This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft File: hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft (raw, json) Hash identifier: hsjtq968TAyXwSXAviXpTRY18YJMVu3AkbXORp/t0Ok= Subject key identifier: 10:61:3F:C8:89:DF:02:B9:0A:CF:4A:13:01:ED:3A:E0:38:56:EE:E0 Authority key identifier: 86:C6:2C:69:62:EA:33:02:9B:48:02:60:98:9E:18:51:C3:25:21:71 Certificate issuer: /CN=86c62c6962ea33029b480260989e1851c3252171 Certificate serial: 019C427D4E36585E272718EBF3EBE99F4108 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft Manifest number: 03A0 Signing time: Mon 09 Feb 2026 13:00:34 +0000 Manifest this update: Mon 09 Feb 2026 13:00:34 +0000 Manifest next update: Tue 10 Feb 2026 13:00:34 +0000 Files and hashes: 1: hsYsaWLqMwKbSAJgmJ4YUcMlIXE.crl (hash: Jna1mmt4q6CC8zHb3nqsnZbYl5HNU8IGq5rllnJe3Uw=) 2: wwU1S55C4yLYaQjdeeCtJMW97Ds.roa (hash: jlSPnAdZGybw8CZHpy8KeBi6D61DmXXCG5VqfHvBTME=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft rsync://rpki.ripe.net/repository/DEFAULT/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:4e:36:58:5e:27:27:18:eb:f3:eb:e9:9f:41:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86c62c6962ea33029b480260989e1851c3252171 Validity Not Before: Feb 9 13:00:34 2026 GMT Not After : Feb 10 13:00:34 2026 GMT Subject: CN=10613fc889df02b90acf4a1301ed3ae03856eee0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:96:57:85:94:2d:11:b3:45:db:14:67:e2:a7: 59:b4:39:84:9c:33:5a:a9:ea:02:2f:71:c7:0b:b9: 88:07:76:c5:bf:14:28:3e:4e:8d:ef:1b:a0:03:3e: f8:f6:d6:05:68:35:5a:e5:06:e3:1d:5e:3d:1a:74: 45:57:3c:c3:61:e8:79:88:dd:a1:b0:a9:2c:15:7b: 58:5c:e5:b2:ec:4d:e9:fa:96:29:c4:97:c6:8b:e6: 76:c1:83:34:a6:25:6f:24:38:60:04:a6:77:8b:3c: 36:18:d8:80:60:90:42:c1:6b:d2:70:93:71:eb:a9: 5d:b3:b9:62:95:5f:37:a8:12:72:b7:af:32:1b:a2: 39:3f:5b:11:b0:38:e3:f5:ff:b7:22:f1:3b:7d:5c: d3:5c:09:bf:f1:97:59:3a:e1:a2:ef:b2:e4:40:4b: 99:73:76:fd:d1:2d:2b:c7:ba:d7:3f:0d:19:a3:19: 66:16:2a:85:05:4e:af:0a:e0:a9:82:54:ec:de:91: 60:57:be:0f:32:0e:50:10:11:e1:ea:8b:da:8d:ce: 6d:4a:89:b6:ef:48:7f:aa:57:32:cd:ca:da:e2:f6: 35:96:04:6e:40:31:7c:a1:07:19:0c:7a:6f:50:3c: 00:94:b4:0c:26:21:10:21:5f:43:8c:9a:ec:40:ac: 02:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:61:3F:C8:89:DF:02:B9:0A:CF:4A:13:01:ED:3A:E0:38:56:EE:E0 X509v3 Authority Key Identifier: keyid:86:C6:2C:69:62:EA:33:02:9B:48:02:60:98:9E:18:51:C3:25:21:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:87:51:20:b4:d1:e2:69:29:48:70:a9:5d:44:7f:13:b2:64: 