This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft File: HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft (raw, json) Hash identifier: h42r6TlRwE7WnAu9D5nR/hB21xhDmR7hWym4AQ9Ayis= Subject key identifier: CC:95:7D:05:6C:3A:5C:13:8E:42:6A:DC:F4:5D:21:CC:08:51:1D:78 Authority key identifier: 1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D Certificate issuer: /CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d Certificate serial: 019C43C6E1AA0F7EC3E84A77D421EC10AF93 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft Manifest number: 155D Signing time: Mon 09 Feb 2026 19:00:33 +0000 Manifest this update: Mon 09 Feb 2026 19:00:33 +0000 Manifest next update: Tue 10 Feb 2026 19:00:33 +0000 Files and hashes: 1: HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl (hash: WZ6F1qx+I2PdnMoL1ZgBcMGPSqaFyvO1ytc00LfvPBw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:e1:aa:0f:7e:c3:e8:4a:77:d4:21:ec:10:af:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d Validity Not Before: Feb 9 19:00:33 2026 GMT Not After : Feb 10 19:00:33 2026 GMT Subject: CN=cc957d056c3a5c138e426adcf45d21cc08511d78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:4c:57:14:02:d3:11:22:e1:a7:de:03:09:de: b7:77:0b:7c:14:ca:a5:88:a0:7b:e7:68:38:c9:7c: cb:4a:0e:43:a7:dc:97:67:b7:d0:77:9a:2b:ff:08: d5:34:07:75:06:47:93:f4:9f:4e:26:80:2f:74:e5: 34:24:04:d2:12:24:60:c7:75:e0:27:dc:8a:e7:0f: dd:e5:43:85:6d:73:38:dc:ea:b0:83:b5:47:b0:74: a8:80:a3:c3:26:93:b6:17:aa:9d:f7:bd:b9:a6:42: 8b:cb:95:95:d8:ca:26:a7:36:37:b7:2c:88:b3:df: f7:a0:4d:1a:a7:9d:7a:a8:2d:a6:08:ee:06:11:2c: d0:e3:7a:6b:58:0a:7c:aa:84:fb:a0:a6:3d:d5:cd: c6:24:81:d6:62:59:fa:b9:c0:01:0c:ec:b8:3d:b5: 86:e6:7d:42:d2:53:eb:0b:1d:66:40:46:17:30:62: 6c:65:1d:38:ce:a6:8f:42:3a:e3:0b:d9:35:43:b9: 0d:05:16:ea:b2:3a:d3:66:e6:57:a6:2c:2b:0f:e5: 05:27:83:4f:72:ab:31:cd:be:f7:2d:be:35:9d:16: 0f:92:4d:08:ca:d4:6f:8b:04:07:06:45:73:04:be: c3:5d:e7:4c:d9:53:18:d1:32:33:ea:ed:05:6f:eb: 08:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:95:7D:05:6C:3A:5C:13:8E:42:6A:DC:F4:5D:21:CC:08:51:1D:78 X509v3 Authority Key Identifier: keyid:1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:f7:d1:81:36:5f:f5:e0:0c:0f:2a:f8:d6:28:48:d5:60:27: f5:bd:99:c6:81:47:64:95:c7:db:0f:62:f4:96:30:94:f3:d5: 85:01:88:7f:59:22:cd:ce:6a:a5:c5:52:a4:a9:71:88:87:22: 15:45:43:17:62:1f:2a:c4:96:0c:ec:5f:f5:0a:b0:4b:ad:3e: 5c:36:e3:e1:78:62:34:93:1c:f4:f6:37:f7:cd:d4:7d:77:51: 2e:b0:ff:4f:5b:53:19:e4:c7:bb:4c:b7:e6:ec:18:5e:b8:27: f4:df:65:77:d0:d4:0d:f8:4d:2b:01:be:74:3d:46:20:bc:bf: 46:8f:20:48:7b:59:de:e1:71:a6:69:eb:d6:f6:37:d5:8a:75: dd:e6:65:9b:89:2f:62:2d:7f:03:0d:41:ad:11:c3:30:11:23: 20:10:50:85:bb:33:9b:9b:90:96:38:01:fc:98:8d:67:6c:0d: e3:9a:e5:8f:f4:b3:36:3c:1a:9a:0f:82:4f:70:91:e7:13:9d: 7a:0e:88:6c:d6:98:40:63:bc:9f:a1:1f:4f:c6:7c:3a:c0:1c: 2f:af:bf:c9:f7:92:2c:3e:35:27:44:45:72:f1:6c:00:7e:5f: c3:91:16:ba:a9:04:d8:a3:fa:84:a9:c4:40:74:d1:ff:0a:93: b7:8c:96:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxuGqD37D6Ep31CHsEK+TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkMGMzOTFlZGQ1Y2JlZTFhMTRlMGFiM2Y5M2Q4MzRmYWU1 MTFlNGQwHhcNMjYwMjA5MTkwMDMzWhcNMjYwMjEwMTkwMDMzWjAzMTEwLwYDVQQD EyhjYzk1N2QwNTZjM2E1YzEzOGU0MjZhZGNmNDVkMjFjYzA4NTExZDc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4UxXFALTESLhp94DCd63dwt8FMql iKB752g4yXzLSg5Dp9yXZ7fQd5or/wjVNAd1BkeT9J9OJoAvdOU0JATSEiRgx3Xg J9yK5w/d5UOFbXM43Oqwg7VHsHSogKPDJpO2F6qd9725pkKLy5WV2MompzY3tyyI s9/3oE0ap516qC2mCO4GESzQ43prWAp8qoT7oKY91c3GJIHWYln6ucABDOy4PbWG 5n1C0lPrCx1mQEYXMGJsZR04zqaPQjrjC9k1Q7kNBRbqsjrTZuZXpiwrD+UFJ4NP cqsxzb73Lb41nRYPkk0IytRviwQHBkVzBL7DXedM2VMY0TIz6u0Fb+sI1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMyVfQVsOlwTjkJq3PRdIcwIUR14MB8GA1UdIwQY MBaAFB0MOR7dXL7hoU4Ks/k9g0+uUR5NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFF3NUh0MWN2dUdoVGdxei1UMkRUNjVSSGswLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8yYWM2MzMtNDBlYy00MDI3LWFmMmQt MGY4OTllMGMyMGNkLzEvSFF3NUh0MWN2dUdoVGdxei1UMkRUNjVSSGswLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC8yYWM2MzMtNDBlYy00MDI3LWFmMmQtMGY4OTllMGMyMGNk LzEvSFF3NUh0MWN2dUdoVGdxei1UMkRUNjVSSGswLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXvfRgTZf 9eAMDyr41ihI1WAn9b2ZxoFHZJXH2w9i9JYwlPPVhQGIf1kizc5qpcVSpKlxiIci FUVDF2IfKsSWDOxf9QqwS60+XDbj4XhiNJMc9PY3983UfXdRLrD/T1tTGeTHu0y3 5uwYXrgn9N9ld9DUDfhNKwG+dD1GILy/Ro8gSHtZ3uFxpmnr1vY31Yp13eZlm4kv Yi1/Aw1BrRHDMBEjIBBQhbszm5uQljgB/JiNZ2wN45rlj/SzNjwamg+CT3CR5xOd eg6IbNaYQGO8n6EfT8Z8OsAcL6+/yfeSLD41J0RFcvFsAH5fw5EWuqkE2KP6hKnE QHTR/wqTt4yW7Q== -----END CERTIFICATE-----Generated at Mon Feb 9 21:09:16 2026 by rpki-client