This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft File: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft (raw, json) Hash identifier: co1iP17PTSjHS920W1bKxSyNk3Z6CbPB0r4WSJidjlw= Subject key identifier: 94:40:7E:E7:00:F2:63:47:0A:3C:40:EF:3B:58:A6:8B:A4:3F:43:F3 Authority key identifier: 1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B Certificate issuer: /CN=1d0260406e837ae38380fcc8d992b93d0de1a83b Certificate serial: 019C41A19C86D1911C5A7625D57BBFA0CE78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft Manifest number: 0D31 Signing time: Mon 09 Feb 2026 09:00:36 +0000 Manifest this update: Mon 09 Feb 2026 09:00:36 +0000 Manifest next update: Tue 10 Feb 2026 09:00:36 +0000 Files and hashes: 1: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl (hash: 3h17uLvawtcTiItnA52nKHxFOR912I3sRnVvdQHjZN0=) 2: bdOQfAWdL7wiwVEQoYOuUBY_f9o.roa (hash: nNRgBnyPBnuWyk/W/uELLwEd7uoijhFF49TNbx1XS78=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:9c:86:d1:91:1c:5a:76:25:d5:7b:bf:a0:ce:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d0260406e837ae38380fcc8d992b93d0de1a83b Validity Not Before: Feb 9 09:00:36 2026 GMT Not After : Feb 10 09:00:36 2026 GMT Subject: CN=94407ee700f263470a3c40ef3b58a68ba43f43f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3e:70:2f:07:1a:95:30:16:09:0a:c7:83:7e: 52:25:39:43:55:c2:5e:28:a8:be:11:88:0a:6a:ca: 57:dc:e2:dd:61:c2:5e:cf:0e:74:51:93:59:ba:58: d8:e4:1d:fa:3c:9c:33:4e:46:b0:fa:52:eb:86:cc: 6e:8f:f9:76:c2:6d:79:f1:61:41:5f:ee:1c:cd:38: 3f:1c:89:4a:31:31:1e:c3:4d:d6:17:a4:ec:48:5e: b0:bb:17:92:28:ff:7f:cf:91:8f:ba:6f:e9:55:3e: d7:b3:3e:ca:df:6e:9d:1c:dd:e8:e3:ab:83:41:10: 7a:97:fa:ac:36:87:63:fa:d1:5b:ae:af:82:50:6f: d0:56:40:2a:64:de:86:9d:50:50:8d:18:7e:67:24: 41:ad:55:d7:21:5b:d8:8e:65:a1:1f:4b:d2:00:ee: 6d:1a:32:08:51:a9:f0:4a:bd:cd:19:69:cf:ba:46: 6d:da:f4:95:7d:bd:0d:f8:73:d1:bd:df:3a:c0:ad: bd:3f:64:ca:98:e4:ff:82:25:16:8d:d2:a7:20:a7: d8:06:a4:b2:1f:96:bb:1c:73:20:79:61:15:d9:51: 0f:00:1b:8c:c6:e9:fd:e2:7f:dc:19:1f:a0:09:db: 9f:b6:d3:3c:fa:28:18:06:f9:5a:fb:28:df:70:62: 59:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:40:7E:E7:00:F2:63:47:0A:3C:40:EF:3B:58:A6:8B:A4:3F:43:F3 X509v3 Authority Key Identifier: keyid:1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cf:d7:ae:4e:05:52:93:6f:d5:03:b8:a6:50:34:96:6d:08:a1: 95:68:40:6e:a2:b1:14:4b:36:77:66:0d:12:b3:cb:6d:15:14: f6:e1:9c:5d:33:88:90:87:ee:12:df:60:42:d5:c0:48:de:47: 18:ed:52:d7:cf:b6:e0:05:45:41:6b:0b:9e:da:70:a5:23:15: 86:9d:9e:6c:0d:35:bb:18:29:c0:3a:d5:99:36:65:d2:e4:11: ad:83:38:66:da:6a:50:0e:2f:26:8b:10:1c:12:f5:94:ef:96: ae:73:0d:b4:11:94:9d:d4:93:01:de:bf:81:5a:75:f2:7f:0c: 21:33:86:d9:95:12:63:19:68:de:ff:32:2a:83:60:fc:38:b3: fc:fd:c9:a3:e7:67:32:35:61:14:9f:7e:96:6a:45:b6:ea:49: 99:1a:d8:a1:d0:1e:af:20:49:a8:d0:bf:34:b4:5b:20:b0:01: 18:5b:39:c1:17:34:f8:c1:e0:27:95:a3:7c:e5:f6:8e:cc:ac: f8:19:50:6c:d4:d0:af:f9:82:fd:c4:aa:7b:18:65:37:7e:cc: 65:65:95:75:16:fa:e3:6c:9b:9d:d8:cf:5a:00:0f:ca:cc:eb: 6d:06:91:99:4e:b2:d9:0d:7b:fb:94:4c:e8:36:f3:11:8b:8b: 4f:94:68:5f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoZyG0ZEcWnYl1Xu/oM54MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkMDI2MDQwNmU4MzdhZTM4MzgwZmNjOGQ5OTJiOTNkMGRl MWE4M2IwHhcNMjYwMjA5MDkwMDM2WhcNMjYwMjEwMDkwMDM2WjAzMTEwLwYDVQQD Eyg5NDQwN2VlNzAwZjI2MzQ3MGEzYzQwZWYzYjU4YTY4YmE0M2Y0M2YzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1T5wLwcalTAWCQrHg35SJTlDVcJe KKi+EYgKaspX3OLdYcJezw50UZNZuljY5B36PJwzTkaw+lLrhsxuj/l2wm158WFB X+4czTg/HIlKMTEew03WF6TsSF6wuxeSKP9/z5GPum/pVT7Xsz7K326dHN3o46uD QRB6l/qsNodj+tFbrq+CUG/QVkAqZN6GnVBQjRh+ZyRBrVXXIVvYjmWhH0vSAO5t GjIIUanwSr3NGWnPukZt2vSVfb0N+HPRvd86wK29P2TKmOT/giUWjdKnIKfYBqSy H5a7HHMgeWEV2VEPABuMxun94n/cGR+gCdufttM8+igYBvla+yjfcGJZ/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJRAfucA8mNHCjxA7ztYpoukP0PzMB8GA1UdIwQY MBaAFB0CYEBug3rjg4D8yNmSuT0N4ag7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFFKZ1FHNkRldU9EZ1B6STJaSzVQUTNocURzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8zNDAwMzEtMzY1Yi00ZmQyLTg3MzIt OGMwZmFjYTNjYmQ4LzEvSFFKZ1FHNkRldU9EZ1B6STJaSzVQUTNocURzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy8zNDAwMzEtMzY1Yi00ZmQyLTg3MzItOGMwZmFjYTNjYmQ4 LzEvSFFKZ1FHNkRldU9EZ1B6STJaSzVQUTNocURzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAz9euTgVS k2/VA7imUDSWbQihlWhAbqKxFEs2d2YNErPLbRUU9uGcXTOIkIfuEt9gQtXASN5H GO1S18+24AVFQWsLntpwpSMVhp2ebA01uxgpwDrVmTZl0uQRrYM4ZtpqUA4vJosQ HBL1lO+WrnMNtBGUndSTAd6/gVp18n8MITOG2ZUSYxlo3v8yKoNg/Diz/P3Jo+dn MjVhFJ9+lmpFtupJmRrYodAeryBJqNC/NLRbILABGFs5wRc0+MHgJ5WjfOX2jsys +BlQbNTQr/mC/cSqexhlN37MZWWVdRb642ybndjPWgAPyszrbQaRmU6y2Q17+5RM 6DbzEYuLT5RoXw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:57:21 2026 by rpki-client