This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/1f71bd-3c05-4516-9710-7abd07da51e5/1/HA73NQ7-NSp2AezkHDGl-DhkVic.mft File: HA73NQ7-NSp2AezkHDGl-DhkVic.mft (raw, json) Hash identifier: Ngp/H0XbdTmsNiEZftUQjj5i4fb1LfQ55+fAbrLhPkA= Subject key identifier: 96:CE:50:A9:7E:D6:14:88:A2:C9:B5:6E:19:BB:B1:C7:EC:7B:6F:12 Authority key identifier: 1C:0E:F7:35:0E:FE:35:2A:76:01:EC:E4:1C:31:A5:F8:38:64:56:27 Certificate issuer: /CN=1c0ef7350efe352a7601ece41c31a5f838645627 Certificate serial: 019C420F8B02F8C0B27510C860AB92F893BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HA73NQ7-NSp2AezkHDGl-DhkVic.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/1f71bd-3c05-4516-9710-7abd07da51e5/1/HA73NQ7-NSp2AezkHDGl-DhkVic.mft Manifest number: 013C Signing time: Mon 09 Feb 2026 11:00:40 +0000 Manifest this update: Mon 09 Feb 2026 11:00:40 +0000 Manifest next update: Tue 10 Feb 2026 11:00:40 +0000 Files and hashes: 1: HA73NQ7-NSp2AezkHDGl-DhkVic.crl (hash: 3lnnMXaPhOeTpnRO8wpDFwsO3lFmTNfDkBv9DrTHwRo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/1f71bd-3c05-4516-9710-7abd07da51e5/1/HA73NQ7-NSp2AezkHDGl-DhkVic.crl rsync://rpki.ripe.net/repository/DEFAULT/28/1f71bd-3c05-4516-9710-7abd07da51e5/1/HA73NQ7-NSp2AezkHDGl-DhkVic.mft rsync://rpki.ripe.net/repository/DEFAULT/HA73NQ7-NSp2AezkHDGl-DhkVic.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:8b:02:f8:c0:b2:75:10:c8:60:ab:92:f8:93:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c0ef7350efe352a7601ece41c31a5f838645627 Validity Not Before: Feb 9 11:00:40 2026 GMT Not After : Feb 10 11:00:40 2026 GMT Subject: CN=96ce50a97ed61488a2c9b56e19bbb1c7ec7b6f12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:f4:6d:97:c3:33:0a:e5:e8:17:2e:4e:3a:30: 5a:88:c1:fb:70:c2:93:e7:15:44:b2:b4:63:d7:29: 3f:30:22:6e:32:84:1b:d5:bd:70:48:80:5a:99:ef: 00:63:94:3f:5b:aa:11:f4:2a:45:ab:72:8c:94:5b: 21:a1:f0:b0:ad:30:34:6d:6c:d2:f1:26:d6:b0:0b: 09:5a:08:75:99:5e:4b:c5:95:3f:99:34:f2:0c:89: 7d:2a:da:18:0e:ab:93:58:58:4d:dd:c8:3c:d2:23: b4:51:ac:d1:2a:5a:7e:12:c3:10:ac:69:3b:f7:63: 28:80:6f:1e:c8:8c:44:92:5f:9b:87:1f:68:9f:58: 4b:3a:79:3e:22:4b:fa:78:cc:0c:17:f4:f1:b2:09: 6a:42:87:94:4a:25:e8:fe:c2:2b:a3:c5:9d:dc:bf: 21:fc:a1:f5:23:88:8f:f5:25:15:9f:96:9f:38:3b: 7a:67:01:99:56:72:72:25:51:87:33:f4:43:fd:0d: d1:35:bd:b5:c4:94:d3:7e:c0:78:97:40:c1:da:50: 37:59:1a:d7:ea:35:0e:ad:f5:47:a8:8c:f9:73:39: 1e:cb:d0:19:f6:0f:2c:f1:8a:f0:18:5c:87:5f:b9: ef:dd:7b:d9:eb:27:4d:ef:2b:23:b7:41:f7:53:a3: 76:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:CE:50:A9:7E:D6:14:88:A2:C9:B5:6E:19:BB:B1:C7:EC:7B:6F:12 X509v3 Authority Key Identifier: keyid:1C:0E:F7:35:0E:FE:35:2A:76:01:EC:E4:1C:31:A5:F8:38:64:56:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HA73NQ7-NSp2AezkHDGl-DhkVic.