This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.mft File: hnkOzbhqxvqivMfusg0nTPpGULA.mft (raw, json) Hash identifier: v0sfi18zwi23qQ69SfPvNDapGt3gmZInjY0GyBwDgDg= Subject key identifier: FF:C8:B8:37:53:2E:47:D4:79:4C:90:DD:35:9C:50:D9:B9:9F:8F:5D Authority key identifier: 86:79:0E:CD:B8:6A:C6:FA:A2:BC:C7:EE:B2:0D:27:4C:FA:46:50:B0 Certificate issuer: /CN=86790ecdb86ac6faa2bcc7eeb20d274cfa4650b0 Certificate serial: 019C420FCE68585721D76FEF7E481800A5C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hnkOzbhqxvqivMfusg0nTPpGULA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.mft Manifest number: 01E9 Signing time: Mon 09 Feb 2026 11:00:57 +0000 Manifest this update: Mon 09 Feb 2026 11:00:57 +0000 Manifest next update: Tue 10 Feb 2026 11:00:57 +0000 Files and hashes: 1: 2dAucBc06xa-RSOd-82T94ffkQs.roa (hash: qBoTXVzjJUJQzxt6M9jxa+Sec2XF+7kt7/vpuSj2zhw=) 2: hnkOzbhqxvqivMfusg0nTPpGULA.crl (hash: bwTdzu60QFrHrrN5WU5ZKsIpj/cxskV3DCFabIerycE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.mft rsync://rpki.ripe.net/repository/DEFAULT/hnkOzbhqxvqivMfusg0nTPpGULA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:ce:68:58:57:21:d7:6f:ef:7e:48:18:00:a5:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86790ecdb86ac6faa2bcc7eeb20d274cfa4650b0 Validity Not Before: Feb 9 11:00:57 2026 GMT Not After : Feb 10 11:00:57 2026 GMT Subject: CN=ffc8b837532e47d4794c90dd359c50d9b99f8f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:98:b1:6b:cd:1b:f6:00:72:bf:f6:b6:a5:ac: b5:4c:9a:d7:3a:9f:ae:fa:22:04:83:4d:d8:c8:6b: dc:e3:3e:5d:e5:0d:75:2d:be:68:08:30:62:2a:a8: 40:f1:6d:62:2a:23:a9:6b:cb:78:2a:04:d6:c2:9a: bc:3e:22:ff:78:57:e2:17:b7:d8:60:b5:0b:24:8a: 6d:9a:3a:0f:dd:ac:ec:f7:cf:e8:40:7d:bb:6e:74: da:74:bd:da:fc:26:f4:14:1f:a0:5c:10:93:06:cb: 44:5b:e5:53:7e:62:6d:08:a3:e8:4e:da:5b:44:e6: 64:09:30:2a:11:b5:e9:4f:d3:df:7d:c6:cb:99:c2: 5d:ba:b8:48:5c:3f:f2:73:8e:ad:bd:38:b3:69:c0: dd:a0:5e:79:5d:a4:a8:86:a9:3c:c9:ae:6e:15:aa: 5c:5c:98:42:08:9a:22:07:d0:14:a6:e9:b2:aa:8b: 0d:98:c7:5d:8c:16:02:26:d2:d5:73:41:aa:0d:cd: fb:2d:e0:88:d9:32:ef:a0:e3:dd:01:72:e2:12:24: 84:fa:cc:22:5d:4f:84:a3:6c:f2:97:95:8c:1d:dd: 21:0d:81:98:be:07:8c:dd:6a:f0:12:a3:84:fa:dc: e7:c2:e4:73:93:20:5c:a2:9e:df:cd:15:de:65:56: c7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:C8:B8:37:53:2E:47:D4:79:4C:90:DD:35:9C:50:D9:B9:9F:8F:5D X509v3 Authority Key Identifier: keyid:86:79:0E:CD:B8:6A:C6:FA:A2:BC:C7:EE:B2:0D:27:4C:FA:46:50:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hnkOzbhqxvqivMfusg0nTPpGULA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:59:e7:fb:34:ac:6d:a4:82:9b:42:cf:a1:b3:75:b2:24:53: 