This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft File: HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json) Hash identifier: +yUObMY0odMPiYH1Sat3IbGpXdzKWtF7CbgB8U8mvqY= Subject key identifier: E6:CD:A3:8B:B7:47:27:2A:43:A2:1F:1D:F4:DA:24:E8:E4:65:EC:81 Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A Certificate issuer: /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a Certificate serial: 019C4321E9E0F6A4A63D13CD14B928AAC448 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft Manifest number: 1310 Signing time: Mon 09 Feb 2026 16:00:21 +0000 Manifest this update: Mon 09 Feb 2026 16:00:21 +0000 Manifest next update: Tue 10 Feb 2026 16:00:21 +0000 Files and hashes: 1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: 1Npe0Z63sNoNIXKuNwneUnEL7HNxgVHU5EAiAT72Wew=) 2: XKQN9GdCDnkkYw875rkSfXAvJBg.roa (hash: fV6EdFaVajqg4dj/k6xrLoqomy/vlK7OlhjNnf6pmQA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:e9:e0:f6:a4:a6:3d:13:cd:14:b9:28:aa:c4:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a Validity Not Before: Feb 9 16:00:21 2026 GMT Not After : Feb 10 16:00:21 2026 GMT Subject: CN=e6cda38bb747272a43a21f1df4da24e8e465ec81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:74:d0:35:51:dd:f8:b7:a4:64:fa:fa:9d:85: 25:14:63:3d:17:3a:ca:83:2a:2d:22:f6:ca:c8:b7: 7e:8e:61:f7:2f:a6:4e:1e:6a:fb:1c:61:f8:d6:97: d5:b5:37:85:dd:9b:8f:5e:50:e4:c1:2d:88:01:d8: 2c:a0:6f:fe:9b:c3:12:e5:6f:2d:33:ce:36:13:39: fd:22:52:31:22:c6:94:0e:27:13:97:8f:19:76:80: ad:25:01:cb:5b:cb:2e:e3:2b:99:40:5f:45:19:bc: d6:4d:08:bd:60:58:27:5b:2b:42:47:8c:1d:7d:1a: cf:db:59:d5:d4:cc:4b:71:cd:05:9c:e8:fc:b2:82: 6d:46:53:f3:fb:dc:66:f7:7c:a1:a0:fb:0b:c8:b6: a8:2e:dc:c7:0f:de:40:df:22:f0:17:d8:be:1e:7c: d4:10:f8:36:f8:e3:1c:f5:89:ed:24:1e:72:95:3c: bd:fa:b2:8f:c1:6d:fd:41:0f:c3:01:46:54:ca:6e: 14:0b:5c:a6:2c:f0:3e:0d:2f:a7:84:d9:92:ce:4c: cb:ba:5a:a7:7f:74:9a:90:8a:84:ed:d4:9b:53:9b: e0:18:ae:5d:04:e4:e6:b9:e5:6e:05:1b:06:14:86: 6d:a9:85:23:24:66:c9:a4:a5:b9:04:a6:f2:3a:7e: 79:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:CD:A3:8B:B7:47:27:2A:43:A2:1F:1D:F4:DA:24:E8:E4:65:EC:81 X509v3 Authority Key Identifier: keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:b1:7b:fb:d6:39:0e:eb:89:69:69:d4:2a:f4:d6:83:36:2f: f2:82:72:14:56:5e:8c:af:16:bd:18:92:19:98:c8:ce:65:62: 33:23:1c:4e:4d:9a:2b:01:ed:40:0f:98:d3:9d:02:eb:67:8d: 9b:ef:a5:8e:03:e1:cf:eb:33:d6:0d:91:6a:6b:f2:ab:63:d9: 21:60:11:4b:15:c7:04:4e:8f:31:49:53:c0:bf:17:59:fa:49: 0b:63:c8:cb:1f:3b:e4:18:9a:4e:f4:66:2e:f7:14:c7:a2:47: ed:0f:86:4a:b5:3b:36:f1:83:ff:04:68:6f:17:09:68:0d:69: b0:72:59:fd:7b:ac:c8:8e:a5:d5:6d:be:89:8d:11:4b:c5:31: f6:bd:82:25:4b:db:bd:8a:29:91:5d:ca:7f:65:f7:c0:b8:05: 74:02:9e:e8:86:15:64:ae:cb:91:4f:b9:5c:89:9c:fa:e3:0c: de:df:7a:3b:e8:81:78:0e:b7:5f:45:da:c7:56:94:8f:97:ba: f5:65:29:30:0c:c9:58:58:d7:03:dc:97:fd:0e:71:5e:1f:03: 30:55:ab:99:fe:2e:14:04:dc:04:21:d7:93:9b:b1:39:42:76: ac:57:33:b1:9e:e4:3d:3a:8f:b1:c0:f8:04:1b:90:bd:90:11: d4:05:61:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIeng9qSmPRPNFLkoqsRIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjYWRmYjljZmNkYTg0MjYyMTJkZDdkODg3M2I1ZmU0OGI0 MTJmMmEwHhcNMjYwMjA5MTYwMDIxWhcNMjYwMjEwMTYwMDIxWjAzMTEwLwYDVQQD EyhlNmNkYTM4YmI3NDcyNzJhNDNhMjFmMWRmNGRhMjRlOGU0NjVlYzgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAznTQNVHd+LekZPr6nYUlFGM9FzrK gyotIvbKyLd+jmH3L6ZOHmr7HGH41pfVtTeF3ZuPXlDkwS2IAdgsoG/+m8MS5W8t M842Ezn9IlIxIsaUDicTl48ZdoCtJQHLW8su4yuZQF9FGbzWTQi9YFgnWytCR4wd fRrP21nV1MxLcc0FnOj8soJtRlPz+9xm93yhoPsLyLaoLtzHD95A3yLwF9i+HnzU EPg2+OMc9YntJB5ylTy9+rKPwW39QQ/DAUZUym4UC1ymLPA+DS+nhNmSzkzLulqn f3SakIqE7dSbU5vgGK5dBOTmueVuBRsGFIZtqYUjJGbJpKW5BKbyOn55QQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFObNo4u3RycqQ6IfHfTaJOjkZeyBMB8GA1UdIwQY MBaAFByt+5z82oQmIS3X2Ic7X+SLQS8qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9jODQwNmQtYTU2NC00Nzk1LTk4YjAt ODY4MTYwNjY4MzgyLzEvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My9jODQwNmQtYTU2NC00Nzk1LTk4YjAtODY4MTYwNjY4Mzgy LzEvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVrF7+9Y5 DuuJaWnUKvTWgzYv8oJyFFZejK8WvRiSGZjIzmViMyMcTk2aKwHtQA+Y050C62eN m++ljgPhz+sz1g2Ramvyq2PZIWARSxXHBE6PMUlTwL8XWfpJC2PIyx875BiaTvRm LvcUx6JH7Q+GSrU7NvGD/wRobxcJaA1psHJZ/XusyI6l1W2+iY0RS8Ux9r2CJUvb vYopkV3Kf2X3wLgFdAKe6IYVZK7LkU+5XImc+uMM3t96O+iBeA63X0Xax1aUj5e6 9WUpMAzJWFjXA9yX/Q5xXh8DMFWrmf4uFATcBCHXk5uxOUJ2rFczsZ7kPTqPscD4 BBuQvZAR1AVh9w== -----END CERTIFICATE-----Generated at Mon Feb 9 20:00:53 2026 by rpki-client