This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft File: hYYCc-snGSK59-yPSlkQFjVtcys.mft (raw, json) Hash identifier: AOgtaGn5XZV8brdo8+3XSbJgHqgjpJyZyIIe02SE2fE= Subject key identifier: B8:32:10:B5:E0:FC:7F:8E:71:A0:1F:DC:A7:75:35:A7:7B:DD:2A:F8 Authority key identifier: 85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B Certificate issuer: /CN=85860273eb271922b9f7ec8f4a591016356d732b Certificate serial: 019C451045C0638E98EC19732CB1DAB81E1C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft Manifest number: 0D30 Signing time: Tue 10 Feb 2026 01:00:20 +0000 Manifest this update: Tue 10 Feb 2026 01:00:20 +0000 Manifest next update: Wed 11 Feb 2026 01:00:20 +0000 Files and hashes: 1: 72huANhGHbmrRv6vwHaFuRxH93o.roa (hash: 6k3oTSasmHujZ7G15o1f502jXxJRPUSaLMNOAO2t2nc=) 2: hYYCc-snGSK59-yPSlkQFjVtcys.crl (hash: gVmF6kSe7FDcYg/5+HYDBZhQIRKLE2fXnZ2DyqK1ReE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:10:45:c0:63:8e:98:ec:19:73:2c:b1:da:b8:1e:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85860273eb271922b9f7ec8f4a591016356d732b Validity Not Before: Feb 10 01:00:20 2026 GMT Not After : Feb 11 01:00:20 2026 GMT Subject: CN=b83210b5e0fc7f8e71a01fdca77535a77bdd2af8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:27:19:4c:97:9b:a7:a4:30:31:49:88:ab:30: 84:e5:0b:6d:20:83:15:d2:e5:18:59:07:3e:22:a5: d8:75:6c:be:f8:7c:56:66:bb:f5:77:fe:b6:3d:9d: 17:0a:3a:51:29:bf:ce:1d:05:c6:54:11:3f:a5:b9: 8c:87:e9:ee:eb:7f:47:84:0a:96:72:d9:a1:71:53: 3e:91:a7:e6:7d:87:68:cf:0c:b5:71:c8:4d:f3:73: 18:31:04:e4:e9:dd:ad:b6:27:84:05:66:64:59:a5: 28:10:f8:6d:3f:96:54:7c:cb:cd:da:cc:f0:da:62: d5:8c:33:6c:43:82:af:a2:03:2a:32:07:c8:a5:b6: 9b:0d:dc:0d:af:1d:c6:61:e5:11:71:11:50:c9:43: 30:0f:53:fd:2e:4e:88:36:f4:4b:8b:20:40:90:c3: c6:59:72:e2:84:a5:19:0a:39:34:6d:b5:11:70:c7: d5:3d:b8:ac:8a:ee:86:a7:08:a2:e5:12:b4:59:43: 9f:4e:70:9d:aa:9b:1e:79:9d:87:df:87:d5:2e:92: 57:be:55:2e:d8:90:9f:52:7b:5b:5b:ee:c8:29:b0: ba:82:c8:c6:15:c4:af:2e:ac:7c:e1:b2:32:74:52: 38:c8:7f:38:c1:d5:1f:c1:06:84:44:5a:9e:18:40: ce:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:32:10:B5:E0:FC:7F:8E:71:A0:1F:DC:A7:75:35:A7:7B:DD:2A:F8 X509v3 Authority Key Identifier: keyid:85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:35:27:9c:91:5f:9f:37:6f:0d:7d:a9:3d:09:3a:3d:30:34: 71:2c:03:d6:05:c6:74:10:69:da:f7:53:94:c2:ef:15:fa:db: fa:fd:4a:89:4a:f7:df:6b:c3:b3:0e:f1:a1:fd:03:fd:64:ed: 97:5f:9b:53:45:27:08:6a:f6:92:34:80:8c:5a:fb:bc:51:86: 95:25:21:da:4b:94:4e:c5:74:e9:43:ec:14:a4:ec:9e:07:6b: d6:af:ca:6a:c5:0e:c5:63:83:a3:4c:fc:4c:04:03:6c:f5:00: 83:af:ab:b2:1b:43:99:7a:25:4f:cd:02:e8:df:0d:88:4a:93: 64:b1:77:40:01:9d:82:1d:51:db:bb:f9:c2:24:ec:21:b7:38: 99:b1:23:d1:a3:0c:99:17:48:60:69:d1:60:8d:2a:19:28:80: 45:03:d2:cc:ab:56:dd:6b:f3:b7:13:4e:38:e2:09:6e:64:e2: 0b:86:74:fd:09:76:ba:68:39:96:f3:c5:55:a7:82:a8:b2:f3: 74:08:c3:6f:2c:94:45:8e:74:57:86:45:22:c3:1e:d4:52:4b: cd:b5:a1:2b:03:3e:b3:16:98:07:26:72:87:d7:58:cb:cc:65: 3a:72:8b:fc:61:cc:e5:9b:dd:8a:49:9c:a9:c9:9e:98:8a:b8: b6:4b:14:6a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFEEXAY46Y7BlzLLHauB4cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ODYwMjczZWIyNzE5MjJiOWY3ZWM4ZjRhNTkxMDE2MzU2 ZDczMmIwHhcNMjYwMjEwMDEwMDIwWhcNMjYwMjExMDEwMDIwWjAzMTEwLwYDVQQD EyhiODMyMTBiNWUwZmM3ZjhlNzFhMDFmZGNhNzc1MzVhNzdiZGQyYWY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3CcZTJebp6QwMUmIqzCE5QttIIMV 0uUYWQc+IqXYdWy++HxWZrv1d/62PZ0XCjpRKb/OHQXGVBE/pbmMh+nu639HhAqW ctmhcVM+kafmfYdozwy1cchN83MYMQTk6d2ttieEBWZkWaUoEPhtP5ZUfMvN2szw 2mLVjDNsQ4KvogMqMgfIpbabDdwNrx3GYeURcRFQyUMwD1P9Lk6INvRLiyBAkMPG WXLihKUZCjk0bbURcMfVPbisiu6Gpwii5RK0WUOfTnCdqpseeZ2H34fVLpJXvlUu 2JCfUntbW+7IKbC6gsjGFcSvLqx84bIydFI4yH84wdUfwQaERFqeGEDOkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLgyELXg/H+OcaAf3Kd1Nad73Sr4MB8GA1UdIwQY MBaAFIWGAnPrJxkiuffsj0pZEBY1bXMrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFlZQ2Mtc25HU0s1OS15UFNsa1FGalZ0Y3lzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wMTU3YzktMzQ4OC00ZmI4LTliNGYt OTkwOWVlMmYzM2IyLzEvaFlZQ2Mtc25HU0s1OS15UFNsa1FGalZ0Y3lzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi8wMTU3YzktMzQ4OC00ZmI4LTliNGYtOTkwOWVlMmYzM2Iy LzEvaFlZQ2Mtc25HU0s1OS15UFNsa1FGalZ0Y3lzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABjUnnJFf nzdvDX2pPQk6PTA0cSwD1gXGdBBp2vdTlMLvFfrb+v1KiUr332vDsw7xof0D/WTt l1+bU0UnCGr2kjSAjFr7vFGGlSUh2kuUTsV06UPsFKTsngdr1q/KasUOxWODo0z8 TAQDbPUAg6+rshtDmXolT80C6N8NiEqTZLF3QAGdgh1R27v5wiTsIbc4mbEj0aMM mRdIYGnRYI0qGSiARQPSzKtW3WvztxNOOOIJbmTiC4Z0/Ql2umg5lvPFVaeCqLLz dAjDbyyURY50V4ZFIsMe1FJLzbWhKwM+sxaYByZyh9dYy8xlOnKL/GHM5Zvdikmc qcmemIq4tksUag== -----END CERTIFICATE-----Generated at Tue Feb 10 02:54:59 2026 by rpki-client