This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.mft File: HGnHYzivyQhbj71mm4t0vXqS1DE.mft (raw, json) Hash identifier: CzdIN1Yz+jWJrnQsX79KFGd1a3vkKU1Z29vyYCS++sI= Subject key identifier: CF:70:9F:65:CE:6A:31:4A:FE:A4:26:3A:B9:71:60:AD:82:08:8A:8D Authority key identifier: 1C:69:C7:63:38:AF:C9:08:5B:8F:BD:66:9B:8B:74:BD:7A:92:D4:31 Certificate issuer: /CN=1c69c76338afc9085b8fbd669b8b74bd7a92d431 Certificate serial: 019C42B4994EEC493317DAB8B7DF0FF247C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HGnHYzivyQhbj71mm4t0vXqS1DE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.mft Manifest number: 14FD Signing time: Mon 09 Feb 2026 14:00:57 +0000 Manifest this update: Mon 09 Feb 2026 14:00:57 +0000 Manifest next update: Tue 10 Feb 2026 14:00:57 +0000 Files and hashes: 1: HGnHYzivyQhbj71mm4t0vXqS1DE.crl (hash: esQUqPWhbtAIXwv0bWaK7OIEXsMc73IifCO/ycULdWw=) 2: WAiJPERlMEAh5qrgyMMcndKbs6c.roa (hash: zfIldmOVBvuxzGlnGLqlwDlsMvOVa6R4F1tNInZRtk4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.mft rsync://rpki.ripe.net/repository/DEFAULT/HGnHYzivyQhbj71mm4t0vXqS1DE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:99:4e:ec:49:33:17:da:b8:b7:df:0f:f2:47:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c69c76338afc9085b8fbd669b8b74bd7a92d431 Validity Not Before: Feb 9 14:00:57 2026 GMT Not After : Feb 10 14:00:57 2026 GMT Subject: CN=cf709f65ce6a314afea4263ab97160ad82088a8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:95:9f:74:65:a1:f8:cd:39:dd:cc:67:7f:f3: 4e:91:d8:0c:d1:cf:c6:26:e5:d4:89:9a:42:19:c6: 89:01:b6:6d:22:c5:95:97:af:80:22:1b:02:03:63: d6:87:6b:06:7a:f2:0b:21:bf:b8:fe:f6:9a:6d:51: 8f:52:b3:d2:33:1a:f4:b8:a9:77:0f:06:12:80:77: cf:91:f0:cf:cf:af:d4:2c:0a:f0:78:0d:50:be:4f: 8f:bc:5f:fb:26:48:43:35:27:0a:aa:2e:44:72:51: 0f:9b:10:1b:a7:1e:b6:f8:86:34:27:46:8d:2d:45: 87:a2:ed:46:d6:8c:7a:0d:dc:89:bc:10:73:76:f1: 5b:7d:92:20:05:1f:7d:78:19:3d:f3:82:55:ee:ef: e9:7e:b9:7c:08:26:5a:0d:2b:a3:89:84:f5:6f:cf: 43:5a:c4:8b:e8:19:08:a9:0f:52:d4:10:51:c6:30: 5e:ec:2d:e7:11:90:8a:db:92:c0:12:4f:20:b4:17: cf:ba:48:61:e1:63:b5:82:2a:ec:e1:91:8d:d1:42: 0c:29:7d:6b:ed:82:6f:27:18:7d:bd:92:b5:b3:27: 53:d8:90:ba:26:79:40:b6:ed:5f:74:fa:1e:6a:c5: 95:a4:4d:81:c0:8c:b0:7d:aa:9d:e0:10:98:c1:49: 16:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:70:9F:65:CE:6A:31:4A:FE:A4:26:3A:B9:71:60:AD:82:08:8A:8D X509v3 Authority Key Identifier: keyid:1C:69:C7:63:38:AF:C9:08:5B:8F:BD:66:9B:8B:74:BD:7A:92:D4:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HGnHYzivyQhbj71mm4t0vXqS1DE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/a2088b-a126-4ba6-871c-5759b427f4d1/1/HGnHYzivyQhbj71mm4t0vXqS1DE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:8a:ea:ab:d1:b1:2e:81:f6:47:62:21:5d:52:eb:99:a9:bd: 18:3e:a1:7c:2e:92:78:5b:5d:94:77:53:c7:81:8f:bb:a7:ec: f6:cd:33:41:01:ec:8f:5d:bd:3d:94:00:ed:13:49:25:a9:1b: 01:4c:21:22:5b:27:e1:3f:4e:6d:88:00:e1:cf:97:df:8e:5b: 5a:7a:e2:48:09:c4:7a:8d:bb:1a:dc:a8:40:65:03:0a:c3:23: f2:17:2e:d9:ec:2e:a4:ba:8a:a1:70:6f:99:7f:c6:b4:7b:44: b2:29:16:a0:b8:68:bd:84:ad:19:01:ac:76:f0:34:d6:72:e5: 3c:aa:0d:5c:7e:ec:96:b1:cf:3e:68:fd:58:97:55:9f:47:bd: 03:2c:2b:9d:ee:66:50:c2:73:98:41:16:b7:1a:04:50:88:c4: c6:90:77:57:be:cf:1e:7b:61:d2:0c:8b:c5:32:90:56:27:fe: 47:23:77:88:e1:dc:7b:a5:d2:3c:5b:b6:88:ce:40:e2:9b:34: 7b:f2:47:44:1b:84:74:0f:be:5e:5d:3e:ca:f6:03:6e:5e:bf: d6:8e:54:87:fe:c3:04:80:1b:28:05:cb:84:0c:a5:f5:0b:0a: ce:d3:2b:b7:28:fc:c7:49:b2:ff:84:7e:dd:f5:2e:d5:7b:a7: ac:e1:52:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtJlO7EkzF9q4t98P8kfIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjNjljNzYzMzhhZmM5MDg1YjhmYmQ2NjliOGI3NGJkN2E5 MmQ0MzEwHhcNMjYwMjA5MTQwMDU3WhcNMjYwMjEwMTQwMDU3WjAzMTEwLwYDVQQD EyhjZjcwOWY2NWNlNmEzMTRhZmVhNDI2M2FiOTcxNjBhZDgyMDg4YThkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZWfdGWh+M053cxnf/NOkdgM0c/G JuXUiZpCGcaJAbZtIsWVl6+AIhsCA2PWh2sGevILIb+4/vaabVGPUrPSMxr0uKl3 DwYSgHfPkfDPz6/ULArweA1Qvk+PvF/7JkhDNScKqi5EclEPmxAbpx62+IY0J0aN LUWHou1G1ox6DdyJvBBzdvFbfZIgBR99eBk984JV7u/pfrl8CCZaDSujiYT1b89D WsSL6BkIqQ9S1BBRxjBe7C3nEZCK25LAEk8gtBfPukhh4WO1girs4ZGN0UIMKX1r 7YJvJxh9vZK1sydT2JC6JnlAtu1fdPoeasWVpE2BwIywfaqd4BCYwUkWHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM9wn2XOajFK/qQmOrlxYK2CCIqNMB8GA1UdIwQY MBaAFBxpx2M4r8kIW4+9ZpuLdL16ktQxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEduSFl6aXZ5UWhiajcxbW00dDB2WHFTMURFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi9hMjA4OGItYTEyNi00YmE2LTg3MWMt NTc1OWI0MjdmNGQxLzEvSEduSFl6aXZ5UWhiajcxbW00dDB2WHFTMURFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi9hMjA4OGItYTEyNi00YmE2LTg3MWMtNTc1OWI0MjdmNGQx LzEvSEduSFl6aXZ5UWhiajcxbW00dDB2WHFTMURFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWorqq9Gx LoH2R2IhXVLrmam9GD6hfC6SeFtdlHdTx4GPu6fs9s0zQQHsj129PZQA7RNJJakb AUwhIlsn4T9ObYgA4c+X345bWnriSAnEeo27GtyoQGUDCsMj8hcu2ewupLqKoXBv mX/GtHtEsikWoLhovYStGQGsdvA01nLlPKoNXH7slrHPPmj9WJdVn0e9Aywrne5m UMJzmEEWtxoEUIjExpB3V77PHnth0gyLxTKQVif+RyN3iOHce6XSPFu2iM5A4ps0 e/JHRBuEdA++Xl0+yvYDbl6/1o5Uh/7DBIAbKAXLhAyl9QsKztMrtyj8x0my/4R+ 3fUu1XunrOFSNw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:26 2026 by rpki-client