This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft File: HH3TyBbYWWCARyBUNICV7SuFUeU.mft (raw, json) Hash identifier: sFE8h5nmGMR+X6GHdG5RNeAwxM3bmO82c2TDe3zgBuY= Subject key identifier: A2:61:3E:F4:22:81:E9:42:82:04:32:7F:10:0F:A5:C9:F6:1A:3B:FE Authority key identifier: 1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5 Certificate issuer: /CN=1c7dd3c816d8596080472054348095ed2b8551e5 Certificate serial: 019C41D8948BBD153A1496BCFDB35648011B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft Manifest number: 1583 Signing time: Mon 09 Feb 2026 10:00:38 +0000 Manifest this update: Mon 09 Feb 2026 10:00:38 +0000 Manifest next update: Tue 10 Feb 2026 10:00:38 +0000 Files and hashes: 1: HH3TyBbYWWCARyBUNICV7SuFUeU.crl (hash: aiUMhAnMwAo/afst9Toy8rqePxIGDqotEtIpbc0BqlY=) 2: IMhrDeS7pt6POgdqkwhQn8NXjdQ.roa (hash: 8Co4GdnGTbaplfNAIs0VU0evrLpH3iNJkhwVpK6YVsc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:94:8b:bd:15:3a:14:96:bc:fd:b3:56:48:01:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c7dd3c816d8596080472054348095ed2b8551e5 Validity Not Before: Feb 9 10:00:38 2026 GMT Not After : Feb 10 10:00:38 2026 GMT Subject: CN=a2613ef42281e9428204327f100fa5c9f61a3bfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:27:22:08:7d:fe:14:45:94:af:09:1a:c5:96: cd:1a:a0:51:0b:6c:0b:15:ac:03:24:0e:33:a9:fd: 14:58:4c:d7:1f:36:ee:62:90:d2:1d:ec:1b:dc:c1: 5d:80:63:4c:93:27:18:db:77:40:a5:21:8c:cd:a3: 30:7b:71:d5:c1:f3:a3:06:a9:84:a0:e5:3f:56:ed: 01:15:51:ea:a1:39:8d:da:b2:a7:b4:45:e1:4e:8c: 5c:13:18:ce:3f:16:e7:bc:1e:84:aa:d4:74:26:c5: 7d:43:67:64:62:86:29:87:31:11:7f:fe:75:f6:93: 45:ee:74:bc:c9:fd:5f:4d:b2:53:9f:38:3e:59:ad: 1d:a7:e3:0f:a8:d6:fb:fd:1e:3e:b9:55:c3:b3:71: 5f:f8:1c:ee:a7:6c:c1:41:2f:40:80:d7:cf:07:0f: dd:4c:3c:eb:d3:05:5a:e7:ef:89:34:c4:f0:c7:e7: 1a:98:3b:be:3c:f4:07:8c:e8:74:e5:df:ba:f6:40: 94:1d:be:fe:47:07:78:97:ce:9a:6a:7d:cf:77:95: 7d:30:7b:80:47:34:af:c1:8a:41:b0:9b:98:2e:3c: fa:5f:e5:f9:55:6c:b4:0e:5c:5d:9c:32:af:59:23: 67:29:59:15:c5:01:74:2c:67:02:b7:7f:19:7b:6a: 78:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:61:3E:F4:22:81:E9:42:82:04:32:7F:10:0F:A5:C9:F6:1A:3B:FE X509v3 Authority Key Identifier: keyid:1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:c5:bc:77:6c:dd:42:91:26:6d:6c:92:cb:35:3b:43:10:35: 52:4d:3d:c8:cd:31:db:e5:e8:28:c3:2b:49:4f:6c:3c:92:c5: 