This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft File: HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft (raw, json) Hash identifier: KCUZHdefMhqqQd66GRRn0Di8U6xxbT/tvWuXBuDjjyo= Subject key identifier: 74:05:A4:8E:87:AA:4F:F0:7A:9D:9B:A8:67:3B:78:EE:18:6E:81:BF Authority key identifier: 1D:9C:07:2F:2D:B3:EF:1F:26:05:05:BB:FA:0E:FE:A1:8C:29:70:B1 Certificate issuer: /CN=1d9c072f2db3ef1f260505bbfa0efea18c2970b1 Certificate serial: 019C44D979E85E182A8A44E210907A56611B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft Manifest number: 1437 Signing time: Tue 10 Feb 2026 00:00:28 +0000 Manifest this update: Tue 10 Feb 2026 00:00:28 +0000 Manifest next update: Wed 11 Feb 2026 00:00:28 +0000 Files and hashes: 1: HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl (hash: 7rHzxwdEXCJ5zNHOny9ysQNtPd2kNCOY7om3X53svJ4=) 2: c57yC7tB1OJCUcmD7P1hLz2EMFE.roa (hash: ZXukYGaWgtp5a3QMVvyaz5oNdYorD6FVcR+u7jbZN30=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:d9:79:e8:5e:18:2a:8a:44:e2:10:90:7a:56:61:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d9c072f2db3ef1f260505bbfa0efea18c2970b1 Validity Not Before: Feb 10 00:00:28 2026 GMT Not After : Feb 11 00:00:28 2026 GMT Subject: CN=7405a48e87aa4ff07a9d9ba8673b78ee186e81bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e5:73:f5:ed:46:a2:7e:2f:a7:6b:9c:30:7f: 91:62:73:2a:cc:e9:86:dc:1c:21:03:77:78:c6:a1: 2c:11:2f:07:43:ac:8b:fc:42:82:ec:32:f5:6c:67: 6a:83:68:10:1a:91:5c:32:e0:01:20:96:7e:9e:b5: 15:35:4b:6e:72:12:38:ab:b5:46:59:26:e1:e0:9e: d2:c0:b0:4c:08:df:46:f5:1e:88:fd:d3:35:df:67: a9:ba:e0:a2:b7:57:ff:84:93:9b:aa:27:47:1b:4a: e4:ec:8b:0a:67:48:4a:09:fa:1b:d6:db:55:48:58: f7:cb:4c:31:f0:b1:06:39:ef:a1:ed:20:1a:9d:36: f0:bf:1c:20:e7:0d:44:ef:c1:41:19:3f:fd:0b:aa: b8:83:d8:12:6b:63:0f:b7:b8:76:ee:6c:a5:d7:a2: b0:33:cb:59:7a:23:aa:52:df:54:8b:51:6c:a8:0e: ce:06:43:f5:f8:04:74:bb:86:51:58:dd:19:da:aa: e7:3d:fe:33:ef:e0:b2:e7:29:04:56:f7:9a:89:30: 80:e7:7f:41:20:71:76:b7:90:e2:50:5d:93:be:65: c5:00:aa:c1:71:62:a9:50:db:20:d0:a1:41:42:ec: d7:63:a7:dc:0d:fb:95:e9:7b:cd:c5:27:8d:dc:a0: bb:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:05:A4:8E:87:AA:4F:F0:7A:9D:9B:A8:67:3B:78:EE:18:6E:81:BF X509v3 Authority Key Identifier: keyid:1D:9C:07:2F:2D:B3:EF:1F:26:05:05:BB:FA:0E:FE:A1:8C:29:70:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:4a:1a:99:7b:a7:63:53:86:ef:c2:24:e9:de:be:84:68:d7: 