This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/cca8da-4079-463d-bd53-c4e18b8bb1cf/1/HFNTqGq9M7GiNuQHzkaSYdBjYVA.mft File: HFNTqGq9M7GiNuQHzkaSYdBjYVA.mft (raw, json) Hash identifier: DzViPzl0PEEX6tp24GM1icEkCqsR3OE+FlcPsQ76dgw= Subject key identifier: 59:77:A1:8C:15:0E:D5:B7:8E:97:ED:25:78:0B:3E:DE:D3:9D:B2:12 Authority key identifier: 1C:53:53:A8:6A:BD:33:B1:A2:36:E4:07:CE:46:92:61:D0:63:61:50 Certificate issuer: /CN=1c5353a86abd33b1a236e407ce469261d0636150 Certificate serial: 019C420F5419407B410C960F7B259C304263 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HFNTqGq9M7GiNuQHzkaSYdBjYVA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/cca8da-4079-463d-bd53-c4e18b8bb1cf/1/HFNTqGq9M7GiNuQHzkaSYdBjYVA.mft Manifest number: 0A94 Signing time: Mon 09 Feb 2026 11:00:26 +0000 Manifest this update: Mon 09 Feb 2026 11:00:26 +0000 Manifest next update: Tue 10 Feb 2026 11:00:26 +0000 Files and hashes: 1: HFNTqGq9M7GiNuQHzkaSYdBjYVA.crl (hash: MPwkS/5UeOFitHsH9P3GD0oldmxkxg4FW3nNsY7JVtc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/cca8da-4079-463d-bd53-c4e18b8bb1cf/1/HFNTqGq9M7GiNuQHzkaSYdBjYVA.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/cca8da-4079-463d-bd53-c4e18b8bb1cf/1/HFNTqGq9M7GiNuQHzkaSYdBjYVA.mft rsync://rpki.ripe.net/repository/DEFAULT/HFNTqGq9M7GiNuQHzkaSYdBjYVA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:54:19:40:7b:41:0c:96:0f:7b:25:9c:30:42:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c5353a86abd33b1a236e407ce469261d0636150 Validity Not Before: Feb 9 11:00:26 2026 GMT Not After : Feb 10 11:00:26 2026 GMT Subject: CN=5977a18c150ed5b78e97ed25780b3eded39db212 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:bf:2c:de:77:f6:a5:02:bc:81:2a:7c:04:fa: 21:a5:27:7a:65:54:da:cb:89:51:d0:6a:e0:db:61: db:e9:61:86:ab:0d:2f:b8:ee:ea:6f:c3:0e:13:7b: 43:35:e7:31:31:14:6b:ab:ff:fa:01:83:b6:88:ca: cf:ec:72:c3:78:2d:b4:19:ad:c3:82:93:90:f7:52: c2:9f:ba:79:54:d0:65:61:dd:a9:93:b7:71:e1:b7: b4:48:4e:ad:d5:3f:e0:90:27:4b:fe:45:80:7e:62: c4:28:bb:30:20:d4:75:8a:ec:7e:67:0a:dd:30:fb: 4d:62:5f:80:ff:0f:ad:ac:08:7f:5b:cc:04:8b:7a: 5c:82:51:a1:9e:78:71:5d:e2:43:68:bf:2e:2b:26: da:5d:77:e3:5e:da:68:28:b6:54:7b:c6:82:d3:3f: d7:b8:29:c6:05:af:ba:35:3a:c1:9c:0f:91:c6:e4: 68:6a:32:ff:92:ed:e5:cd:20:92:a2:c0:f0:0f:73: cf:52:e7:66:57:5a:7a:4b:b1:da:3c:8a:0d:f4:0b: c3:d6:f4:0f:ce:ec:34:d0:b5:5d:4d:43:84:90:50: c6:a0:e3:30:f1:17:c5:6e:6d:29:f8:de:4d:6b:f0: 68:2f:08:14:8a:a1:19:0a:07:f7:ee:f0:e2:9b:26: 9c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:77:A1:8C:15:0E:D5:B7:8E:97:ED:25:78:0B:3E:DE:D3:9D:B2:12 X509v3 Authority Key Identifier: keyid:1C:53:53:A8:6A:BD:33:B1:A2:36:E4:07:CE:46:92:61:D0:63:61:50 