18:d7:cb:43:1a:f6:18:1e:65:09:d2:47:37:71:da:1c:b1:0b: 15:e6:77:8e:ba:62:0e:5c:0a:8b:bd:c8:fd:61:35:88:d2:19: ca:e7:4b:ec:65:38:9b:b1:79:a4:ec:04:fb:be:a9:21:c4:36: 71:8c:81:54:66:37:64:f8:bf:c1:b0:9b:cb:8c:1e:d8:eb:5e: e5:28:45:dc:bd:f4:6c:21:5a:1f:0f:46:28:10:9f:f3:ba:c9: 4f:65:5f:a8:e7:7f:39:3b:2d:58:ab:dd:33:e2:f5:a1:27:68: ca:7f:35:4a:24:5c:90:9f:1b:23:c9:34:26:39:7b:4e:aa:3c: bb:fd:41:2e:a9:6b:4a:3d:7d:d5:73:37:c1:a9:51:e4:86:71: 03:e0:f5:f5:b4:c6:62:90:a7:55:19:0b:a1:8e:04:84:9c:0f: fd:21:b8:54:7f:54:34:96:58:b7:49:98:3f:e7:54:cf:18:58: d1:a8:66:74:4a:be:3b:29:b0:4d:bf:83:25:51:ce:ed:f5:f1: 4c:2e:9a:7c:c6:32:e7:0c:29:df:ea:41:19:7b:3d:c2:93:33: 13:36:61:15 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2JSLvRU6FJa8/bNWSAEbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjN2RkM2M4MTZkODU5NjA4MDQ3MjA1NDM0ODA5NWVkMmI4 NTUxZTUwHhcNMjYwMjA5MTAwMDM4WhcNMjYwMjEwMTAwMDM4WjAzMTEwLwYDVQQD EyhhMjYxM2VmNDIyODFlOTQyODIwNDMyN2YxMDBmYTVjOWY2MWEzYmZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnyciCH3+FEWUrwkaxZbNGqBRC2wL FawDJA4zqf0UWEzXHzbuYpDSHewb3MFdgGNMkycY23dApSGMzaMwe3HVwfOjBqmE oOU/Vu0BFVHqoTmN2rKntEXhToxcExjOPxbnvB6EqtR0JsV9Q2dkYoYphzERf/51 9pNF7nS8yf1fTbJTnzg+Wa0dp+MPqNb7/R4+uVXDs3Ff+Bzup2zBQS9AgNfPBw/d TDzr0wVa5++JNMTwx+camDu+PPQHjOh05d+69kCUHb7+Rwd4l86aan3Pd5V9MHuA RzSvwYpBsJuYLjz6X+X5VWy0DlxdnDKvWSNnKVkVxQF0LGcCt38Ze2p41wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKJhPvQigelCggQyfxAPpcn2Gjv+MB8GA1UdIwQY MBaAFBx908gW2FlggEcgVDSAle0rhVHlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEgzVHlCYllXV0NBUnlCVU5JQ1Y3U3VGVWVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9iYWFiMzYtODg4Ni00MjA2LTllNzkt Y2MyY2Q3ZDMxYTI2LzEvSEgzVHlCYllXV0NBUnlCVU5JQ1Y3U3VGVWVVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9iYWFiMzYtODg4Ni00MjA2LTllNzktY2MyY2Q3ZDMxYTI2 LzEvSEgzVHlCYllXV0NBUnlCVU5JQ1Y3U3VGVWVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi8W8d2zd QpEmbWySyzU7QxA1Uk09yM0x2+XoKMMrSU9sPJLFGNfLQxr2GB5lCdJHN3HaHLEL FeZ3jrpiDlwKi73I/WE1iNIZyudL7GU4m7F5pOwE+76pIcQ2cYyBVGY3ZPi/wbCb y4we2Ote5ShF3L30bCFaHw9GKBCf87rJT2VfqOd/OTstWKvdM+L1oSdoyn81SiRc kJ8bI8k0Jjl7Tqo8u/1BLqlrSj191XM3walR5IZxA+D19bTGYpCnVRkLoY4EhJwP /SG4VH9UNJZYt0mYP+dUzxhY0ahmdEq+OymwTb+DJVHO7fXxTC6afMYy5wwp3+pB GXs9wpMzEzZhFQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:59 2026 by rpki-client