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/1f71bd-3c05-4516-9710-7abd07da51e5/1/HA73NQ7-NSp2AezkHDGl-DhkVic.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/1f71bd-3c05-4516-9710-7abd07da51e5/1/HA73NQ7-NSp2AezkHDGl-DhkVic.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:62:98:3f:d3:70:cc:f1:18:6a:6c:97:fc:15:a5:1f:14:a3: d2:41:5e:62:6a:1d:94:d5:d1:95:7b:c1:1a:aa:f6:7c:e6:f5: 62:cd:67:72:8e:5a:83:0c:16:f0:48:9f:b0:e9:e3:3e:22:82: 89:10:c6:3c:9b:79:87:00:dd:e4:e1:6b:9f:0a:0b:fe:6a:69: 05:15:f8:f4:29:34:b5:23:58:04:9a:f0:d7:a5:84:51:12:bd: ae:30:ec:4f:71:6a:54:0c:15:29:10:ad:97:92:ed:ce:df:a5: 0c:7c:e1:46:9e:d0:12:73:40:6a:9d:58:84:99:7e:57:fc:81: 41:53:4a:5f:8c:df:bd:c7:f9:4a:8f:96:55:71:3a:b5:32:c9: 12:26:d4:99:54:c8:ce:ef:4c:7d:d7:14:83:0d:36:b1:98:bd: 1f:86:92:5e:db:a3:b0:a7:d7:c7:54:43:87:4f:84:9e:9d:3f: f5:be:ed:d1:d1:69:ca:d8:f1:d1:d7:f3:15:38:40:60:78:3d: ad:0d:2d:2f:87:d9:0b:7d:88:40:bb:80:c0:7c:12:56:11:c3: 65:fe:62:4c:2b:4c:e2:52:ac:22:76:ae:c8:4f:03:ae:52:82: bd:90:df:71:3e:25:1a:4c:e0:ae:f2:92:64:ef:8f:ed:72:16: 51:62:38:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD4sC+MCydRDIYKuS+JO+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjMGVmNzM1MGVmZTM1MmE3NjAxZWNlNDFjMzFhNWY4Mzg2 NDU2MjcwHhcNMjYwMjA5MTEwMDQwWhcNMjYwMjEwMTEwMDQwWjAzMTEwLwYDVQQD Eyg5NmNlNTBhOTdlZDYxNDg4YTJjOWI1NmUxOWJiYjFjN2VjN2I2ZjEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAivRtl8MzCuXoFy5OOjBaiMH7cMKT 5xVEsrRj1yk/MCJuMoQb1b1wSIBame8AY5Q/W6oR9CpFq3KMlFshofCwrTA0bWzS 8SbWsAsJWgh1mV5LxZU/mTTyDIl9KtoYDquTWFhN3cg80iO0UazRKlp+EsMQrGk7 92MogG8eyIxEkl+bhx9on1hLOnk+Ikv6eMwMF/TxsglqQoeUSiXo/sIro8Wd3L8h /KH1I4iP9SUVn5afODt6ZwGZVnJyJVGHM/RD/Q3RNb21xJTTfsB4l0DB2lA3WRrX 6jUOrfVHqIz5czkey9AZ9g8s8YrwGFyHX7nv3XvZ6ydN7ysjt0H3U6N2bQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJbOUKl+1hSIosm1bhm7scfse28SMB8GA1UdIwQY MBaAFBwO9zUO/jUqdgHs5Bwxpfg4ZFYnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEE3M05RNy1OU3AyQWV6a0hER2wtRGhrVmljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8xZjcxYmQtM2MwNS00NTE2LTk3MTAt N2FiZDA3ZGE1MWU1LzEvSEE3M05RNy1OU3AyQWV6a0hER2wtRGhrVmljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC8xZjcxYmQtM2MwNS00NTE2LTk3MTAtN2FiZDA3ZGE1MWU1 LzEvSEE3M05RNy1OU3AyQWV6a0hER2wtRGhrVmljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUmKYP9Nw zPEYamyX/BWlHxSj0kFeYmodlNXRlXvBGqr2fOb1Ys1nco5agwwW8EifsOnjPiKC iRDGPJt5hwDd5OFrnwoL/mppBRX49Ck0tSNYBJrw16WEURK9rjDsT3FqVAwVKRCt l5Ltzt+lDHzhRp7QEnNAap1YhJl+V/yBQVNKX4zfvcf5So+WVXE6tTLJEibUmVTI zu9MfdcUgw02sZi9H4aSXtujsKfXx1RDh0+Enp0/9b7t0dFpytjx0dfzFThAYHg9 rQ0tL4fZC32IQLuAwHwSVhHDZf5iTCtM4lKsInauyE8DrlKCvZDfcT4lGkzgrvKS ZO+P7XIWUWI4jA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:20 2026 by rpki-client