This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft File: HTHgIH7TynaEoD6I-aHeKSLdRd4.mft (raw, json) Hash identifier: a9srFvI2RD+ogaeg71o8Tud4mgfcAeI67TCZMgVFLfo= Subject key identifier: F4:D5:4F:A3:A9:7B:E5:43:11:3D:F9:EB:CF:74:30:F5:0D:01:95:53 Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de Certificate serial: 019C1CF0811F8463915DE7B4C068862310C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft Manifest number: 03A5 Signing time: Mon 02 Feb 2026 06:00:49 +0000 Manifest this update: Mon 02 Feb 2026 06:00:49 +0000 Manifest next update: Tue 03 Feb 2026 06:00:49 +0000 Files and hashes: 1: HTHgIH7TynaEoD6I-aHeKSLdRd4.crl (hash: idrxAz8H3NCJULNOMjlpYAKqz42ZZUIj0edz3rSGKeY=) 2: JF1S5nChkcbeHK1YmZzl8eEwqB8.roa (hash: wmxaRB1M5Kn+LV3DtXz/lQpX7fY1n782f7y8VXUfVvs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1c:f0:81:1f:84:63:91:5d:e7:b4:c0:68:86:23:10:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de Validity Not Before: Feb 2 06:00:49 2026 GMT Not After : Feb 3 06:00:49 2026 GMT Subject: CN=f4d54fa3a97be543113df9ebcf7430f50d019553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4f:70:3d:3f:52:2b:88:00:46:b7:38:4e:b0: df:40:e0:28:31:14:39:2c:a2:30:34:a6:b9:d4:3f: a2:82:20:46:3a:9c:58:d5:84:23:15:df:91:13:10: a7:77:de:ef:56:df:11:41:9b:86:34:7e:24:fe:68: 91:f2:d7:51:65:87:01:91:d6:d6:c5:81:7c:a1:29: 01:b0:fd:cc:b4:70:40:50:d5:25:65:30:6f:88:40: 7a:7c:49:de:61:5a:49:66:b4:70:98:5f:77:88:a8: 7c:cf:b2:42:8f:31:36:69:9e:13:31:8a:39:e4:96: 6b:64:01:bd:26:df:a1:6d:3b:e8:d7:8e:e1:ed:92: 49:9c:43:48:05:1c:6e:51:8f:91:be:b4:78:b0:5e: 3b:09:18:73:25:de:27:5c:5a:d7:39:51:91:f6:dc: 9e:25:ee:f4:2b:24:0e:ae:a3:29:55:44:b2:39:fc: 36:ad:17:1d:8d:15:70:18:ca:68:f0:14:bc:ff:e3: 2c:ab:8d:29:19:ba:bb:38:ad:b9:90:7d:c2:cf:e9: 96:ab:29:ae:11:bc:88:6a:0f:9d:29:8d:13:b7:73: 80:af:3b:a0:a3:ca:58:c8:85:63:e6:7f:a1:40:53: da:b4:16:82:58:cd:f5:ef:f3:d7:fa:10:09:18:75: 88:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D5:4F:A3:A9:7B:E5:43:11:3D:F9:EB:CF:74:30:F5:0D:01:95:53 X509v3 Authority Key Identifier: keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:bc:22:ae:87:0e:b0:2c:c0:a6:9d:de:8a:12:02:55:1f:ce: 2a:a7:42:76:6d:9b:e1:8d:8c:7d:15:8c:f8:66:2d:89:ba:c7: d2:17:1d:13:3b:60:a6:f2:fd:84:5d:8a:75:7e:bd:55:6e:35: cc:bb:56:5b:13:40:b8:e4:34:d1:92:7e:9b:31:10:9c:33:cb: ce:8b:11:0e:f6:cc:ec:9a:71:b9:fe:2c:29:d5:3b:1e:9e:e1: af:83:89:c7:20:87:f1:77:6e:5e:e1:96:d5:5c:a4:dd:ef:1c: 97:a6:75:79:19:82:05:75:49:d7:bd:dd:a7:f0:84:35:95:a8: ba:eb:8c:53:57:5d:db:f2:9b:18:ec:b3:c8:25:ca:b1:0f:c7: 00:61:0a:bd:9e:76:d6:a0:bc:5b:2b:85:8f:0f:91:91:55:1b: fb:dc:19:c1:8a:ed:37:87:9a:0c:bc:12:83:d9:07:6e:1d:dc: 38:a4:d0:96:87:90:18:b3:ea:ec:dc:44:8e:e4:ca:80:26:98: 2d:7d:c7:51:37:7b:38:76:6e:e1:04:84:50:bc:4f:01:cc:ea: f8:34:74:63:e9:97:ca:17:9a:cd:bc:6a:01:11:04:df:de:82: 57:fa:86:c5:1a:52:f7:da:82:33:11:cf:68:f1:7e:39:c1:db: ff:48:7d:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwc8IEfhGORXee0wGiGIxDBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkMzFlMDIwN2VkM2NhNzY4NGEwM2U4OGY5YTFkZTI5MjJk ZDQ1ZGUwHhcNMjYwMjAyMDYwMDQ5WhcNMjYwMjAzMDYwMDQ5WjAzMTEwLwYDVQQD EyhmNGQ1NGZhM2E5N2JlNTQzMTEzZGY5ZWJjZjc0MzBmNTBkMDE5NTUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx09wPT9SK4gARrc4TrDfQOAoMRQ5 LKIwNKa51D+igiBGOpxY1YQjFd+RExCnd97vVt8RQZuGNH4k/miR8tdRZYcBkdbW xYF8oSkBsP3MtHBAUNUlZTBviEB6fEneYVpJZrRwmF93iKh8z7JCjzE2aZ4TMYo5 5JZrZAG9Jt+hbTvo147h7ZJJnENIBRxuUY+RvrR4sF47CRhzJd4nXFrXOVGR9tye Je70KyQOrqMpVUSyOfw2rRcdjRVwGMpo8BS8/+Msq40pGbq7OK25kH3Cz+mWqymu EbyIag+dKY0Tt3OArzugo8pYyIVj5n+hQFPatBaCWM317/PX+hAJGHWItQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPTVT6Ope+VDET356890MPUNAZVTMB8GA1UdIwQY MBaAFB0x4CB+08p2hKA+iPmh3iki3UXeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFRIZ0lIN1R5bmFFb0Q2SS1hSGVLU0xkUmQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My83MzBlMzgtZmY4OS00M2UxLTk0ZmUt YTFiNzc4ZjRkMDdkLzEvSFRIZ0lIN1R5bmFFb0Q2SS1hSGVLU0xkUmQ0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My83MzBlMzgtZmY4OS00M2UxLTk0ZmUtYTFiNzc4ZjRkMDdk LzEvSFRIZ0lIN1R5bmFFb0Q2SS1hSGVLU0xkUmQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnrwirocO sCzApp3eihICVR/OKqdCdm2b4Y2MfRWM+GYtibrH0hcdEztgpvL9hF2KdX69VW41 zLtWWxNAuOQ00ZJ+mzEQnDPLzosRDvbM7Jpxuf4sKdU7Hp7hr4OJxyCH8XduXuGW 1Vyk3e8cl6Z1eRmCBXVJ173dp/CENZWouuuMU1dd2/KbGOyzyCXKsQ/HAGEKvZ52 1qC8WyuFjw+RkVUb+9wZwYrtN4eaDLwSg9kHbh3cOKTQloeQGLPq7NxEjuTKgCaY LX3HUTd7OHZu4QSEULxPAczq+DR0Y+mXyheazbxqAREE396CV/qGxRpS99qCMxHP aPF+OcHb/0h9Yw== -----END CERTIFICATE-----Generated at Mon Feb 2 09:42:24 2026 by rpki-client