This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft File: HRxS8VUvbqDwZNejt521wc8Wa9A.mft (raw, json) Hash identifier: PN6+GpIfefv08quiBz1FtoR1O3JcSV8EF9/x1PGLybI= Subject key identifier: 0F:E0:F5:9F:B0:7C:53:7A:3B:F7:1F:73:67:DF:85:1B:9B:1C:C0:7D Authority key identifier: 1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0 Certificate issuer: /CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0 Certificate serial: 019C427D6843A0300D9271BA415670BEB0CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft Manifest number: 17A4 Signing time: Mon 09 Feb 2026 13:00:40 +0000 Manifest this update: Mon 09 Feb 2026 13:00:40 +0000 Manifest next update: Tue 10 Feb 2026 13:00:40 +0000 Files and hashes: 1: HGJ3ZEnNk3YpVjp51uFW7fVRLgc.roa (hash: cUV79+nq1UfEgnpECvrj1jXV8gIvKA75fQt4Y8wK7Xg=) 2: HRxS8VUvbqDwZNejt521wc8Wa9A.crl (hash: joDzUOIqdXmcsZrQzTZvo51PaHrCQFCaAyZ2o//CrYg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:68:43:a0:30:0d:92:71:ba:41:56:70:be:b0:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0 Validity Not Before: Feb 9 13:00:40 2026 GMT Not After : Feb 10 13:00:40 2026 GMT Subject: CN=0fe0f59fb07c537a3bf71f7367df851b9b1cc07d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:de:64:69:3f:f9:62:f9:86:f6:36:ae:2b:de: 2c:60:d7:73:5c:39:ef:21:39:64:a6:7d:48:4d:ba: 0c:2f:63:4c:54:b8:62:5c:23:45:8f:a2:6d:22:a6: 57:6d:bb:36:34:51:0f:14:eb:56:37:76:78:2e:5a: 9b:c1:4f:e6:f6:9f:51:4a:3d:4b:6b:de:7b:cd:dd: 00:e8:97:57:e4:da:8b:d3:24:9c:41:85:ac:78:b2: c2:ac:a4:5b:9b:a1:e7:80:da:b2:29:b7:c7:bf:c4: aa:fb:9f:5b:26:71:ff:75:a9:87:16:a7:87:02:a6: c1:5c:3e:a1:73:d1:ed:c2:23:af:79:41:9f:fb:4f: b7:aa:39:b5:b1:9c:68:16:dc:5f:67:06:0d:d9:0f: 91:59:bd:c8:4d:a2:53:3e:86:3d:e7:02:9f:10:56: c9:54:9d:5f:db:26:95:34:15:85:93:97:2f:a1:ec: 2c:9b:55:21:72:51:26:da:2f:bd:94:67:23:da:3a: 6d:02:dc:12:8e:3d:cd:bf:b3:c9:9e:d1:e8:72:52: 02:93:d2:8e:b8:b9:d8:55:5c:29:10:8e:cb:a8:1b: 89:b9:85:ef:d9:87:c4:e1:86:38:c6:78:0b:1e:51: aa:4a:89:26:08:9f:41:cf:63:e3:e8:45:4d:35:4a: 26:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:E0:F5:9F:B0:7C:53:7A:3B:F7:1F:73:67:DF:85:1B:9B:1C:C0:7D X509v3 Authority Key Identifier: keyid:1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:c7:b5:b1:63:84:ab:0c:48:27:1f:51:8c:f6:45:f1:6a:60: c1:74:3f:af:b1:7a:57:47:9b:a5:19:a7:9f:0e:16:8a:81:78: e8:72:90:c7:a7:66:4d:a5:0c:bc:9b:dd:19:1b:7f:43:20:4a: e0:0a:e4:04:26:9b:d4:18:94:d5:1f:6e:e8:86:61:ff:8b:d2: 4f:d7:f0:e9:07:f2:6b:e8:ae:e8:02:3a:31:e3:97:b4:50:2a: 05:b9:10:3f:5d:da:67:ad:5e:24:e2:54:52:65:6b:1b:b0:b4: 24:b9:14:db:b0:7a:9a:a8:b9:c6:dc:ee:ba:1c:21:b0:26:bf: b3:92:c7:a3:ce:71:cc:fb:15:25:be:73:77:9f:45:b9:b7:2b: 56:e3:b0:07:cb:e1:90:01:7c:d8:09:a1:43:49:ed:61:6c:5a: 7d:ef:cc:9f:7b:89:5e:29:de:5d:a0:20:64:4d:ad:ea:49:96: fe:78:69:f3:69:0a:e6:fb:ae:a7:da:8d:8d:90:57:86:db:b4: 18:8f:8a:95:25:1d:67:a2:14:3d:07:b7:88:93:a2:e7:54:b4: 44:bb:e3:ac:ea:a0:0f:ef:46:e3:da:b5:97:2c:1d:08:19:a3: a1:b7:f9:36:ac:1f:7d:44:5e:43:f4:5d:89:f5:46:40:fa:3b: 6e:ae:3a:51 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfWhDoDANknG6QVZwvrDNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkMWM1MmYxNTUyZjZlYTBmMDY0ZDdhM2I3OWRiNWMxY2Yx NjZiZDAwHhcNMjYwMjA5MTMwMDQwWhcNMjYwMjEwMTMwMDQwWjAzMTEwLwYDVQQD EygwZmUwZjU5ZmIwN2M1MzdhM2JmNzFmNzM2N2RmODUxYjliMWNjMDdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtd5kaT/5YvmG9jauK94sYNdzXDnv ITlkpn1ITboML2NMVLhiXCNFj6JtIqZXbbs2NFEPFOtWN3Z4LlqbwU/m9p9RSj1L a957zd0A6JdX5NqL0yScQYWseLLCrKRbm6HngNqyKbfHv8Sq+59bJnH/damHFqeH AqbBXD6hc9HtwiOveUGf+0+3qjm1sZxoFtxfZwYN2Q+RWb3ITaJTPoY95wKfEFbJ VJ1f2yaVNBWFk5cvoewsm1UhclEm2i+9lGcj2jptAtwSjj3Nv7PJntHoclICk9KO uLnYVVwpEI7LqBuJuYXv2YfE4YY4xngLHlGqSokmCJ9Bz2Pj6EVNNUom3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA/g9Z+wfFN6O/cfc2ffhRubHMB9MB8GA1UdIwQY MBaAFB0cUvFVL26g8GTXo7edtcHPFmvQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFJ4UzhWVXZicUR3Wk5lanQ1MjF3YzhXYTlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS82NGY1MzktZmVkYS00OWZjLWE5MjIt MjAxZDVhOWJiOGFhLzEvSFJ4UzhWVXZicUR3Wk5lanQ1MjF3YzhXYTlBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS82NGY1MzktZmVkYS00OWZjLWE5MjItMjAxZDVhOWJiOGFh LzEvSFJ4UzhWVXZicUR3Wk5lanQ1MjF3YzhXYTlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoce1sWOE qwxIJx9RjPZF8WpgwXQ/r7F6V0ebpRmnnw4WioF46HKQx6dmTaUMvJvdGRt/QyBK 4ArkBCab1BiU1R9u6IZh/4vST9fw6Qfya+iu6AI6MeOXtFAqBbkQP13aZ61eJOJU UmVrG7C0JLkU27B6mqi5xtzuuhwhsCa/s5LHo85xzPsVJb5zd59FubcrVuOwB8vh kAF82AmhQ0ntYWxafe/Mn3uJXineXaAgZE2t6kmW/nhp82kK5vuup9qNjZBXhtu0 GI+KlSUdZ6IUPQe3iJOi51S0RLvjrOqgD+9G49q1lywdCBmjobf5NqwffUReQ/Rd ifVGQPo7bq46UQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:28 2026 by rpki-client