This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/54cabe-0052-455f-8047-45fba5c97593/1/HNuFgmJdF7G8uuE_xt20OruV0v4.mft File: HNuFgmJdF7G8uuE_xt20OruV0v4.mft (raw, json) Hash identifier: JfP/qSFXuhj28bi69aZlGOFp0ZTOq9n127hqkrpdkuU= Subject key identifier: 96:08:6C:EA:D7:DA:1F:F8:B1:32:C0:00:85:10:35:43:3B:0D:11:06 Authority key identifier: 1C:DB:85:82:62:5D:17:B1:BC:BA:E1:3F:C6:DD:B4:3A:BB:95:D2:FE Certificate issuer: /CN=1cdb8582625d17b1bcbae13fc6ddb43abb95d2fe Certificate serial: 019C43FDB24637BEB35E207EBFA8601FA6A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HNuFgmJdF7G8uuE_xt20OruV0v4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/54cabe-0052-455f-8047-45fba5c97593/1/HNuFgmJdF7G8uuE_xt20OruV0v4.mft Manifest number: 03CD Signing time: Mon 09 Feb 2026 20:00:25 +0000 Manifest this update: Mon 09 Feb 2026 20:00:25 +0000 Manifest next update: Tue 10 Feb 2026 20:00:25 +0000 Files and hashes: 1: HNuFgmJdF7G8uuE_xt20OruV0v4.crl (hash: 56aLhT8vfiRF30xOaU8iBj4tgCKdJvFZmNIw/011yPo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/54cabe-0052-455f-8047-45fba5c97593/1/HNuFgmJdF7G8uuE_xt20OruV0v4.crl rsync://rpki.ripe.net/repository/DEFAULT/28/54cabe-0052-455f-8047-45fba5c97593/1/HNuFgmJdF7G8uuE_xt20OruV0v4.mft rsync://rpki.ripe.net/repository/DEFAULT/HNuFgmJdF7G8uuE_xt20OruV0v4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:b2:46:37:be:b3:5e:20:7e:bf:a8:60:1f:a6:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1cdb8582625d17b1bcbae13fc6ddb43abb95d2fe Validity Not Before: Feb 9 20:00:25 2026 GMT Not After : Feb 10 20:00:25 2026 GMT Subject: CN=96086cead7da1ff8b132c000851035433b0d1106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6d:09:b0:5f:4b:87:78:16:39:b0:0c:69:a2: d6:c7:77:2f:73:46:3f:7d:fa:81:c3:e0:c2:66:33: 22:b4:b9:9c:b8:da:c6:e6:19:c0:7b:74:a9:c7:2e: 4b:2b:4d:2d:df:f7:99:c8:50:35:03:fa:f9:e6:45: 17:ec:ce:81:b6:43:e2:d5:2e:da:70:8d:17:97:25: 9f:f1:b6:3f:14:5b:06:e7:85:aa:05:87:ed:ed:a6: 6d:cd:d0:db:02:c6:bb:90:5f:fc:91:63:ea:a6:2c: 1d:94:5f:e8:39:e1:11:6e:4c:b3:94:85:12:be:90: b9:0a:02:58:36:e6:ed:97:d8:8d:f8:34:43:b6:a1: 88:4c:67:3b:54:d1:f9:55:47:e4:d6:9c:7a:51:e3: d2:df:70:ad:a4:25:78:8a:09:93:6c:c2:69:52:d3: 28:96:c2:0a:9d:30:4e:96:ec:24:54:bc:20:70:ee: 80:29:b5:20:94:be:17:d2:4e:c2:d7:78:bb:27:89: a0:99:87:bc:db:e8:93:a8:ee:e2:23:d5:12:71:25: 4f:38:87:21:63:be:41:fd:b1:42:13:68:f7:e6:7f: 27:a5:b3:1a:0b:d5:5d:c5:c6:26:27:a1:34:7e:21: 0a:83:85:a2:46:26:9e:99:ad:94:9e:ba:5d:4c:d9: 78:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:08:6C:EA:D7:DA:1F:F8:B1:32:C0:00:85:10:35:43:3B:0D:11:06 X509v3 Authority Key Identifier: keyid:1C:DB:85:82:62:5D:17:B1:BC:BA:E1:3F:C6:DD:B4:3A:BB:95:D2:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HNuFgmJdF7G8uuE_xt20OruV0v4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/54cabe-0052-455f-8047-45fba5c97593/1/HNuFgmJdF7G8uuE_xt20OruV0v4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/54cabe-0052-455f-8047-45fba5c97593/1/HNuFgmJdF7G8uuE_xt20OruV0v4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:29:ed:7f:aa:81:c9:13:3c:d8:1b:f0:e6:b0:92:e6:e0:d2: 96:9f:62:a8:bd:07:74:c5:7b:3a:28:83:61:f5:84:79:5c:e9: 12:b5:33:18:0c:49:a9:ab:f6:a5:3f:25:9a:9b:2b:e0:a3:c0: 7b:dc:8e:15:ae:6a:b2:1a:97:58:64:82:0a:3f:6c:50:77:09: ca:3d:c4:33:4e:b4:ed:b2:8e:79:1d:cc:42:4c:40:dc:af:df: 5f:35:d6:28:f9:1f:bd:a9:6c:93:aa:1a:2d:68:c6:d2:38:08: 5a:bd:47:66:32:02:c5:a0:d9:dc:32:44:ca:36:e7:f4:03:4b: f7:cf:02:62:b7:4d:81:44:e2:44:54:ab:e2:69:22:bf:12:01: 52:be:78:ca:f5:7d:88:47:15:4c:4c:f1:0f:28:04:33:50:50: bb:7c:d3:b2:5d:23:07:01:58:1e:82:01:3c:01:b9:f3:68:d8: c1:9a:1d:53:02:b6:fb:a8:2d:35:30:cf:d7:99:57:4f:b5:12: 4c:0f:99:43:4e:19:26:d7:0f:03:1c:98:17:c7:c0:8e:22:80: 31:8e:3f:cd:ec:17:07:cd:7e:cf:07:ff:81:81:ee:27:07:53: 88:00:06:68:1b:02:72:0f:25:99:66:9a:1e:f6:66:e0:f5:a8: cd:8f:4f:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/bJGN76zXiB+v6hgH6ajMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjZGI4NTgyNjI1ZDE3YjFiY2JhZTEzZmM2ZGRiNDNhYmI5 NWQyZmUwHhcNMjYwMjA5MjAwMDI1WhcNMjYwMjEwMjAwMDI1WjAzMTEwLwYDVQQD Eyg5NjA4NmNlYWQ3ZGExZmY4YjEzMmMwMDA4NTEwMzU0MzNiMGQxMTA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA020JsF9Lh3gWObAMaaLWx3cvc0Y/ ffqBw+DCZjMitLmcuNrG5hnAe3Spxy5LK00t3/eZyFA1A/r55kUX7M6BtkPi1S7a cI0XlyWf8bY/FFsG54WqBYft7aZtzdDbAsa7kF/8kWPqpiwdlF/oOeERbkyzlIUS vpC5CgJYNubtl9iN+DRDtqGITGc7VNH5VUfk1px6UePS33CtpCV4igmTbMJpUtMo lsIKnTBOluwkVLwgcO6AKbUglL4X0k7C13i7J4mgmYe82+iTqO7iI9UScSVPOIch Y75B/bFCE2j35n8npbMaC9VdxcYmJ6E0fiEKg4WiRiaema2UnrpdTNl4ZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJYIbOrX2h/4sTLAAIUQNUM7DREGMB8GA1UdIwQY MBaAFBzbhYJiXRexvLrhP8bdtDq7ldL+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSE51RmdtSmRGN0c4dXVFX3h0MjBPcnVWMHY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC81NGNhYmUtMDA1Mi00NTVmLTgwNDct NDVmYmE1Yzk3NTkzLzEvSE51RmdtSmRGN0c4dXVFX3h0MjBPcnVWMHY0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC81NGNhYmUtMDA1Mi00NTVmLTgwNDctNDVmYmE1Yzk3NTkz LzEvSE51RmdtSmRGN0c4dXVFX3h0MjBPcnVWMHY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlyntf6qB yRM82Bvw5rCS5uDSlp9iqL0HdMV7OiiDYfWEeVzpErUzGAxJqav2pT8lmpsr4KPA e9yOFa5qshqXWGSCCj9sUHcJyj3EM0607bKOeR3MQkxA3K/fXzXWKPkfvalsk6oa LWjG0jgIWr1HZjICxaDZ3DJEyjbn9ANL988CYrdNgUTiRFSr4mkivxIBUr54yvV9 iEcVTEzxDygEM1BQu3zTsl0jBwFYHoIBPAG582jYwZodUwK2+6gtNTDP15lXT7US TA+ZQ04ZJtcPAxyYF8fAjiKAMY4/zewXB81+zwf/gYHuJwdTiAAGaBsCcg8lmWaa HvZm4PWozY9Pzg== -----END CERTIFICATE-----Generated at Tue Feb 10 00:17:06 2026 by rpki-client