This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.mft File: HcXTvMkeSjGiCDYa8Kk6YvYtgnA.mft (raw, json) Hash identifier: W8dgwRS3KAdvRuCiRNqA485NNwcqQb4g/xb35FFPCMA= Subject key identifier: 15:3B:90:38:B0:72:57:C9:25:79:0C:22:45:08:F8:6F:54:F5:3C:01 Authority key identifier: 1D:C5:D3:BC:C9:1E:4A:31:A2:08:36:1A:F0:A9:3A:62:F6:2D:82:70 Certificate issuer: /CN=1dc5d3bcc91e4a31a208361af0a93a62f62d8270 Certificate serial: 019C427D58DE0CC8B5F278C4490CB721CFB5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 13:00:36 +0000 Manifest this update: Mon 09 Feb 2026 13:00:36 +0000 Manifest next update: Tue 10 Feb 2026 13:00:36 +0000 Files and hashes: 1: HcXTvMkeSjGiCDYa8Kk6YvYtgnA.crl (hash: F/HvQbHPGh1G1kHAvNjZoGnllcVpXVskX+HU4/rejAA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.mft rsync://rpki.ripe.net/repository/DEFAULT/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:58:de:0c:c8:b5:f2:78:c4:49:0c:b7:21:cf:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1dc5d3bcc91e4a31a208361af0a93a62f62d8270 Validity Not Before: Feb 9 13:00:36 2026 GMT Not After : Feb 10 13:00:36 2026 GMT Subject: CN=153b9038b07257c925790c224508f86f54f53c01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:03:f3:c1:d3:8d:8f:9c:21:95:09:ba:c9:32: 57:39:5d:eb:92:34:aa:24:21:20:69:a7:8f:d7:b3: 6a:68:e4:b5:0e:38:75:a8:19:e8:4c:f8:43:59:e8: 64:c4:2e:1e:32:2c:08:a6:d3:e8:26:fe:51:e2:2e: 45:29:a2:a8:bc:4d:67:af:43:0e:05:7c:af:0a:2e: 9d:b2:90:f9:48:bb:8c:de:cb:cc:12:52:9e:bc:14: b8:ca:1f:fa:1b:4b:4b:a2:9d:96:3f:a5:03:b0:74: d6:7a:fa:cc:31:51:87:15:98:21:36:fb:07:9b:9c: 68:fa:fa:e1:a7:ae:24:57:a1:cc:4f:0f:86:b5:4e: d4:24:91:4a:ef:cf:ed:a8:8c:06:85:93:a3:ed:a6: cd:ea:03:fc:c7:63:4e:23:af:53:4e:92:5c:95:61: fa:5e:40:e0:e2:c3:4d:b9:07:3b:da:e4:22:40:5e: a9:67:51:ed:85:c4:01:98:ba:dc:42:cf:34:a5:f4: 9c:13:cd:58:38:b3:12:66:49:50:a7:0b:ec:14:91: 27:4a:c4:08:fe:ed:ee:ef:3a:42:43:bc:6c:31:77: 96:fa:2a:13:3e:23:e3:71:ac:a4:0c:98:be:eb:64: 1d:c2:8e:4d:fd:26:29:b0:b8:eb:7c:a6:bc:14:3d: 07:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:3B:90:38:B0:72:57:C9:25:79:0C:22:45:08:F8:6F:54:F5:3C:01 X509v3 Authority Key Identifier: keyid:1D:C5:D3:BC:C9:1E:4A:31:A2:08:36:1A:F0:A9:3A:62:F6:2D:82:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:ee:3c:96:80:ae:69:7f:d9:b7:75:74:fe:49:e1:20:71:ca: 6e:b0:23:e6:a3:55:c1:8f:42:67:e5:73:c7:a4:80:43:06:4f: 