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HFNTqGq9M7GiNuQHzkaSYdBjYVA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/cca8da-4079-463d-bd53-c4e18b8bb1cf/1/HFNTqGq9M7GiNuQHzkaSYdBjYVA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/cca8da-4079-463d-bd53-c4e18b8bb1cf/1/HFNTqGq9M7GiNuQHzkaSYdBjYVA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:f7:cc:f2:b5:b8:b8:e5:31:a8:c9:87:ce:7f:7b:61:d0:f1: 70:76:ba:a6:6b:9e:36:e7:c2:17:9c:83:e7:87:de:f8:99:32: 33:59:b0:84:da:dc:90:0a:b4:76:59:93:7c:ad:79:af:7b:0b: 95:a0:32:a3:ea:67:f8:93:29:0c:8a:4e:ce:53:2a:dc:23:4b: 2b:a4:5d:25:01:c9:d7:d3:60:b2:ba:df:1a:f9:69:0a:5f:79: 06:9a:fb:5d:31:7c:bd:f0:6e:4f:28:6f:61:9f:3c:82:25:b1: 4c:8d:34:65:27:e7:34:1e:08:2e:bb:65:b2:68:ce:ff:3f:0b: 54:1d:cb:15:fa:e8:9d:cb:2d:2b:16:f1:16:f7:1d:0e:2e:d6: fe:d5:a1:5b:45:47:c0:82:de:b7:6d:78:f3:93:1e:9b:4e:31: 35:58:b5:bb:26:7a:5a:dc:3b:b8:32:19:cf:a8:82:e6:0b:73: 40:8a:ea:eb:19:e1:26:e4:70:e9:b2:23:9a:a2:c4:d7:cb:e5: 8a:10:f1:e1:65:09:2d:cc:43:4c:55:a9:e4:41:48:fa:03:f3: 9a:3d:40:5f:96:5d:83:26:8d:c0:77:b4:6f:75:ed:30:77:0a: 7c:9d:e2:0e:71:0c:50:d8:39:c4:2c:f6:40:00:d8:af:62:cf: 63:ba:65:cd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD1QZQHtBDJYPeyWcMEJjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjNTM1M2E4NmFiZDMzYjFhMjM2ZTQwN2NlNDY5MjYxZDA2 MzYxNTAwHhcNMjYwMjA5MTEwMDI2WhcNMjYwMjEwMTEwMDI2WjAzMTEwLwYDVQQD Eyg1OTc3YTE4YzE1MGVkNWI3OGU5N2VkMjU3ODBiM2VkZWQzOWRiMjEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6b8s3nf2pQK8gSp8BPohpSd6ZVTa y4lR0Grg22Hb6WGGqw0vuO7qb8MOE3tDNecxMRRrq//6AYO2iMrP7HLDeC20Ga3D gpOQ91LCn7p5VNBlYd2pk7dx4be0SE6t1T/gkCdL/kWAfmLEKLswINR1iux+Zwrd MPtNYl+A/w+trAh/W8wEi3pcglGhnnhxXeJDaL8uKybaXXfjXtpoKLZUe8aC0z/X uCnGBa+6NTrBnA+RxuRoajL/ku3lzSCSosDwD3PPUudmV1p6S7HaPIoN9AvD1vQP zuw00LVdTUOEkFDGoOMw8RfFbm0p+N5Na/BoLwgUiqEZCgf37vDimyacvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFl3oYwVDtW3jpftJXgLPt7TnbISMB8GA1UdIwQY MBaAFBxTU6hqvTOxojbkB85GkmHQY2FQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEZOVHFHcTlNN0dpTnVRSHprYVNZZEJqWVZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi9jY2E4ZGEtNDA3OS00NjNkLWJkNTMt YzRlMThiOGJiMWNmLzEvSEZOVHFHcTlNN0dpTnVRSHprYVNZZEJqWVZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi9jY2E4ZGEtNDA3OS00NjNkLWJkNTMtYzRlMThiOGJiMWNm LzEvSEZOVHFHcTlNN0dpTnVRSHprYVNZZEJqWVZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuffM8rW4 uOUxqMmHzn97YdDxcHa6pmueNufCF5yD54fe+JkyM1mwhNrckAq0dlmTfK15r3sL laAyo+pn+JMpDIpOzlMq3CNLK6RdJQHJ19NgsrrfGvlpCl95Bpr7XTF8vfBuTyhv YZ88giWxTI00ZSfnNB4ILrtlsmjO/z8LVB3LFfroncstKxbxFvcdDi7W/tWhW0VH wILet21485Mem04xNVi1uyZ6Wtw7uDIZz6iC5gtzQIrq6xnhJuRw6bIjmqLE18vl ihDx4WUJLcxDTFWp5EFI+gPzmj1AX5ZdgyaNwHe0b3XtMHcKfJ3iDnEMUNg5xCz2 QADYr2LPY7plzQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:09 2026 by rpki-client