This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/cbfa04-e95a-45b2-9a7d-a395ab35d8ea/1/HBYY4ENy2bJ_QX0in4JhQCe8PGA.mft File: HBYY4ENy2bJ_QX0in4JhQCe8PGA.mft (raw, json) Hash identifier: niTIIGeTytIjw7mLwvleyj/McUO2nkePSjO9QbKHb/Y= Subject key identifier: 9E:EB:A3:C3:25:F3:F9:05:15:95:C3:F7:0F:F2:FE:A9:97:FA:C8:31 Authority key identifier: 1C:16:18:E0:43:72:D9:B2:7F:41:7D:22:9F:82:61:40:27:BC:3C:60 Certificate issuer: /CN=1c1618e04372d9b27f417d229f82614027bc3c60 Certificate serial: 019C413371A2D3B55AB5A7C966F3CF7E2E66 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HBYY4ENy2bJ_QX0in4JhQCe8PGA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/cbfa04-e95a-45b2-9a7d-a395ab35d8ea/1/HBYY4ENy2bJ_QX0in4JhQCe8PGA.mft Manifest number: 0B6B Signing time: Mon 09 Feb 2026 07:00:16 +0000 Manifest this update: Mon 09 Feb 2026 07:00:16 +0000 Manifest next update: Tue 10 Feb 2026 07:00:16 +0000 Files and hashes: 1: HBYY4ENy2bJ_QX0in4JhQCe8PGA.crl (hash: fgZJwbiDQfLWqLk6PAUADHFWU++KvLgxBSzk5wsgzro=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/cbfa04-e95a-45b2-9a7d-a395ab35d8ea/1/HBYY4ENy2bJ_QX0in4JhQCe8PGA.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/cbfa04-e95a-45b2-9a7d-a395ab35d8ea/1/HBYY4ENy2bJ_QX0in4JhQCe8PGA.mft rsync://rpki.ripe.net/repository/DEFAULT/HBYY4ENy2bJ_QX0in4JhQCe8PGA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:71:a2:d3:b5:5a:b5:a7:c9:66:f3:cf:7e:2e:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c1618e04372d9b27f417d229f82614027bc3c60 Validity Not Before: Feb 9 07:00:16 2026 GMT Not After : Feb 10 07:00:16 2026 GMT Subject: CN=9eeba3c325f3f9051595c3f70ff2fea997fac831 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:16:29:b3:3b:bc:61:e4:a9:3f:92:c7:01:de: 62:f3:e6:bd:79:7d:24:cd:12:38:0e:25:a4:29:fd: 49:3a:e1:29:a9:aa:ef:9b:fb:47:e2:62:86:a5:ca: 68:a8:fe:e7:65:b1:58:69:3c:7e:d3:7c:da:8c:02: 18:94:af:21:b9:d6:48:86:50:eb:75:36:ec:3a:f4: dd:2e:cb:8b:c8:53:4c:fd:35:91:ad:2c:40:ea:1f: 32:e8:b1:5c:f2:a5:98:88:2a:74:a3:3d:ca:dd:5e: 8b:f1:37:ae:33:c2:4e:f9:c5:2b:4d:00:cc:a7:18: 75:a7:32:4a:a4:97:c9:26:f4:ed:59:e3:a0:03:ad: 56:16:e5:5c:4b:76:9f:6f:e9:20:50:4e:50:eb:3e: 42:6b:fc:0c:52:b6:c8:ea:2e:04:bc:f5:01:a5:59: 92:8b:2e:00:e7:6b:22:86:b6:41:8b:73:d4:b4:d0: ea:91:4b:13:12:a5:70:ca:bd:31:89:0e:fb:00:52: 5c:e3:e6:33:d0:c3:7b:06:50:8a:07:7f:fa:9c:c4: eb:0e:23:d6:b8:5d:92:49:3e:06:a1:8b:8b:43:bc: 36:16:6e:ec:bf:6e:9d:5b:57:8d:72:49:06:74:4d: d0:ff:43:d3:27:8e:56:16:16:69:f0:23:a3:55:4f: 64:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:EB:A3:C3:25:F3:F9:05:15:95:C3:F7:0F:F2:FE:A9:97:FA:C8:31 X509v3 Authority Key Identifier: