This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.mft File: hkl2gukwfEaHk1AIFzFH0TKijGQ.mft (raw, json) Hash identifier: 2vmGTm7v4GJntnZ34WoMSKuTaJcP85WxPr1TALmRRAQ= Subject key identifier: 05:14:53:FB:41:96:B0:02:DA:69:A6:F9:85:BA:7D:80:50:5C:28:E1 Authority key identifier: 86:49:76:82:E9:30:7C:46:87:93:50:08:17:31:47:D1:32:A2:8C:64 Certificate issuer: /CN=86497682e9307c4687935008173147d132a28c64 Certificate serial: 019C40FD29B45F0692FBFF0E9FC15C5B75E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkl2gukwfEaHk1AIFzFH0TKijGQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.mft Manifest number: 13DC Signing time: Mon 09 Feb 2026 06:00:58 +0000 Manifest this update: Mon 09 Feb 2026 06:00:58 +0000 Manifest next update: Tue 10 Feb 2026 06:00:58 +0000 Files and hashes: 1: Me7XtuRdIVZUbFTlkKpYNs199RM.roa (hash: 2FYoEiQSEHRljfdP8hVbR34ZxR+Jq9T0ORhGnMfjG70=) 2: hkl2gukwfEaHk1AIFzFH0TKijGQ.crl (hash: CsisfhTqML6jMAQDuGr5dq4t8ZXuJyWWmobWjFrOHn0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.crl rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hkl2gukwfEaHk1AIFzFH0TKijGQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fd:29:b4:5f:06:92:fb:ff:0e:9f:c1:5c:5b:75:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86497682e9307c4687935008173147d132a28c64 Validity Not Before: Feb 9 06:00:58 2026 GMT Not After : Feb 10 06:00:58 2026 GMT Subject: CN=051453fb4196b002da69a6f985ba7d80505c28e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:31:f1:41:48:89:a5:eb:b0:ee:03:bc:60:0f: 84:7b:3b:7d:a3:89:03:fc:15:c7:dd:e7:d2:8e:a9: df:53:62:d0:1f:c1:ea:fd:4a:a8:14:6d:39:31:4d: a4:e4:48:fe:c7:30:1d:c4:d7:c9:0d:88:56:52:80: ad:7a:a7:61:96:80:18:9c:e2:b0:20:b2:c0:c2:c1: 97:1d:37:5d:45:66:39:31:81:39:4e:a2:35:1f:77: 28:3e:05:21:9b:55:dd:2e:7d:05:65:2d:12:e8:10: 70:54:75:18:bf:1d:9b:12:63:d4:dd:20:64:d1:9a: ad:95:63:37:4c:a8:be:94:e7:54:e8:39:0d:7f:86: cf:da:cd:11:c5:6e:d7:a8:6b:55:16:73:7e:bd:1f: 3d:88:1b:b5:99:9b:6e:f0:60:ed:86:c1:61:51:5a: 26:b9:54:0f:2f:7c:75:85:4a:36:f5:9e:06:4e:f4: b7:7b:ca:eb:8d:30:d8:0a:91:fd:d4:e5:7f:d6:fd: 4a:ed:01:f5:43:9b:6e:26:e2:4b:56:77:ac:88:f2: ff:65:2f:55:85:82:d3:e2:b0:1e:6b:67:ae:5b:de: 21:60:cf:c5:a1:4c:0a:d0:94:86:8e:61:df:3d:95: 0b:9a:00:4e:5d:ee:11:36:58:6f:dd:8f:03:b9:00: 4f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:14:53:FB:41:96:B0:02:DA:69:A6:F9:85:BA:7D:80:50:5C:28:E1 X509v3 Authority Key Identifier: