This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/909dc1-c048-4fb4-898a-0710747a2e91/1/hkCo0qJ0maklfW7UZjoLMNob_jM.mft File: hkCo0qJ0maklfW7UZjoLMNob_jM.mft (raw, json) Hash identifier: THI+nlgMyANx8qZ9Cxgm4gH8zGRYyqLDsmcJni6UzSY= Subject key identifier: 90:B0:52:30:0A:AF:82:DF:DE:11:C1:9B:44:F3:E0:F2:46:43:80:28 Authority key identifier: 86:40:A8:D2:A2:74:99:A9:25:7D:6E:D4:66:3A:0B:30:DA:1B:FE:33 Certificate issuer: /CN=8640a8d2a27499a9257d6ed4663a0b30da1bfe33 Certificate serial: 019C41A161614FD77A392C535B2514FB893F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkCo0qJ0maklfW7UZjoLMNob_jM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/909dc1-c048-4fb4-898a-0710747a2e91/1/hkCo0qJ0maklfW7UZjoLMNob_jM.mft Manifest number: 0BB6 Signing time: Mon 09 Feb 2026 09:00:21 +0000 Manifest this update: Mon 09 Feb 2026 09:00:21 +0000 Manifest next update: Tue 10 Feb 2026 09:00:21 +0000 Files and hashes: 1: hkCo0qJ0maklfW7UZjoLMNob_jM.crl (hash: 6rgolQdgb8Idvz22l207ihgFU+wvNj9lflfAmUL2LQQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/909dc1-c048-4fb4-898a-0710747a2e91/1/hkCo0qJ0maklfW7UZjoLMNob_jM.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/909dc1-c048-4fb4-898a-0710747a2e91/1/hkCo0qJ0maklfW7UZjoLMNob_jM.mft rsync://rpki.ripe.net/repository/DEFAULT/hkCo0qJ0maklfW7UZjoLMNob_jM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:61:61:4f:d7:7a:39:2c:53:5b:25:14:fb:89:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8640a8d2a27499a9257d6ed4663a0b30da1bfe33 Validity Not Before: Feb 9 09:00:21 2026 GMT Not After : Feb 10 09:00:21 2026 GMT Subject: CN=90b052300aaf82dfde11c19b44f3e0f246438028 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:25:ea:55:0d:81:d2:2f:1c:32:a6:8a:85:10: bb:77:54:ce:74:57:19:d1:39:e7:cf:b2:68:63:81: 43:07:b3:28:8a:a9:1e:fc:7d:46:d7:85:14:10:81: 6a:e7:f6:5b:52:43:6d:48:e7:ce:24:db:b2:8e:44: ef:e8:a8:64:9d:8e:dc:f7:a4:32:56:68:ad:72:29: 9f:f0:77:38:8f:43:11:e6:a3:b3:b8:e5:59:74:d8: 2e:39:d9:e1:60:6a:c3:6a:03:44:f2:dc:1c:47:b8: ec:1d:11:a6:44:db:53:93:8b:f2:6d:71:72:5c:b4: 18:63:bb:fc:50:8b:7f:bb:ff:3f:26:37:d9:78:e1: f4:a3:da:51:fe:02:f7:c2:5f:66:ef:e7:c6:fd:f9: 57:f9:98:9d:b3:f6:0f:af:54:ac:79:5b:d1:b2:a9: 00:4a:46:b9:fd:92:36:c1:c4:eb:b6:be:9d:fe:d9: 9a:64:30:04:49:2e:03:11:f6:97:9d:85:cd:ec:d4: bd:dc:90:4c:a8:86:3b:7b:c0:be:de:24:50:b3:42: 21:ae:66:4e:8a:1f:1a:1e:46:ad:20:9e:d0:1c:40: 08:06:50:51:57:cf:06:47:ad:58:55:64:77:12:ff: da:22:62:31:a7:3d:c8:5d:bc:f7:fc:ca:a4:7e:a7: 4c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:B0:52:30:0A:AF:82:DF:DE:11:C1:9B:44:F3:E0:F2:46:43:80:28 X509v3 Authority Key Identifier: keyid:86:40:A8:D2:A2:74:99:A9:25:7D:6E:D4:66:3A:0B:30:DA:1B:FE:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkCo0qJ0maklfW7UZjoLMNob_jM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/909dc1-c048-4fb4-898a-0710747a2e91/1/hkCo0qJ0maklfW7UZjoLMNob_jM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/909dc1-c048-4fb4-898a-0710747a2e91/1/hkCo0qJ0maklfW7UZjoLMNob_jM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:5b:65:7d:2e:68:c6:ef:c9:45:17:df:53:15:43:54:63:e2: 1d:2e:fd:53:1a:79:45:1b:37:59:65:00:66:36:05:3c:98:23: 67:c0:c0:de:a6:69:d6:e7:2b:13:b6:b3:6a:cd:b8:ef:cf:59: 16:c8:c0:d7:65:68:60:35:42:07:15:12:b5:fa:60:d0:0e:1f: 4b:b8:e0:78:f8:0e:e7:76:dc:5b:99:4f:4d:02:92:0f:c2:af: da:f6:12:11:c9:c8:89:00:ee:87:f2:39:64:cc:f5:ff:8b:3b: 4e:e3:a8:23:9f:a8:4f:49:14:71:9f:c6:01:4c:7f:f5:89:c2: 83:ff:d8:68:be:32:26:ee:e1:93:94:11:85:d3:fc:10:e8:c8: 79:08:e9:2b:cb:86:e3:07:73:3a:51:5e:cb:cc:00:72:6a:99: e2:00:07:26:76:8d:f8:db:ac:be:23:88:46:21:43:ea:e8:3e: 4b:2d:a1:f0:61:69:1d:0c:92:48:cf:83:3f:ff:81:24:2b:75: 3b:31:b9:c8:2e:45:82:0a:42:25:05:10:fc:b4:2f:73:bf:62: 88:ab:53:2e:8d:96:aa:a3:c5:c6:db:53:ce:73:2e:30:7b:20: 66:bf:fe:cf:0b:3e:6d:79:e1:73:03:f8:8c:1b:db:29:4b:ca: cf:da:09:3f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoWFhT9d6OSxTWyUU+4k/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2NDBhOGQyYTI3NDk5YTkyNTdkNmVkNDY2M2EwYjMwZGEx YmZlMzMwHhcNMjYwMjA5MDkwMDIxWhcNMjYwMjEwMDkwMDIxWjAzMTEwLwYDVQQD Eyg5MGIwNTIzMDBhYWY4MmRmZGUxMWMxOWI0NGYzZTBmMjQ2NDM4MDI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAziXqVQ2B0i8cMqaKhRC7d1TOdFcZ 0Tnnz7JoY4FDB7Moiqke/H1G14UUEIFq5/ZbUkNtSOfOJNuyjkTv6KhknY7c96Qy Vmitcimf8Hc4j0MR5qOzuOVZdNguOdnhYGrDagNE8twcR7jsHRGmRNtTk4vybXFy XLQYY7v8UIt/u/8/JjfZeOH0o9pR/gL3wl9m7+fG/flX+Zids/YPr1SseVvRsqkA Ska5/ZI2wcTrtr6d/tmaZDAESS4DEfaXnYXN7NS93JBMqIY7e8C+3iRQs0IhrmZO ih8aHkatIJ7QHEAIBlBRV88GR61YVWR3Ev/aImIxpz3IXbz3/MqkfqdMrwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJCwUjAKr4Lf3hHBm0Tz4PJGQ4AoMB8GA1UdIwQY MBaAFIZAqNKidJmpJX1u1GY6CzDaG/4zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGtDbzBxSjBtYWtsZlc3VVpqb0xNTm9iX2pNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC85MDlkYzEtYzA0OC00ZmI0LTg5OGEt MDcxMDc0N2EyZTkxLzEvaGtDbzBxSjBtYWtsZlc3VVpqb0xNTm9iX2pNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC85MDlkYzEtYzA0OC00ZmI0LTg5OGEtMDcxMDc0N2EyZTkx LzEvaGtDbzBxSjBtYWtsZlc3VVpqb0xNTm9iX2pNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg1tlfS5o xu/JRRffUxVDVGPiHS79Uxp5RRs3WWUAZjYFPJgjZ8DA3qZp1ucrE7azas24789Z FsjA12VoYDVCBxUStfpg0A4fS7jgePgO53bcW5lPTQKSD8Kv2vYSEcnIiQDuh/I5 ZMz1/4s7TuOoI5+oT0kUcZ/GAUx/9YnCg//YaL4yJu7hk5QRhdP8EOjIeQjpK8uG 4wdzOlFey8wAcmqZ4gAHJnaN+NusviOIRiFD6ug+Sy2h8GFpHQySSM+DP/+BJCt1 OzG5yC5FggpCJQUQ/LQvc79iiKtTLo2WqqPFxttTznMuMHsgZr/+zws+bXnhcwP4 jBvbKUvKz9oJPw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:53 2026 by rpki-client