This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft File: HrwURUFHAQyh700E0hASXh7X0ho.mft (raw, json) Hash identifier: GeAZRzcLG2iRM9HCE+29591U1CEwwh2mAelwwCsgvjg= Subject key identifier: 5E:0B:F7:52:3A:C2:84:6E:A3:CE:29:76:2E:6B:FE:28:06:89:BD:A5 Authority key identifier: 1E:BC:14:45:41:47:01:0C:A1:EF:4D:04:D2:10:12:5E:1E:D7:D2:1A Certificate issuer: /CN=1ebc14454147010ca1ef4d04d210125e1ed7d21a Certificate serial: 019C427D12FBAB475AC585992795ECD5A72F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HrwURUFHAQyh700E0hASXh7X0ho.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft Manifest number: 09CF Signing time: Mon 09 Feb 2026 13:00:18 +0000 Manifest this update: Mon 09 Feb 2026 13:00:18 +0000 Manifest next update: Tue 10 Feb 2026 13:00:18 +0000 Files and hashes: 1: HrwURUFHAQyh700E0hASXh7X0ho.crl (hash: onfbzrqgBSRmI8hqKHTZ9RizoRZogYjpYk1tAPgrMYA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.crl rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft rsync://rpki.ripe.net/repository/DEFAULT/HrwURUFHAQyh700E0hASXh7X0ho.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:12:fb:ab:47:5a:c5:85:99:27:95:ec:d5:a7:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ebc14454147010ca1ef4d04d210125e1ed7d21a Validity Not Before: Feb 9 13:00:18 2026 GMT Not After : Feb 10 13:00:18 2026 GMT Subject: CN=5e0bf7523ac2846ea3ce29762e6bfe280689bda5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:35:53:44:89:9d:15:17:7f:c3:17:79:21:01: 85:28:37:46:61:3a:69:45:15:44:69:27:4a:f8:e7: ae:d2:bc:74:6f:cf:33:c2:02:8a:9d:2e:a3:46:ad: 01:99:64:6f:48:12:40:6a:38:a9:5f:e0:8e:3d:3f: 3d:fd:8e:70:b7:9e:46:9a:d5:7b:d8:9a:c8:ed:bd: 43:94:9b:b7:ee:33:a4:0d:f7:d2:b2:1f:ff:4f:24: 6f:8b:ce:6c:43:2d:93:f1:76:60:3a:a9:39:97:19: 75:98:bb:2b:54:82:76:89:12:c3:df:9e:a0:00:4f: 6f:b5:4b:d3:f4:0d:f2:d6:3d:d7:91:2e:16:7a:3a: cd:2d:99:2a:ac:4c:3a:b4:4c:fd:06:f9:e6:34:20: 38:3b:f9:6d:57:43:08:90:93:aa:c1:1a:c1:2b:38: ff:8d:19:fc:9b:7e:a0:17:12:c0:65:00:e9:1d:64: 75:03:5b:05:94:a5:4d:42:6d:5c:09:8a:66:84:c8: 51:d7:15:ab:b5:90:ef:ba:09:f8:57:24:01:73:cc: 4c:3d:02:d3:1d:a0:ad:65:6e:d5:c6:72:16:7b:bd: 61:39:21:e4:41:47:06:c8:46:73:77:53:06:f7:b0: 2a:e3:9c:b3:68:74:b3:03:a3:9a:34:bb:5f:64:82: a9:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:0B:F7:52:3A:C2:84:6E:A3:CE:29:76:2E:6B:FE:28:06:89:BD:A5 X509v3 Authority Key Identifier: keyid:1E:BC:14:45:41:47:01:0C:A1:EF:4D:04:D2:10:12:5E:1E:D7:D2:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HrwURUFHAQyh700E0hASXh7X0ho.