keyid:86:49:76:82:E9:30:7C:46:87:93:50:08:17:31:47:D1:32:A2:8C:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkl2gukwfEaHk1AIFzFH0TKijGQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:86:b9:3b:e5:18:6e:02:38:e7:65:c9:47:57:e7:c6:81:0a: bc:f7:38:10:a3:15:ff:2f:96:30:55:57:9a:b2:48:d8:db:48: 25:ce:0e:f3:93:71:86:d5:91:56:d2:a5:ed:03:75:c8:d4:e7: e9:3e:fa:d6:4a:47:b2:b2:32:c9:c1:50:4e:16:2a:41:76:92: 46:33:f2:36:3f:08:03:5b:94:07:57:09:0f:f0:3d:42:02:d9: ac:ae:9e:48:e7:e5:a6:c0:dd:75:f8:05:c5:b0:55:38:49:f5: 6e:35:59:92:b8:4c:e9:ce:da:ec:8e:e3:f3:02:d4:f6:5d:14: 32:32:c3:9f:00:18:94:8f:63:7e:9a:b5:1e:8e:f4:18:79:05: ad:26:13:6e:f0:7e:2c:60:e4:ac:0c:60:6d:fe:9f:05:d2:68: e8:f6:fe:e4:5a:b2:ce:4a:4b:af:c1:1b:e3:03:8d:af:64:da: 28:c9:2d:63:af:83:5a:89:c5:8e:9a:c4:44:ce:2a:29:ee:0e: 6f:5f:cd:e0:08:de:ea:39:92:bc:20:4a:b9:ef:d8:20:2f:15: 1a:1e:43:2d:1b:fd:16:c2:78:4d:2a:d2:31:38:bf:52:de:92: 3b:43:bf:22:21:19:43:c2:af:aa:80:5d:2d:b7:0a:b7:53:32: ea:0e:96:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/Sm0XwaS+/8On8FcW3XlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2NDk3NjgyZTkzMDdjNDY4NzkzNTAwODE3MzE0N2QxMzJh MjhjNjQwHhcNMjYwMjA5MDYwMDU4WhcNMjYwMjEwMDYwMDU4WjAzMTEwLwYDVQQD EygwNTE0NTNmYjQxOTZiMDAyZGE2OWE2Zjk4NWJhN2Q4MDUwNWMyOGUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApzHxQUiJpeuw7gO8YA+Eezt9o4kD /BXH3efSjqnfU2LQH8Hq/UqoFG05MU2k5Ej+xzAdxNfJDYhWUoCteqdhloAYnOKw ILLAwsGXHTddRWY5MYE5TqI1H3coPgUhm1XdLn0FZS0S6BBwVHUYvx2bEmPU3SBk 0ZqtlWM3TKi+lOdU6DkNf4bP2s0RxW7XqGtVFnN+vR89iBu1mZtu8GDthsFhUVom uVQPL3x1hUo29Z4GTvS3e8rrjTDYCpH91OV/1v1K7QH1Q5tuJuJLVnesiPL/ZS9V hYLT4rAea2euW94hYM/FoUwK0JSGjmHfPZULmgBOXe4RNlhv3Y8DuQBPNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAUUU/tBlrAC2mmm+YW6fYBQXCjhMB8GA1UdIwQY MBaAFIZJdoLpMHxGh5NQCBcxR9EyooxkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGtsMmd1a3dmRWFIazFBSUZ6RkgwVEtpakdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS9jMWE3NTQtMWY5Ni00NTAwLTgxMDIt OTExNDBmMzI5ZWFhLzEvaGtsMmd1a3dmRWFIazFBSUZ6RkgwVEtpakdRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS9jMWE3NTQtMWY5Ni00NTAwLTgxMDItOTExNDBmMzI5ZWFh LzEvaGtsMmd1a3dmRWFIazFBSUZ6RkgwVEtpakdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfYa5O+UY bgI452XJR1fnxoEKvPc4EKMV/y+WMFVXmrJI2NtIJc4O85NxhtWRVtKl7QN1yNTn 6T761kpHsrIyycFQThYqQXaSRjPyNj8IA1uUB1cJD/A9QgLZrK6eSOflpsDddfgF xbBVOEn1bjVZkrhM6c7a7I7j8wLU9l0UMjLDnwAYlI9jfpq1Ho70GHkFrSYTbvB+ LGDkrAxgbf6fBdJo6Pb+5FqyzkpLr8Eb4wONr2TaKMktY6+DWonFjprERM4qKe4O b1/N4Aje6jmSvCBKue/YIC8VGh5DLRv9FsJ4TSrSMTi/Ut6SO0O/IiEZQ8KvqoBd LbcKt1My6g6W+Q== -----END CERTIFICATE-----Generated at Mon Feb 9 17:01:58 2026 by rpki-client