This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.mft File: HgUGRdac54HkkMDzxJle5tTmB4s.mft (raw, json) Hash identifier: Ql7YGW7ue34av4c5ne0c7VX8PBp++0GNL7nlYtT5Yjw= Subject key identifier: 00:27:79:2A:76:50:99:6C:3B:28:01:F2:91:74:F8:4B:D4:74:D5:EE Authority key identifier: 1E:05:06:45:D6:9C:E7:81:E4:90:C0:F3:C4:99:5E:E6:D4:E6:07:8B Certificate issuer: /CN=1e050645d69ce781e490c0f3c4995ee6d4e6078b Certificate serial: 019C4358D2DD102E9181A007430D94AB477E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgUGRdac54HkkMDzxJle5tTmB4s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.mft Manifest number: 09EA Signing time: Mon 09 Feb 2026 17:00:20 +0000 Manifest this update: Mon 09 Feb 2026 17:00:20 +0000 Manifest next update: Tue 10 Feb 2026 17:00:20 +0000 Files and hashes: 1: 5IFZ-RmjX0QAE3XiRGeeU_gKW5s.roa (hash: x/Xn+2RJGz1zNEVIxZWPaaeHvskHVXZOixdJtJ5ELpU=) 2: HgUGRdac54HkkMDzxJle5tTmB4s.crl (hash: zc1jbuJ94Qg6X+XXCMIg3cPVaPoP5D7Y5zpUwwV5kTk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.mft rsync://rpki.ripe.net/repository/DEFAULT/HgUGRdac54HkkMDzxJle5tTmB4s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:d2:dd:10:2e:91:81:a0:07:43:0d:94:ab:47:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e050645d69ce781e490c0f3c4995ee6d4e6078b Validity Not Before: Feb 9 17:00:20 2026 GMT Not After : Feb 10 17:00:20 2026 GMT Subject: CN=0027792a7650996c3b2801f29174f84bd474d5ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:41:58:b2:43:3e:21:9c:ae:5c:c3:37:21:2c: e2:32:dd:71:20:8d:5a:ea:fe:92:d7:9e:d5:81:e5: d1:cd:5d:a3:58:7e:f0:d6:43:ff:97:68:75:6d:51: 90:c9:1b:66:1a:cb:c5:58:7c:c0:74:8b:60:8f:80: 6d:4d:f1:79:74:09:5c:7f:cf:18:55:a3:fa:a7:ac: d7:f7:df:5f:76:d6:50:0f:3a:15:cf:bf:eb:5a:f3: 22:60:a8:d2:b9:35:1f:db:a2:80:f5:b2:cd:ec:25: 12:c0:43:69:99:7d:3c:16:e4:b3:1a:cb:64:dd:2d: 7a:06:33:6a:ce:66:2f:80:7a:06:60:9c:98:48:7a: 7d:3b:1c:9d:d3:d9:a5:f1:a5:fc:78:b3:0f:71:34: a5:33:22:5c:30:a5:73:d0:47:2b:c3:3e:fa:c3:c5: 03:c6:cf:8a:66:5a:6e:ed:c2:c7:79:3f:3c:0a:0d: e0:3f:84:18:dd:b5:5e:f5:1d:19:b4:77:de:69:28: a2:f1:9c:d9:cb:80:bd:2c:30:dd:44:00:36:44:f9: 11:11:5b:57:4f:22:02:bf:bc:48:a0:04:49:4f:d8: 1c:6e:6d:b4:a1:5d:82:58:59:25:84:f9:75:1c:bd: d3:de:6c:5f:b7:b6:f0:bd:aa:6e:14:5e:8b:49:50: aa:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:27:79:2A:76:50:99:6C:3B:28:01:F2:91:74:F8:4B:D4:74:D5:EE X509v3 Authority Key Identifier: keyid:1E:05:06:45:D6:9C:E7:81:E4:90:C0:F3:C4:99:5E:E6:D4:E6:07:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgUGRdac54HkkMDzxJle5tTmB4s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/cb3af0-056d-4277-a6da-227a86c472ce/1/HgUGRdac54HkkMDzxJle5tTmB4s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:42:e8:24:4a:0f:c6:ee:06:ad:11:a9:cc:2b:db:89:e7:bf: 