This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft File: HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft (raw, json) Hash identifier: X+wzT1wBLLxWX5M06YYDLWejvxCxLapbC5/w/TtnAbk= Subject key identifier: 3B:C5:87:AF:59:D5:BE:60:8E:E1:2D:13:21:B2:B9:3F:8E:E5:01:93 Authority key identifier: 1D:89:33:C1:93:F0:4E:32:44:1E:37:16:2D:C4:DE:FA:97:44:B8:4F Certificate issuer: /CN=1d8933c193f04e32441e37162dc4defa9744b84f Certificate serial: 019C427DE8E8FBE1A7A46B75F5D52F90BA8F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft Manifest number: 15D4 Signing time: Mon 09 Feb 2026 13:01:13 +0000 Manifest this update: Mon 09 Feb 2026 13:01:13 +0000 Manifest next update: Tue 10 Feb 2026 13:01:13 +0000 Files and hashes: 1: HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl (hash: d7DC64VuOjFx06ZB8ltcLgtRpRR4mZysoFn/lf41xQQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:e8:e8:fb:e1:a7:a4:6b:75:f5:d5:2f:90:ba:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d8933c193f04e32441e37162dc4defa9744b84f Validity Not Before: Feb 9 13:01:13 2026 GMT Not After : Feb 10 13:01:13 2026 GMT Subject: CN=3bc587af59d5be608ee12d1321b2b93f8ee50193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d8:78:dc:6f:02:d0:d8:46:8a:4a:83:ee:4d: 7f:c0:b5:00:77:0e:04:88:dc:f7:a9:a3:80:f4:b0: a4:31:ca:4d:ca:15:8c:33:6f:e4:84:40:b8:ed:cb: fe:c3:aa:19:d1:cc:f8:10:3d:5a:b8:17:2d:bb:ac: 05:61:09:e9:8d:f7:61:48:09:43:01:f5:17:16:8f: 85:d8:31:ab:e7:ef:7d:37:2b:a4:fd:ea:d3:6a:e6: d1:1b:1a:03:04:85:61:fd:13:3d:e4:9a:2a:20:b1: f6:0c:37:7e:1c:bb:dd:81:d9:dc:e5:76:0a:89:83: d3:2d:29:51:6e:c3:bb:a8:d5:e3:9c:df:2e:72:79: ab:fd:99:80:6e:71:d0:c3:31:f4:33:5a:4b:b2:3a: 0d:13:0a:7c:36:89:0d:fd:61:6e:09:fd:56:49:6e: e4:e0:f9:87:97:67:89:4d:92:cb:f8:55:5a:bd:8e: 5e:ac:69:f1:58:06:99:66:80:c9:18:f2:ec:f6:81: 8f:a5:0d:79:ec:f6:ca:a4:66:c8:eb:98:6a:4c:eb: 46:d6:79:4a:cf:e4:87:e3:e2:95:1c:4f:7f:8e:d0: f5:7f:57:44:b4:1d:ef:ec:c6:5b:2a:4a:e3:fb:cb: 1c:37:fc:50:99:e3:54:7b:87:bf:62:bd:c7:a1:d5: 37:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:C5:87:AF:59:D5:BE:60:8E:E1:2D:13:21:B2:B9:3F:8E:E5:01:93 X509v3 Authority Key Identifier: keyid:1D:89:33:C1:93:F0:4E:32:44:1E:37:16:2D:C4:DE:FA:97:44:B8:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:18:0e:c9:d6:eb:25:e1:a9:17:43:11:9d:44:af:ac:59:82: f0:4f:fa:19:63:fe:2f:06:2e:53:48:54:ff:11:48:5c:d8:a8: 