This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft File: HCTxyq-zII64J6B4JkF7y5STQS8.mft (raw, json) Hash identifier: mt/dTVxN7UWsKMtKAcGd/UCOay6uWbeKccu2Vp+H5bo= Subject key identifier: BE:9F:CD:A2:E5:4C:57:EF:32:3D:69:CC:39:5D:F1:BE:8D:D5:37:7C Authority key identifier: 1C:24:F1:CA:AF:B3:20:8E:B8:27:A0:78:26:41:7B:CB:94:93:41:2F Certificate issuer: /CN=1c24f1caafb3208eb827a07826417bcb9493412f Certificate serial: 019C43594E7CDDE0C191125260CAF1CA3B36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft Manifest number: 0786 Signing time: Mon 09 Feb 2026 17:00:52 +0000 Manifest this update: Mon 09 Feb 2026 17:00:52 +0000 Manifest next update: Tue 10 Feb 2026 17:00:52 +0000 Files and hashes: 1: HCTxyq-zII64J6B4JkF7y5STQS8.crl (hash: oF5iCz5DvTTE8TKTPMTTnC9UhcH9z6TGPCxiS6B+Cdo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.crl rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:4e:7c:dd:e0:c1:91:12:52:60:ca:f1:ca:3b:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c24f1caafb3208eb827a07826417bcb9493412f Validity Not Before: Feb 9 17:00:52 2026 GMT Not After : Feb 10 17:00:52 2026 GMT Subject: CN=be9fcda2e54c57ef323d69cc395df1be8dd5377c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:1f:75:c9:58:a0:77:25:48:37:30:99:08:24: 78:35:a9:40:70:7d:95:15:a1:3e:6a:77:e1:32:b8: a2:f9:48:3d:74:e2:3a:39:2f:82:00:2d:69:1d:78: ec:25:d7:3b:3a:3a:10:6f:32:5a:52:20:f8:14:a5: 95:0d:3f:d0:d0:b8:9c:f4:1c:d0:42:a6:5e:4d:54: 0d:e6:81:79:f7:c5:bb:be:33:ef:d0:f2:81:97:d6: 1d:dd:51:82:5e:a3:67:ec:16:f4:9f:c4:a8:0d:96: db:05:28:8d:c8:9a:ed:1d:4d:e3:ae:8c:7c:51:a0: 4e:37:ea:1f:8b:42:a4:f6:55:51:11:64:dd:26:01: 6b:13:0b:2f:26:70:69:34:90:61:58:06:33:81:12: 08:43:b7:da:dc:0a:d4:27:dc:53:53:e0:92:b1:b4: ab:f9:c2:50:bf:46:c5:e1:20:2f:4f:01:fc:53:50: 22:23:36:97:cc:cb:4a:6b:f8:57:22:00:b5:b6:e6: 63:1a:99:03:29:13:57:f1:ce:e7:21:f8:a4:aa:7e: c4:43:ac:b7:72:ac:48:d6:08:e3:d4:e5:ba:27:36: 5f:a5:b9:d7:c5:e8:ae:62:b5:d2:6c:92:39:71:c6: 5b:9f:d4:bf:8f:e0:66:4f:00:07:da:d4:b8:9d:4c: 2c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:9F:CD:A2:E5:4C:57:EF:32:3D:69:CC:39:5D:F1:BE:8D:D5:37:7C X509v3 Authority Key Identifier: keyid:1C:24:F1:CA:AF:B3:20:8E:B8:27:A0:78:26:41:7B:CB:94:93:41:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:b6:a5:0d:14:c3:0d:1c:1b:32:62:02:75:1c:dd:e5:26:cb: b2:2c:83:a5:df:f5:5c:97:79:07:d5:c9:51:1e:44:92:df:2c: 