This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft File: hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft (raw, json) Hash identifier: vLfOjg3L0++qZ4jt5N6DlNw4MRoXw+hOHTbypJ6Xkow= Subject key identifier: 5F:EA:9D:E1:01:F5:3E:66:AE:41:B5:9D:50:98:75:FB:38:9A:E2:77 Authority key identifier: 85:63:50:30:5F:11:38:75:00:F0:3C:5A:06:FF:73:AA:13:59:2F:1C Certificate issuer: /CN=856350305f11387500f03c5a06ff73aa13592f1c Certificate serial: 019C41A16D37A12E730DD13C79F762E4B66E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft Manifest number: 180B Signing time: Mon 09 Feb 2026 09:00:24 +0000 Manifest this update: Mon 09 Feb 2026 09:00:24 +0000 Manifest next update: Tue 10 Feb 2026 09:00:24 +0000 Files and hashes: 1: hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl (hash: iV1LiTLZLajt40Tfr7mJrDzLQA817JZKL5qx+udcofY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:6d:37:a1:2e:73:0d:d1:3c:79:f7:62:e4:b6:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=856350305f11387500f03c5a06ff73aa13592f1c Validity Not Before: Feb 9 09:00:24 2026 GMT Not After : Feb 10 09:00:24 2026 GMT Subject: CN=5fea9de101f53e66ae41b59d509875fb389ae277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:08:81:13:ca:de:b9:ba:7c:0c:cc:26:4f:03: 36:01:61:80:a1:af:49:d7:58:61:be:2c:b4:f9:35: dd:9c:71:61:83:18:85:05:b5:55:a7:30:8c:2a:59: e6:e4:ac:bc:55:1a:c5:85:89:f1:fc:d4:e6:c2:af: c5:dd:a5:f9:03:be:58:ea:e7:f9:e8:01:ea:4f:ca: 87:f2:94:6e:c5:c9:c6:83:ff:a8:00:cf:5c:92:b9: 62:93:4f:dd:e1:98:1d:7b:2f:67:ad:b7:3a:2d:e2: b1:d4:c7:0c:96:1f:2b:bb:57:1c:23:b9:44:cf:29: f9:38:53:df:16:60:e6:fc:89:09:bd:da:ca:23:90: b2:1a:d7:82:5f:96:88:da:2f:cf:5d:01:56:2b:d7: c8:40:b2:ae:57:1b:bf:58:a7:a6:91:85:fc:8a:87: 41:15:c4:45:cc:e0:35:16:35:71:93:7c:97:fb:0a: b1:18:f0:6f:fc:a2:7d:55:cd:a9:c3:ff:7e:f7:a7: d3:bf:ae:3f:b3:60:3b:c9:b7:4c:93:29:83:56:cb: 58:75:3d:85:07:17:1f:90:d3:f9:4d:34:4d:00:34: cf:4f:77:65:24:c8:72:99:e8:a4:80:0a:3d:1b:7d: 91:8e:1f:ca:81:7a:88:e3:54:9f:66:94:5e:60:16: 5e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:EA:9D:E1:01:F5:3E:66:AE:41:B5:9D:50:98:75:FB:38:9A:E2:77 X509v3 Authority Key Identifier: keyid:85:63:50:30:5F:11:38:75:00:F0:3C:5A:06:FF:73:AA:13:59:2F:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:71:c0:a6:fb:95:34:1e:35:98:b6:4f:b4:88:63:0f:2d:48: db:ea:34:13:29:05:a2:3a:f2:72:09:9e:48:28:2f:4a:2d:14: a3:12:ec:d2:73:a0:5f:2a:8d:c4:60:1f:f8:1c:26:f6:bb:e3: e5:81:06:15:19:ea:e8:9c:54:74:d2:92:67:fd:e1:1a:d1:52: 37:47:0b:d3:ff:ba:b6:08:d5:2d:23:b6:9d:43:39:a0:f5:35: ee:23:60:35:0f:59:16:59:21:34:dc:6a:37:b0:c1:36:44:36: 7f:c5:a2:24:0b:90:f0:30:d9:1d:60:a8:73:e9:69:7e:46:35: 7f:b3:d0:bf:00:0b:a4:76:84:e4:96:7c:98:f9:98:32:23:f6: 08:3b:7a:9a:1a:89:de:d6:e0:c5:56:33:10:01:23:5c:29:df: c3:43:28:8b:60:b4:fa:ea:f7:4e:61:cf:1d:1d:47:f5:5e:35: 57:a5:ae:0f:a5:5a:1b:b1:46:28:dd:ca:49:3b:2b:ed:dc:33: 3e:1b:55:76:41:63:26:5a:c1:29:09:ab:45:cd:6d:78:c5:cf: eb:65:54:65:2c:d8:db:cb:c6:7b:7a:fc:1b:63:82:3e:3c:92: ce:c5:3e:2b:3f:ea:af:2e:54:f7:0c:a4:96:df:20:f2:c9:e3: ae:68:fe:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoW03oS5zDdE8efdi5LZuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1NjM1MDMwNWYxMTM4NzUwMGYwM2M1YTA2ZmY3M2FhMTM1 OTJmMWMwHhcNMjYwMjA5MDkwMDI0WhcNMjYwMjEwMDkwMDI0WjAzMTEwLwYDVQQD Eyg1ZmVhOWRlMTAxZjUzZTY2YWU0MWI1OWQ1MDk4NzVmYjM4OWFlMjc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAywiBE8reubp8DMwmTwM2AWGAoa9J 11hhviy0+TXdnHFhgxiFBbVVpzCMKlnm5Ky8VRrFhYnx/NTmwq/F3aX5A75Y6uf5 6AHqT8qH8pRuxcnGg/+oAM9ckrlik0/d4Zgdey9nrbc6LeKx1McMlh8ru1ccI7lE zyn5OFPfFmDm/IkJvdrKI5CyGteCX5aI2i/PXQFWK9fIQLKuVxu/WKemkYX8iodB FcRFzOA1FjVxk3yX+wqxGPBv/KJ9Vc2pw/9+96fTv64/s2A7ybdMkymDVstYdT2F BxcfkNP5TTRNADTPT3dlJMhymeikgAo9G32Rjh/KgXqI41SfZpReYBZe+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF/qneEB9T5mrkG1nVCYdfs4muJ3MB8GA1UdIwQY MBaAFIVjUDBfETh1APA8Wgb/c6oTWS8cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFdOUU1GOFJPSFVBOER4YUJ2OXpxaE5aTHh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC83MTI5ZTctODI0Ny00YmJkLWIwMTct ZWNlYzFiMmVkYjU5LzEvaFdOUU1GOFJPSFVBOER4YUJ2OXpxaE5aTHh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC83MTI5ZTctODI0Ny00YmJkLWIwMTctZWNlYzFiMmVkYjU5 LzEvaFdOUU1GOFJPSFVBOER4YUJ2OXpxaE5aTHh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAenHApvuV NB41mLZPtIhjDy1I2+o0EykFojrycgmeSCgvSi0UoxLs0nOgXyqNxGAf+Bwm9rvj 5YEGFRnq6JxUdNKSZ/3hGtFSN0cL0/+6tgjVLSO2nUM5oPU17iNgNQ9ZFlkhNNxq N7DBNkQ2f8WiJAuQ8DDZHWCoc+lpfkY1f7PQvwALpHaE5JZ8mPmYMiP2CDt6mhqJ 3tbgxVYzEAEjXCnfw0Moi2C0+ur3TmHPHR1H9V41V6WuD6VaG7FGKN3KSTsr7dwz PhtVdkFjJlrBKQmrRc1teMXP62VUZSzY28vGe3r8G2OCPjySzsU+Kz/qry5U9wyk lt8g8snjrmj+xQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:59:33 2026 by rpki-client