This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.mft File: hJxbptQKtOTjm3tpttLZhEqiSK8.mft (raw, json) Hash identifier: zAIojZJKwZUTjYYK6CXWY3SVu2Wjajj6EUzJo04EJSA= Subject key identifier: 4B:A2:1E:CF:37:D4:B0:3B:B0:AB:88:29:2C:96:B9:FE:AE:5C:BC:61 Authority key identifier: 84:9C:5B:A6:D4:0A:B4:E4:E3:9B:7B:69:B6:D2:D9:84:4A:A2:48:AF Certificate issuer: /CN=849c5ba6d40ab4e4e39b7b69b6d2d9844aa248af Certificate serial: 019C427D11198F8CF129B0EA10AA59958E7C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJxbptQKtOTjm3tpttLZhEqiSK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.mft Manifest number: 0EEF Signing time: Mon 09 Feb 2026 13:00:18 +0000 Manifest this update: Mon 09 Feb 2026 13:00:18 +0000 Manifest next update: Tue 10 Feb 2026 13:00:18 +0000 Files and hashes: 1: hJxbptQKtOTjm3tpttLZhEqiSK8.crl (hash: EokE5iYfbRnnybrFO9vC/BNkZHxcwPxgTkF3gDHA88M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.crl rsync://rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.mft rsync://rpki.ripe.net/repository/DEFAULT/hJxbptQKtOTjm3tpttLZhEqiSK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:11:19:8f:8c:f1:29:b0:ea:10:aa:59:95:8e:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=849c5ba6d40ab4e4e39b7b69b6d2d9844aa248af Validity Not Before: Feb 9 13:00:18 2026 GMT Not After : Feb 10 13:00:18 2026 GMT Subject: CN=4ba21ecf37d4b03bb0ab88292c96b9feae5cbc61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:41:ae:75:bd:b8:24:6b:93:a5:40:0d:37:70: ff:d0:ef:f4:85:d2:85:24:d4:21:34:3a:a6:70:ac: f8:69:a6:74:fa:ed:cc:76:e2:a9:28:fa:b3:49:22: a4:b7:13:2e:f9:f3:dc:9a:1b:ca:ba:c4:1f:73:52: fe:2e:52:e0:13:15:82:57:0d:82:23:e6:6c:c6:50: 35:c4:ee:62:c7:b3:1f:46:36:5d:89:92:33:2b:37: 25:6e:07:da:e9:41:a1:73:94:ba:0e:d1:98:8b:b7: 90:e5:02:82:ef:a5:8a:da:88:5b:ba:11:e6:d2:12: 0c:93:bd:d8:bd:23:e3:23:a1:c2:80:6d:8e:ed:60: e0:55:b0:0f:06:d3:2e:44:aa:80:c6:ee:15:90:bf: 82:b3:2e:f3:14:cf:2a:0d:60:f6:22:db:11:00:af: 3d:83:9c:ff:c5:c0:fb:f6:3a:3d:25:6e:2b:c9:96: cf:15:1a:5c:f3:bd:97:7a:9e:41:c8:b6:f0:96:79: 40:51:91:29:41:dc:1e:3c:a9:91:fd:05:71:0b:68: 0e:93:7c:66:12:b8:1e:09:d4:ad:b1:64:59:e0:8b: 30:16:1a:de:c6:0d:bc:50:d1:45:0c:9b:cd:70:c9: 5e:f6:c7:66:54:77:f4:08:46:78:4f:0e:f8:5d:c6: 73:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A2:1E:CF:37:D4:B0:3B:B0:AB:88:29:2C:96:B9:FE:AE:5C:BC:61 X509v3 Authority Key Identifier: keyid:84:9C:5B:A6:D4:0A:B4:E4:E3:9B:7B:69:B6:D2:D9:84:4A:A2:48:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJxbptQKtOTjm3tpttLZhEqiSK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:dd:95:ba:06:6d:66:a4:06:cc:c3:49:de:dd:16:eb:36:f9: 