This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/03d175-30f2-4913-99b2-ffc409c503d5/1/HbaQYGGZpdSGeJxD2__QwGW93OY.mft File: HbaQYGGZpdSGeJxD2__QwGW93OY.mft (raw, json) Hash identifier: S45K4XTNjV3oqUpyDu/+ySlFFQSpTfak3QWR4LtjFpE= Subject key identifier: E5:E3:0E:01:3E:5B:A0:2A:2D:FC:BC:C6:84:12:A7:6F:0B:EF:4A:6E Authority key identifier: 1D:B6:90:60:61:99:A5:D4:86:78:9C:43:DB:FF:D0:C0:65:BD:DC:E6 Certificate issuer: /CN=1db690606199a5d486789c43dbffd0c065bddce6 Certificate serial: 019C446BD817B53509EFD62AB59E62800D2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HbaQYGGZpdSGeJxD2__QwGW93OY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/03d175-30f2-4913-99b2-ffc409c503d5/1/HbaQYGGZpdSGeJxD2__QwGW93OY.mft Manifest number: 0646 Signing time: Mon 09 Feb 2026 22:00:44 +0000 Manifest this update: Mon 09 Feb 2026 22:00:44 +0000 Manifest next update: Tue 10 Feb 2026 22:00:44 +0000 Files and hashes: 1: HbaQYGGZpdSGeJxD2__QwGW93OY.crl (hash: laWloT1SV+QhciNWewr9cKsTYNqXWOxzQC+QfHM7zg4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/03d175-30f2-4913-99b2-ffc409c503d5/1/HbaQYGGZpdSGeJxD2__QwGW93OY.crl rsync://rpki.ripe.net/repository/DEFAULT/30/03d175-30f2-4913-99b2-ffc409c503d5/1/HbaQYGGZpdSGeJxD2__QwGW93OY.mft rsync://rpki.ripe.net/repository/DEFAULT/HbaQYGGZpdSGeJxD2__QwGW93OY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:d8:17:b5:35:09:ef:d6:2a:b5:9e:62:80:0d:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1db690606199a5d486789c43dbffd0c065bddce6 Validity Not Before: Feb 9 22:00:44 2026 GMT Not After : Feb 10 22:00:44 2026 GMT Subject: CN=e5e30e013e5ba02a2dfcbcc68412a76f0bef4a6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d6:35:3e:fd:61:68:40:64:e8:c7:a4:18:c5: eb:23:be:71:b1:f8:37:98:70:be:dd:16:52:42:75: 45:d6:c2:76:3f:a9:fe:5b:3e:93:3d:c3:b7:20:7e: 23:29:ba:5c:3c:8e:a7:b1:10:e6:24:c6:b8:ce:0d: e4:ed:24:f1:79:8c:05:bc:fe:34:2a:15:70:7f:fa: 0e:ba:eb:46:eb:4d:d1:7c:70:ff:88:89:bc:95:6c: 8b:9d:53:4a:ee:ae:7e:05:bb:d2:87:36:4b:3d:b3: d9:24:63:3a:05:cd:57:d7:6f:39:f7:2c:fd:13:5f: 14:a8:47:98:cc:ad:4b:5d:08:98:8f:17:f3:c8:ce: a7:34:03:10:c5:9a:6c:10:c8:f4:64:5a:cc:67:cc: 2e:d0:48:47:63:2a:2c:a2:54:3e:91:85:b1:cd:70: 20:7f:1d:c4:c3:7c:f6:75:b0:e8:3b:c8:bf:14:dd: ec:c0:32:d4:24:c9:8c:74:bb:f6:40:7b:87:78:5f: 2c:fc:15:3b:11:b7:b9:ce:fe:f4:a4:41:51:c9:ad: 15:62:70:aa:c1:30:4a:74:d2:86:c5:13:bc:91:43: 93:38:63:4f:d4:d4:ac:10:91:01:7f:96:ad:fb:7e: 2b:fd:ed:15:20:b1:2b:dc:3f:22:ff:35:b0:e5:8e: e2:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:E3:0E:01:3E:5B:A0:2A:2D:FC:BC:C6:84:12:A7:6F:0B:EF:4A:6E X509v3 Authority Key Identifier: keyid:1D:B6:90:60:61:99:A5:D4:86:78:9C:43:DB:FF:D0:C0:65:BD:DC:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HbaQYGGZpdSGeJxD2__QwGW93OY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/03d175-30f2-4913-99b2-ffc409c503d5/1/HbaQYGGZpdSGeJxD2__QwGW93OY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/03d175-30f2-4913-99b2-ffc409c503d5/1/HbaQYGGZpdSGeJxD2__QwGW93OY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:71:be:19:c3:95:15:07:d9:13:f0:62:14:aa:1a:e7:ce:40: ab:e1:56:28:ce:86:df:26:28:e7:73:71:c0:9b:bb:fb:52:53: 3b:a9:03:6a:92:85:65:16:c3:d7:13:71:c1:2a:d2:11:28:21: 2f:06:59:3a:68:be:dc:5e:5f:a4:34:fd:41:bd:32:a7:e3:87: 0d:8f:7b:75:9f:88:ad:e2:96:4b:5c:c6:39:b7:33:7a:d6:f0: 75:9d:ac:58:35:60:24:56:21:af:5a:d8:10:bb:33:51:dc:68: f4:9d:7c:c8:50:4a:e8:36:0c:72:13:9c:32:24:3f:10:59:fb: df:a3:8f:77:88:97:0c:77:c4:01:a4:5e:97:76:32:9f:6b:c7: ce:51:77:f7:13:f6:df:89:49:b5:83:f8:6f:89:e8:91:4f:4d: d9:e2:d6:fe:64:be:88:49:e7:c5:92:7c:29:a0:4e:2c:5d:55: 9d:dc:19:60:4e:7e:8d:47:cd:fb:da:2d:81:1b:48:0b:c1:fd: 8f:23:81:36:88:9e:47:29:3d:86:c2:2b:a4:c7:84:a4:c5:9a: f3:06:e9:57:fc:dd:72:89:e7:5a:6c:8a:8d:25:f1:da:c0:77: a6:f4:7a:19:25:e7:bb:6c:e4:9e:09:28:13:2b:62:75:c2:08: 74:3d:c4:bd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa9gXtTUJ79YqtZ5igA0tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkYjY5MDYwNjE5OWE1ZDQ4Njc4OWM0M2RiZmZkMGMwNjVi ZGRjZTYwHhcNMjYwMjA5MjIwMDQ0WhcNMjYwMjEwMjIwMDQ0WjAzMTEwLwYDVQQD EyhlNWUzMGUwMTNlNWJhMDJhMmRmY2JjYzY4NDEyYTc2ZjBiZWY0YTZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAndY1Pv1haEBk6MekGMXrI75xsfg3 mHC+3RZSQnVF1sJ2P6n+Wz6TPcO3IH4jKbpcPI6nsRDmJMa4zg3k7STxeYwFvP40 KhVwf/oOuutG603RfHD/iIm8lWyLnVNK7q5+BbvShzZLPbPZJGM6Bc1X12859yz9 E18UqEeYzK1LXQiYjxfzyM6nNAMQxZpsEMj0ZFrMZ8wu0EhHYyosolQ+kYWxzXAg fx3Ew3z2dbDoO8i/FN3swDLUJMmMdLv2QHuHeF8s/BU7Ebe5zv70pEFRya0VYnCq wTBKdNKGxRO8kUOTOGNP1NSsEJEBf5at+34r/e0VILEr3D8i/zWw5Y7irQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOXjDgE+W6AqLfy8xoQSp28L70puMB8GA1UdIwQY MBaAFB22kGBhmaXUhnicQ9v/0MBlvdzmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGJhUVlHR1pwZFNHZUp4RDJfX1F3R1c5M09ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8wM2QxNzUtMzBmMi00OTEzLTk5YjIt ZmZjNDA5YzUwM2Q1LzEvSGJhUVlHR1pwZFNHZUp4RDJfX1F3R1c5M09ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC8wM2QxNzUtMzBmMi00OTEzLTk5YjItZmZjNDA5YzUwM2Q1 LzEvSGJhUVlHR1pwZFNHZUp4RDJfX1F3R1c5M09ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATHG+GcOV FQfZE/BiFKoa585Aq+FWKM6G3yYo53NxwJu7+1JTO6kDapKFZRbD1xNxwSrSESgh LwZZOmi+3F5fpDT9Qb0yp+OHDY97dZ+IreKWS1zGObczetbwdZ2sWDVgJFYhr1rY ELszUdxo9J18yFBK6DYMchOcMiQ/EFn736OPd4iXDHfEAaRel3Yyn2vHzlF39xP2 34lJtYP4b4nokU9N2eLW/mS+iEnnxZJ8KaBOLF1VndwZYE5+jUfN+9otgRtIC8H9 jyOBNoieRyk9hsIrpMeEpMWa8wbpV/zdconnWmyKjSXx2sB3pvR6GSXnu2zkngko EytidcIIdD3EvQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:35:04 2026 by rpki-client