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:98:b9:6b:35:ee:33:e8:ec:ee:4c:7f:90:4c:80:14:db:3a: a7:bc:77:0a:f0:a3:a2:7d:b5:0f:13:b8:99:0d:40:5f:88:66: 8e:57:23:0c:d0:f0:98:32:88:53:d0:5b:62:81:21:0d:67:8a: 7e:c7:ce:5d:e9:33:23:68:ea:d3:89:4b:36:66:b2:4d:1d:c8: e4:d9:a0:bc:d1:c0:ea:5f:6c:c3:14:17:4f:11:eb:e0:2e:0b: 30:d0:25:ba:f9:51:40:d7:45:2f:3e:19:d6:b8:0a:f6:68:8d: 23:7f:4e:70:2c:06:9a:eb:f0:eb:12:24:a1:74:10:95:ec:a6: 20:76:82:9e:a5:09:16:ad:dd:c1:16:77:c2:03:02:29:12:33: ef:ab:a8:fb:dc:f8:35:2a:6f:c0:3d:66:eb:54:9a:4e:b8:cd: 31:eb:af:81:55:03:34:c5:ff:4d:e5:7f:87:23:5f:6e:39:68: 99:ee:d3:27:34:0f:4b:bd:0c:fc:f5:03:ba:16:6f:6e:99:1a: 69:00:d1:68:ec:1a:fa:cb:c3:78:6b:02:77:8f:bf:50:7a:2d: 62:ee:11:dd:a7:4b:ad:a3:ac:b4:50:8d:52:8a:41:17:4e:12: 83:72:2d:05:87:bf:54:de:48:8e:e5:9e:73:b2:8b:f7:0e:82: 66:7d:49:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfRL7q0daxYWZJ5Xs1acvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlYmMxNDQ1NDE0NzAxMGNhMWVmNGQwNGQyMTAxMjVlMWVk N2QyMWEwHhcNMjYwMjA5MTMwMDE4WhcNMjYwMjEwMTMwMDE4WjAzMTEwLwYDVQQD Eyg1ZTBiZjc1MjNhYzI4NDZlYTNjZTI5NzYyZTZiZmUyODA2ODliZGE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzVTRImdFRd/wxd5IQGFKDdGYTpp RRVEaSdK+Oeu0rx0b88zwgKKnS6jRq0BmWRvSBJAajipX+COPT89/Y5wt55GmtV7 2JrI7b1DlJu37jOkDffSsh//TyRvi85sQy2T8XZgOqk5lxl1mLsrVIJ2iRLD356g AE9vtUvT9A3y1j3XkS4WejrNLZkqrEw6tEz9BvnmNCA4O/ltV0MIkJOqwRrBKzj/ jRn8m36gFxLAZQDpHWR1A1sFlKVNQm1cCYpmhMhR1xWrtZDvugn4VyQBc8xMPQLT HaCtZW7VxnIWe71hOSHkQUcGyEZzd1MG97Aq45yzaHSzA6OaNLtfZIKpZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF4L91I6woRuo84pdi5r/igGib2lMB8GA1UdIwQY MBaAFB68FEVBRwEMoe9NBNIQEl4e19IaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHJ3VVJVRkhBUXloNzAwRTBoQVNYaDdYMGhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy80OGJmOTgtN2UxNS00NWJlLWJkMzkt MjA1MDc5ZTUxYzEzLzEvSHJ3VVJVRkhBUXloNzAwRTBoQVNYaDdYMGhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy80OGJmOTgtN2UxNS00NWJlLWJkMzktMjA1MDc5ZTUxYzEz LzEvSHJ3VVJVRkhBUXloNzAwRTBoQVNYaDdYMGhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGZi5azXu M+js7kx/kEyAFNs6p7x3CvCjon21DxO4mQ1AX4hmjlcjDNDwmDKIU9BbYoEhDWeK fsfOXekzI2jq04lLNmayTR3I5NmgvNHA6l9swxQXTxHr4C4LMNAluvlRQNdFLz4Z 1rgK9miNI39OcCwGmuvw6xIkoXQQleymIHaCnqUJFq3dwRZ3wgMCKRIz76uo+9z4 NSpvwD1m61SaTrjNMeuvgVUDNMX/TeV/hyNfbjlome7TJzQPS70M/PUDuhZvbpka aQDRaOwa+svDeGsCd4+/UHotYu4R3adLraOstFCNUopBF04Sg3ItBYe/VN5IjuWe c7KL9w6CZn1Jlg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:13:24 2026 by rpki-client