This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.mft File: _HlIirThrA9L1GfStNNiHGsY7qA.mft (raw, json) Hash identifier: Z/n2WjMytBwDrVJ6AUo3RqlQuUl45uhjWi13ZB8eScE= Subject key identifier: 88:9D:64:16:E9:42:B4:0C:A4:E4:71:3B:98:D4:03:F2:E3:8D:44:DB Authority key identifier: FC:79:48:8A:B4:E1:AC:0F:4B:D4:67:D2:B4:D3:62:1C:6B:18:EE:A0 Certificate issuer: /CN=fc79488ab4e1ac0f4bd467d2b4d3621c6b18eea0 Certificate serial: 019C42465F06647A3C8ADEDC3F317B7DA284 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_HlIirThrA9L1GfStNNiHGsY7qA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 12:00:33 +0000 Manifest this update: Mon 09 Feb 2026 12:00:33 +0000 Manifest next update: Tue 10 Feb 2026 12:00:33 +0000 Files and hashes: 1: _HlIirThrA9L1GfStNNiHGsY7qA.crl (hash: PT4q4DRciBrCWwJJisH4mD3xNOydjrqYhggqfAOnjVs=) 2: zXpI_ZkMZjomMfSewt7eA9Kg9dk.roa (hash: AKFEqvG1w5Wb8V0Q0PMXn0i+G8aiBs1A75NxMO1M+zY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.crl rsync://rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.mft rsync://rpki.ripe.net/repository/DEFAULT/_HlIirThrA9L1GfStNNiHGsY7qA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:5f:06:64:7a:3c:8a:de:dc:3f:31:7b:7d:a2:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fc79488ab4e1ac0f4bd467d2b4d3621c6b18eea0 Validity Not Before: Feb 9 12:00:33 2026 GMT Not After : Feb 10 12:00:33 2026 GMT Subject: CN=889d6416e942b40ca4e4713b98d403f2e38d44db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:68:2b:b5:27:54:02:ae:e0:39:ed:40:7a:03: 8f:79:1e:bb:16:39:19:fd:cc:f1:e1:a8:58:99:d6: 47:ec:56:e7:58:e1:01:4e:57:71:4a:1c:11:d5:14: 78:8f:e9:fd:63:e9:e8:fb:1d:7a:1b:53:ad:3d:69: 24:c2:e4:19:f1:21:6d:fb:4e:82:20:bf:ca:ef:23: a5:ef:36:cd:5e:5a:39:f4:19:03:32:64:5c:15:72: d8:58:a1:64:15:7b:1d:cc:0d:3f:ff:c2:4f:b6:11: fb:93:e4:85:ab:ba:25:af:c2:9c:5e:16:35:a6:37: 9a:43:b8:10:da:72:af:45:82:b1:58:d7:84:4a:cb: 67:4e:97:b7:24:a8:10:a9:9b:39:d9:38:d8:be:74: e7:98:6c:22:e2:23:ab:50:b4:a1:10:20:a4:78:f8: 51:30:0f:23:b5:3b:e1:ad:ec:fa:41:a0:d9:7b:64: ba:4d:00:13:3e:e1:a6:1b:da:0f:11:11:84:5b:55: 0f:73:88:98:2d:0d:91:7e:46:98:cd:02:6c:78:80: 6b:7f:9b:19:3b:cc:f0:50:26:aa:b5:49:29:da:54: 83:be:ad:ab:49:42:30:9a:6b:60:6d:f4:1e:e1:06: 7f:47:49:df:1d:4d:e9:28:e7:69:9e:4d:73:b4:87: 82:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:9D:64:16:E9:42:B4:0C:A4:E4:71:3B:98:D4:03:F2:E3:8D:44:DB X509v3 Authority Key Identifier: