This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft File: HCF8gIa-KdUPg8j9j8kXsAnePIE.mft (raw, json) Hash identifier: FKfhdPdwdtFJMlB+A5yO1FDGiHameyasP1J4WWQ8WF0= Subject key identifier: 5C:D1:46:50:42:6F:2C:7E:B2:08:9D:27:72:D0:72:85:E8:2F:ED:14 Authority key identifier: 1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81 Certificate issuer: /CN=1c217c8086be29d50f83c8fd8fc917b009de3c81 Certificate serial: 019C43FE3919C21D10907D002E971230706F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft Manifest number: 0337 Signing time: Mon 09 Feb 2026 20:01:00 +0000 Manifest this update: Mon 09 Feb 2026 20:01:00 +0000 Manifest next update: Tue 10 Feb 2026 20:01:00 +0000 Files and hashes: 1: HCF8gIa-KdUPg8j9j8kXsAnePIE.crl (hash: RMDLJw9wHWwWLPsAm6Np/UtjLamZwmSIVCGD3X0LzGE=) 2: Z5oga0vgbQ3IfY7AuGU9kvMREF8.roa (hash: S/HDTLw/C2HlzUoz5QYaSY1KLwcsf1KpKUZ68xZPy3s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:39:19:c2:1d:10:90:7d:00:2e:97:12:30:70:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c217c8086be29d50f83c8fd8fc917b009de3c81 Validity Not Before: Feb 9 20:01:00 2026 GMT Not After : Feb 10 20:01:00 2026 GMT Subject: CN=5cd14650426f2c7eb2089d2772d07285e82fed14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:59:1a:77:ea:ec:02:a9:10:a9:10:a5:85:99: 25:d7:6f:46:51:1a:6d:b5:a8:c5:75:dd:7d:df:07: a3:99:c9:4b:a3:fd:29:59:d3:a1:22:3f:91:21:d1: bb:fa:0f:e0:a0:d5:b1:7f:f0:63:2b:17:d6:44:5e: 59:c6:a4:d9:4d:f0:4f:d0:2e:79:fa:cb:89:e3:5a: e4:09:49:60:ed:9b:50:51:8c:a4:2f:6a:3d:e3:18: e5:78:19:40:41:1c:64:87:01:5d:21:65:09:4c:b9: a0:ee:7c:8b:68:99:e1:9d:7f:76:60:65:23:17:e4: 3d:ce:9c:d4:1f:1b:f6:02:bd:8b:c5:29:12:ed:01: 9a:16:ac:f8:b6:32:22:ec:94:e2:5e:c5:35:0d:e9: 2d:4c:72:4e:0f:cf:c1:7d:f8:27:60:10:a9:9c:3a: 51:0e:58:31:c7:a9:16:41:26:b4:3d:b9:2e:c2:d8: 9e:bb:65:bc:70:91:37:b6:cc:03:a5:ba:69:a0:f1: 4f:9e:9f:ca:8b:90:d4:55:d4:dc:09:e7:13:75:e4: 31:ca:8c:97:15:82:cf:bf:ae:66:e7:4b:41:64:24: b2:82:03:bb:1a:70:5e:50:cb:8d:73:a8:d7:da:e6: 8a:05:1a:3a:ee:80:72:c6:26:cd:99:cc:27:12:b8: 4d:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:D1:46:50:42:6F:2C:7E:B2:08:9D:27:72:D0:72:85:E8:2F:ED:14 X509v3 Authority Key Identifier: keyid:1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:96:ee:4c:4a:91:4c:f8:df:6f:0d:85:79:6c:60:59:5c:23: 08:bd:73:cc:f6:c7:b4:7c:d5:f4:76:0d:b8:7e:17:02:f2:e7: 