This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft File: HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft (raw, json) Hash identifier: 67/nB7MLR7zs1euVFwQwAhl6XtHyI/aovhX3Ra6H/Pg= Subject key identifier: D3:38:4B:7A:0D:EE:0D:85:79:0F:89:32:A4:76:0B:1B:12:E6:5E:B0 Authority key identifier: 1D:E5:DB:C0:B6:10:48:5D:0F:7E:21:94:D8:F8:16:D6:C1:44:53:26 Certificate issuer: /CN=1de5dbc0b610485d0f7e2194d8f816d6c1445326 Certificate serial: 019C44D9A93C3946D9B18B1D06D984FA075F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HeXbwLYQSF0PfiGU2PgW1sFEUyY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft Manifest number: 0D6B Signing time: Tue 10 Feb 2026 00:00:41 +0000 Manifest this update: Tue 10 Feb 2026 00:00:41 +0000 Manifest next update: Wed 11 Feb 2026 00:00:41 +0000 Files and hashes: 1: 9oyMDlFUMJCEeicvl7UFwOHgYsE.roa (hash: f8s6l8eBEajunCZ6gmMPJ0g+5TCwQ3SpFosYHbC5O4E=) 2: HeXbwLYQSF0PfiGU2PgW1sFEUyY.crl (hash: fRtsXeAHVI0sDVvjRIeaAZC8Zp8YMJjXP7RJCvXZocM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.crl rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft rsync://rpki.ripe.net/repository/DEFAULT/HeXbwLYQSF0PfiGU2PgW1sFEUyY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:d9:a9:3c:39:46:d9:b1:8b:1d:06:d9:84:fa:07:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1de5dbc0b610485d0f7e2194d8f816d6c1445326 Validity Not Before: Feb 10 00:00:41 2026 GMT Not After : Feb 11 00:00:41 2026 GMT Subject: CN=d3384b7a0dee0d85790f8932a4760b1b12e65eb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a6:46:bf:a8:1b:0f:71:5d:ad:a7:57:55:6e: df:d0:9f:82:20:ca:9e:ad:6a:3c:f0:94:d1:cb:de: c1:d7:81:f3:ac:c2:0f:05:e2:b0:fb:24:0a:c1:41: b0:f0:f2:91:ef:75:eb:d1:ae:9d:f5:45:51:92:5f: 6e:0e:66:d7:91:46:9b:d2:b7:bb:52:e8:9a:f2:41: 59:0c:26:6d:ae:7d:5d:c7:b7:91:d9:18:dc:bd:10: ae:9c:8a:47:3e:da:34:95:55:d5:0f:cd:a2:72:5a: ba:dc:e3:77:f1:19:9d:30:bf:61:2a:1b:bc:43:fa: 6b:f1:d7:42:90:f1:62:d1:60:da:96:61:0b:19:04: 41:e6:ce:f7:a6:c1:eb:6c:00:4d:92:b8:39:f0:a0: 03:b6:d7:79:9e:74:c6:14:a4:73:5f:bc:7f:43:70: ce:7c:05:be:48:14:89:c4:38:cf:2d:21:b2:cd:f4: 4d:33:d6:2f:a0:5e:3b:45:5e:76:fc:74:61:55:fb: 9d:20:4e:3e:86:8f:5d:f8:b9:db:6c:79:fb:f9:43: bc:c8:91:c7:86:00:e9:52:c1:fd:d2:de:21:95:a0: 82:4c:83:99:2b:eb:f6:ee:e4:56:f2:15:76:05:4f: 0c:fa:f7:08:51:51:28:d0:10:03:67:7f:89:3f:e2: 7d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:38:4B:7A:0D:EE:0D:85:79:0F:89:32:A4:76:0B:1B:12:E6:5E:B0 X509v3 Authority Key Identifier: keyid:1D:E5:DB:C0:B6:10:48:5D:0F:7E:21:94:D8:F8:16:D6:C1:44:53:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HeXbwLYQSF0PfiGU2PgW1sFEUyY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:49:88:15:f3:d7:84:a7:77:0f:db:5e:69:01:7f:76:54:ad: e5:5c:ef:8b:dd:3a:88:58:ec:bd:e2:09:81:dc:54:28:cb:20: 9a:4d:54:c9:8a:28:76:8a:5f:30:8c:7f:7a:42:26:da:51:c0: 70:ea:04:06:33:ba:88:52:7e:7a:d4:f7:d0:e4:73:2c:f9:4a: 79:f9:ee:da:7b:99:60:60:ad:00:80:f9:aa:61:f4:5a:da:13: 70:ef:97:47:9d:3c:21:c3:ee:9f:48:72:67:2e:39:d1:41:bf: 73:16:1b:f8:62:a7:1b:95:41:60:14:95:22:12:8f:da:5f:25: fa:50:ac:37:2e:ff:a8:3c:fe:ba:47:6f:33:9f:df:e6:2b:1d: aa:14:57:48:04:6a:f1:a5:01:e8:62:05:7a:6f:35:f5:7b:bd: 33:3d:06:34:a1:5d:93:09:da:92:59:56:5b:78:5b:d9:49:d4: 52:d6:a4:ad:60:ec:b8:0a:9c:80:61:8e:27:f8:13:3d:ef:53: ed:db:54:d2:ac:6d:52:53:37:05:32:b4:25:15:ac:7b:9f:95: ba:f3:7c:04:0d:c4:d8:e5:5b:45:39:d3:0b:c4:b4:35:67:10: a8:85:9b:87:1b:29:64:e3:72:00:53:c4:9a:9e:78:72:d1:c8: 9d:49:e6:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxE2ak8OUbZsYsdBtmE+gdfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkZTVkYmMwYjYxMDQ4NWQwZjdlMjE5NGQ4ZjgxNmQ2YzE0 NDUzMjYwHhcNMjYwMjEwMDAwMDQxWhcNMjYwMjExMDAwMDQxWjAzMTEwLwYDVQQD EyhkMzM4NGI3YTBkZWUwZDg1NzkwZjg5MzJhNDc2MGIxYjEyZTY1ZWIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqaZGv6gbD3FdradXVW7f0J+CIMqe rWo88JTRy97B14HzrMIPBeKw+yQKwUGw8PKR73Xr0a6d9UVRkl9uDmbXkUab0re7 Uuia8kFZDCZtrn1dx7eR2RjcvRCunIpHPto0lVXVD82iclq63ON38RmdML9hKhu8 Q/pr8ddCkPFi0WDalmELGQRB5s73psHrbABNkrg58KADttd5nnTGFKRzX7x/Q3DO fAW+SBSJxDjPLSGyzfRNM9YvoF47RV52/HRhVfudIE4+ho9d+LnbbHn7+UO8yJHH hgDpUsH90t4hlaCCTIOZK+v27uRW8hV2BU8M+vcIUVEo0BADZ3+JP+J99QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNM4S3oN7g2FeQ+JMqR2CxsS5l6wMB8GA1UdIwQY MBaAFB3l28C2EEhdD34hlNj4FtbBRFMmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGVYYndMWVFTRjBQZmlHVTJQZ1cxc0ZFVXlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy9lNzdiODMtYTIzYi00ODk3LWI0ZGQt NjhlZWRmNWY2NmJjLzEvSGVYYndMWVFTRjBQZmlHVTJQZ1cxc0ZFVXlZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yy9lNzdiODMtYTIzYi00ODk3LWI0ZGQtNjhlZWRmNWY2NmJj LzEvSGVYYndMWVFTRjBQZmlHVTJQZ1cxc0ZFVXlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADkmIFfPX hKd3D9teaQF/dlSt5Vzvi906iFjsveIJgdxUKMsgmk1UyYoodopfMIx/ekIm2lHA cOoEBjO6iFJ+etT30ORzLPlKefnu2nuZYGCtAID5qmH0WtoTcO+XR508IcPun0hy Zy450UG/cxYb+GKnG5VBYBSVIhKP2l8l+lCsNy7/qDz+ukdvM5/f5isdqhRXSARq 8aUB6GIFem819Xu9Mz0GNKFdkwnakllWW3hb2UnUUtakrWDsuAqcgGGOJ/gTPe9T 7dtU0qxtUlM3BTK0JRWse5+VuvN8BA3E2OVbRTnTC8S0NWcQqIWbhxspZONyAFPE mp54ctHInUnmoA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:46:56 2026 by rpki-client