This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/354a55-e6a9-4d17-b313-3f0841ae6bc1/1/hWlFRtV2UOyEZtOS0X-jQylgFUA.mft File: hWlFRtV2UOyEZtOS0X-jQylgFUA.mft (raw, json) Hash identifier: Yjvq5UuYfQr5+q+5yuMHQKKwZi0UNb7D7wkJxcl1YQI= Subject key identifier: 99:8D:46:6A:F7:CC:86:D1:24:20:92:19:17:73:48:B1:DE:4C:00:2F Authority key identifier: 85:69:45:46:D5:76:50:EC:84:66:D3:92:D1:7F:A3:43:29:60:15:40 Certificate issuer: /CN=85694546d57650ec8466d392d17fa34329601540 Certificate serial: 019C44D9822398287100931F1578506E86E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWlFRtV2UOyEZtOS0X-jQylgFUA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/354a55-e6a9-4d17-b313-3f0841ae6bc1/1/hWlFRtV2UOyEZtOS0X-jQylgFUA.mft Manifest number: 01F2 Signing time: Tue 10 Feb 2026 00:00:31 +0000 Manifest this update: Tue 10 Feb 2026 00:00:31 +0000 Manifest next update: Wed 11 Feb 2026 00:00:31 +0000 Files and hashes: 1: hWlFRtV2UOyEZtOS0X-jQylgFUA.crl (hash: rJu8QA3XuSebwBVFFK3hsVZDNa9a/Esd8YoRCJvxZy0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/354a55-e6a9-4d17-b313-3f0841ae6bc1/1/hWlFRtV2UOyEZtOS0X-jQylgFUA.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/354a55-e6a9-4d17-b313-3f0841ae6bc1/1/hWlFRtV2UOyEZtOS0X-jQylgFUA.mft rsync://rpki.ripe.net/repository/DEFAULT/hWlFRtV2UOyEZtOS0X-jQylgFUA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:d9:82:23:98:28:71:00:93:1f:15:78:50:6e:86:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85694546d57650ec8466d392d17fa34329601540 Validity Not Before: Feb 10 00:00:31 2026 GMT Not After : Feb 11 00:00:31 2026 GMT Subject: CN=998d466af7cc86d124209219177348b1de4c002f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:85:d6:53:70:23:03:a0:12:11:fa:9f:4d:0e: 41:2b:65:d3:69:22:85:c2:c3:b2:d0:ab:3c:bb:9a: f1:00:57:6b:83:c0:e4:50:8d:f7:2b:3f:ec:02:dc: bd:5c:1d:08:a2:f9:4a:9e:bd:8b:ec:e4:f2:b6:fe: 63:80:ab:ef:ab:0a:df:0a:12:e4:f1:69:61:bf:17: e6:4c:21:f7:95:17:67:51:0c:cc:c5:17:ec:5b:67: 62:a7:9d:4a:a2:23:8d:e8:66:b4:61:10:7e:d5:35: 30:66:5f:a6:ce:02:13:ba:b0:e9:30:5a:bc:68:49: 8d:2e:09:f4:83:25:77:7a:c5:1c:8b:e2:9f:c3:42: 21:42:54:49:af:e5:5d:b8:b3:52:ff:b9:0b:8a:03: 13:98:93:3c:76:58:18:26:e7:ea:ce:68:bd:fd:47: 10:b5:38:52:ed:41:ab:6e:78:d4:16:60:41:7c:e2: b3:d0:62:e2:c6:b8:74:07:92:53:ba:80:75:41:a0: 27:26:66:4e:a4:cb:cb:2e:f3:60:31:06:f4:36:f4: c9:dc:8c:f3:dc:21:b0:24:c4:f4:dd:9b:b5:00:f6: 39:95:fd:60:a2:e8:6d:9d:25:6e:a3:b2:c9:7b:40: e1:ff:7e:76:d7:15:a4:7c:0f:fb:3c:05:cc:4b:1c: 43:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:8D:46:6A:F7:CC:86:D1:24:20:92:19:17:73:48:B1:DE:4C:00:2F X509v3 Authority Key Identifier: keyid:85:69:45:46:D5:76:50:EC:84:66:D3:92:D1:7F:A3:43:29:60:15:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWlFRtV2UOyEZtOS0X-jQylgFUA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/354a55-e6a9-4d17-b313-3f0841ae6bc1/1/hWlFRtV2UOyEZtOS0X-jQylgFUA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/354a55-e6a9-4d17-b313-3f0841ae6bc1/1/hWlFRtV2UOyEZtOS0X-jQylgFUA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:ab:e8:53:35:c8:2e:eb:ba:ba:ef:bf:9a:ee:f9:14:93:b8: e8:c8:1b:3e:5b:31:d3:cd:02:f6:88:9f:5f:89:66:e6:b6:ee: df:59:4f:6f:a3:74:a7:65:58:03:e3:ce:ed:dd:f5:19:77:da: bc:d3:48:b7:7e:ec:90:89:7f:17:98:bc:90:ad:ca:89:6c:ee: d0:a5:03:29:be:d4:55:0c:d3:1d:6a:9c:3f:ef:b4:92:5a:07: d6:45:c2:6b:90:32:81:ba:50:f5:c0:db:63:66:ff:be:09:a3: ae:35:51:4e:a4:be:75:e0:77:14:60:5e:90:cb:c7:4f:b4:ee: f5:69:56:a6:7f:51:d6:11:f1:7b:8a:83:27:7f:66:99:10:1a: 7b:24:3b:e1:29:59:02:b3:28:d4:ba:a0:67:59:1e:3e:6d:fd: 23:9f:50:67:08:b7:d3:85:87:ca:04:f0:15:b0:40:9e:30:6b: 9d:2b:d1:1e:17:b9:bd:25:e1:0d:e3:57:9d:42:c2:c0:4b:8d: 3b:81:c2:ef:d5:62:00:54:c8:a9:67:dc:1f:00:c5:46:67:2a: c4:09:31:e3:5a:c6:b5:ee:a5:ad:ec:50:10:c1:63:55:19:ee: 17:f7:1a:6c:d8:6e:21:03:be:55:31:9b:0e:1e:ae:37:2f:e5: a5:3e:fe:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxE2YIjmChxAJMfFXhQbobmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1Njk0NTQ2ZDU3NjUwZWM4NDY2ZDM5MmQxN2ZhMzQzMjk2 MDE1NDAwHhcNMjYwMjEwMDAwMDMxWhcNMjYwMjExMDAwMDMxWjAzMTEwLwYDVQQD Eyg5OThkNDY2YWY3Y2M4NmQxMjQyMDkyMTkxNzczNDhiMWRlNGMwMDJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqYXWU3AjA6ASEfqfTQ5BK2XTaSKF wsOy0Ks8u5rxAFdrg8DkUI33Kz/sAty9XB0IovlKnr2L7OTytv5jgKvvqwrfChLk 8WlhvxfmTCH3lRdnUQzMxRfsW2dip51KoiON6Ga0YRB+1TUwZl+mzgITurDpMFq8 aEmNLgn0gyV3esUci+Kfw0IhQlRJr+VduLNS/7kLigMTmJM8dlgYJufqzmi9/UcQ tThS7UGrbnjUFmBBfOKz0GLixrh0B5JTuoB1QaAnJmZOpMvLLvNgMQb0NvTJ3Izz 3CGwJMT03Zu1APY5lf1gouhtnSVuo7LJe0Dh/3521xWkfA/7PAXMSxxDDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJmNRmr3zIbRJCCSGRdzSLHeTAAvMB8GA1UdIwQY MBaAFIVpRUbVdlDshGbTktF/o0MpYBVAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFdsRlJ0VjJVT3lFWnRPUzBYLWpReWxnRlVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8zNTRhNTUtZTZhOS00ZDE3LWIzMTMt M2YwODQxYWU2YmMxLzEvaFdsRlJ0VjJVT3lFWnRPUzBYLWpReWxnRlVBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS8zNTRhNTUtZTZhOS00ZDE3LWIzMTMtM2YwODQxYWU2YmMx LzEvaFdsRlJ0VjJVT3lFWnRPUzBYLWpReWxnRlVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG6voUzXI Luu6uu+/mu75FJO46MgbPlsx080C9oifX4lm5rbu31lPb6N0p2VYA+PO7d31GXfa vNNIt37skIl/F5i8kK3KiWzu0KUDKb7UVQzTHWqcP++0kloH1kXCa5AygbpQ9cDb Y2b/vgmjrjVRTqS+deB3FGBekMvHT7Tu9WlWpn9R1hHxe4qDJ39mmRAaeyQ74SlZ ArMo1LqgZ1kePm39I59QZwi304WHygTwFbBAnjBrnSvRHhe5vSXhDeNXnULCwEuN O4HC79ViAFTIqWfcHwDFRmcqxAkx41rGte6lrexQEMFjVRnuF/cabNhuIQO+VTGb Dh6uNy/lpT7+zA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:48:39 2026 by rpki-client