49:67:65:8c:70:65:91:f8:60:94:44:4d:fe:d8:3e:21:ee:dd: 7b:25:bb:d0:74:ce:ca:b4:53:b7:37:f3:f5:ac:a2:ec:68:5f: 6c:22:58:6a:19:b9:7d:dc:1d:e4:e0:11:fd:77:a2:c6:15:14: 11:78:87:4c:bd:b2:e2:e1:61:86:47:9c:c0:d0:77:79:7c:51: 78:24:92:ca:ce:83:ad:56:76:5f:56:af:8c:c8:3a:ec:5a:cb: e9:e0:1a:83:e0:7d:2c:d4:4e:5c:f6:5f:4a:74:cf:f6:2b:24: 64:94:7d:20:cd:b1:b8:7d:cf:5d:29:be:02:aa:dd:6e:b4:01: 36:43:c2:6a:d0:b3:53:d7:57:53:55:63:c2:31:c0:0f:3f:66: 1e:7b:b5:10:88:64:61:b6:0c:a1:61:64:8b:39:20:95:e9:b7: 78:18:ea:2c:0d:05:fb:2d:f3:9c:0f:17:49:47:3e:31:66:e0: 82:a2:0c:af:ae:8d:58:7e:ff:38:35:45:91:e3:45:38:5c:50: f3:97:66:62:12:b8:d1:8c:3d:07:7f:27:dc:6a:a3:be:be:e8: a7:a6:a0:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfejo++GnpGt19dUvkLqPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkODkzM2MxOTNmMDRlMzI0NDFlMzcxNjJkYzRkZWZhOTc0 NGI4NGYwHhcNMjYwMjA5MTMwMTEzWhcNMjYwMjEwMTMwMTEzWjAzMTEwLwYDVQQD EygzYmM1ODdhZjU5ZDViZTYwOGVlMTJkMTMyMWIyYjkzZjhlZTUwMTkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwNh43G8C0NhGikqD7k1/wLUAdw4E iNz3qaOA9LCkMcpNyhWMM2/khEC47cv+w6oZ0cz4ED1auBctu6wFYQnpjfdhSAlD AfUXFo+F2DGr5+99Nyuk/erTaubRGxoDBIVh/RM95JoqILH2DDd+HLvdgdnc5XYK iYPTLSlRbsO7qNXjnN8ucnmr/ZmAbnHQwzH0M1pLsjoNEwp8NokN/WFuCf1WSW7k 4PmHl2eJTZLL+FVavY5erGnxWAaZZoDJGPLs9oGPpQ157PbKpGbI65hqTOtG1nlK z+SH4+KVHE9/jtD1f1dEtB3v7MZbKkrj+8scN/xQmeNUe4e/Yr3HodU3nwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDvFh69Z1b5gjuEtEyGyuT+O5QGTMB8GA1UdIwQY MBaAFB2JM8GT8E4yRB43Fi3E3vqXRLhPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFlrendaUHdUakpFSGpjV0xjVGUtcGRFdUU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC81MTMwZTUtOTMxMi00OGRlLWFlMmEt MzQyZDFiMzgxZDg3LzEvSFlrendaUHdUakpFSGpjV0xjVGUtcGRFdUU4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC81MTMwZTUtOTMxMi00OGRlLWFlMmEtMzQyZDFiMzgxZDg3 LzEvSFlrendaUHdUakpFSGpjV0xjVGUtcGRFdUU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmRgOydbr JeGpF0MRnUSvrFmC8E/6GWP+LwYuU0hU/xFIXNioSWdljHBlkfhglERN/tg+Ie7d eyW70HTOyrRTtzfz9ayi7GhfbCJYahm5fdwd5OAR/XeixhUUEXiHTL2y4uFhhkec wNB3eXxReCSSys6DrVZ2X1avjMg67FrL6eAag+B9LNROXPZfSnTP9iskZJR9IM2x uH3PXSm+AqrdbrQBNkPCatCzU9dXU1VjwjHADz9mHnu1EIhkYbYMoWFkizkglem3 eBjqLA0F+y3znA8XSUc+MWbggqIMr66NWH7/ODVFkeNFOFxQ85dmYhK40Yw9B38n 3Gqjvr7op6aghA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:26 2026 by rpki-client