52:2a:68:0d:5a:2a:2c:96:45:ee:08:3a:20:3c:fb:cb:26:ce: 52:62:1c:df:1f:84:fd:f6:9a:cb:47:75:6b:d0:b7:c5:bd:a7: 42:d2:0c:f2:02:ac:85:53:33:54:ec:93:74:a3:ce:d8:ca:0b: f0:4d:08:c5:93:6a:05:d2:a0:9c:29:1c:3d:92:c4:14:cd:20: 72:d1:bb:95:7e:8a:0d:c6:5c:d8:df:16:3c:39:89:94:4c:0d: 0b:ae:9a:cb:70:42:f8:3f:f2:e8:9b:bb:a6:2a:18:16:2b:ea: a7:be:f8:f3:95:82:e4:f9:3d:b9:d2:d9:a0:21:04:1c:75:81: 76:fc:92:85:64:b9:fb:d6:82:e7:94:e6:51:f6:54:bd:ae:5a: 71:20:aa:eb:41:90:a5:ee:79:a9:90:9a:48:75:42:e2:e2:f9: d6:7e:56:16:2c:2d:a5:71:66:c7:69:66:5f:99:fd:90:45:2d: 07:80:85:93:af:db:ed:bf:68:26:f8:4f:ab:01:d2:b2:02:ab: 26:0d:79:7e:e3:42:32:d9:da:04:0c:e0:26:47:ac:ea:43:ad: b1:03:b9:18:c7:5e:26:69:d1:3a:cb:ed:b7:49:8f:41:b9:3f: b7:cf:7a:72 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD85oWFch12/vfkgYAKXEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2NzkwZWNkYjg2YWM2ZmFhMmJjYzdlZWIyMGQyNzRjZmE0 NjUwYjAwHhcNMjYwMjA5MTEwMDU3WhcNMjYwMjEwMTEwMDU3WjAzMTEwLwYDVQQD EyhmZmM4YjgzNzUzMmU0N2Q0Nzk0YzkwZGQzNTljNTBkOWI5OWY4ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxZixa80b9gByv/a2pay1TJrXOp+u +iIEg03YyGvc4z5d5Q11Lb5oCDBiKqhA8W1iKiOpa8t4KgTWwpq8PiL/eFfiF7fY YLULJIptmjoP3azs98/oQH27bnTadL3a/Cb0FB+gXBCTBstEW+VTfmJtCKPoTtpb ROZkCTAqEbXpT9PffcbLmcJdurhIXD/yc46tvTizacDdoF55XaSohqk8ya5uFapc XJhCCJoiB9AUpumyqosNmMddjBYCJtLVc0GqDc37LeCI2TLvoOPdAXLiEiSE+swi XU+Eo2zyl5WMHd0hDYGYvgeM3WrwEqOE+tznwuRzkyBcop7fzRXeZVbHwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP/IuDdTLkfUeUyQ3TWcUNm5n49dMB8GA1UdIwQY MBaAFIZ5Ds24asb6orzH7rINJ0z6RlCwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaG5rT3piaHF4dnFpdk1mdXNnMG5UUHBHVUxBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi8zMmJlNjMtZWIyMy00NTA1LWFiZTAt ZTBmNmUzMTVmNWI4LzEvaG5rT3piaHF4dnFpdk1mdXNnMG5UUHBHVUxBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi8zMmJlNjMtZWIyMy00NTA1LWFiZTAtZTBmNmUzMTVmNWI4 LzEvaG5rT3piaHF4dnFpdk1mdXNnMG5UUHBHVUxBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC1nn+zSs baSCm0LPobN1siRTUipoDVoqLJZF7gg6IDz7yybOUmIc3x+E/faay0d1a9C3xb2n QtIM8gKshVMzVOyTdKPO2MoL8E0IxZNqBdKgnCkcPZLEFM0gctG7lX6KDcZc2N8W PDmJlEwNC66ay3BC+D/y6Ju7pioYFivqp77485WC5Pk9udLZoCEEHHWBdvyShWS5 +9aC55TmUfZUva5acSCq60GQpe55qZCaSHVC4uL51n5WFiwtpXFmx2lmX5n9kEUt B4CFk6/b7b9oJvhPqwHSsgKrJg15fuNCMtnaBAzgJkes6kOtsQO5GMdeJmnROsvt t0mPQbk/t896cg== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:55 2026 by rpki-client