This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/f1a67b-f5c2-48be-87c1-18481c54bac0/1/hphbrg2TjeJDhcQFPNo5G3RFAmc.mft File: hphbrg2TjeJDhcQFPNo5G3RFAmc.mft (raw, json) Hash identifier: VwWunoS5bYqm8pK01/A4xxRMMZWtzKKTY3CWL9Df7Es= Subject key identifier: F8:26:90:56:68:C0:1D:AF:F0:4A:A1:24:4C:99:AB:00:8F:42:2B:83 Authority key identifier: 86:98:5B:AE:0D:93:8D:E2:43:85:C4:05:3C:DA:39:1B:74:45:02:67 Certificate issuer: /CN=86985bae0d938de24385c4053cda391b74450267 Certificate serial: 019C42EB960A6CA9D24CC26A6BC1D8DA9511 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hphbrg2TjeJDhcQFPNo5G3RFAmc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/f1a67b-f5c2-48be-87c1-18481c54bac0/1/hphbrg2TjeJDhcQFPNo5G3RFAmc.mft Manifest number: 0B80 Signing time: Mon 09 Feb 2026 15:01:01 +0000 Manifest this update: Mon 09 Feb 2026 15:01:01 +0000 Manifest next update: Tue 10 Feb 2026 15:01:01 +0000 Files and hashes: 1: hphbrg2TjeJDhcQFPNo5G3RFAmc.crl (hash: C5Ci7tzzN/2iSIvcEf2y+bm4SeUwzORQAMYW9S87myc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/f1a67b-f5c2-48be-87c1-18481c54bac0/1/hphbrg2TjeJDhcQFPNo5G3RFAmc.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/f1a67b-f5c2-48be-87c1-18481c54bac0/1/hphbrg2TjeJDhcQFPNo5G3RFAmc.mft rsync://rpki.ripe.net/repository/DEFAULT/hphbrg2TjeJDhcQFPNo5G3RFAmc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:96:0a:6c:a9:d2:4c:c2:6a:6b:c1:d8:da:95:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86985bae0d938de24385c4053cda391b74450267 Validity Not Before: Feb 9 15:01:01 2026 GMT Not After : Feb 10 15:01:01 2026 GMT Subject: CN=f826905668c01daff04aa1244c99ab008f422b83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:4c:36:d6:58:d2:15:73:51:a3:9f:ef:55:8a: e5:9f:c1:f7:e0:b3:6b:e4:f4:51:c0:87:e2:32:ff: e8:8b:7f:0e:8e:1b:73:83:fc:89:44:8d:17:8a:52: 35:7d:40:b0:df:a6:c2:4b:a6:91:f3:de:0f:be:38: 6f:ad:38:ed:00:3b:0b:94:dd:e8:9b:aa:c5:d7:5f: 0c:21:85:71:9e:d1:31:5d:9d:c0:a6:ee:4e:c1:8f: 14:c6:82:95:31:84:8f:f6:d6:c5:3e:ee:15:2b:f5: c2:28:e3:aa:fd:b6:80:5a:8d:7a:22:1f:c0:7f:40: 3a:85:17:2f:db:b2:20:d1:93:4d:f8:c3:f9:4b:27: 27:4a:18:71:c1:96:c2:2a:da:8f:9f:fe:68:fb:10: 28:31:15:61:37:6a:c2:2c:ef:57:fd:8c:13:14:5b: cd:a6:cd:be:ec:73:dd:d9:4d:65:f8:b6:19:07:f5: 83:6f:55:3a:98:0b:4a:55:91:e3:bd:d3:90:d6:16: 1d:da:7f:ab:9b:29:d6:1a:59:68:61:ff:08:66:6e: 46:b4:b1:10:c4:1c:b0:00:c0:16:83:2e:cd:17:7f: e0:fd:0d:12:f5:a5:10:9b:db:6d:4a:96:65:b6:79: 54:7e:c6:de:5c:d7:03:2c:72:b7:75:37:7a:37:43: ed:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:26:90:56:68:C0:1D:AF:F0:4A:A1:24:4C:99:AB:00:8F:42:2B:83 X509v3 Authority Key Identifier: keyid:86:98:5B:AE:0D:93:8D:E2:43:85:C4:05:3C:DA:39:1B:74:45:02:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hphbrg2TjeJDhcQFPNo5G3RFAmc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/f1a67b-f5c2-48be-87c1-18481c54bac0/1/hphbrg2TjeJDhcQFPNo5G3RFAmc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/f1a67b-f5c2-48be-87c1-18481c54bac0/1/hphbrg2TjeJDhcQFPNo5G3RFAmc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d1:f3:41:c3:0d:5c:f1:4b:76:c5:ae:3a:9c:21:11:ca:d8:66: 92:1d:1f:a9:e3:6e:95:d8:59:86:7d:df:f8:f1:af:20:b1:3c: cd:f2:5c:9c:fc:b6:06:19:d2:73:1c:ab:e1:97:0d:96:b6:90: 56:e7:59:ba:11:ec:42:89:e7:cb:67:83:be:1a:f4:d0:25:2c: 4f:3f:67:79:71:a8:5e:b4:92:bb:87:a2:10:ed:c5:fd:3f:c4: 99:21:17:3d:76:bf:8a:b8:52:01:60:fb:5d:66:cc:10:64:69: d2:16:52:fe:7d:40:a9:03:af:bb:bb:1f:6d:0f:f1:8b:b5:8b: 00:04:73:8d:b6:37:6f:57:0d:03:20:c6:51:31:78:37:f9:b3: 29:10:77:d6:43:d3:ae:3a:50:7c:f2:90:b5:29:86:02:e5:d8: 32:18:00:06:6c:fb:ee:6f:39:54:d7:02:8d:84:05:7a:82:f4: 8e:ac:1f:62:6f:a2:90:01:d1:66:4a:3d:8e:6e:87:1f:e9:67: 43:31:d4:4f:e7:bb:47:cb:b7:0e:a6:e8:34:e6:59:da:c4:06: 67:0c:f9:cb:c0:8a:dd:46:e5:7b:c9:49:3e:27:de:b8:f9:46: 6e:79:a9:ad:8b:35:94:03:92:0c:ea:39:ae:4a:9a:e9:63:90: b5:06:5b:2c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC65YKbKnSTMJqa8HY2pURMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2OTg1YmFlMGQ5MzhkZTI0Mzg1YzQwNTNjZGEzOTFiNzQ0 NTAyNjcwHhcNMjYwMjA5MTUwMTAxWhcNMjYwMjEwMTUwMTAxWjAzMTEwLwYDVQQD EyhmODI2OTA1NjY4YzAxZGFmZjA0YWExMjQ0Yzk5YWIwMDhmNDIyYjgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7Uw21ljSFXNRo5/vVYrln8H34LNr 5PRRwIfiMv/oi38Ojhtzg/yJRI0XilI1fUCw36bCS6aR894PvjhvrTjtADsLlN3o m6rF118MIYVxntExXZ3Apu5OwY8UxoKVMYSP9tbFPu4VK/XCKOOq/baAWo16Ih/A f0A6hRcv27Ig0ZNN+MP5SycnShhxwZbCKtqPn/5o+xAoMRVhN2rCLO9X/YwTFFvN ps2+7HPd2U1l+LYZB/WDb1U6mAtKVZHjvdOQ1hYd2n+rmynWGlloYf8IZm5GtLEQ xBywAMAWgy7NF3/g/Q0S9aUQm9ttSpZltnlUfsbeXNcDLHK3dTd6N0PtfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPgmkFZowB2v8EqhJEyZqwCPQiuDMB8GA1UdIwQY MBaAFIaYW64Nk43iQ4XEBTzaORt0RQJnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHBoYnJnMlRqZUpEaGNRRlBObzVHM1JGQW1jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy9mMWE2N2ItZjVjMi00OGJlLTg3YzEt MTg0ODFjNTRiYWMwLzEvaHBoYnJnMlRqZUpEaGNRRlBObzVHM1JGQW1jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy9mMWE2N2ItZjVjMi00OGJlLTg3YzEtMTg0ODFjNTRiYWMw LzEvaHBoYnJnMlRqZUpEaGNRRlBObzVHM1JGQW1jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0fNBww1c 8Ut2xa46nCERythmkh0fqeNuldhZhn3f+PGvILE8zfJcnPy2BhnScxyr4ZcNlraQ VudZuhHsQonny2eDvhr00CUsTz9neXGoXrSSu4eiEO3F/T/EmSEXPXa/irhSAWD7 XWbMEGRp0hZS/n1AqQOvu7sfbQ/xi7WLAARzjbY3b1cNAyDGUTF4N/mzKRB31kPT rjpQfPKQtSmGAuXYMhgABmz77m85VNcCjYQFeoL0jqwfYm+ikAHRZko9jm6HH+ln QzHUT+e7R8u3DqboNOZZ2sQGZwz5y8CK3Uble8lJPifeuPlGbnmprYs1lAOSDOo5 rkqa6WOQtQZbLA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:49:10 2026 by rpki-client