This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/2f0b9b-0629-4382-9389-82d6adb6c918/1/HZGUbJzTuATxrX507zS_U7u6gws.mft File: HZGUbJzTuATxrX507zS_U7u6gws.mft (raw, json) Hash identifier: nADmFPA1FBRKnSs0p5ORVH4AzIGZTvoaFgZlSHr4MQw= Subject key identifier: F7:F8:C7:07:AD:2E:25:AC:A8:8B:73:1F:B1:42:2C:62:C2:FF:04:AB Authority key identifier: 1D:91:94:6C:9C:D3:B8:04:F1:AD:7E:74:EF:34:BF:53:BB:BA:83:0B Certificate issuer: /CN=1d91946c9cd3b804f1ad7e74ef34bf53bbba830b Certificate serial: 019C43594568A256A3F307E3AF703F1A029A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HZGUbJzTuATxrX507zS_U7u6gws.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/2f0b9b-0629-4382-9389-82d6adb6c918/1/HZGUbJzTuATxrX507zS_U7u6gws.mft Manifest number: 0168 Signing time: Mon 09 Feb 2026 17:00:49 +0000 Manifest this update: Mon 09 Feb 2026 17:00:49 +0000 Manifest next update: Tue 10 Feb 2026 17:00:49 +0000 Files and hashes: 1: HZGUbJzTuATxrX507zS_U7u6gws.crl (hash: fIIks9iOZs907j0h+CcTdcVLnCew1y9VY6nTzNjMeMU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/2f0b9b-0629-4382-9389-82d6adb6c918/1/HZGUbJzTuATxrX507zS_U7u6gws.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/2f0b9b-0629-4382-9389-82d6adb6c918/1/HZGUbJzTuATxrX507zS_U7u6gws.mft rsync://rpki.ripe.net/repository/DEFAULT/HZGUbJzTuATxrX507zS_U7u6gws.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:45:68:a2:56:a3:f3:07:e3:af:70:3f:1a:02:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d91946c9cd3b804f1ad7e74ef34bf53bbba830b Validity Not Before: Feb 9 17:00:49 2026 GMT Not After : Feb 10 17:00:49 2026 GMT Subject: CN=f7f8c707ad2e25aca88b731fb1422c62c2ff04ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:e4:1f:fc:85:04:31:e8:71:07:95:c9:c0:2c: 51:4b:95:ad:73:01:44:69:52:ad:0a:73:45:01:c9: c3:67:f5:44:46:08:6f:a2:a3:f0:d0:a0:0a:9f:a7: 71:5f:be:ca:f6:4b:2d:c2:c0:90:3e:2b:49:d2:d4: 24:33:df:da:6f:2b:22:64:92:d5:3e:e0:e6:cd:6b: d8:87:7d:e5:32:a4:a5:f2:a8:64:ab:c5:7b:ce:0c: 1c:41:e7:53:51:50:70:19:15:64:c9:ef:67:ce:62: e3:23:b4:a1:ef:eb:88:ac:53:ea:af:ab:99:d6:8e: 51:33:5f:12:f4:d5:68:64:0e:f1:b2:ee:76:ae:e4: 3f:b5:96:60:c9:d5:e0:f2:a5:4d:27:6a:06:2b:0f: 05:f9:5a:60:0f:43:0a:09:35:54:96:61:d4:31:1d: 5b:37:0e:4b:7b:43:92:7d:b7:89:42:63:2c:46:6e: ac:36:ed:d0:4a:4a:f9:33:e7:78:89:81:2b:27:8d: 78:c9:f3:f3:74:1d:c3:c8:d4:0f:b5:97:60:28:71: c5:1a:0b:5d:6b:2f:b3:ae:1c:7f:2d:56:32:f9:47: 81:62:0d:c8:13:b0:bb:3e:4b:9a:7f:62:8d:b4:10: a2:74:8b:88:f8:ff:52:18:3c:7f:f0:06:aa:6c:d9: e7:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:F8:C7:07:AD:2E:25:AC:A8:8B:73:1F:B1:42:2C:62:C2:FF:04:AB X509v3 Authority Key Identifier: keyid:1D:91:94:6C:9C:D3:B8:04:F1:AD:7E:74:EF:34:BF:53:BB:BA:83:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HZGUbJzTuATxrX507zS_U7u6gws.