keyid:FC:79:48:8A:B4:E1:AC:0F:4B:D4:67:D2:B4:D3:62:1C:6B:18:EE:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_HlIirThrA9L1GfStNNiHGsY7qA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:52:ab:cf:f1:fa:24:71:10:f7:a4:9e:88:c4:87:ef:b3:fa: a7:57:e8:80:90:b7:21:df:d8:06:e9:a0:ec:d3:c0:03:ce:83: b8:ed:29:13:27:6b:c5:9a:77:b4:b8:79:18:ef:98:7e:b9:71: 13:9c:24:fe:4a:fe:40:ac:a3:08:fd:5f:22:4a:74:4d:24:51: 8b:3c:cd:47:0a:13:9c:75:bc:1c:99:9c:42:a7:3b:03:88:12: c9:6e:0b:d1:ab:5e:79:f9:ce:83:ec:24:08:18:20:8c:31:63: 8a:67:28:60:dc:62:7a:2c:bc:0c:4e:dc:f0:55:ca:d9:c6:98: fd:54:da:04:92:aa:97:44:5b:e4:c3:bf:2c:fd:cd:53:d6:49: 0e:bb:05:7c:c0:a6:92:c2:6a:33:47:5f:44:e7:f5:24:d6:f3: 8f:53:ba:40:25:09:f1:39:8c:8f:dc:c2:7e:76:2c:81:ac:d9: 2f:8b:cc:05:bd:d7:a9:18:90:e1:23:fa:24:42:81:0b:e4:00: 69:02:a0:da:ff:7d:14:65:c4:c4:2c:9a:18:39:a3:99:18:4b: c4:e5:4d:20:e0:a9:96:da:52:e7:4f:93:b5:81:5f:1f:d5:38: 96:9e:50:dc:e7:d0:cc:60:4d:6b:a5:33:a0:d9:45:45:28:28: d4:1d:8d:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRl8GZHo8it7cPzF7faKEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZjNzk0ODhhYjRlMWFjMGY0YmQ0NjdkMmI0ZDM2MjFjNmIx OGVlYTAwHhcNMjYwMjA5MTIwMDMzWhcNMjYwMjEwMTIwMDMzWjAzMTEwLwYDVQQD Eyg4ODlkNjQxNmU5NDJiNDBjYTRlNDcxM2I5OGQ0MDNmMmUzOGQ0NGRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoGgrtSdUAq7gOe1AegOPeR67FjkZ /czx4ahYmdZH7FbnWOEBTldxShwR1RR4j+n9Y+no+x16G1OtPWkkwuQZ8SFt+06C IL/K7yOl7zbNXlo59BkDMmRcFXLYWKFkFXsdzA0//8JPthH7k+SFq7olr8KcXhY1 pjeaQ7gQ2nKvRYKxWNeESstnTpe3JKgQqZs52TjYvnTnmGwi4iOrULShECCkePhR MA8jtTvhrez6QaDZe2S6TQATPuGmG9oPERGEW1UPc4iYLQ2RfkaYzQJseIBrf5sZ O8zwUCaqtUkp2lSDvq2rSUIwmmtgbfQe4QZ/R0nfHU3pKOdpnk1ztIeCEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIidZBbpQrQMpORxO5jUA/LjjUTbMB8GA1UdIwQY MBaAFPx5SIq04awPS9Rn0rTTYhxrGO6gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX0hsSWlyVGhyQTlMMUdmU3ROTmlIR3NZN3FBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9hOTBkYmYtODZkNi00OGNlLThhNmMt ODZhYTAwZTEzNzQ2LzEvX0hsSWlyVGhyQTlMMUdmU3ROTmlIR3NZN3FBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS9hOTBkYmYtODZkNi00OGNlLThhNmMtODZhYTAwZTEzNzQ2 LzEvX0hsSWlyVGhyQTlMMUdmU3ROTmlIR3NZN3FBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV1Krz/H6 JHEQ96SeiMSH77P6p1fogJC3Id/YBumg7NPAA86DuO0pEydrxZp3tLh5GO+Yfrlx E5wk/kr+QKyjCP1fIkp0TSRRizzNRwoTnHW8HJmcQqc7A4gSyW4L0ateefnOg+wk CBggjDFjimcoYNxieiy8DE7c8FXK2caY/VTaBJKql0Rb5MO/LP3NU9ZJDrsFfMCm ksJqM0dfROf1JNbzj1O6QCUJ8TmMj9zCfnYsgazZL4vMBb3XqRiQ4SP6JEKBC+QA aQKg2v99FGXExCyaGDmjmRhLxOVNIOCpltpS50+TtYFfH9U4lp5Q3OfQzGBNa6Uz oNlFRSgo1B2NdA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:53:42 2026 by rpki-client