This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/c4d41f-60cd-4cbb-b253-19f1dab2d1b4/1/hkmqSzKHNVNtJ8Fozb9OoXdwHc4.mft File: hkmqSzKHNVNtJ8Fozb9OoXdwHc4.mft (raw, json) Hash identifier: CLOZL+mqW6/F3ER/nxQg8cO0xgq82daiwkElnz1uDss= Subject key identifier: 1B:B7:A5:5C:AE:BA:A2:8D:18:89:39:CD:E3:5D:51:73:51:CA:E5:A1 Authority key identifier: 86:49:AA:4B:32:87:35:53:6D:27:C1:68:CD:BF:4E:A1:77:70:1D:CE Certificate issuer: /CN=8649aa4b328735536d27c168cdbf4ea177701dce Certificate serial: 019C427D66020E31E48F861E81C8E39B7114 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkmqSzKHNVNtJ8Fozb9OoXdwHc4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/c4d41f-60cd-4cbb-b253-19f1dab2d1b4/1/hkmqSzKHNVNtJ8Fozb9OoXdwHc4.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 13:00:40 +0000 Manifest this update: Mon 09 Feb 2026 13:00:40 +0000 Manifest next update: Tue 10 Feb 2026 13:00:40 +0000 Files and hashes: 1: hkmqSzKHNVNtJ8Fozb9OoXdwHc4.crl (hash: gyerYHttZOuJ1u13b5vm05QnAGaXOOuELEx8nXqrdM8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/c4d41f-60cd-4cbb-b253-19f1dab2d1b4/1/hkmqSzKHNVNtJ8Fozb9OoXdwHc4.crl rsync://rpki.ripe.net/repository/DEFAULT/67/c4d41f-60cd-4cbb-b253-19f1dab2d1b4/1/hkmqSzKHNVNtJ8Fozb9OoXdwHc4.mft rsync://rpki.ripe.net/repository/DEFAULT/hkmqSzKHNVNtJ8Fozb9OoXdwHc4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:66:02:0e:31:e4:8f:86:1e:81:c8:e3:9b:71:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8649aa4b328735536d27c168cdbf4ea177701dce Validity Not Before: Feb 9 13:00:40 2026 GMT Not After : Feb 10 13:00:40 2026 GMT Subject: CN=1bb7a55caebaa28d188939cde35d517351cae5a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e6:c9:23:2a:f6:de:9c:61:9b:14:aa:db:0d: ea:6a:bc:7d:fa:f9:b2:56:cd:cf:72:34:99:bb:f9: 60:6b:bb:6f:db:a3:81:07:e6:30:4a:36:c1:f3:d2: 0e:08:39:db:34:c1:a1:cf:fc:44:d4:c4:c0:52:69: e0:a0:9f:3d:33:de:53:1d:84:68:45:03:7a:5f:0f: d9:bb:8b:2f:04:68:0d:4a:8f:00:86:67:e9:8e:eb: ca:73:94:b8:69:71:20:95:0e:e9:88:39:27:47:6c: 58:33:2d:c0:72:33:01:fc:7b:8b:1d:81:50:ab:d7: 4a:76:6b:7a:9b:ea:67:13:56:87:1e:8a:05:9f:d6: d7:64:de:a2:cf:f1:99:94:64:35:85:46:65:b5:90: 04:d1:81:64:e9:70:0a:6a:90:85:a9:02:05:09:1e: 86:1a:56:b6:84:df:4c:03:9f:52:0b:18:91:43:48: 80:91:d9:7a:33:7d:72:9f:a6:27:d4:1b:ad:42:57: fd:b5:aa:77:90:22:ad:0f:d8:2d:62:88:76:be:78: 87:ad:8b:86:00:61:7f:50:f7:1c:26:c8:a0:cc:14: 4f:11:7b:6d:78:12:3c:1b:32:e4:ed:7e:72:30:86: ed:6d:62:23:b0:1a:08:6c:5b:90:cf:43:37:a1:bf: fd:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:B7:A5:5C:AE:BA:A2:8D:18:89:39:CD:E3:5D:51:73:51:CA:E5:A1 X509v3 Authority Key Identifier: keyid:86:49:AA:4B:32:87:35:53:6D:27:C1:68:CD:BF:4E:A1:77:70:1D:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkmqSzKHNVNtJ8Fozb9OoXdwHc4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c4d41f-60cd-4cbb-b253-19f1dab2d1b4/1/hkmqSzKHNVNtJ8Fozb9OoXdwHc4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c4d41f-60cd-4cbb-b253-19f1dab2d1b4/1/hkmqSzKHNVNtJ8Fozb9OoXdwHc4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:51:24:35:c4:56:9f:03:be:84:ac:35:84:c6:0e:67:88:f0: 5a:86:5d:5c:da:a6:18:82:10:cb:4f:82:bd:99:52:c9:3c:a3: e2:ff:77:ad:0c:81:05:73:26:97:1b:49:79:bc:2a:fa:b1:d0: a4:86:47:73:5f:8f:25:07:d3:78:53:c0:69:d1:8a:e0:0e:93: 71:51:fd:4a:9e:02:6f:b9:9e:76:f4:ee:28:9f:a8:14:1c:ed: 4d:cd:3a:40:02:bd:f2:6a:9a:86:34:e9:c9:30:46:b1:73:6c: 9c:49:41:36:38:a9:18:d4:2c:a7:a0:82:c6:18:be:59:37:d5: 27:92:bf:60:9f:29:28:fc:fd:e4:5a:e7:3a:51:3a:46:3f:91: 9f:79:c8:17:56:9b:91:f6:29:73:df:f0:f9:ba:1b:29:e5:2c: ea:16:de:f7:ae:fd:98:03:38:94:7b:c9:7e:73:88:89:83:5e: 32:57:5c:8b:01:fd:96:de:9d:67:dd:29:1e:9d:1b:06:aa:5f: db:8e:2e:1e:1f:de:a3:75:3c:07:fe:e9:d9:7b:ce:ae:ca:2d: 06:5f:1d:60:75:e9:59:96:92:d5:e4:f1:e2:23:1e:b9:83:0f: 1a:94:8e:98:09:d2:56:e4:56:53:54:27:05:58:e5:6c:14:3a: be:bc:5c:51 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfWYCDjHkj4Yegcjjm3EUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2NDlhYTRiMzI4NzM1NTM2ZDI3YzE2OGNkYmY0ZWExNzc3 MDFkY2UwHhcNMjYwMjA5MTMwMDQwWhcNMjYwMjEwMTMwMDQwWjAzMTEwLwYDVQQD EygxYmI3YTU1Y2FlYmFhMjhkMTg4OTM5Y2RlMzVkNTE3MzUxY2FlNWExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4ebJIyr23pxhmxSq2w3qarx9+vmy Vs3PcjSZu/lga7tv26OBB+YwSjbB89IOCDnbNMGhz/xE1MTAUmngoJ89M95THYRo RQN6Xw/Zu4svBGgNSo8AhmfpjuvKc5S4aXEglQ7piDknR2xYMy3AcjMB/HuLHYFQ q9dKdmt6m+pnE1aHHooFn9bXZN6iz/GZlGQ1hUZltZAE0YFk6XAKapCFqQIFCR6G Gla2hN9MA59SCxiRQ0iAkdl6M31yn6Yn1ButQlf9tap3kCKtD9gtYoh2vniHrYuG AGF/UPccJsigzBRPEXtteBI8GzLk7X5yMIbtbWIjsBoIbFuQz0M3ob/97wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBu3pVyuuqKNGIk5zeNdUXNRyuWhMB8GA1UdIwQY MBaAFIZJqksyhzVTbSfBaM2/TqF3cB3OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGttcVN6S0hOVk50SjhGb3piOU9vWGR3SGM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9jNGQ0MWYtNjBjZC00Y2JiLWIyNTMt MTlmMWRhYjJkMWI0LzEvaGttcVN6S0hOVk50SjhGb3piOU9vWGR3SGM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny9jNGQ0MWYtNjBjZC00Y2JiLWIyNTMtMTlmMWRhYjJkMWI0 LzEvaGttcVN6S0hOVk50SjhGb3piOU9vWGR3SGM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHVEkNcRW nwO+hKw1hMYOZ4jwWoZdXNqmGIIQy0+CvZlSyTyj4v93rQyBBXMmlxtJebwq+rHQ pIZHc1+PJQfTeFPAadGK4A6TcVH9Sp4Cb7medvTuKJ+oFBztTc06QAK98mqahjTp yTBGsXNsnElBNjipGNQsp6CCxhi+WTfVJ5K/YJ8pKPz95FrnOlE6Rj+Rn3nIF1ab kfYpc9/w+bobKeUs6hbe9679mAM4lHvJfnOIiYNeMldciwH9lt6dZ90pHp0bBqpf 244uHh/eo3U8B/7p2XvOrsotBl8dYHXpWZaS1eTx4iMeuYMPGpSOmAnSVuRWU1Qn BVjlbBQ6vrxcUQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:44 2026 by rpki-client