This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft File: HKy3fiC3gUfUf4OUKU8Re1yE714.mft (raw, json) Hash identifier: hElfhBUotj0CGpytqKLMebAgaXo9MPifUoyf8c11QTU= Subject key identifier: 40:EE:FB:F3:86:87:83:F6:FB:AB:D5:60:B2:7C:84:B7:6A:D9:E5:94 Authority key identifier: 1C:AC:B7:7E:20:B7:81:47:D4:7F:83:94:29:4F:11:7B:5C:84:EF:5E Certificate issuer: /CN=1cacb77e20b78147d47f8394294f117b5c84ef5e Certificate serial: 019C43220D0FA2C8908B916C8F18D882D8DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft Manifest number: 12C3 Signing time: Mon 09 Feb 2026 16:00:30 +0000 Manifest this update: Mon 09 Feb 2026 16:00:30 +0000 Manifest next update: Tue 10 Feb 2026 16:00:30 +0000 Files and hashes: 1: HKy3fiC3gUfUf4OUKU8Re1yE714.crl (hash: M+WPeRIynsaXq1QuyjPO0/NEerxFxTa165hY0pHpWPU=) 2: dAblp8vp-pMAwa1_Vthxc2gt8k8.roa (hash: wEmjefANEUzkZ5hvuYtJ5mos9QLC+6Qw68fr7kd+5go=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:0d:0f:a2:c8:90:8b:91:6c:8f:18:d8:82:d8:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1cacb77e20b78147d47f8394294f117b5c84ef5e Validity Not Before: Feb 9 16:00:30 2026 GMT Not After : Feb 10 16:00:30 2026 GMT Subject: CN=40eefbf3868783f6fbabd560b27c84b76ad9e594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6f:5f:65:3f:5a:fc:4d:ae:ea:15:83:94:a1: 53:20:4c:a6:43:f3:3f:77:45:83:9e:2e:b0:3d:14: e2:f8:fb:ad:ae:00:89:15:99:70:b9:75:f3:54:3b: 96:1f:e2:0c:e9:fb:70:00:a0:ca:e0:46:94:08:5f: 99:61:78:58:26:c0:e4:9c:83:e8:8d:68:d0:b7:1b: 88:91:d3:cc:7a:29:a9:45:22:97:39:e0:9f:18:14: 9d:2f:a4:cc:da:4f:93:c8:4d:5d:55:de:67:a8:41: c2:57:8f:f4:3e:06:8b:87:6c:77:73:6a:e5:43:8e: b6:23:44:55:89:c3:f3:1c:d3:ef:1a:b7:b6:ef:96: 7d:a2:50:f0:2b:29:f7:e5:1f:aa:38:36:0d:a6:a1: 0a:82:42:e7:9a:86:a0:7f:af:1e:04:79:ec:9b:99: 4a:b3:ba:5d:83:05:52:75:78:35:18:1f:cf:cd:27: d0:1e:c0:4c:1b:6c:f2:c4:b7:f5:2f:cd:cd:27:97: 20:3f:56:41:2b:8d:85:c7:22:07:33:fe:57:e5:2b: 40:69:f7:12:46:56:41:90:61:d0:37:8d:b1:d7:49: 11:e1:da:0a:d8:65:9e:46:0a:bf:5b:9b:c3:2e:71: eb:16:02:7a:e9:92:75:81:82:dc:09:f1:b9:a5:94: 88:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:EE:FB:F3:86:87:83:F6:FB:AB:D5:60:B2:7C:84:B7:6A:D9:E5:94 X509v3 Authority Key Identifier: keyid:1C:AC:B7:7E:20:B7:81:47:D4:7F:83:94:29:4F:11:7B:5C:84:EF:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:a8:18:6f:51:9e:62:60:52:af:b8:8d:e5:57:0b:8c:c7:73: fa:88:ac:5c:d6:55:91:03:17:57:e7:cc:62:c3:13:bb:c2:ae: 79:9f:65:a2:de:09:19:2a:ce:66:27:a6:70:0e:61:6a:37:c7: fe:47:2d:2e:85:98:5b:5a:11:ee:a4:c5:d9:fe:00:b3:58:b8: d2:b1:d1:6d:d5:44:a4:eb:91:8d:ff:d1:5c:e9:22:63:12:df: b0:3d:d2:1b:6d:c9:60:ea:e0:e6:bd:fa:82:5a:c0:89:01:fa: 31:eb:5a:cd:53:58:16:a9:6d:b5:18:af:d9:8e:d4:09:37:d1: 47:d7:95:39:b4:ea:e3:42:1a:a1:b8:82:48:d1:48:07:27:56: b6:8d:f7:86:6d:c3:01:9c:21:02:01:62:5e:46:32:9f:24:de: a8:35:4b:22:90:94:78:cd:bc:eb:82:b1:80:11:5b:52:32:a3: 36:91:ad:0d:b5:a4:63:55:42:71:37:97:af:88:8f:6c:4b:dd: d1:f8:8e:9d:8e:1b:19:d6:69:ed:2a:6f:2a:de:b9:d0:16:d7: 03:50:51:a4:d2:62:95:17:47:7b:4c:9f:ae:c1:d1:24:98:34: 2f:66:cc:6f:9a:48:fd:2c:fa:a2:1c:ec:73:6f:d1:cc:cd:0d: f9:86:10:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIg0PosiQi5FsjxjYgtjeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjYWNiNzdlMjBiNzgxNDdkNDdmODM5NDI5NGYxMTdiNWM4 NGVmNWUwHhcNMjYwMjA5MTYwMDMwWhcNMjYwMjEwMTYwMDMwWjAzMTEwLwYDVQQD Eyg0MGVlZmJmMzg2ODc4M2Y2ZmJhYmQ1NjBiMjdjODRiNzZhZDllNTk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAum9fZT9a/E2u6hWDlKFTIEymQ/M/ d0WDni6wPRTi+PutrgCJFZlwuXXzVDuWH+IM6ftwAKDK4EaUCF+ZYXhYJsDknIPo jWjQtxuIkdPMeimpRSKXOeCfGBSdL6TM2k+TyE1dVd5nqEHCV4/0PgaLh2x3c2rl Q462I0RVicPzHNPvGre275Z9olDwKyn35R+qODYNpqEKgkLnmoagf68eBHnsm5lK s7pdgwVSdXg1GB/PzSfQHsBMG2zyxLf1L83NJ5cgP1ZBK42FxyIHM/5X5StAafcS RlZBkGHQN42x10kR4doK2GWeRgq/W5vDLnHrFgJ66ZJ1gYLcCfG5pZSI8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEDu+/OGh4P2+6vVYLJ8hLdq2eWUMB8GA1UdIwQY MBaAFByst34gt4FH1H+DlClPEXtchO9eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEt5M2ZpQzNnVWZVZjRPVUtVOFJlMXlFNzE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy80MTdhYjItZmNiMy00MDVkLWEwYzgt NTMyNWE1MjAwYmE5LzEvSEt5M2ZpQzNnVWZVZjRPVUtVOFJlMXlFNzE0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy80MTdhYjItZmNiMy00MDVkLWEwYzgtNTMyNWE1MjAwYmE5 LzEvSEt5M2ZpQzNnVWZVZjRPVUtVOFJlMXlFNzE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEqgYb1Ge YmBSr7iN5VcLjMdz+oisXNZVkQMXV+fMYsMTu8KueZ9lot4JGSrOZiemcA5hajfH /kctLoWYW1oR7qTF2f4As1i40rHRbdVEpOuRjf/RXOkiYxLfsD3SG23JYOrg5r36 glrAiQH6MetazVNYFqlttRiv2Y7UCTfRR9eVObTq40IaobiCSNFIBydWto33hm3D AZwhAgFiXkYynyTeqDVLIpCUeM2864KxgBFbUjKjNpGtDbWkY1VCcTeXr4iPbEvd 0fiOnY4bGdZp7SpvKt650BbXA1BRpNJilRdHe0yfrsHRJJg0L2bMb5pI/Sz6ohzs c2/RzM0N+YYQpg== -----END CERTIFICATE-----Generated at Tue Feb 10 00:15:17 2026 by rpki-client