This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft File: H0guXkEsHeu3dt7fr0XDMXTnZC4.mft (raw, json) Hash identifier: nv1XUpcgeC9pRAuUFRWyixvW3k5IKeUgy6+IgAwCs6k= Subject key identifier: 42:0C:D0:86:D1:5E:1D:AF:AF:72:01:DF:6D:6A:26:C3:6F:79:DE:14 Authority key identifier: 1F:48:2E:5E:41:2C:1D:EB:B7:76:DE:DF:AF:45:C3:31:74:E7:64:2E Certificate issuer: /CN=1f482e5e412c1debb776dedfaf45c33174e7642e Certificate serial: 019C43C6E3D0A66BCF136D7D107807C5229C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft Manifest number: 065C Signing time: Mon 09 Feb 2026 19:00:33 +0000 Manifest this update: Mon 09 Feb 2026 19:00:33 +0000 Manifest next update: Tue 10 Feb 2026 19:00:33 +0000 Files and hashes: 1: 7F5MFPLGX7n9kqmK4iPr3DwuhNU.roa (hash: sUozPnCyk9y8i1GS+PfFGedUQX43402xLyKa/GCV0HY=) 2: H0guXkEsHeu3dt7fr0XDMXTnZC4.crl (hash: iJlVexQ2jJ4ysRrr5cH+4WsRpBj4diR3fdD1RAj6/no=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.crl rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:e3:d0:a6:6b:cf:13:6d:7d:10:78:07:c5:22:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f482e5e412c1debb776dedfaf45c33174e7642e Validity Not Before: Feb 9 19:00:33 2026 GMT Not After : Feb 10 19:00:33 2026 GMT Subject: CN=420cd086d15e1dafaf7201df6d6a26c36f79de14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:33:21:29:cd:62:1c:f8:e0:25:d3:ee:31:24: 75:2b:fe:c6:a7:ab:8d:19:1c:0e:c4:0e:55:cf:1c: e9:f3:b1:e3:ec:52:14:86:93:79:b3:77:8c:df:a1: bc:ae:5d:13:72:69:70:d7:5b:a6:fa:6d:34:7e:a7: 49:bd:5b:52:6a:d2:38:96:7e:5c:70:59:6b:0a:93: 2e:72:2e:54:8e:19:ef:86:72:1b:dd:65:08:8c:e3: 05:37:05:7d:ba:4b:34:b5:21:e2:ba:fa:24:90:95: 5c:f8:6b:01:18:21:55:6c:e1:ce:ae:da:2c:78:fe: 1b:f6:32:e7:e5:92:d1:04:f6:3c:eb:a9:ee:be:a5: 9f:44:c7:e5:1b:aa:87:85:fa:65:fc:e0:3d:ad:26: 13:84:2a:20:cf:90:71:ea:05:b6:d5:1e:1c:1a:a5: f4:03:e0:dd:51:74:08:bb:c8:3b:83:cd:50:83:3b: d2:a7:3b:be:ef:06:da:de:7b:28:40:d7:8d:59:0a: 12:27:42:ec:4c:d8:ef:96:62:2d:85:20:c7:95:3d: dd:0b:c5:0e:e8:af:01:4c:e9:bc:76:81:71:30:9e: 2e:f3:c4:ba:e7:4b:38:39:fd:c2:0f:be:60:eb:88: c9:ac:b4:11:22:e1:b2:9c:95:3c:dc:a0:b3:ea:b9: c2:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:0C:D0:86:D1:5E:1D:AF:AF:72:01:DF:6D:6A:26:C3:6F:79:DE:14 X509v3 Authority Key Identifier: keyid:1F:48:2E:5E:41:2C:1D:EB:B7:76:DE:DF:AF:45:C3:31:74:E7:64:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:97:b4:7f:50:3c:51:b8:db:a7:73:21:4d:53:61:2a:94:ca: 