1b:50:38:c6:d7:c1:32:42:1b:33:d9:23:33:6d:a4:d0:c8:fb: ac:6a:aa:cc:7a:8e:c5:70:a5:a3:7f:ad:dc:75:d8:f9:9a:e6: ac:c9:68:5e:40:0d:92:7e:52:15:18:b6:0b:96:72:00:35:c7: 65:ef:c0:a4:d4:60:9f:d5:8d:af:cf:f2:1c:1c:3f:c2:71:89: 51:30:fc:ce:25:b9:fd:b5:1c:c4:3f:b8:3f:58:06:da:48:68: 2b:56:b4:28:f6:cd:61:b6:81:24:64:8d:ca:93:23:4f:57:cc: 04:90:37:2f:a0:b9:f7:b6:92:b0:8d:06:c9:e7:bb:3b:a6:2d: 82:0f:4f:e7:88:f4:50:93:ef:29:27:fb:26:9c:1a:b2:a1:c0: c2:b0:28:5d:a5:84:82:c2:f2:b2:3d:74:de:71:34:e9:b6:ac: f5:58:38:a6:a8:24:c4:41:a7:15:1a:b2:96:9e:5e:89:6b:52: 32:27:fd:86:93:e3:fc:35:a6:fb:e8:b9:0b:dd:b7:9f:54:2e: 50:b0:2b:a1:33:0b:f7:f4:db:d3:4c:b0:d7:74:55:59:7a:b8: d4:d6:58:19 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/jkZwh0QkH0ALpcSMHBvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjMjE3YzgwODZiZTI5ZDUwZjgzYzhmZDhmYzkxN2IwMDlk ZTNjODEwHhcNMjYwMjA5MjAwMTAwWhcNMjYwMjEwMjAwMTAwWjAzMTEwLwYDVQQD Eyg1Y2QxNDY1MDQyNmYyYzdlYjIwODlkMjc3MmQwNzI4NWU4MmZlZDE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Vkad+rsAqkQqRClhZkl129GURpt tajFdd193wejmclLo/0pWdOhIj+RIdG7+g/goNWxf/BjKxfWRF5ZxqTZTfBP0C55 +suJ41rkCUlg7ZtQUYykL2o94xjleBlAQRxkhwFdIWUJTLmg7nyLaJnhnX92YGUj F+Q9zpzUHxv2Ar2LxSkS7QGaFqz4tjIi7JTiXsU1DektTHJOD8/BffgnYBCpnDpR Dlgxx6kWQSa0Pbkuwtieu2W8cJE3tswDpbppoPFPnp/Ki5DUVdTcCecTdeQxyoyX FYLPv65m50tBZCSyggO7GnBeUMuNc6jX2uaKBRo67oByxibNmcwnErhNkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFzRRlBCbyx+sgidJ3LQcoXoL+0UMB8GA1UdIwQY MBaAFBwhfICGvinVD4PI/Y/JF7AJ3jyBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSENGOGdJYS1LZFVQZzhqOWo4a1hzQW5lUElFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC84NmJiMDQtMDlkZi00MjJhLWI1Zjkt ZjM0YjMxZDNiNDNjLzEvSENGOGdJYS1LZFVQZzhqOWo4a1hzQW5lUElFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMC84NmJiMDQtMDlkZi00MjJhLWI1ZjktZjM0YjMxZDNiNDNj LzEvSENGOGdJYS1LZFVQZzhqOWo4a1hzQW5lUElFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAApbuTEqR TPjfbw2FeWxgWVwjCL1zzPbHtHzV9HYNuH4XAvLnG1A4xtfBMkIbM9kjM22k0Mj7 rGqqzHqOxXClo3+t3HXY+ZrmrMloXkANkn5SFRi2C5ZyADXHZe/ApNRgn9WNr8/y HBw/wnGJUTD8ziW5/bUcxD+4P1gG2khoK1a0KPbNYbaBJGSNypMjT1fMBJA3L6C5 97aSsI0Gyee7O6Ytgg9P54j0UJPvKSf7JpwasqHAwrAoXaWEgsLysj103nE06bas 9Vg4pqgkxEGnFRqylp5eiWtSMif9hpPj/DWm++i5C923n1QuULAroTML9/Tb00yw 13RVWXq41NZYGQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:45:29 2026 by rpki-client