67:9c:3d:fe:7f:64:8e:32:a4:7a:b6:1c:29:a6:e2:3f:9c:b5: 2f:3f:51:aa:d5:27:9d:e8:c8:31:f9:7f:6e:ba:d2:21:7f:84: fb:d0:55:b2:c7:bb:d8:5c:bc:56:e6:dc:b0:21:8e:4f:e9:67: e5:31:b3:40:fb:8d:54:59:3f:62:62:9c:25:28:d2:fb:ec:24: ae:d1:b3:b3:75:3a:92:bd:92:3f:b8:75:13:1b:9f:49:93:d2: 31:df:78:9e:12:50:81:ac:61:60:c0:4a:cf:05:02:4b:e3:40: 49:29:5e:b0:46:91:f3:42:04:95:f2:57:4b:3b:79:fe:97:cc: 3b:39:02:36:5d:5f:06:2f:f7:d5:a8:d9:b1:af:70:0b:6c:d7: 0e:40:e8:47:88:5d:4f:a6:53:5e:dc:b6:a8:d8:4d:8f:54:3e: 1b:92:70:7f:1d:5a:7c:20:56:5e:9f:be:cf:e6:e5:59:22:83: 9f:a2:b0:60:ec:a0:f6:6d:2d:3e:95:51:11:e2:fe:9d:48:49: 34:af:dc:a9:f3:3e:e4:40:f3:01:41:f9:98:09:d8:9c:9f:fa: a1:a4:16:35:99:94:5a:05:d9:91:8a:16:03:8a:19:0a:f2:06: 7c:a5:63:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfREZj4zxKbDqEKpZlY58MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0OWM1YmE2ZDQwYWI0ZTRlMzliN2I2OWI2ZDJkOTg0NGFh MjQ4YWYwHhcNMjYwMjA5MTMwMDE4WhcNMjYwMjEwMTMwMDE4WjAzMTEwLwYDVQQD Eyg0YmEyMWVjZjM3ZDRiMDNiYjBhYjg4MjkyYzk2YjlmZWFlNWNiYzYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtUGudb24JGuTpUANN3D/0O/0hdKF JNQhNDqmcKz4aaZ0+u3MduKpKPqzSSKktxMu+fPcmhvKusQfc1L+LlLgExWCVw2C I+ZsxlA1xO5ix7MfRjZdiZIzKzclbgfa6UGhc5S6DtGYi7eQ5QKC76WK2ohbuhHm 0hIMk73YvSPjI6HCgG2O7WDgVbAPBtMuRKqAxu4VkL+Csy7zFM8qDWD2ItsRAK89 g5z/xcD79jo9JW4ryZbPFRpc872Xep5ByLbwlnlAUZEpQdwePKmR/QVxC2gOk3xm ErgeCdStsWRZ4IswFhrexg28UNFFDJvNcMle9sdmVHf0CEZ4Tw74XcZzXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEuiHs831LA7sKuIKSyWuf6uXLxhMB8GA1UdIwQY MBaAFIScW6bUCrTk45t7abbS2YRKokivMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEp4YnB0UUt0T1RqbTN0cHR0TFpoRXFpU0s4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8zN2M1MTQtODIxMy00MzhjLWExNjQt ZDk4NDg3YmRlZTQ4LzEvaEp4YnB0UUt0T1RqbTN0cHR0TFpoRXFpU0s4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8zN2M1MTQtODIxMy00MzhjLWExNjQtZDk4NDg3YmRlZTQ4 LzEvaEp4YnB0UUt0T1RqbTN0cHR0TFpoRXFpU0s4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAN2VugZt ZqQGzMNJ3t0W6zb5Z5w9/n9kjjKkerYcKabiP5y1Lz9RqtUnnejIMfl/brrSIX+E +9BVsse72Fy8VubcsCGOT+ln5TGzQPuNVFk/YmKcJSjS++wkrtGzs3U6kr2SP7h1 ExufSZPSMd94nhJQgaxhYMBKzwUCS+NASSlesEaR80IElfJXSzt5/pfMOzkCNl1f Bi/31ajZsa9wC2zXDkDoR4hdT6ZTXty2qNhNj1Q+G5Jwfx1afCBWXp++z+blWSKD n6KwYOyg9m0tPpVREeL+nUhJNK/cqfM+5EDzAUH5mAnYnJ/6oaQWNZmUWgXZkYoW A4oZCvIGfKVjOw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:39 2026 by rpki-client