This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft File: hyj0ANg9Saqm6TIMosv6k9pb55s.mft (raw, json) Hash identifier: BHdlV7JpU10pxmNyAI5FICoRq5DAYZvGbmzaptakUj0= Subject key identifier: 8E:0E:4F:E5:B0:92:88:AB:CA:89:D8:27:33:CD:28:BB:FF:77:89:FC Authority key identifier: 87:28:F4:00:D8:3D:49:AA:A6:E9:32:0C:A2:CB:FA:93:DA:5B:E7:9B Certificate issuer: /CN=8728f400d83d49aaa6e9320ca2cbfa93da5be79b Certificate serial: 019C2329DB9A8274D76349A5D5F3A7F4BDEF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft Manifest number: 06CB Signing time: Tue 03 Feb 2026 11:01:11 +0000 Manifest this update: Tue 03 Feb 2026 11:01:11 +0000 Manifest next update: Wed 04 Feb 2026 11:01:11 +0000 Files and hashes: 1: BSwE4k_qFyqxMrdShjqvF4jnTL8.roa (hash: oMo6L40X4qe6QWPhrSHg9ULY1MyzZvPQEPrBk1VTYF0=) 2: hyj0ANg9Saqm6TIMosv6k9pb55s.crl (hash: JFzDn/1dSHKF68huOSuWnPY1UAWh+24GM/s2GGTNcRw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.crl rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 04 Feb 2026 11:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:23:29:db:9a:82:74:d7:63:49:a5:d5:f3:a7:f4:bd:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8728f400d83d49aaa6e9320ca2cbfa93da5be79b Validity Not Before: Feb 3 11:01:11 2026 GMT Not After : Feb 4 11:01:11 2026 GMT Subject: CN=8e0e4fe5b09288abca89d82733cd28bbff7789fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1b:dd:2a:73:68:c2:8a:fe:cf:b2:5a:42:e2: 7d:2b:a8:c2:83:9f:96:c9:b6:bc:d6:ba:32:f3:83: e2:f0:53:0f:de:6a:52:26:9d:fc:57:6c:fb:ce:90: 79:93:42:4c:e1:f6:76:f4:25:d0:51:67:48:c4:7f: 78:76:3a:84:eb:da:ae:34:c4:a9:7e:25:35:90:22: 2d:0b:50:dc:13:05:e6:e9:b2:dd:00:df:ea:4a:83: 1c:35:68:e5:3b:14:ae:e8:3a:2d:48:ce:29:3a:89: 44:68:16:41:59:fa:87:de:8a:e3:be:e2:c1:13:1a: 1f:2c:04:2e:56:0c:71:4d:41:d8:d1:90:48:7c:55: 93:3d:88:2d:16:85:27:54:de:3b:1d:35:04:68:9c: b3:fc:79:d3:6b:0f:d4:12:ab:28:0a:2d:76:68:12: 18:c6:42:16:e8:ed:8c:bf:0d:63:9c:72:90:29:c4: 10:a7:0a:7c:79:4c:64:1b:b6:16:62:c3:42:68:4b: 89:f0:d9:7e:60:9d:e9:cd:4c:01:17:59:a4:30:31: ff:b0:cf:d7:58:84:36:ed:3a:de:58:ad:bf:4e:2c: e4:bd:5a:a9:9a:e1:03:78:28:73:44:3a:67:01:ba: 09:95:34:e6:97:e0:4e:8c:61:d3:d6:ec:d3:12:09: 4d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:0E:4F:E5:B0:92:88:AB:CA:89:D8:27:33:CD:28:BB:FF:77:89:FC X509v3 Authority Key Identifier: keyid:87:28:F4:00:D8:3D:49:AA:A6:E9:32:0C:A2:CB:FA:93:DA:5B:E7:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:15:de:9a:1d:8f:59:c7:67:60:d5:8b:ca:a4:c1:7c:17:fe: e4:c9:c9:b3:c1:f3:84:00:38:9b:7b:6f:55:d2:30:59:c4:16: 46:ca:22:c4:72:a5:17:1a:52:8f:b1:b7:79:a0:90:0b:d6:72: 04:6f:ae:9b:76:de:27:81:26:c2:15:58:3a:79:aa:8d:0c:bb: 47:06:5f:dc:75:1d:b9:0b:53:c1:b8:a2:e0:1f:6c:9e:96:ca: f9:2c:55:27:d3:4e:48:4d:bc:14:f0:11:cf:bd:93:c9:4b:f5: 21:fe:b6:13:52:80:5c:a6:94:06:f5:6d:0a:e6:e6:b3:03:60: 33:ed:4c:d7:9b:ad:85:d0:ba:d4:fe:f3:5b:37:d7:04:13:e4: 03:4e:7f:f7:05:c7:77:02:59:69:11:b5:02:4d:aa:af:c2:9a: b0:ab:ed:34:b1:f1:aa:ed:4e:b6:d8:fc:69:f4:b7:29:32:8d: 8d:9e:49:45:9d:99:8b:1d:5c:a3:6c:38:d0:61:d0:9a:22:fb: c9:b3:0d:3b:f4:2f:af:8e:4c:04:75:a7:e8:e2:79:63:a6:e6: fa:42:55:96:8b:ce:a9:4d:4c:cf:90:69:c5:d2:b1:88:4b:0f: 65:a4:4a:bd:95:62:36:e5:07:bf:5a:68:75:37:c5:26:20:01: 1a:fd:ed:81 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwjKduagnTXY0ml1fOn9L3vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3MjhmNDAwZDgzZDQ5YWFhNmU5MzIwY2EyY2JmYTkzZGE1 YmU3OWIwHhcNMjYwMjAzMTEwMTExWhcNMjYwMjA0MTEwMTExWjAzMTEwLwYDVQQD Eyg4ZTBlNGZlNWIwOTI4OGFiY2E4OWQ4MjczM2NkMjhiYmZmNzc4OWZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsBvdKnNowor+z7JaQuJ9K6jCg5+W yba81roy84Pi8FMP3mpSJp38V2z7zpB5k0JM4fZ29CXQUWdIxH94djqE69quNMSp fiU1kCItC1DcEwXm6bLdAN/qSoMcNWjlOxSu6DotSM4pOolEaBZBWfqH3orjvuLB ExofLAQuVgxxTUHY0ZBIfFWTPYgtFoUnVN47HTUEaJyz/HnTaw/UEqsoCi12aBIY xkIW6O2Mvw1jnHKQKcQQpwp8eUxkG7YWYsNCaEuJ8Nl+YJ3pzUwBF1mkMDH/sM/X WIQ27TreWK2/TizkvVqpmuEDeChzRDpnAboJlTTml+BOjGHT1uzTEglNhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI4OT+WwkoiryonYJzPNKLv/d4n8MB8GA1UdIwQY MBaAFIco9ADYPUmqpukyDKLL+pPaW+ebMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHlqMEFOZzlTYXFtNlRJTW9zdjZrOXBiNTVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC8zM2YxYWItNmEzNS00ZTYzLThiZGMt YTI1ZTE0ZDUzOWEyLzEvaHlqMEFOZzlTYXFtNlRJTW9zdjZrOXBiNTVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC8zM2YxYWItNmEzNS00ZTYzLThiZGMtYTI1ZTE0ZDUzOWEy LzEvaHlqMEFOZzlTYXFtNlRJTW9zdjZrOXBiNTVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfxXemh2P WcdnYNWLyqTBfBf+5MnJs8HzhAA4m3tvVdIwWcQWRsoixHKlFxpSj7G3eaCQC9Zy BG+um3beJ4EmwhVYOnmqjQy7RwZf3HUduQtTwbii4B9snpbK+SxVJ9NOSE28FPAR z72TyUv1If62E1KAXKaUBvVtCubmswNgM+1M15uthdC61P7zWzfXBBPkA05/9wXH dwJZaRG1Ak2qr8KasKvtNLHxqu1Ottj8afS3KTKNjZ5JRZ2Zix1co2w40GHQmiL7 ybMNO/Qvr45MBHWn6OJ5Y6bm+kJVlovOqU1Mz5BpxdKxiEsPZaRKvZViNuUHv1po dTfFJiABGv3tgQ== -----END CERTIFICATE-----Generated at Tue Feb 3 21:13:44 2026 by rpki-client