This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft File: hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft (raw, json) Hash identifier: ySZzM0HymAkRHRIRJACM5n5IzTMBpiE6meMAjWO3LR4= Subject key identifier: 5D:F2:8C:48:28:38:4C:AF:F2:B5:9F:3E:BF:B8:F9:3F:7E:1E:8D:C7 Authority key identifier: 85:F8:70:11:9E:59:21:BF:12:49:5D:C9:02:DC:FE:3D:8D:4A:37:D8 Certificate issuer: /CN=85f870119e5921bf12495dc902dcfe3d8d4a37d8 Certificate serial: 019C446BB43ED52F210A18F10D49D1938BB8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft Manifest number: 03BB Signing time: Mon 09 Feb 2026 22:00:35 +0000 Manifest this update: Mon 09 Feb 2026 22:00:35 +0000 Manifest next update: Tue 10 Feb 2026 22:00:35 +0000 Files and hashes: 1: hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.crl (hash: F9MlCt5UWXHfg+to5LzlE1Cz0AW87onYyxCFw4xF9AA=) 2: y9uehOeQeqw3aXtpz02BRppyIDw.roa (hash: DkoCOynUoTvS6BEYZLogyktfjmzSkzrDWMdKSZGF36c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft rsync://rpki.ripe.net/repository/DEFAULT/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:b4:3e:d5:2f:21:0a:18:f1:0d:49:d1:93:8b:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85f870119e5921bf12495dc902dcfe3d8d4a37d8 Validity Not Before: Feb 9 22:00:35 2026 GMT Not After : Feb 10 22:00:35 2026 GMT Subject: CN=5df28c4828384caff2b59f3ebfb8f93f7e1e8dc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:97:46:ec:98:45:0b:e7:29:46:cb:f2:05:af: b7:49:a8:89:6f:e1:d1:6f:20:ff:1a:0b:90:90:58: 04:b1:8f:df:aa:f6:49:03:a7:17:d8:16:35:3c:5c: 0f:b6:0c:57:e5:bd:b1:19:c5:14:38:cc:ba:2a:33: 80:dc:3d:71:23:83:77:3a:e5:65:64:77:5f:cb:19: 98:06:ae:ce:30:9f:b5:bd:60:fe:d3:2d:e3:67:3f: 13:60:66:87:f6:b8:96:1c:36:95:b8:34:4e:17:d8: a9:dc:6f:53:c8:02:ab:a4:3e:df:47:46:90:db:60: 67:34:1c:6e:ef:ce:0b:70:30:48:38:4a:8d:2b:db: 43:ee:9e:b5:d4:d4:fb:f5:77:d2:55:55:66:07:65: 98:27:bc:cd:d0:84:b3:30:89:1b:d5:4d:3b:c3:e4: 12:6a:6f:d5:a8:a5:f8:9f:51:93:01:21:a2:12:57: 66:01:bd:b0:f7:e8:61:f8:f8:e0:a3:bb:02:16:a7: 0b:f5:59:ab:0c:bc:12:ca:44:eb:18:ea:6e:e1:34: a8:e9:c7:8e:e4:67:37:02:ff:e7:a5:ed:17:20:a5: 98:ba:6d:b5:2d:61:ca:55:e8:ff:a8:de:f9:fd:08: 5b:d3:d0:c5:9b:c0:b4:d5:b9:6d:6e:12:fe:e8:08: 0b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:F2:8C:48:28:38:4C:AF:F2:B5:9F:3E:BF:B8:F9:3F:7E:1E:8D:C7 X509v3 Authority Key Identifier: keyid:85:F8:70:11:9E:59:21:BF:12:49:5D:C9:02:DC:FE:3D:8D:4A:37:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:81:59:0c:c3:eb:5d:23:b0:9c:62:e3:33:c6:50:55:5d:a9: e4:a4:25:8b:17:3c:3a:b8:41:ed:f0:f0:6d:9f:b8:78:4d:85: e4:97:9a:a1:20:14:1b:5c:0e:31:ff:41:cc:87:89:58:a4:5d: 91:fe:25:98:4a:7f:26:3c:1f:c5:bb:8c:3c:64:28:23:26:cc: 6c:ce:3f:b5:64:c1:1b:a9:3f:88:26:08:62:ee:7d:3d:79:9d: 72:b2:31:0a:5a:e6:63:cc:58:87:5f:8a:cf:9e:ac:7e:c1:d8: 8b:a4:52:c4:c5:df:99:8e:de:0b:e9:1e:bd:f2:2a:5f:16:0c: 9b:f8:06:4e:44:5c:5a:d0:8f:cd:a6:71:6c:63:de:69:62:30: 3e:d2:1d:1a:cb:67:09:10:ae:af:0f:c7:32:2a:0f:fe:e5:e0: 00:e7:37:7d:c2:cc:76:3b:50:5c:fd:5d:9a:12:5d:d6:fe:69: ae:39:58:9a:56:21:38:fd:dd:31:0d:3c:36:46:bd:0e:73:2c: 0f:83:7f:2c:a4:78:f5:3b:a5:06:af:25:30:65:9f:67:75:dc: f9:20:97:ca:4c:01:e7:6a:23:ee:a1:7e:d6:5b:15:9f:d8:8d: 16:7f:94:37:ee:e2:18:cf:32:e9:e6:63:86:b4:e7:42:bb:f2: 59:ac:f5:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa7Q+1S8hChjxDUnRk4u4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1Zjg3MDExOWU1OTIxYmYxMjQ5NWRjOTAyZGNmZTNkOGQ0 YTM3ZDgwHhcNMjYwMjA5MjIwMDM1WhcNMjYwMjEwMjIwMDM1WjAzMTEwLwYDVQQD Eyg1ZGYyOGM0ODI4Mzg0Y2FmZjJiNTlmM2ViZmI4ZjkzZjdlMWU4ZGM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwpdG7JhFC+cpRsvyBa+3SaiJb+HR byD/GguQkFgEsY/fqvZJA6cX2BY1PFwPtgxX5b2xGcUUOMy6KjOA3D1xI4N3OuVl ZHdfyxmYBq7OMJ+1vWD+0y3jZz8TYGaH9riWHDaVuDROF9ip3G9TyAKrpD7fR0aQ 22BnNBxu784LcDBIOEqNK9tD7p611NT79XfSVVVmB2WYJ7zN0ISzMIkb1U07w+QS am/VqKX4n1GTASGiEldmAb2w9+hh+Pjgo7sCFqcL9VmrDLwSykTrGOpu4TSo6ceO 5Gc3Av/npe0XIKWYum21LWHKVej/qN75/Qhb09DFm8C01bltbhL+6AgL/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF3yjEgoOEyv8rWfPr+4+T9+Ho3HMB8GA1UdIwQY MBaAFIX4cBGeWSG/EkldyQLc/j2NSjfYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGZod0VaNVpJYjhTU1YzSkF0ei1QWTFLTjlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS9iYjZmMzQtMzQ3Yi00YmFlLThmOTIt ZWE4NGE1MWViM2RjLzEvaGZod0VaNVpJYjhTU1YzSkF0ei1QWTFLTjlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS9iYjZmMzQtMzQ3Yi00YmFlLThmOTItZWE4NGE1MWViM2Rj LzEvaGZod0VaNVpJYjhTU1YzSkF0ei1QWTFLTjlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAboFZDMPr XSOwnGLjM8ZQVV2p5KQlixc8OrhB7fDwbZ+4eE2F5JeaoSAUG1wOMf9BzIeJWKRd kf4lmEp/JjwfxbuMPGQoIybMbM4/tWTBG6k/iCYIYu59PXmdcrIxClrmY8xYh1+K z56sfsHYi6RSxMXfmY7eC+kevfIqXxYMm/gGTkRcWtCPzaZxbGPeaWIwPtIdGstn CRCurw/HMioP/uXgAOc3fcLMdjtQXP1dmhJd1v5prjlYmlYhOP3dMQ08Nka9DnMs D4N/LKR49TulBq8lMGWfZ3Xc+SCXykwB52oj7qF+1lsVn9iNFn+UN+7iGM8y6eZj hrTnQrvyWaz1nA== -----END CERTIFICATE-----Generated at Tue Feb 10 02:55:02 2026 by rpki-client