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/2f0b9b-0629-4382-9389-82d6adb6c918/1/HZGUbJzTuATxrX507zS_U7u6gws.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/2f0b9b-0629-4382-9389-82d6adb6c918/1/HZGUbJzTuATxrX507zS_U7u6gws.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:93:7e:8b:5f:99:c7:89:ad:00:06:61:2b:85:b8:4b:77:00: 59:03:d7:61:14:cc:63:0a:9d:a9:db:9a:04:05:e2:98:ff:a7: c0:3e:52:f3:2d:80:8e:70:a3:45:a2:54:4d:14:8c:a0:d8:2f: eb:ac:99:c2:8a:41:e5:4c:3d:7c:34:0d:51:0c:05:0f:27:ce: d9:87:9e:0c:ff:39:37:14:30:cd:03:b7:61:b7:28:fc:ce:d8: b4:77:59:17:fd:ac:9a:e8:1d:53:b7:5e:e3:a6:02:21:b0:b8: 93:1f:21:82:52:b9:42:bc:ad:d9:ad:63:b6:f6:c0:f9:c1:ee: 88:d4:00:d3:d8:ff:8d:2e:a6:4b:e0:c2:d7:5c:34:94:ab:e1: ef:83:e3:62:33:45:fb:e7:35:50:d8:32:c5:d3:5b:1d:d6:0c: 3d:42:e1:1d:0d:95:d9:59:4b:e8:21:c5:87:c6:b5:78:ac:72: 25:23:da:a0:04:07:de:49:11:01:c4:17:1d:c1:af:bd:79:35: 34:2b:17:d3:db:c2:51:7e:52:78:9c:41:d9:ec:8d:4b:c5:33: 6c:0d:8c:a9:c1:f7:e2:c8:f5:1f:f9:7d:79:7a:97:3f:e4:4f: d7:6a:05:fc:4b:b1:64:50:0d:ea:23:8b:24:18:0e:36:b7:16: d8:3c:f7:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWUVoolaj8wfjr3A/GgKaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkOTE5NDZjOWNkM2I4MDRmMWFkN2U3NGVmMzRiZjUzYmJi YTgzMGIwHhcNMjYwMjA5MTcwMDQ5WhcNMjYwMjEwMTcwMDQ5WjAzMTEwLwYDVQQD EyhmN2Y4YzcwN2FkMmUyNWFjYTg4YjczMWZiMTQyMmM2MmMyZmYwNGFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6+Qf/IUEMehxB5XJwCxRS5WtcwFE aVKtCnNFAcnDZ/VERghvoqPw0KAKn6dxX77K9kstwsCQPitJ0tQkM9/abysiZJLV PuDmzWvYh33lMqSl8qhkq8V7zgwcQedTUVBwGRVkye9nzmLjI7Sh7+uIrFPqr6uZ 1o5RM18S9NVoZA7xsu52ruQ/tZZgydXg8qVNJ2oGKw8F+VpgD0MKCTVUlmHUMR1b Nw5Le0OSfbeJQmMsRm6sNu3QSkr5M+d4iYErJ414yfPzdB3DyNQPtZdgKHHFGgtd ay+zrhx/LVYy+UeBYg3IE7C7Pkuaf2KNtBCidIuI+P9SGDx/8AaqbNnnVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPf4xwetLiWsqItzH7FCLGLC/wSrMB8GA1UdIwQY MBaAFB2RlGyc07gE8a1+dO80v1O7uoMLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFpHVWJKelR1QVR4clg1MDd6U19VN3U2Z3dzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi8yZjBiOWItMDYyOS00MzgyLTkzODkt ODJkNmFkYjZjOTE4LzEvSFpHVWJKelR1QVR4clg1MDd6U19VN3U2Z3dzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi8yZjBiOWItMDYyOS00MzgyLTkzODktODJkNmFkYjZjOTE4 LzEvSFpHVWJKelR1QVR4clg1MDd6U19VN3U2Z3dzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAepN+i1+Z x4mtAAZhK4W4S3cAWQPXYRTMYwqdqduaBAXimP+nwD5S8y2AjnCjRaJUTRSMoNgv 66yZwopB5Uw9fDQNUQwFDyfO2YeeDP85NxQwzQO3Ybco/M7YtHdZF/2smugdU7de 46YCIbC4kx8hglK5Qryt2a1jtvbA+cHuiNQA09j/jS6mS+DC11w0lKvh74PjYjNF ++c1UNgyxdNbHdYMPULhHQ2V2VlL6CHFh8a1eKxyJSPaoAQH3kkRAcQXHcGvvXk1 NCsX09vCUX5SeJxB2eyNS8UzbA2MqcH34sj1H/l9eXqXP+RP12oF/EuxZFAN6iOL JBgONrcW2Dz3xA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:14 2026 by rpki-client