1f:85:f6:81:d3:ff:40:25:7b:3f:ec:a4:2d:e4:4a:ad:b6:ce: 58:16:41:3b:f0:7b:e7:fe:da:f6:26:b1:3e:b6:7d:52:84:52: eb:d7:11:82:c8:6a:c0:80:0a:f0:63:8c:e0:5b:d4:a5:48:c9: 1a:f9:8d:57:3e:bf:55:3e:b9:4f:70:1b:4d:35:ab:ef:51:7f: cd:e6:29:74:01:15:ab:76:69:34:6b:e1:39:5a:6d:c0:ce:22: 7f:d6:50:a1:e5:61:6e:6e:24:ed:9d:93:9e:df:35:b9:5f:b3: a0:99:a5:89:62:d1:52:98:8a:9b:f7:06:a1:77:cb:18:53:f6: e0:33:f1:a9:68:cc:9f:62:da:ad:06:6a:29:e0:e7:92:98:5e: b5:74:26:d9:dc:70:7b:67:48:e2:0e:f4:e8:98:3b:21:a3:a1: bb:92:0b:98:17:da:f5:94:08:21:3a:85:03:d0:26:8d:b2:7f: 19:d5:d1:43:c1:d5:7a:58:61:61:86:36:98:04:b6:af:db:9d: 3e:d3:1d:cf:cf:47:34:c0:1b:61:12:ae:62:a1:01:53:b2:1d: 57:e6:46:12 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWU583eDBkRJSYMrxyjs2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjMjRmMWNhYWZiMzIwOGViODI3YTA3ODI2NDE3YmNiOTQ5 MzQxMmYwHhcNMjYwMjA5MTcwMDUyWhcNMjYwMjEwMTcwMDUyWjAzMTEwLwYDVQQD EyhiZTlmY2RhMmU1NGM1N2VmMzIzZDY5Y2MzOTVkZjFiZThkZDUzNzdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzx91yVigdyVINzCZCCR4NalAcH2V FaE+anfhMrii+Ug9dOI6OS+CAC1pHXjsJdc7OjoQbzJaUiD4FKWVDT/Q0Lic9BzQ QqZeTVQN5oF598W7vjPv0PKBl9Yd3VGCXqNn7Bb0n8SoDZbbBSiNyJrtHU3jrox8 UaBON+ofi0Kk9lVREWTdJgFrEwsvJnBpNJBhWAYzgRIIQ7fa3ArUJ9xTU+CSsbSr +cJQv0bF4SAvTwH8U1AiIzaXzMtKa/hXIgC1tuZjGpkDKRNX8c7nIfikqn7EQ6y3 cqxI1gjj1OW6JzZfpbnXxeiuYrXSbJI5ccZbn9S/j+BmTwAH2tS4nUwsxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL6fzaLlTFfvMj1pzDld8b6N1Td8MB8GA1UdIwQY MBaAFBwk8cqvsyCOuCegeCZBe8uUk0EvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSENUeHlxLXpJSTY0SjZCNEprRjd5NVNUUVM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS9iNTVmZGUtMmI1NS00N2JlLThkNjQt N2RjZmZmYWUyNzhjLzEvSENUeHlxLXpJSTY0SjZCNEprRjd5NVNUUVM4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS9iNTVmZGUtMmI1NS00N2JlLThkNjQtN2RjZmZmYWUyNzhj LzEvSENUeHlxLXpJSTY0SjZCNEprRjd5NVNUUVM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD7alDRTD DRwbMmICdRzd5SbLsiyDpd/1XJd5B9XJUR5Ekt8sH4X2gdP/QCV7P+ykLeRKrbbO WBZBO/B75/7a9iaxPrZ9UoRS69cRgshqwIAK8GOM4FvUpUjJGvmNVz6/VT65T3Ab TTWr71F/zeYpdAEVq3ZpNGvhOVptwM4if9ZQoeVhbm4k7Z2Tnt81uV+zoJmliWLR UpiKm/cGoXfLGFP24DPxqWjMn2LarQZqKeDnkphetXQm2dxwe2dI4g706Jg7IaOh u5ILmBfa9ZQIITqFA9AmjbJ/GdXRQ8HVelhhYYY2mAS2r9udPtMdz89HNMAbYRKu YqEBU7IdV+ZGEg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:38 2026 by rpki-client