This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft File: hqnzrkX3AVCvF-uHiel4iQKe5dM.mft (raw, json) Hash identifier: gpUf4yyHm0RCeLlgpAh9HQ6py7ZdIDt35WXZo6WtImk= Subject key identifier: 90:5A:A4:38:81:E7:8A:46:F4:C7:8E:CE:FB:F5:F0:4B:EA:E5:F1:29 Authority key identifier: 86:A9:F3:AE:45:F7:01:50:AF:17:EB:87:89:E9:78:89:02:9E:E5:D3 Certificate issuer: /CN=86a9f3ae45f70150af17eb8789e97889029ee5d3 Certificate serial: 019C4133ABB1683DAF075D89F3C964E7A09C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hqnzrkX3AVCvF-uHiel4iQKe5dM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 07:00:31 +0000 Manifest this update: Mon 09 Feb 2026 07:00:31 +0000 Manifest next update: Tue 10 Feb 2026 07:00:31 +0000 Files and hashes: 1: O3Ze20ZxAwVm_hG9bsYyUaAYePQ.roa (hash: TSl1RQes/j1AF84x+h+cAOoSi4izTWDFh+hMOg3IRm4=) 2: hqnzrkX3AVCvF-uHiel4iQKe5dM.crl (hash: xdeFOlbOoX1eTMbzqPc4yg0MtQK87stVDXslr9i1vhE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft rsync://rpki.ripe.net/repository/DEFAULT/hqnzrkX3AVCvF-uHiel4iQKe5dM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:ab:b1:68:3d:af:07:5d:89:f3:c9:64:e7:a0:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86a9f3ae45f70150af17eb8789e97889029ee5d3 Validity Not Before: Feb 9 07:00:31 2026 GMT Not After : Feb 10 07:00:31 2026 GMT Subject: CN=905aa43881e78a46f4c78ecefbf5f04beae5f129 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:a7:be:cd:c6:e0:d8:b6:fe:4b:97:a1:90:05: d7:0d:8e:ea:cb:bc:11:f8:df:47:7e:f0:93:29:8e: f4:d0:9b:9a:32:a6:2f:87:89:f3:6f:4e:7b:17:85: 36:53:67:e5:93:54:d4:c9:a8:08:b6:11:67:df:7d: 91:b1:f6:a0:29:d7:67:06:db:75:9c:fe:f5:94:f3: 6e:d8:0c:16:af:26:24:b7:c4:e4:10:02:74:53:d5: 01:7c:d7:43:d7:25:b2:1b:d7:ef:8c:c4:5e:2e:e1: 44:37:7a:08:6e:f1:a4:ff:12:97:5d:b2:66:4b:f4: a5:5a:3e:af:26:00:e2:bc:2e:a1:e4:6f:f2:91:1a: e8:b0:30:98:4c:a4:e8:da:95:1d:83:ac:d6:60:e9: 00:7c:a6:11:95:3f:93:4c:e6:c1:91:f5:60:03:ed: f0:85:42:4c:e3:66:61:44:2d:9b:54:c7:9e:0b:37: 67:c7:87:00:08:e8:f8:80:13:61:0f:ff:56:ca:9e: 70:51:5d:e1:c0:a5:34:32:e9:b3:63:ad:2f:5d:b5: ee:57:d9:16:8d:3a:b0:c0:4b:e8:74:84:b9:5d:99: 33:a6:83:7c:c9:96:21:7a:3b:98:6a:dd:ae:70:6d: 2b:49:65:90:95:8a:89:6a:be:b6:2a:b3:75:0a:ec: 62:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:5A:A4:38:81:E7:8A:46:F4:C7:8E:CE:FB:F5:F0:4B:EA:E5:F1:29 X509v3 Authority Key Identifier: keyid:86:A9:F3:AE:45:F7:01:50:AF:17:EB:87:89:E9:78:89:02:9E:E5:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hqnzrkX3AVCvF-uHiel4iQKe5dM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:56:25:77:2b:2c:3e:d8:0a:d2:61:e7:b4:c4:54:53:c1:39: 