3a:f9:0f:d4:a6:53:6b:23:f9:e0:fb:d0:98:fc:62:9b:b0:1f: 42:45:20:5b:e1:99:9a:5b:f3:07:d5:42:7b:8d:03:f0:c9:3c: f9:f6:35:9a:85:64:76:60:37:f3:2a:9a:05:ca:d9:95:10:34: c5:19:f7:43:b4:a3:85:81:38:19:4d:56:54:36:ea:0b:e5:4b: 02:e0:1e:09:33:f4:ab:8b:4b:2c:84:c4:e6:e0:e8:9a:e2:5c: f4:bc:bc:ed:82:d1:8f:10:4e:dc:e6:df:a2:71:0d:63:40:7b: 5d:c1:7e:1f:6d:dd:1c:2a:2b:21:7d:3d:29:6f:5e:da:99:71: 61:32:f3:37:3e:78:c3:d5:69:7c:7f:9a:5f:e7:6b:eb:6c:43: f8:c1:22:51:da:9f:d5:09:bc:03:16:91:f2:2c:3a:46:8b:7c: 5a:f6:0b:69:33:3b:70:2b:40:75:7e:e2:d5:c8:0a:d3:1d:3a: c4:23:92:6a:9f:eb:95:a1:6a:d7:c7:22:1e:db:cf:da:5c:9c: f9:5f:54:4a:b2:70:d2:98:1c:93:7c:bf:ba:26:38:04:58:38: 50:99:3f:d4:2e:0b:79:45:ff:7d:e4:5a:90:6d:5e:c3:69:09: 0e:a0:30:22 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfU42WF4nJxjr8+vpn0EIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2YzYyYzY5NjJlYTMzMDI5YjQ4MDI2MDk4OWUxODUxYzMy NTIxNzEwHhcNMjYwMjA5MTMwMDM0WhcNMjYwMjEwMTMwMDM0WjAzMTEwLwYDVQQD EygxMDYxM2ZjODg5ZGYwMmI5MGFjZjRhMTMwMWVkM2FlMDM4NTZlZWUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ZZXhZQtEbNF2xRn4qdZtDmEnDNa qeoCL3HHC7mIB3bFvxQoPk6N7xugAz749tYFaDVa5QbjHV49GnRFVzzDYeh5iN2h sKksFXtYXOWy7E3p+pYpxJfGi+Z2wYM0piVvJDhgBKZ3izw2GNiAYJBCwWvScJNx 66lds7lilV83qBJyt68yG6I5P1sRsDjj9f+3IvE7fVzTXAm/8ZdZOuGi77LkQEuZ c3b90S0rx7rXPw0ZoxlmFiqFBU6vCuCpglTs3pFgV74PMg5QEBHh6ovajc5tSom2 70h/qlcyzcra4vY1lgRuQDF8oQcZDHpvUDwAlLQMJiEQIV9DjJrsQKwCMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBBhP8iJ3wK5Cs9KEwHtOuA4Vu7gMB8GA1UdIwQY MBaAFIbGLGli6jMCm0gCYJieGFHDJSFxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHNZc2FXTHFNd0tiU0FKZ21KNFlVY01sSVhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS8zNzVmMDQtM2ViMi00ZDliLTkwZmQt MjQ5YmI0NjFiYTViLzEvaHNZc2FXTHFNd0tiU0FKZ21KNFlVY01sSVhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS8zNzVmMDQtM2ViMi00ZDliLTkwZmQtMjQ5YmI0NjFiYTVi LzEvaHNZc2FXTHFNd0tiU0FKZ21KNFlVY01sSVhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjYdRILTR 4mkpSHCpXUR/E7JkOvkP1KZTayP54PvQmPxim7AfQkUgW+GZmlvzB9VCe40D8Mk8 +fY1moVkdmA38yqaBcrZlRA0xRn3Q7SjhYE4GU1WVDbqC+VLAuAeCTP0q4tLLITE 5uDomuJc9Ly87YLRjxBO3ObfonENY0B7XcF+H23dHCorIX09KW9e2plxYTLzNz54 w9VpfH+aX+dr62xD+MEiUdqf1Qm8AxaR8iw6Rot8WvYLaTM7cCtAdX7i1cgK0x06 xCOSap/rlaFq18ciHtvP2lyc+V9USrJw0pgck3y/uiY4BFg4UJk/1C4LeUX/feRa kG1ew2kJDqAwIg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:36 2026 by rpki-client