7e:61:c7:5d:65:29:ce:cd:6e:29:fc:17:67:be:3c:43:2d:73: ac:18:45:c1:59:a0:b7:57:5a:39:c8:6a:30:14:55:4d:2d:f9: 3e:93:84:b8:ed:56:ab:de:7d:77:49:be:0c:29:0a:e1:e3:e4: f2:77:12:91:84:1d:65:79:05:b3:de:03:b7:b6:5f:15:a0:b9: 93:1e:4e:10:0a:c3:59:85:46:5f:82:80:90:07:fd:0c:9c:53: 3e:ff:0d:15:5d:65:53:5c:87:48:2c:e8:b8:a3:2a:da:3c:2c: d0:b9:7a:08:94:59:75:06:0d:4e:c8:06:cb:37:7b:42:d8:77: 2f:ec:78:87:da:d7:98:5f:59:41:63:aa:96:27:55:ec:58:60: 64:6c:ee:c5:39:a4:e4:cd:ff:8a:f8:3d:21:49:c4:c6:ed:43: ad:be:52:27:cd:f8:ba:96:40:52:50:0c:f6:a8:fb:ac:10:ea: 2b:f6:0c:5d:e4:5d:fd:aa:7e:fd:d5:1b:9a:75:77:37:33:f1: 6e:a8:b0:52:54:fb:6c:15:f9:c1:e0:3a:e5:63:31:62:ee:4e: f1:9d:ec:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfVjeDMi18njESQy3Ic+1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkYzVkM2JjYzkxZTRhMzFhMjA4MzYxYWYwYTkzYTYyZjYy ZDgyNzAwHhcNMjYwMjA5MTMwMDM2WhcNMjYwMjEwMTMwMDM2WjAzMTEwLwYDVQQD EygxNTNiOTAzOGIwNzI1N2M5MjU3OTBjMjI0NTA4Zjg2ZjU0ZjUzYzAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2QPzwdONj5whlQm6yTJXOV3rkjSq JCEgaaeP17NqaOS1Djh1qBnoTPhDWehkxC4eMiwIptPoJv5R4i5FKaKovE1nr0MO BXyvCi6dspD5SLuM3svMElKevBS4yh/6G0tLop2WP6UDsHTWevrMMVGHFZghNvsH m5xo+vrhp64kV6HMTw+GtU7UJJFK78/tqIwGhZOj7abN6gP8x2NOI69TTpJclWH6 XkDg4sNNuQc72uQiQF6pZ1HthcQBmLrcQs80pfScE81YOLMSZklQpwvsFJEnSsQI /u3u7zpCQ7xsMXeW+ioTPiPjcaykDJi+62Qdwo5N/SYpsLjrfKa8FD0HuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBU7kDiwclfJJXkMIkUI+G9U9TwBMB8GA1UdIwQY MBaAFB3F07zJHkoxogg2GvCpOmL2LYJwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGNYVHZNa2VTakdpQ0RZYThLazZZdll0Z25BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy80OTRiYzUtMWFlYi00NTY1LWFhZDct ZjY5YjdlMjY2MjMzLzEvSGNYVHZNa2VTakdpQ0RZYThLazZZdll0Z25BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy80OTRiYzUtMWFlYi00NTY1LWFhZDctZjY5YjdlMjY2MjMz LzEvSGNYVHZNa2VTakdpQ0RZYThLazZZdll0Z25BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAou48loCu aX/Zt3V0/knhIHHKbrAj5qNVwY9CZ+Vzx6SAQwZPfmHHXWUpzs1uKfwXZ748Qy1z rBhFwVmgt1daOchqMBRVTS35PpOEuO1Wq959d0m+DCkK4ePk8ncSkYQdZXkFs94D t7ZfFaC5kx5OEArDWYVGX4KAkAf9DJxTPv8NFV1lU1yHSCzouKMq2jws0Ll6CJRZ dQYNTsgGyzd7Qth3L+x4h9rXmF9ZQWOqlidV7FhgZGzuxTmk5M3/ivg9IUnExu1D rb5SJ834upZAUlAM9qj7rBDqK/YMXeRd/ap+/dUbmnV3NzPxbqiwUlT7bBX5weA6 5WMxYu5O8Z3sng== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:40 2026 by rpki-client