This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft File: HnsuJD-KqVRZeTK83NmvZWDc5RY.mft (raw, json) Hash identifier: x1XRSHWL/M2aegEg2gAa8tOazUS638mS3QAgnnwv1Tg= Subject key identifier: 33:27:CD:04:0A:70:EB:5F:44:1E:08:1C:F4:A8:7F:62:E2:E7:27:08 Authority key identifier: 1E:7B:2E:24:3F:8A:A9:54:59:79:32:BC:DC:D9:AF:65:60:DC:E5:16 Certificate issuer: /CN=1e7b2e243f8aa954597932bcdcd9af6560dce516 Certificate serial: 019BFB3FFAAB0433BB4A368305AFE11AB439 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft Manifest number: 0CAF Signing time: Mon 26 Jan 2026 17:00:32 +0000 Manifest this update: Mon 26 Jan 2026 17:00:32 +0000 Manifest next update: Tue 27 Jan 2026 17:00:32 +0000 Files and hashes: 1: 1-z-hX5qlCf8aH8nr2X0zpJdE1hg.roa (hash: 9rLZMVrt7BCmTVumDwvgzgKKJKdaVIZCBXEilPyFZ4c=) 2: HnsuJD-KqVRZeTK83NmvZWDc5RY.crl (hash: 3I/f+JSvlNtv8CVrJEppA5iDsgv2zMTOCrWY4aZUpa8=) 3: XI8CVY8sYwhzkz3YLD7pkxjD3Zk.roa (hash: 25+wg4lixvrKpaIcYJueXb9oNmVKiR9L4SbDtXfdAjQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.crl rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 17:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:3f:fa:ab:04:33:bb:4a:36:83:05:af:e1:1a:b4:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e7b2e243f8aa954597932bcdcd9af6560dce516 Validity Not Before: Jan 26 17:00:32 2026 GMT Not After : Jan 27 17:00:32 2026 GMT Subject: CN=3327cd040a70eb5f441e081cf4a87f62e2e72708 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:85:1a:65:72:76:6c:5a:26:d1:58:a4:7b:f7: bf:06:b7:c7:ed:b7:d8:bd:f7:22:22:49:02:3f:e7: ad:fc:aa:d9:fa:8d:c5:95:52:3f:8b:6a:0d:12:3b: 19:45:91:39:bd:87:8a:e8:7a:c2:58:51:f2:12:eb: 82:ef:42:f8:50:cd:c9:e2:ba:10:56:56:5e:db:ff: d5:ab:25:66:17:0e:00:1b:76:2c:19:ea:78:4d:8b: 58:1c:40:82:26:3e:c2:5d:31:3e:9b:df:3d:47:3f: 4b:e3:e9:13:34:e2:d9:6a:94:78:70:1b:ff:6b:41: 46:e5:0d:e5:fb:12:5d:b3:f3:ca:c3:80:78:ae:b4: d5:45:aa:7c:f2:0a:8f:9e:46:ac:a8:85:06:a5:a9: 25:28:3e:b4:50:1c:50:fb:8a:b9:0f:79:60:e9:33: 70:b4:fa:b8:60:84:8c:f8:f8:69:85:3e:09:33:bb: d7:b7:c8:5e:00:1f:ef:a8:61:31:9e:11:90:97:69: 53:b7:a8:c1:d7:5a:bb:fc:bf:f7:a2:bf:a6:20:0e: a8:a3:13:df:c6:e0:ae:c6:99:22:84:bd:a5:d8:0b: ff:3d:8b:cc:21:52:b5:f7:5e:ea:78:d8:17:a3:60: 4a:e3:f8:0e:d0:3f:d6:84:5a:04:aa:14:fd:c6:85: 54:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:27:CD:04:0A:70:EB:5F:44:1E:08:1C:F4:A8:7F:62:E2:E7:27:08 X509v3 Authority Key Identifier: keyid:1E:7B:2E:24:3F:8A:A9:54:59:79:32:BC:DC:D9:AF:65:60:DC:E5:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption be:45:6d:57:92:1e:49:5a:2f:28:52:ae:1a:5c:3b:9f:8b:ae: 70:4d:d8:73:61:6f:96:c8:fe:4d:36:f7:80:6d:7c:3f:81:88: 4b:ae:e5:90:c3:70:0e:f9:a9:f7:c4:82:c8:cd:af:46:e2:70: 10:69:a1:d7:a1:17:ea:98:87:28:5b:45:3a:66:6a:2e:ea:ee: 25:67:43:ac:cc:82:45:d6:ff:96:cc:e7:73:59:99:e2:e1:d0: 87:09:da:95:72:1b:79:d5:ba:fa:33:a0:07:16:c1:b5:86:7e: c3:21:6b:58:23:2c:25:34:ee:c8:94:e1:98:d1:f7:98:52:77: 26:6a:06:ac:c2:65:3b:7d:31:e2:9a:c1:87:f3:8d:e2:88:1a: 4c:5a:1a:58:9f:1c:74:6a:29:2d:f5:3f:4c:6a:62:dd:e0:66: 35:30:1a:bc:cf:4e:9c:dd:20:e2:86:75:b1:6f:fc:c5:f7:36: b4:44:f3:95:34:04:41:c7:01:52:da:d0:3c:ac:dd:64:a9:35: d0:7d:11:40:2c:cd:5e:98:d5:f4:94:a8:94:6d:17:de:28:24: 78:69:44:c0:b0:b2:5a:21:3b:9d:4e:97:d0:3c:ac:df:fb:a8: 19:e9:74:2a:b6:d8:ef:d2:e4:e5:79:53:b5:64:56:65:6a:59: 7a:9f:cb:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv7P/qrBDO7SjaDBa/hGrQ5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlN2IyZTI0M2Y4YWE5NTQ1OTc5MzJiY2RjZDlhZjY1NjBk Y2U1MTYwHhcNMjYwMTI2MTcwMDMyWhcNMjYwMTI3MTcwMDMyWjAzMTEwLwYDVQQD EygzMzI3Y2QwNDBhNzBlYjVmNDQxZTA4MWNmNGE4N2Y2MmUyZTcyNzA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApoUaZXJ2bFom0Vike/e/BrfH7bfY vfciIkkCP+et/KrZ+o3FlVI/i2oNEjsZRZE5vYeK6HrCWFHyEuuC70L4UM3J4roQ VlZe2//VqyVmFw4AG3YsGep4TYtYHECCJj7CXTE+m989Rz9L4+kTNOLZapR4cBv/ a0FG5Q3l+xJds/PKw4B4rrTVRap88gqPnkasqIUGpaklKD60UBxQ+4q5D3lg6TNw tPq4YISM+PhphT4JM7vXt8heAB/vqGExnhGQl2lTt6jB11q7/L/3or+mIA6ooxPf xuCuxpkihL2l2Av/PYvMIVK1917qeNgXo2BK4/gO0D/WhFoEqhT9xoVU3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDMnzQQKcOtfRB4IHPSof2Li5ycIMB8GA1UdIwQY MBaAFB57LiQ/iqlUWXkyvNzZr2Vg3OUWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSG5zdUpELUtxVlJaZVRLODNObXZaV0RjNVJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC80ZGFlZTAtODRlMi00MWU5LTk2NDMt ZDU0OTU1NjQzY2Q5LzEvSG5zdUpELUtxVlJaZVRLODNObXZaV0RjNVJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC80ZGFlZTAtODRlMi00MWU5LTk2NDMtZDU0OTU1NjQzY2Q5 LzEvSG5zdUpELUtxVlJaZVRLODNObXZaV0RjNVJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvkVtV5Ie SVovKFKuGlw7n4uucE3Yc2Fvlsj+TTb3gG18P4GIS67lkMNwDvmp98SCyM2vRuJw EGmh16EX6piHKFtFOmZqLuruJWdDrMyCRdb/lsznc1mZ4uHQhwnalXIbedW6+jOg BxbBtYZ+wyFrWCMsJTTuyJThmNH3mFJ3JmoGrMJlO30x4prBh/ON4ogaTFoaWJ8c dGopLfU/TGpi3eBmNTAavM9OnN0g4oZ1sW/8xfc2tETzlTQEQccBUtrQPKzdZKk1 0H0RQCzNXpjV9JSolG0X3igkeGlEwLCyWiE7nU6X0Dys3/uoGel0KrbY79Lk5XlT tWRWZWpZep/Ltg== -----END CERTIFICATE-----Generated at Tue Jan 27 02:52:26 2026 by rpki-client