keyid:1C:16:18:E0:43:72:D9:B2:7F:41:7D:22:9F:82:61:40:27:BC:3C:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HBYY4ENy2bJ_QX0in4JhQCe8PGA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/cbfa04-e95a-45b2-9a7d-a395ab35d8ea/1/HBYY4ENy2bJ_QX0in4JhQCe8PGA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/cbfa04-e95a-45b2-9a7d-a395ab35d8ea/1/HBYY4ENy2bJ_QX0in4JhQCe8PGA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:bd:21:ee:71:a8:e9:73:83:88:ca:cc:20:3f:a2:78:fa:56: 9a:0d:ad:d0:b0:d9:1b:65:70:e7:61:57:c2:e0:3b:af:a1:03: 72:2d:f3:3f:b8:16:a1:83:89:d4:83:63:58:e7:e7:3c:5e:61: 8d:ca:39:0e:74:fb:24:49:b5:2e:4e:f4:6b:a4:6d:12:bb:37: ba:2d:d0:8d:11:3e:5f:41:90:fc:e3:26:99:31:87:0e:d9:27: 5c:5f:21:45:2d:b0:6d:71:ee:b5:30:5a:7d:40:f0:ea:49:f0: a4:97:6c:89:8a:b9:c7:f4:c1:dd:53:07:fc:a6:77:63:5c:80: 0e:32:4e:bb:03:57:d0:55:64:1d:51:8e:76:62:96:2d:a7:be: 46:da:26:0b:79:02:3b:3b:74:83:59:d8:b1:1c:ed:4f:74:81: 5b:3f:64:2b:f7:6e:9e:68:3b:bb:d5:df:26:6c:71:94:b8:df: a1:bf:5f:18:c9:17:0f:4c:9c:3d:f0:de:01:74:23:e9:a2:23: de:62:0c:d8:d6:0f:6a:6e:77:0d:ba:3d:00:5a:81:fc:b0:c1: 79:38:9c:37:a5:b4:ff:54:10:4b:48:da:37:72:3e:80:38:f8: 81:b5:69:03:1b:bd:51:ff:0a:78:51:6b:c3:5c:bd:b4:98:c5: d6:90:21:f0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM3Gi07VatafJZvPPfi5mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjMTYxOGUwNDM3MmQ5YjI3ZjQxN2QyMjlmODI2MTQwMjdi YzNjNjAwHhcNMjYwMjA5MDcwMDE2WhcNMjYwMjEwMDcwMDE2WjAzMTEwLwYDVQQD Eyg5ZWViYTNjMzI1ZjNmOTA1MTU5NWMzZjcwZmYyZmVhOTk3ZmFjODMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkhYpszu8YeSpP5LHAd5i8+a9eX0k zRI4DiWkKf1JOuEpqarvm/tH4mKGpcpoqP7nZbFYaTx+03zajAIYlK8hudZIhlDr dTbsOvTdLsuLyFNM/TWRrSxA6h8y6LFc8qWYiCp0oz3K3V6L8TeuM8JO+cUrTQDM pxh1pzJKpJfJJvTtWeOgA61WFuVcS3afb+kgUE5Q6z5Ca/wMUrbI6i4EvPUBpVmS iy4A52sihrZBi3PUtNDqkUsTEqVwyr0xiQ77AFJc4+Yz0MN7BlCKB3/6nMTrDiPW uF2SST4GoYuLQ7w2Fm7sv26dW1eNckkGdE3Q/0PTJ45WFhZp8COjVU9kXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ7ro8Ml8/kFFZXD9w/y/qmX+sgxMB8GA1UdIwQY MBaAFBwWGOBDctmyf0F9Ip+CYUAnvDxgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEJZWTRFTnkyYkpfUVgwaW40SmhRQ2U4UEdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9jYmZhMDQtZTk1YS00NWIyLTlhN2Qt YTM5NWFiMzVkOGVhLzEvSEJZWTRFTnkyYkpfUVgwaW40SmhRQ2U4UEdBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS9jYmZhMDQtZTk1YS00NWIyLTlhN2QtYTM5NWFiMzVkOGVh LzEvSEJZWTRFTnkyYkpfUVgwaW40SmhRQ2U4UEdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYL0h7nGo 6XODiMrMID+iePpWmg2t0LDZG2Vw52FXwuA7r6EDci3zP7gWoYOJ1INjWOfnPF5h jco5DnT7JEm1Lk70a6RtErs3ui3QjRE+X0GQ/OMmmTGHDtknXF8hRS2wbXHutTBa fUDw6knwpJdsiYq5x/TB3VMH/KZ3Y1yADjJOuwNX0FVkHVGOdmKWLae+RtomC3kC Ozt0g1nYsRztT3SBWz9kK/dunmg7u9XfJmxxlLjfob9fGMkXD0ycPfDeAXQj6aIj 3mIM2NYPam53Dbo9AFqB/LDBeTicN6W0/1QQS0jaN3I+gDj4gbVpAxu9Uf8KeFFr w1y9tJjF1pAh8A== -----END CERTIFICATE-----Generated at Mon Feb 9 16:58:55 2026 by rpki-client