This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/606c03-4bf5-4f1b-adbc-e2fc355b5781/1/HrZXoNY0lwORdiUQFPahX-I8t1w.mft File: HrZXoNY0lwORdiUQFPahX-I8t1w.mft (raw, json) Hash identifier: mSg2KBWZK6yddrGFyCgLyCVxycqVstlte3AU6Vx6XlE= Subject key identifier: 46:53:97:3A:F0:A0:5C:60:30:5D:4B:3B:7B:73:21:CE:0F:28:85:38 Authority key identifier: 1E:B6:57:A0:D6:34:97:03:91:76:25:10:14:F6:A1:5F:E2:3C:B7:5C Certificate issuer: /CN=1eb657a0d63497039176251014f6a15fe23cb75c Certificate serial: 019C41A21AD46E3A793DB6C415501544AE79 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HrZXoNY0lwORdiUQFPahX-I8t1w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/606c03-4bf5-4f1b-adbc-e2fc355b5781/1/HrZXoNY0lwORdiUQFPahX-I8t1w.mft Manifest number: 70 Signing time: Mon 09 Feb 2026 09:01:08 +0000 Manifest this update: Mon 09 Feb 2026 09:01:08 +0000 Manifest next update: Tue 10 Feb 2026 09:01:08 +0000 Files and hashes: 1: 3Ct6TkUE2gBFPtDFBHYIYOTGlpw.roa (hash: hacarGD+istChd7yJvqpW0vSFQX9AY4Tmu/s0YEY6RE=) 2: HrZXoNY0lwORdiUQFPahX-I8t1w.crl (hash: rSY91RUGrjn1Ljo8VX7+g+ThpVJiB1rwY8dxo0KyBCA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/606c03-4bf5-4f1b-adbc-e2fc355b5781/1/HrZXoNY0lwORdiUQFPahX-I8t1w.crl rsync://rpki.ripe.net/repository/DEFAULT/63/606c03-4bf5-4f1b-adbc-e2fc355b5781/1/HrZXoNY0lwORdiUQFPahX-I8t1w.mft rsync://rpki.ripe.net/repository/DEFAULT/HrZXoNY0lwORdiUQFPahX-I8t1w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:1a:d4:6e:3a:79:3d:b6:c4:15:50:15:44:ae:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1eb657a0d63497039176251014f6a15fe23cb75c Validity Not Before: Feb 9 09:01:08 2026 GMT Not After : Feb 10 09:01:08 2026 GMT Subject: CN=4653973af0a05c60305d4b3b7b7321ce0f288538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:46:57:36:29:43:ec:88:13:9a:c9:c2:ba:df: 7c:a5:e7:80:dc:14:b3:7d:59:93:eb:9d:31:0a:e0: ae:a3:1d:56:77:82:a1:6c:a2:bc:2f:f3:fd:41:7b: 36:0e:43:25:8c:10:78:c1:8e:6c:f2:e4:25:56:1d: 6b:75:c9:fd:97:96:6f:e1:ff:5c:60:83:32:33:1f: 8b:c7:62:c8:b3:91:0d:fc:35:28:01:23:62:a7:a1: 00:a8:04:7a:b6:27:34:17:5e:3b:c6:0f:2f:02:ac: d3:17:45:34:b6:95:b9:49:25:eb:c6:b8:37:6f:e5: 27:3c:ae:f0:cf:b1:b1:97:6a:be:c5:6e:46:df:ef: 6e:42:3a:52:b6:e8:92:ef:7e:d1:21:8f:ef:3a:ef: f7:1c:f0:9c:a5:d1:28:13:d3:00:10:57:d6:26:27: 2c:d3:72:d3:44:e0:4a:89:5c:31:55:36:97:69:72: fe:0b:53:1b:12:fc:ba:8e:06:f1:80:93:0f:83:f1: 97:95:61:ca:ea:2a:a4:98:56:d1:3d:6d:39:da:36: 09:14:5f:cd:b1:28:5f:1b:d8:08:63:cb:2f:4c:6e: 91:ff:e6:02:46:2d:dd:a5:8e:c6:31:66:62:89:c8: 03:8f:df:95:4e:4e:f1:45:5c:f9:d1:b9:50:34:97: 1e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:53:97:3A:F0:A0:5C:60:30:5D:4B:3B:7B:73:21:CE:0F:28:85:38 X509v3 Authority Key Identifier: keyid:1E:B6:57:A0:D6:34:97:03:91:76:25:10:14:F6:A1:5F:E2:3C:B7:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HrZXoNY0lwORdiUQFPahX-I8t1w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/606c03-4bf5-4f1b-adbc-e2fc355b5781/1/HrZXoNY0lwORdiUQFPahX-I8t1w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/606c03-4bf5-4f1b-adbc-e2fc355b5781/1/HrZXoNY0lwORdiUQFPahX-I8t1w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:f9:46:65:af:a4:e1:f1:0d:d9:de:9c:3d:2d:ad:0c:2c:c8: c9:87:bb:5b:1a:5d:99:5a:6b:57:f0:10:87:5e:1e:2a:97:7e: ac:13:a4:cf:20:c9:05:03:5f:3f:6b:c8:39:cd:a3:ce:b6:91: b9:89:4d:d3:b5:ea:0d:f1:81:7f:c6:e1:5d:56:30:45:71:a6: 5a:b2:08:21:73:26:12:bd:50:f8:13:c7:af:b0:cc:7c:84:b9: fd:ef:c3:46:61:9e:72:86:b6:76:35:52:33:09:28:8b:c1:d1: 6e:fe:29:6f:3e:27:3a:e1:5d:1c:d1:50:26:00:a6:90:8e:ef: 9c:a7:82:5e:34:96:29:98:06:bd:91:c9:7a:bc:9a:13:4f:28: 8b:90:4d:c3:bd:90:3f:c1:c9:1c:ae:aa:96:81:ad:c7:14:15: a2:b7:80:a8:30:97:25:eb:ce:aa:79:97:f6:ff:e2:5e:51:4e: ae:6e:89:e9:1f:a4:cd:36:00:f7:af:8e:21:e2:dd:d7:ba:28: a9:a3:da:a7:45:37:fe:f4:43:49:6c:2e:df:14:5a:0e:3a:d1: bd:47:ce:04:cd:45:36:75:99:dd:89:c8:6b:e9:c6:85:b8:ca: f6:ec:a9:94:5a:9b:d1:19:c0:62:aa:1e:24:0c:f8:2e:74:16: 4a:19:ba:7a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBohrUbjp5PbbEFVAVRK55MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlYjY1N2EwZDYzNDk3MDM5MTc2MjUxMDE0ZjZhMTVmZTIz Y2I3NWMwHhcNMjYwMjA5MDkwMTA4WhcNMjYwMjEwMDkwMTA4WjAzMTEwLwYDVQQD Eyg0NjUzOTczYWYwYTA1YzYwMzA1ZDRiM2I3YjczMjFjZTBmMjg4NTM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnEZXNilD7IgTmsnCut98peeA3BSz fVmT650xCuCuox1Wd4KhbKK8L/P9QXs2DkMljBB4wY5s8uQlVh1rdcn9l5Zv4f9c YIMyMx+Lx2LIs5EN/DUoASNip6EAqAR6tic0F147xg8vAqzTF0U0tpW5SSXrxrg3 b+UnPK7wz7Gxl2q+xW5G3+9uQjpStuiS737RIY/vOu/3HPCcpdEoE9MAEFfWJics 03LTROBKiVwxVTaXaXL+C1MbEvy6jgbxgJMPg/GXlWHK6iqkmFbRPW052jYJFF/N sShfG9gIY8svTG6R/+YCRi3dpY7GMWZiicgDj9+VTk7xRVz50blQNJceRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEZTlzrwoFxgMF1LO3tzIc4PKIU4MB8GA1UdIwQY MBaAFB62V6DWNJcDkXYlEBT2oV/iPLdcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHJaWG9OWTBsd09SZGlVUUZQYWhYLUk4dDF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My82MDZjMDMtNGJmNS00ZjFiLWFkYmMt ZTJmYzM1NWI1NzgxLzEvSHJaWG9OWTBsd09SZGlVUUZQYWhYLUk4dDF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My82MDZjMDMtNGJmNS00ZjFiLWFkYmMtZTJmYzM1NWI1Nzgx LzEvSHJaWG9OWTBsd09SZGlVUUZQYWhYLUk4dDF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp/lGZa+k 4fEN2d6cPS2tDCzIyYe7WxpdmVprV/AQh14eKpd+rBOkzyDJBQNfP2vIOc2jzraR uYlN07XqDfGBf8bhXVYwRXGmWrIIIXMmEr1Q+BPHr7DMfIS5/e/DRmGecoa2djVS Mwkoi8HRbv4pbz4nOuFdHNFQJgCmkI7vnKeCXjSWKZgGvZHJeryaE08oi5BNw72Q P8HJHK6qloGtxxQVoreAqDCXJevOqnmX9v/iXlFOrm6J6R+kzTYA96+OIeLd17oo qaPap0U3/vRDSWwu3xRaDjrRvUfOBM1FNnWZ3YnIa+nGhbjK9uyplFqb0RnAYqoe JAz4LnQWShm6eg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:48:11 2026 by rpki-client