMyNjU0OTQwLzEvaHBBMXd4ZHpUMllidjRYQ0dFRlZvZk5oYXQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS8zZmQ3NzQtM2Q3OS00NGIxLTg3OGEtNjAyOGMyNjU0OTQw LzEvaHBBMXd4ZHpUMllidjRYQ0dFRlZvZk5oYXQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuEUXOWxj wdvFqCAvbdjWPGFHbrf0ODrMYvk/s3WS25Nr06yQmS1fqM2BFyv6l2rNsyEIJgOw hle4Qy8EhZhp3WXl8RqeHbXM0z22fV9MMxjkpCeQJ/DLsY3jLnVNO0MDCv4E/9PE sU/rbi5NO8ESA3dDIX/oDJGWrVRi3ouqwPE1el2PSuMfse55yxsXU25R0jxwkne3 rMYEKknOGEyRPvQkFXNYeK+MPU2LhntzkpidWRF0W+TO684+9nJfCqx0KLKC7TFT TpToSo6hYNMQamAW+nc3gs0USP1eCLpPnqacLZqwcDRsYRcZZMJSf+gbNfAFPIHD yigOacLsaQmOUw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:34:01 2026 by rpki-client