This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft File: hUu3qjkIyZjePEL34YSVOLBZJhc.mft (raw, json) Hash identifier: oKs9YDbjar42WmI/Vk2rV4jL878XrlzHAHSGUPJF2bw= Subject key identifier: 5D:99:B0:A5:5A:87:F8:56:B1:0A:84:A6:41:44:59:3C:D7:CD:79:0C Authority key identifier: 85:4B:B7:AA:39:08:C9:98:DE:3C:42:F7:E1:84:95:38:B0:59:26:17 Certificate issuer: /CN=854bb7aa3908c998de3c42f7e1849538b0592617 Certificate serial: 019C424642E5557E08957488414A159A5514 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft Manifest number: 1092 Signing time: Mon 09 Feb 2026 12:00:26 +0000 Manifest this update: Mon 09 Feb 2026 12:00:26 +0000 Manifest next update: Tue 10 Feb 2026 12:00:26 +0000 Files and hashes: 1: 7MqIqmbLOZCvYlEMG9u9KyE6Ytk.roa (hash: zRxcr077zFRaZAIgIWm+iYU3FdaVL/l6dLqFNAGhIKM=) 2: hUu3qjkIyZjePEL34YSVOLBZJhc.crl (hash: u7FF1m13JeU0M2eDjJgBikCgip7+rsSfYeC3Am0UXtc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:42:e5:55:7e:08:95:74:88:41:4a:15:9a:55:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=854bb7aa3908c998de3c42f7e1849538b0592617 Validity Not Before: Feb 9 12:00:26 2026 GMT Not After : Feb 10 12:00:26 2026 GMT Subject: CN=5d99b0a55a87f856b10a84a64144593cd7cd790c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:50:e6:7a:49:c9:a1:5a:01:9b:48:ca:66:f1: 22:26:d2:13:59:48:6b:72:7c:d0:19:79:63:01:27: 7a:1c:12:dd:06:9d:1b:0a:e5:f0:2a:db:ac:84:ef: 79:14:ae:2c:17:9f:b6:2f:d2:4a:cf:b6:dc:f9:d3: a4:7a:38:36:4f:a2:0b:0a:a5:73:b9:03:75:26:7f: 54:c9:fe:ec:70:0a:74:49:f1:64:f9:4c:bd:88:a8: de:27:73:bb:e4:c2:99:03:f5:fc:d4:7a:59:20:19: 04:3a:38:bd:fd:7f:fb:e4:d6:41:c3:5e:16:cc:39: 8e:ea:ce:7f:df:c3:a6:e0:51:92:29:fd:a2:3f:ce: 63:95:d1:80:13:e5:b2:13:f1:56:64:13:47:90:87: 01:75:cb:1a:90:06:fc:0a:9d:9a:ca:ea:49:3a:01: a5:99:96:51:25:91:af:4e:45:29:fc:46:5c:20:6a: a1:a9:bc:42:af:e4:8d:e7:d5:03:ba:ce:fd:2e:df: cd:5e:ad:06:bd:d7:c5:34:80:df:36:22:ee:4b:62: 9c:ab:1c:af:49:fd:80:f6:e0:f8:17:4e:c4:ab:42: ee:70:c1:dc:e3:40:fd:4b:32:39:fa:c5:e2:4a:0f: ba:1d:f7:8d:0b:44:8d:4b:ef:30:28:ad:ff:f6:78: 30:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:99:B0:A5:5A:87:F8:56:B1:0A:84:A6:41:44:59:3C:D7:CD:79:0C X509v3 Authority Key Identifier: keyid:85:4B:B7:AA:39:08:C9:98:DE:3C:42:F7:E1:84:95:38:B0:59:26:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:ca:fb:4f:88:65:6a:3e:33:d7:55:7f:ae:0b:21:5d:b3:9c: f5:02:99:2f:d7:ba:22:04:f5:ae:cf:a7:88:59:31:5f:84:6e: 5a:9a:ab:ce:71:82:c8:2a:4b:9e:0f:6b:d5:34:5e:7b:dd:0c: 59:b8:d1:a8:5f:bb:96:aa:d3:76:0c:12:5c:b2:d3:ed:6b:dc: a8:8f:32:eb:76:0f:52:df:c6:69:ae:d9:46:f1:fb:81:f6:82: 9b:f3:57:ec:0a:b8:2d:e6:9d:c0:82:a3:80:31:c1:4b:84:ab: c9:8c:55:5a:11:30:23:94:9f:be:d0:8e:48:f8:36:df:61:b2: 08:5c:50:41:1f:42:cc:0c:e8:f5:26:a5:fc:6e:27:10:26:58: 48:a7:83:50:52:49:92:9d:45:b0:46:02:2d:04:32:7e:23:c2: ca:db:0b:9f:7b:25:71:3f:2e:b4:47:e3:95:10:02:b7:49:0d: bf:80:ca:cf:53:ee:b0:ea:bb:89:5a:5d:45:ab:6f:b6:1a:d9: 99:63:5d:da:ec:16:95:3b:e6:05:3a:6b:ca:4c:fe:14:42:7c: 4d:7d:86:5f:d6:13:3f:60:0d:29:ef:7a:4a:38:4b:29:f5:60: 86:0b:c2:82:d0:fb:1c:52:92:28:91:37:94:e7:b0:b6:8f:f8: dc:fd:02:1a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRkLlVX4IlXSIQUoVmlUUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1NGJiN2FhMzkwOGM5OThkZTNjNDJmN2UxODQ5NTM4YjA1 OTI2MTcwHhcNMjYwMjA5MTIwMDI2WhcNMjYwMjEwMTIwMDI2WjAzMTEwLwYDVQQD Eyg1ZDk5YjBhNTVhODdmODU2YjEwYTg0YTY0MTQ0NTkzY2Q3Y2Q3OTBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy1DmeknJoVoBm0jKZvEiJtITWUhr cnzQGXljASd6HBLdBp0bCuXwKtushO95FK4sF5+2L9JKz7bc+dOkejg2T6ILCqVz uQN1Jn9Uyf7scAp0SfFk+Uy9iKjeJ3O75MKZA/X81HpZIBkEOji9/X/75NZBw14W zDmO6s5/38Om4FGSKf2iP85jldGAE+WyE/FWZBNHkIcBdcsakAb8Cp2ayupJOgGl mZZRJZGvTkUp/EZcIGqhqbxCr+SN59UDus79Lt/NXq0GvdfFNIDfNiLuS2Kcqxyv Sf2A9uD4F07Eq0LucMHc40D9SzI5+sXiSg+6HfeNC0SNS+8wKK3/9ngwqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF2ZsKVah/hWsQqEpkFEWTzXzXkMMB8GA1UdIwQY MBaAFIVLt6o5CMmY3jxC9+GElTiwWSYXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFV1M3Fqa0l5WmplUEVMMzRZU1ZPTEJaSmhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi85NjU4MjYtZWI5My00NzBlLWI2N2Et NjRlNTJiOWRkOGQxLzEvaFV1M3Fqa0l5WmplUEVMMzRZU1ZPTEJaSmhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi85NjU4MjYtZWI5My00NzBlLWI2N2EtNjRlNTJiOWRkOGQx LzEvaFV1M3Fqa0l5WmplUEVMMzRZU1ZPTEJaSmhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbsr7T4hl aj4z11V/rgshXbOc9QKZL9e6IgT1rs+niFkxX4RuWpqrznGCyCpLng9r1TRee90M WbjRqF+7lqrTdgwSXLLT7WvcqI8y63YPUt/Gaa7ZRvH7gfaCm/NX7Aq4LeadwIKj gDHBS4SryYxVWhEwI5SfvtCOSPg232GyCFxQQR9CzAzo9Sal/G4nECZYSKeDUFJJ kp1FsEYCLQQyfiPCytsLn3slcT8utEfjlRACt0kNv4DKz1PusOq7iVpdRatvthrZ mWNd2uwWlTvmBTprykz+FEJ8TX2GX9YTP2ANKe96SjhLKfVghgvCgtD7HFKSKJE3 lOewto/43P0CGg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:06:37 2026 by rpki-client