83:a5:f3:2a:8c:cd:4a:0b:98:b4:6e:81:7c:e5:8f:9a:1c:74: 84:d8:b0:6e:fc:d9:c2:79:fa:c9:75:dc:26:79:1c:c4:57:3e: 1a:47:f2:bb:ee:ee:e4:24:f1:f1:98:b3:8c:13:ba:11:c3:9c: 90:bd:fe:90:77:2b:75:11:a0:05:64:38:22:e5:16:44:5a:5a: d9:c1:bc:0a:18:b8:00:a3:97:9f:67:79:74:02:7e:71:d4:9f: 64:07:a7:f5:cc:e5:a4:d6:35:0b:9a:cc:be:8f:b6:0a:90:4c: ce:d0:18:a8:5c:3c:9a:6a:f4:84:3d:00:d7:ea:d6:18:43:b9: c8:b2:4a:03:57:67:f2:47:70:76:b5:13:e1:34:5b:0f:4e:29: 8a:c4:7c:18:2b:15:be:d2:e7:cf:4f:b4:e0:b8:0a:84:6f:2b: 78:79:45:91:b8:98:3b:d3:c7:f2:d1:d8:59:84:9e:93:be:13: 18:bf:96:95:cf:4a:b2:25:20:dc:89:f0:36:42:c9:f2:c8:0d: 5c:8b:66:97:df:8a:a3:1d:ef:49:ab:f3:85:a9:9b:d2:be:c8: 2e:e6:c0:a7:3e:e5:8e:d1:61:5e:b7:94:5b:56:73:1f:66:fa: 69:95:6c:02 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM6uxaD2vB12J88lk56CcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2YTlmM2FlNDVmNzAxNTBhZjE3ZWI4Nzg5ZTk3ODg5MDI5 ZWU1ZDMwHhcNMjYwMjA5MDcwMDMxWhcNMjYwMjEwMDcwMDMxWjAzMTEwLwYDVQQD Eyg5MDVhYTQzODgxZTc4YTQ2ZjRjNzhlY2VmYmY1ZjA0YmVhZTVmMTI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj6e+zcbg2Lb+S5ehkAXXDY7qy7wR +N9HfvCTKY700JuaMqYvh4nzb057F4U2U2flk1TUyagIthFn332RsfagKddnBtt1 nP71lPNu2AwWryYkt8TkEAJ0U9UBfNdD1yWyG9fvjMReLuFEN3oIbvGk/xKXXbJm S/SlWj6vJgDivC6h5G/ykRrosDCYTKTo2pUdg6zWYOkAfKYRlT+TTObBkfVgA+3w hUJM42ZhRC2bVMeeCzdnx4cACOj4gBNhD/9Wyp5wUV3hwKU0MumzY60vXbXuV9kW jTqwwEvodIS5XZkzpoN8yZYhejuYat2ucG0rSWWQlYqJar62KrN1CuxiPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJBapDiB54pG9MeOzvv18Evq5fEpMB8GA1UdIwQY MBaAFIap865F9wFQrxfrh4npeIkCnuXTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHFuenJrWDNBVkN2Ri11SGllbDRpUUtlNWRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8xMzEyNzQtNzMzNC00NDZiLWE5MzUt MzQ4N2FlODJiMjBkLzEvaHFuenJrWDNBVkN2Ri11SGllbDRpUUtlNWRNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC8xMzEyNzQtNzMzNC00NDZiLWE5MzUtMzQ4N2FlODJiMjBk LzEvaHFuenJrWDNBVkN2Ri11SGllbDRpUUtlNWRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHVYldyss PtgK0mHntMRUU8E5g6XzKozNSguYtG6BfOWPmhx0hNiwbvzZwnn6yXXcJnkcxFc+ Gkfyu+7u5CTx8ZizjBO6EcOckL3+kHcrdRGgBWQ4IuUWRFpa2cG8Chi4AKOXn2d5 dAJ+cdSfZAen9czlpNY1C5rMvo+2CpBMztAYqFw8mmr0hD0A1+rWGEO5yLJKA1dn 8kdwdrUT4TRbD04pisR8GCsVvtLnz0+04LgKhG8reHlFkbiYO9PH8tHYWYSek74T GL+Wlc9KsiUg3InwNkLJ8sgNXItml9+Kox3vSavzhamb0r7ILubApz7ljtFhXreU W1ZzH2b6aZVsAg== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:08 2026 by rpki-client