77:6c:d5:0a:a2:f6:1e:fc:1d:71:cc:8a:42:a6:ed:63:1d:37: 8c:56:a7:78:e7:f5:bc:e4:bc:dd:51:91:9d:5c:49:37:50:98: 1c:35:61:f6:b6:da:b0:1c:41:d4:86:75:fe:d3:9a:58:c1:f3: 86:f9:ec:60:c6:21:2c:cc:b5:77:53:83:07:61:ab:14:f3:c9: 26:f1:3c:22:0f:70:2d:1b:04:b6:68:17:75:2b:09:53:4e:d2: d3:55:a8:f1:ed:eb:b9:92:cb:9f:97:ed:1b:5a:a2:4f:fc:87: 6c:f5:52:bd:83:a9:56:e4:53:7e:22:5c:3b:c8:8d:41:81:23: 92:99:20:34:3e:0f:03:86:f5:4e:95:de:9c:81:57:6a:8a:5b: f2:c3:ba:af:8f:34:b5:a7:ed:9a:4c:6e:00:6c:a6:5c:08:ae: bc:d3:f8:7b:e5:ab:44:42:b6:89:fd:f3:a2:33:83:eb:bb:f5: e1:7f:99:71:ec:30:00:0a:ef:31:d0:61:5b:ce:68:7e:e4:0f: 4f:a4:db:22:82:e8:9d:bf:4d:d9:56:84:64:55:8e:1f:b5:fc: 54:aa:59:65:73:77:62:87:bb:33:57:0a:12:53:21:25:c1:2a: d7:54:ee:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxE2XnoXhgqikTiEJB6VmEbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkOWMwNzJmMmRiM2VmMWYyNjA1MDViYmZhMGVmZWExOGMy OTcwYjEwHhcNMjYwMjEwMDAwMDI4WhcNMjYwMjExMDAwMDI4WjAzMTEwLwYDVQQD Eyg3NDA1YTQ4ZTg3YWE0ZmYwN2E5ZDliYTg2NzNiNzhlZTE4NmU4MWJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqeVz9e1Gon4vp2ucMH+RYnMqzOmG 3BwhA3d4xqEsES8HQ6yL/EKC7DL1bGdqg2gQGpFcMuABIJZ+nrUVNUtuchI4q7VG WSbh4J7SwLBMCN9G9R6I/dM132epuuCit1f/hJObqidHG0rk7IsKZ0hKCfob1ttV SFj3y0wx8LEGOe+h7SAanTbwvxwg5w1E78FBGT/9C6q4g9gSa2MPt7h27myl16Kw M8tZeiOqUt9Ui1FsqA7OBkP1+AR0u4ZRWN0Z2qrnPf4z7+Cy5ykEVveaiTCA539B IHF2t5DiUF2TvmXFAKrBcWKpUNsg0KFBQuzXY6fcDfuV6XvNxSeN3KC70QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHQFpI6Hqk/wep2bqGc7eO4YboG/MB8GA1UdIwQY MBaAFB2cBy8ts+8fJgUFu/oO/qGMKXCxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFp3SEx5Mno3eDhtQlFXNy1nNy1vWXdwY0xFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9jNTUwZTMtZjAyNC00NmI4LTg3ZWMt NDUwZTI0ZTA4OTFkLzEvSFp3SEx5Mno3eDhtQlFXNy1nNy1vWXdwY0xFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9jNTUwZTMtZjAyNC00NmI4LTg3ZWMtNDUwZTI0ZTA4OTFk LzEvSFp3SEx5Mno3eDhtQlFXNy1nNy1vWXdwY0xFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiUoamXun Y1OG78Ik6d6+hGjXd2zVCqL2HvwdccyKQqbtYx03jFaneOf1vOS83VGRnVxJN1CY HDVh9rbasBxB1IZ1/tOaWMHzhvnsYMYhLMy1d1ODB2GrFPPJJvE8Ig9wLRsEtmgX dSsJU07S01Wo8e3ruZLLn5ftG1qiT/yHbPVSvYOpVuRTfiJcO8iNQYEjkpkgND4P A4b1TpXenIFXaopb8sO6r480taftmkxuAGymXAiuvNP4e+WrREK2if3zojOD67v1 4X+ZcewwAArvMdBhW85ofuQPT6TbIoLonb9N2VaEZFWOH7X8VKpZZXN3Yoe7M1cK ElMhJcEq11Tu+Q== -----END CERTIFICATE-----Generated at Tue Feb 10 04:02:44 2026 by rpki-client