This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/71492d-8c60-409d-a009-d6ada1281668/1/hwCTRBAfUQ52oqserOnpp9kuTtU.mft File: hwCTRBAfUQ52oqserOnpp9kuTtU.mft (raw, json) Hash identifier: BBltSSOXfO1r2eat9zS6ptv4l7hRRggpVUbNKvbm3ec= Subject key identifier: 25:E2:6D:34:0D:48:28:67:7D:A7:61:2E:A1:FC:B4:6D:31:9A:ED:10 Authority key identifier: 87:00:93:44:10:1F:51:0E:76:A2:AB:1E:AC:E9:E9:A7:D9:2E:4E:D5 Certificate issuer: /CN=87009344101f510e76a2ab1eace9e9a7d92e4ed5 Certificate serial: 019C4321F5DBE91CD761223CEE22BEC4EB57 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwCTRBAfUQ52oqserOnpp9kuTtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/71492d-8c60-409d-a009-d6ada1281668/1/hwCTRBAfUQ52oqserOnpp9kuTtU.mft Manifest number: 0A72 Signing time: Mon 09 Feb 2026 16:00:24 +0000 Manifest this update: Mon 09 Feb 2026 16:00:24 +0000 Manifest next update: Tue 10 Feb 2026 16:00:24 +0000 Files and hashes: 1: hwCTRBAfUQ52oqserOnpp9kuTtU.crl (hash: PefPQRYNqNM3QO1gqKVpI9e7d2RnWa8mhdNaOWYO4TA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/71492d-8c60-409d-a009-d6ada1281668/1/hwCTRBAfUQ52oqserOnpp9kuTtU.crl rsync://rpki.ripe.net/repository/DEFAULT/71/71492d-8c60-409d-a009-d6ada1281668/1/hwCTRBAfUQ52oqserOnpp9kuTtU.mft rsync://rpki.ripe.net/repository/DEFAULT/hwCTRBAfUQ52oqserOnpp9kuTtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:f5:db:e9:1c:d7:61:22:3c:ee:22:be:c4:eb:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87009344101f510e76a2ab1eace9e9a7d92e4ed5 Validity Not Before: Feb 9 16:00:24 2026 GMT Not After : Feb 10 16:00:24 2026 GMT Subject: CN=25e26d340d4828677da7612ea1fcb46d319aed10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d4:b3:f7:91:b3:82:10:39:12:88:44:52:0c: 97:60:a7:f1:8d:8e:e0:d4:a8:e5:b3:c7:1a:1a:42: 67:00:ca:f8:ae:18:75:7b:87:37:13:d6:5f:19:91: 94:d4:86:b8:7a:7b:f6:95:64:ee:33:b0:e1:c1:ae: 4e:bc:c3:e0:3d:ae:b7:a5:b3:2f:cb:11:37:db:1a: cd:f0:4e:95:b8:4c:41:67:5d:05:ed:81:b1:69:39: 85:91:2d:29:b5:d2:25:3d:01:0e:84:e4:9e:e1:75: b0:6d:1f:ea:7c:1f:2d:6e:07:c4:53:4c:e4:0f:f2: ba:49:cc:39:66:f9:b5:53:3f:06:2f:13:c6:dd:4d: 22:34:62:0a:d9:06:c2:b4:a5:07:67:81:da:02:34: c3:78:d6:00:e0:fe:97:9b:9e:78:de:d0:53:c2:47: 32:82:55:5d:4e:1c:8a:21:27:e2:8a:50:70:02:65: 53:d4:ac:85:f0:fb:ca:3c:09:c6:58:f0:9a:d0:d0: b6:b4:d1:ac:6f:4f:ab:12:ea:89:60:ee:1e:2a:5a: c6:d7:f9:ab:77:de:fc:69:6a:06:bf:bb:11:b0:83: d6:67:e4:09:3d:11:5e:30:ac:7e:94:9c:03:3d:f1: e1:dd:84:21:58:8a:16:ff:1f:25:dc:b7:3b:55:d0: 5e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:E2:6D:34:0D:48:28:67:7D:A7:61:2E:A1:FC:B4:6D:31:9A:ED:10 X509v3 Authority Key Identifier: keyid:87:00:93:44:10:1F:51:0E:76:A2:AB:1E:AC:E9:E9:A7:D9:2E:4E:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwCTRBAfUQ52oqserOnpp9kuTtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/71492d-8c60-409d-a009-d6ada1281668/1/hwCTRBAfUQ52oqserOnpp9kuTtU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/71492d-8c60-409d-a009-d6ada1281668/1/hwCTRBAfUQ52oqserOnpp9kuTtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:d1:da:66:6d:89:9c:43:24:d2:4b:31:6e:2c:7d:77:88:1c: 23:a3:1f:02:c1:d9:a1:77:7d:3a:d1:2d:34:81:0b:c0:45:a4: 68:50:40:61:14:d6:dc:a1:3f:26:47:2a:66:90:eb:0e:5f:12: d3:72:02:fd:53:1e:0f:8f:c8:30:8e:e6:c9:23:66:fe:a3:61: 3a:25:c5:a7:1d:0e:15:dd:49:5a:3d:58:99:7a:53:90:2f:4c: d8:8f:38:78:70:b3:a9:e7:09:1c:4e:6d:0e:72:2f:9a:4c:0f: eb:ec:c7:4b:1a:2f:3b:4d:47:0d:d2:7c:f9:2a:6f:9e:ba:db: 60:1c:63:81:c1:d6:ce:77:ed:46:dc:7c:54:4f:20:ae:69:d6: 6e:0b:bb:79:a0:6f:ac:eb:26:ee:b9:94:32:1e:42:97:c7:94: 6b:bf:68:31:3a:e2:b0:ad:ad:a0:25:15:74:fb:c2:04:47:27: 38:2a:4c:c3:85:2e:c2:e6:4d:7c:4b:ce:a7:d7:49:00:92:9f: 64:88:6d:36:42:f7:9e:a0:75:c4:4d:ab:61:ad:17:7c:09:5e: e7:0c:d7:c1:41:21:fa:43:69:6f:80:aa:18:f6:76:d1:5d:ce: c5:be:48:1c:4c:54:14:b0:5e:d1:6c:04:ae:f6:61:b7:ae:5c: f2:52:00:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIfXb6RzXYSI87iK+xOtXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3MDA5MzQ0MTAxZjUxMGU3NmEyYWIxZWFjZTllOWE3ZDky ZTRlZDUwHhcNMjYwMjA5MTYwMDI0WhcNMjYwMjEwMTYwMDI0WjAzMTEwLwYDVQQD EygyNWUyNmQzNDBkNDgyODY3N2RhNzYxMmVhMWZjYjQ2ZDMxOWFlZDEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwNSz95GzghA5EohEUgyXYKfxjY7g 1Kjls8caGkJnAMr4rhh1e4c3E9ZfGZGU1Ia4env2lWTuM7Dhwa5OvMPgPa63pbMv yxE32xrN8E6VuExBZ10F7YGxaTmFkS0ptdIlPQEOhOSe4XWwbR/qfB8tbgfEU0zk D/K6Scw5Zvm1Uz8GLxPG3U0iNGIK2QbCtKUHZ4HaAjTDeNYA4P6Xm5543tBTwkcy glVdThyKISfiilBwAmVT1KyF8PvKPAnGWPCa0NC2tNGsb0+rEuqJYO4eKlrG1/mr d978aWoGv7sRsIPWZ+QJPRFeMKx+lJwDPfHh3YQhWIoW/x8l3Lc7VdBe3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCXibTQNSChnfadhLqH8tG0xmu0QMB8GA1UdIwQY MBaAFIcAk0QQH1EOdqKrHqzp6afZLk7VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHdDVFJCQWZVUTUyb3FzZXJPbnBwOWt1VHRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS83MTQ5MmQtOGM2MC00MDlkLWEwMDkt ZDZhZGExMjgxNjY4LzEvaHdDVFJCQWZVUTUyb3FzZXJPbnBwOWt1VHRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS83MTQ5MmQtOGM2MC00MDlkLWEwMDktZDZhZGExMjgxNjY4 LzEvaHdDVFJCQWZVUTUyb3FzZXJPbnBwOWt1VHRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd9HaZm2J nEMk0ksxbix9d4gcI6MfAsHZoXd9OtEtNIELwEWkaFBAYRTW3KE/JkcqZpDrDl8S 03IC/VMeD4/IMI7mySNm/qNhOiXFpx0OFd1JWj1YmXpTkC9M2I84eHCzqecJHE5t DnIvmkwP6+zHSxovO01HDdJ8+SpvnrrbYBxjgcHWznftRtx8VE8grmnWbgu7eaBv rOsm7rmUMh5Cl8eUa79oMTrisK2toCUVdPvCBEcnOCpMw4UuwuZNfEvOp9dJAJKf ZIhtNkL3nqB1xE2rYa0XfAle5wzXwUEh+kNpb4CqGPZ20V3Oxb5IHExUFLBe0WwE rvZht65c8lIAqQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:53 2026 by rpki-client