This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/3f5e3c-ac7b-4f0f-a874-26971599a554/1/HxKTy74vaSVA08xaboI2YElMQGM.mft File: HxKTy74vaSVA08xaboI2YElMQGM.mft (raw, json) Hash identifier: +jVkOqk9TLFgxg66YPYAGKPyCnrNUmiZP8rJDcLHoIc= Subject key identifier: FA:2E:C5:2E:05:CF:79:05:2D:9E:36:DB:05:92:E7:7C:2C:33:B4:9E Authority key identifier: 1F:12:93:CB:BE:2F:69:25:40:D3:CC:5A:6E:82:36:60:49:4C:40:63 Certificate issuer: /CN=1f1293cbbe2f692540d3cc5a6e823660494c4063 Certificate serial: 019C4322D5C3F9D76DB1D30A16BCF285D86C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HxKTy74vaSVA08xaboI2YElMQGM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/3f5e3c-ac7b-4f0f-a874-26971599a554/1/HxKTy74vaSVA08xaboI2YElMQGM.mft Manifest number: 0F93 Signing time: Mon 09 Feb 2026 16:01:22 +0000 Manifest this update: Mon 09 Feb 2026 16:01:22 +0000 Manifest next update: Tue 10 Feb 2026 16:01:22 +0000 Files and hashes: 1: HxKTy74vaSVA08xaboI2YElMQGM.crl (hash: 6HSJUGnW/a+EJ0dCTDQEx5PbmZk12E4rpjyn+7K/yts=) 2: qZFE4vvvTJ5M0gUNt0iW88jKACg.roa (hash: qVu2Vq/zJz0bGweHHRGe7Gy0T4GqhgX5DzTBtgSOzZg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/3f5e3c-ac7b-4f0f-a874-26971599a554/1/HxKTy74vaSVA08xaboI2YElMQGM.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/3f5e3c-ac7b-4f0f-a874-26971599a554/1/HxKTy74vaSVA08xaboI2YElMQGM.mft rsync://rpki.ripe.net/repository/DEFAULT/HxKTy74vaSVA08xaboI2YElMQGM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:d5:c3:f9:d7:6d:b1:d3:0a:16:bc:f2:85:d8:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f1293cbbe2f692540d3cc5a6e823660494c4063 Validity Not Before: Feb 9 16:01:22 2026 GMT Not After : Feb 10 16:01:22 2026 GMT Subject: CN=fa2ec52e05cf79052d9e36db0592e77c2c33b49e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:dc:19:c9:7a:63:c4:0e:ec:fb:09:29:07:87: 12:4d:e1:77:2a:b7:58:f4:84:6b:ad:34:72:61:79: d3:36:ee:40:9d:d1:3f:58:14:5f:58:f1:62:e0:39: 49:5f:9f:6f:fd:ea:e7:a1:3d:60:d8:0e:03:d8:57: e6:ad:2f:8e:8d:e8:49:6d:a3:10:cc:06:ae:a1:f5: 9d:54:93:82:2f:cb:2f:1b:8c:fc:f9:9d:1b:b2:37: 39:05:9b:2a:07:8a:b0:c0:06:7c:9c:ad:0b:a5:03: 21:87:f4:5f:24:bf:8f:b7:5d:58:01:34:78:c9:38: 2a:d7:48:43:2b:e7:4a:a3:bc:d9:de:1b:4b:c9:9a: 81:18:66:de:34:f8:10:1f:e3:ff:e3:18:f7:74:14: d7:10:df:4d:96:04:1c:09:70:9f:35:3c:86:8b:e0: 53:24:7b:ad:8d:62:3b:ff:5b:b9:a1:92:ea:4b:ae: 30:7d:e8:84:08:8f:d9:cd:f8:a9:70:e8:af:80:dd: ad:f9:b7:a5:7c:5a:9c:8b:95:47:16:4a:99:95:3b: b9:c7:78:90:b2:6c:5d:ad:9e:ab:4c:b0:9b:47:d7: 99:c7:6b:a3:67:f5:c9:b0:b3:86:db:79:c9:fa:cd: 76:c4:4d:cc:cc:ea:0c:ea:ae:40:35:bf:52:cf:1a: d1:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:2E:C5:2E:05:CF:79:05:2D:9E:36:DB:05:92:E7:7C:2C:33:B4:9E X509v3 Authority Key Identifier: keyid:1F:12:93:CB:BE:2F:69:25:40:D3:CC:5A:6E:82:36:60:49:4C:40:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HxKTy74vaSVA08xaboI2YElMQGM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3f5e3c-ac7b-4f0f-a874-26971599a554/1/HxKTy74vaSVA08xaboI2YElMQGM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3f5e3c-ac7b-4f0f-a874-26971599a554/1/HxKTy74vaSVA08xaboI2YElMQGM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:44:93:79:d2:7f:5e:65:0e:5b:0a:86:52:43:25:bc:c7:66: 86:f3:18:3e:8d:eb:a0:a1:57:fe:f4:4c:ef:6e:b7:27:06:26: ba:7e:b5:41:77:16:b7:cd:78:66:88:56:c1:ec:e0:35:3d:1a: eb:65:e1:2e:42:e3:71:c8:38:c0:fd:1c:cd:0f:b0:a4:fc:d6: 1d:f9:1e:ee:64:d5:90:e7:7c:0d:46:60:2f:2c:9e:dc:0b:f6: 98:3d:4b:68:2d:54:42:b2:44:33:a8:d0:86:01:fe:bf:d5:55: 5e:f0:e8:51:ea:ee:e4:57:fe:b5:3c:0e:da:6a:db:d1:22:48: f6:29:5f:89:4d:1d:d8:09:ef:c6:29:16:c4:4a:c8:08:c5:69: 05:0d:47:9a:5d:21:4b:7b:45:1a:9c:fc:b6:8a:fd:46:33:fa: ad:fe:ba:d9:59:57:3a:6a:cc:f5:b3:ed:7d:c9:50:f2:77:6e: cf:60:bd:37:5d:a8:e8:ee:72:52:ad:65:3f:4a:46:d2:c2:58: 89:27:b0:f6:6d:eb:08:77:ce:cc:e0:85:24:fb:64:6c:28:fa: 34:35:5e:31:9b:58:64:0f:1b:95:63:c3:e7:2c:86:45:7a:ff: 21:8f:66:d2:0e:18:57:8d:e3:2b:85:bb:18:cb:72:91:3d:df: c4:fb:89:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDItXD+ddtsdMKFrzyhdhsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmMTI5M2NiYmUyZjY5MjU0MGQzY2M1YTZlODIzNjYwNDk0 YzQwNjMwHhcNMjYwMjA5MTYwMTIyWhcNMjYwMjEwMTYwMTIyWjAzMTEwLwYDVQQD EyhmYTJlYzUyZTA1Y2Y3OTA1MmQ5ZTM2ZGIwNTkyZTc3YzJjMzNiNDllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr9wZyXpjxA7s+wkpB4cSTeF3KrdY 9IRrrTRyYXnTNu5AndE/WBRfWPFi4DlJX59v/ernoT1g2A4D2FfmrS+OjehJbaMQ zAauofWdVJOCL8svG4z8+Z0bsjc5BZsqB4qwwAZ8nK0LpQMhh/RfJL+Pt11YATR4 yTgq10hDK+dKo7zZ3htLyZqBGGbeNPgQH+P/4xj3dBTXEN9NlgQcCXCfNTyGi+BT JHutjWI7/1u5oZLqS64wfeiECI/ZzfipcOivgN2t+belfFqci5VHFkqZlTu5x3iQ smxdrZ6rTLCbR9eZx2ujZ/XJsLOG23nJ+s12xE3MzOoM6q5ANb9SzxrR2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPouxS4Fz3kFLZ422wWS53wsM7SeMB8GA1UdIwQY MBaAFB8Sk8u+L2klQNPMWm6CNmBJTEBjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHhLVHk3NHZhU1ZBMDh4YWJvSTJZRWxNUUdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8zZjVlM2MtYWM3Yi00ZjBmLWE4NzQt MjY5NzE1OTlhNTU0LzEvSHhLVHk3NHZhU1ZBMDh4YWJvSTJZRWxNUUdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS8zZjVlM2MtYWM3Yi00ZjBmLWE4NzQtMjY5NzE1OTlhNTU0 LzEvSHhLVHk3NHZhU1ZBMDh4YWJvSTJZRWxNUUdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU0STedJ/ XmUOWwqGUkMlvMdmhvMYPo3roKFX/vRM7263JwYmun61QXcWt814ZohWwezgNT0a 62XhLkLjccg4wP0czQ+wpPzWHfke7mTVkOd8DUZgLyye3Av2mD1LaC1UQrJEM6jQ hgH+v9VVXvDoUeru5Ff+tTwO2mrb0SJI9ilfiU0d2AnvxikWxErICMVpBQ1Hml0h S3tFGpz8tor9RjP6rf662VlXOmrM9bPtfclQ8nduz2C9N12o6O5yUq1lP0pG0sJY iSew9m3rCHfOzOCFJPtkbCj6NDVeMZtYZA8blWPD5yyGRXr/IY9m0g4YV43jK4W7 GMtykT3fxPuJrw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:05 2026 by rpki-client