This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft File: hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft (raw, json) Hash identifier: 8kdunMYhhedYN2zpUyJqdPnT06Yja/iQLDejqR945pA= Subject key identifier: 40:C9:11:16:38:3D:0F:78:F9:F8:33:BC:42:08:34:D8:D5:A5:11:95 Authority key identifier: 86:9A:B3:30:46:86:2A:B5:84:05:E5:E9:27:DD:F4:12:72:DF:C7:14 Certificate issuer: /CN=869ab33046862ab58405e5e927ddf41272dfc714 Certificate serial: 019C43C74F6C1DA3C99F5163D83AB0C2FA60 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft Manifest number: 0602 Signing time: Mon 09 Feb 2026 19:01:01 +0000 Manifest this update: Mon 09 Feb 2026 19:01:01 +0000 Manifest next update: Tue 10 Feb 2026 19:01:01 +0000 Files and hashes: 1: 1-7HFtUN3vZHJP99F9s_042HCi_o.roa (hash: v3oy8qKtaxYoYTFlbLGcHquGHI0mpb7e1cJJAPr+1KI=) 2: hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl (hash: OXHJvPDbta5yBrcTbZGVcCGvYdHdR8JAbHHNZIaAuas=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:4f:6c:1d:a3:c9:9f:51:63:d8:3a:b0:c2:fa:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=869ab33046862ab58405e5e927ddf41272dfc714 Validity Not Before: Feb 9 19:01:01 2026 GMT Not After : Feb 10 19:01:01 2026 GMT Subject: CN=40c91116383d0f78f9f833bc420834d8d5a51195 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:4a:01:d6:38:bf:86:4d:ea:13:c3:32:9c:03: 48:94:dc:f0:ca:68:e1:fa:fb:8d:14:96:58:e8:52: 02:eb:c5:70:ce:2c:16:4b:e7:3d:25:ec:dc:80:ff: b2:ba:af:c4:0c:20:43:29:60:27:85:f9:ee:8b:24: b2:12:9f:58:19:b5:64:55:ad:7f:f2:83:19:fa:8f: fa:e8:de:65:12:70:4b:dc:ca:f2:8f:90:96:dc:34: b8:0e:1f:a5:36:95:e9:a9:65:f1:30:02:cf:7e:ba: 48:d3:7a:38:72:07:4d:84:ce:2d:66:74:c4:96:05: 38:d7:0c:9b:14:f7:2f:02:77:e1:5a:7c:5a:15:e3: 87:21:0c:45:09:d5:2f:f7:63:a3:fa:d7:8e:01:58: 02:f9:0e:70:4c:fc:2c:77:dd:6c:03:21:f4:d5:83: ac:28:d4:d1:80:4f:21:df:46:10:d1:b8:7f:56:9e: 1b:bf:71:a0:b4:b3:f4:0f:0d:a7:97:98:66:9a:6f: 6f:ca:b3:2c:5a:22:50:43:cb:cc:5a:1b:54:fc:a8: c2:2c:fd:1e:ca:b7:83:32:d3:c8:a2:3c:4e:37:1f: ad:19:c4:dc:c2:ad:bb:40:f0:f8:af:3a:e2:71:35: 87:2b:cf:ad:c1:09:27:90:84:90:77:7d:fc:c5:cb: 5e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:C9:11:16:38:3D:0F:78:F9:F8:33:BC:42:08:34:D8:D5:A5:11:95 X509v3 Authority Key Identifier: keyid:86:9A:B3:30:46:86:2A:B5:84:05:E5:E9:27:DD:F4:12:72:DF:C7:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:95:ee:25:9d:14:8c:8a:17:31:2e:81:d8:e6:05:6d:0a:8f: b2:f1:e7:d9:bd:cd:0e:d0:13:4f:49:16:bd:ad:f5:88:8a:7d: 17:09:ce:2b:6e:50:39:2f:8d:d8:a1:bf:b8:75:38:a6:b0:de: c8:3d:51:a3:a1:87:31:ca:bd:93:e4:cb:c0:32:21:76:f8:f7: cb:5b:5f:29:27:28:7c:25:f2:37:3c:14:33:4f:e6:d7:eb:85: 4b:d4:57:dd:1b:6f:7b:41:4d:9b:a9:5a:7a:a0:85:e1:04:63: 9d:0e:9d:bb:24:21:c0:3a:9b:6f:71:46:57:6c:e3:b5:ef:30: 57:bf:82:2d:7d:5c:0b:fa:56:c3:c3:32:91:7f:f6:58:bf:5c: ff:1d:3e:00:ab:38:9c:8e:55:78:33:b0:1b:09:61:74:85:14: 52:67:cf:a5:af:42:20:46:db:86:3e:38:e2:da:aa:79:18:15: 2c:55:80:18:e6:11:9f:4d:72:4a:78:67:a4:80:01:7f:3f:1f: 53:46:8f:73:d8:0f:65:29:5c:1b:de:a7:8a:1e:39:38:76:2e: 06:03:7f:14:d2:ee:bd:5c:e4:c6:5f:cc:ac:84:96:3f:df:9f: bc:39:da:68:f4:08:a2:8e:35:9c:6f:16:e7:5b:08:3a:df:8d: 92:5a:fc:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDx09sHaPJn1Fj2DqwwvpgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2OWFiMzMwNDY4NjJhYjU4NDA1ZTVlOTI3ZGRmNDEyNzJk ZmM3MTQwHhcNMjYwMjA5MTkwMTAxWhcNMjYwMjEwMTkwMTAxWjAzMTEwLwYDVQQD Eyg0MGM5MTExNjM4M2QwZjc4ZjlmODMzYmM0MjA4MzRkOGQ1YTUxMTk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoUoB1ji/hk3qE8MynANIlNzwymjh +vuNFJZY6FIC68VwziwWS+c9JezcgP+yuq/EDCBDKWAnhfnuiySyEp9YGbVkVa1/ 8oMZ+o/66N5lEnBL3Mryj5CW3DS4Dh+lNpXpqWXxMALPfrpI03o4cgdNhM4tZnTE lgU41wybFPcvAnfhWnxaFeOHIQxFCdUv92Oj+teOAVgC+Q5wTPwsd91sAyH01YOs KNTRgE8h30YQ0bh/Vp4bv3GgtLP0Dw2nl5hmmm9vyrMsWiJQQ8vMWhtU/KjCLP0e yreDMtPIojxONx+tGcTcwq27QPD4rzricTWHK8+twQknkISQd338xcteuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEDJERY4PQ94+fgzvEIINNjVpRGVMB8GA1UdIwQY MBaAFIaaszBGhiq1hAXl6Sfd9BJy38cUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHBxek1FYUdLcldFQmVYcEo5MzBFbkxmeHhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9mOGU4ZTUtNjkyYi00MGE5LWIzMmYt Mzk0YzQ3ZmY0NWFlLzEvaHBxek1FYUdLcldFQmVYcEo5MzBFbkxmeHhRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy9mOGU4ZTUtNjkyYi00MGE5LWIzMmYtMzk0YzQ3ZmY0NWFl LzEvaHBxek1FYUdLcldFQmVYcEo5MzBFbkxmeHhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkJXuJZ0U jIoXMS6B2OYFbQqPsvHn2b3NDtATT0kWva31iIp9FwnOK25QOS+N2KG/uHU4prDe yD1Ro6GHMcq9k+TLwDIhdvj3y1tfKScofCXyNzwUM0/m1+uFS9RX3Rtve0FNm6la eqCF4QRjnQ6duyQhwDqbb3FGV2zjte8wV7+CLX1cC/pWw8MykX/2WL9c/x0+AKs4 nI5VeDOwGwlhdIUUUmfPpa9CIEbbhj444tqqeRgVLFWAGOYRn01ySnhnpIABfz8f U0aPc9gPZSlcG96nih45OHYuBgN/FNLuvVzkxl/MrISWP9+fvDnaaPQIoo41nG8W 51sIOt+Nklr8kA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:21 2026 by rpki-client