30:28:9f:3f:c9:75:23:17:12:a2:41:33:b9:8b:8f:b2:8f:59: 95:97:ad:11:64:aa:31:bb:73:d4:1a:53:78:00:26:24:7b:53: 5a:ef:68:e1:2b:54:cf:a9:c1:00:c1:0d:72:60:83:dc:08:64: c1:02:d8:d1:c3:30:d6:ce:d4:88:d8:f1:1b:96:f4:b5:a2:b5: cc:da:fd:67:db:23:ed:2c:87:f8:c5:10:67:74:37:c4:7c:79: 24:cb:25:fd:c3:47:ae:4f:81:01:89:f2:eb:d9:33:0a:4c:4f: 0d:7a:22:0f:b0:39:69:b6:17:6e:76:7d:bd:b0:f2:c4:76:3f: df:71:f3:f0:dc:b7:44:44:6c:cb:fc:39:4a:f2:02:1f:fd:d8: 42:c0:6b:e6:08:7b:40:6d:72:bf:a9:2c:c9:5f:9a:44:1b:48: 02:c2:40:f2:63:19:31:d2:d3:dd:39:6b:61:7d:c1:f2:fc:55: 46:9a:9c:9d:bb:ad:fa:c5:3d:85:f4:59:14:ee:fd:ec:38:0f: 4e:8e:97:ac:ef:6e:47:ac:3c:81:e7:26:a8:69:24:d9:42:80: 92:12:5e:b5:40:1d:4d:67:14:d4:ab:ea:98:6f:00:c2:17:c0: d3:04:14:6b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxuPQpmvPE219EHgHxSKcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmNDgyZTVlNDEyYzFkZWJiNzc2ZGVkZmFmNDVjMzMxNzRl NzY0MmUwHhcNMjYwMjA5MTkwMDMzWhcNMjYwMjEwMTkwMDMzWjAzMTEwLwYDVQQD Eyg0MjBjZDA4NmQxNWUxZGFmYWY3MjAxZGY2ZDZhMjZjMzZmNzlkZTE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmTMhKc1iHPjgJdPuMSR1K/7Gp6uN GRwOxA5Vzxzp87Hj7FIUhpN5s3eM36G8rl0Tcmlw11um+m00fqdJvVtSatI4ln5c cFlrCpMuci5UjhnvhnIb3WUIjOMFNwV9uks0tSHiuvokkJVc+GsBGCFVbOHOrtos eP4b9jLn5ZLRBPY866nuvqWfRMflG6qHhfpl/OA9rSYThCogz5Bx6gW21R4cGqX0 A+DdUXQIu8g7g81QgzvSpzu+7wba3nsoQNeNWQoSJ0LsTNjvlmIthSDHlT3dC8UO 6K8BTOm8doFxMJ4u88S650s4Of3CD75g64jJrLQRIuGynJU83KCz6rnCtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEIM0IbRXh2vr3IB321qJsNved4UMB8GA1UdIwQY MBaAFB9ILl5BLB3rt3be369FwzF052QuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDBndVhrRXNIZXUzZHQ3ZnIwWERNWFRuWkM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS83ZGRlOTYtMTBkZC00MzIzLTgxZDIt ZDJlMzM3MmFjMjljLzEvSDBndVhrRXNIZXUzZHQ3ZnIwWERNWFRuWkM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS83ZGRlOTYtMTBkZC00MzIzLTgxZDItZDJlMzM3MmFjMjlj LzEvSDBndVhrRXNIZXUzZHQ3ZnIwWERNWFRuWkM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABpe0f1A8 Ubjbp3MhTVNhKpTKMCifP8l1IxcSokEzuYuPso9ZlZetEWSqMbtz1BpTeAAmJHtT Wu9o4StUz6nBAMENcmCD3AhkwQLY0cMw1s7UiNjxG5b0taK1zNr9Z9sj7SyH+MUQ Z3Q3xHx5JMsl/cNHrk+BAYny69kzCkxPDXoiD7A5abYXbnZ9vbDyxHY/33Hz8Ny3 RERsy/w5SvICH/3YQsBr5gh7QG1yv6ksyV+aRBtIAsJA8mMZMdLT3TlrYX3B8vxV Rpqcnbut+sU9hfRZFO797DgPTo6XrO9uR6w8gecmqGkk2UKAkhJetUAdTWcU1Kvq mG8AwhfA0wQUaw== -----END CERTIFICATE-----Generated at Tue Feb 10 00:15:22 2026 by rpki-client