5d:09:10:d5:45:dc:d5:43:9e:7a:2a:c7:4a:e6:17:d7:b0:f4: 71:03:5a:43:36:75:42:b7:ec:d4:32:4f:a0:f4:e3:8e:28:b3: 54:13:c6:3c:e9:bd:f9:13:86:6b:50:f9:be:48:51:5f:97:fb: 97:92:7d:69:ed:36:e3:7a:38:60:25:76:11:5a:3f:71:73:03: 3b:d1:67:2a:ca:69:6f:2b:b6:34:d3:6c:8b:fc:08:32:d3:5d: 47:f2:79:f4:fc:32:88:77:87:8c:a7:42:3e:15:bc:50:72:06: 3e:16:84:a1:9d:fc:57:ad:04:86:7c:34:ed:65:0f:c1:da:28: c0:33:0b:f9:91:21:7d:77:69:18:68:59:5f:aa:45:0b:70:c8: 31:c9:38:30:44:2c:35:df:c1:ca:6d:d0:fa:b9:42:92:23:2a: c5:46:3a:4a:d8:32:00:74:77:2f:e1:98:27:17:2d:cd:86:dc: 2f:c8:36:0b:1c:17:9c:db:af:72:70:3e:74:68:bf:b2:de:19: 5e:56:5c:ad:98:06:00:a9:ee:4d:06:a9:1f:44:46:64:6e:14: fc:5e:97:79:79:0b:f3:d1:32:9b:c2:f2:bd:b2:c6:ae:a3:bf: ea:ca:c0:00 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWNLdEC6RgaAHQw2Uq0d+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlMDUwNjQ1ZDY5Y2U3ODFlNDkwYzBmM2M0OTk1ZWU2ZDRl NjA3OGIwHhcNMjYwMjA5MTcwMDIwWhcNMjYwMjEwMTcwMDIwWjAzMTEwLwYDVQQD EygwMDI3NzkyYTc2NTA5OTZjM2IyODAxZjI5MTc0Zjg0YmQ0NzRkNWVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3UFYskM+IZyuXMM3ISziMt1xII1a 6v6S157VgeXRzV2jWH7w1kP/l2h1bVGQyRtmGsvFWHzAdItgj4BtTfF5dAlcf88Y VaP6p6zX999fdtZQDzoVz7/rWvMiYKjSuTUf26KA9bLN7CUSwENpmX08FuSzGstk 3S16BjNqzmYvgHoGYJyYSHp9Oxyd09ml8aX8eLMPcTSlMyJcMKVz0Ecrwz76w8UD xs+KZlpu7cLHeT88Cg3gP4QY3bVe9R0ZtHfeaSii8ZzZy4C9LDDdRAA2RPkREVtX TyICv7xIoARJT9gcbm20oV2CWFklhPl1HL3T3mxft7bwvapuFF6LSVCqHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAAneSp2UJlsOygB8pF0+EvUdNXuMB8GA1UdIwQY MBaAFB4FBkXWnOeB5JDA88SZXubU5geLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGdVR1JkYWM1NEhra01EenhKbGU1dFRtQjRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi9jYjNhZjAtMDU2ZC00Mjc3LWE2ZGEt MjI3YTg2YzQ3MmNlLzEvSGdVR1JkYWM1NEhra01EenhKbGU1dFRtQjRzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi9jYjNhZjAtMDU2ZC00Mjc3LWE2ZGEtMjI3YTg2YzQ3MmNl LzEvSGdVR1JkYWM1NEhra01EenhKbGU1dFRtQjRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEELoJEoP xu4GrRGpzCvbiee/XQkQ1UXc1UOeeirHSuYX17D0cQNaQzZ1Qrfs1DJPoPTjjiiz VBPGPOm9+ROGa1D5vkhRX5f7l5J9ae0243o4YCV2EVo/cXMDO9FnKsppbyu2NNNs i/wIMtNdR/J59PwyiHeHjKdCPhW8UHIGPhaEoZ38V60Ehnw07WUPwdoowDML+ZEh fXdpGGhZX6pFC3DIMck4MEQsNd/Bym3Q+rlCkiMqxUY6StgyAHR3L+GYJxctzYbc L8g2CxwXnNuvcnA+dGi/st4ZXlZcrZgGAKnuTQapH0RGZG4U/F6XeXkL89Eym8Ly vbLGrqO/6srAAA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:30 2026 by rpki-client