This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft File: HqtOAMDZLLUBu7IjrPA54nCR204.mft (raw, json) Hash identifier: AcxkzotucM9dQjxp2JrdBrttjXSCAxgLEMxWsH9eO7o= Subject key identifier: 13:60:CF:71:BF:15:5B:26:B3:CF:3B:E0:0E:4D:70:6A:04:2B:89:35 Authority key identifier: 1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E Certificate issuer: /CN=1eab4e00c0d92cb501bbb223acf039e27091db4e Certificate serial: 019BA4C77F9FF0D5685562A0C8FA1A8E28A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft Manifest number: 168A Signing time: Fri 09 Jan 2026 22:01:36 +0000 Manifest this update: Fri 09 Jan 2026 22:01:36 +0000 Manifest next update: Sat 10 Jan 2026 22:01:36 +0000 Files and hashes: 1: HqtOAMDZLLUBu7IjrPA54nCR204.crl (hash: nJp9Ji2cy1K5iFmpaAsMrqRGb5GXhqe6pprxpCluNLo=) 2: whXPzPuEVZS_Ryn2sgcT7m9P8dA.roa (hash: JcZ3tM12MerqC0+RrqC4HBYHgE8TDlz33TUN53BsW3I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 21:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a4:c7:7f:9f:f0:d5:68:55:62:a0:c8:fa:1a:8e:28:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1eab4e00c0d92cb501bbb223acf039e27091db4e Validity Not Before: Jan 9 22:01:36 2026 GMT Not After : Jan 10 22:01:36 2026 GMT Subject: CN=1360cf71bf155b26b3cf3be00e4d706a042b8935 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b7:64:9e:d0:ac:ed:3a:39:a8:c0:dc:e8:76: cd:a7:2a:29:00:1c:7b:75:b0:5c:af:c9:d7:8e:e8: f1:1f:cc:48:29:bc:4d:08:f4:14:c8:6a:d0:d6:24: 3f:20:f0:e7:24:15:9e:2b:85:1d:a2:96:a8:e7:92: c3:42:b8:2d:4e:44:db:e8:8d:31:6c:d6:b2:f2:73: b6:f1:be:49:58:40:4d:b6:60:23:42:1e:aa:b6:17: 53:4f:a9:0c:2f:4e:b0:47:fc:58:bd:ac:fe:f0:f5: 6b:a1:72:dd:7a:57:d3:89:55:e8:f8:6e:36:73:58: b0:a4:1a:f7:54:e4:26:08:83:f4:9b:3d:f5:37:2d: d0:f9:91:28:84:bd:92:aa:c4:6e:3f:4e:57:2b:c5: 81:47:a4:cd:cd:55:54:96:96:a0:dd:d8:58:71:8c: 2a:e1:a0:60:2c:f2:68:70:87:e3:38:48:3b:ac:c0: 6d:72:72:79:2d:68:9f:93:c9:2d:31:41:42:47:dd: 38:b8:2a:88:ad:f6:30:dc:c9:e6:36:a2:15:67:12: 79:a6:32:de:bb:44:9b:72:4a:7f:4c:05:ca:b4:28: ab:1c:ac:cc:c5:d8:00:79:ea:db:92:82:7b:68:52: 9c:8e:68:27:ea:f1:92:a8:cd:e4:73:4f:70:2c:71: 14:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:60:CF:71:BF:15:5B:26:B3:CF:3B:E0:0E:4D:70:6A:04:2B:89:35 X509v3 Authority Key Identifier: keyid:1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:00:4d:30:3e:98:bc:9c:4f:53:bb:af:9d:84:ae:be:d6:6c: 64:c9:e2:02:36:17:17:61:13:d3:4d:c7:10:54:32:a2:bb:e0: be:f8:93:82:24:79:7a:19:1e:a7:c2:a7:4b:b3:4e:fb:ec:6e: 88:93:11:3f:3c:6f:5f:45:e5:cf:7c:6d:8f:76:aa:38:9f:43: eb:56:60:fa:aa:1e:1c:89:37:b6:7e:fb:be:46:d8:bb:d3:a7: dd:37:3f:5c:43:4e:f8:93:0a:59:3a:fd:19:6f:5b:7a:ef:64: bf:34:e9:d5:94:ad:ae:f3:02:9d:95:3f:78:68:9f:2e:16:48: 9b:ed:88:d8:42:3d:b0:29:39:b7:16:82:71:06:be:f7:97:a3: 81:c6:d2:51:8c:4b:ee:74:5d:93:33:d6:5e:a8:2a:20:f9:63: cd:e0:fe:a8:e5:14:ab:3d:66:c7:ac:cf:87:f4:01:08:0c:e6: 1f:d9:04:5f:2d:0b:38:eb:19:6e:e5:08:a4:b8:19:78:ec:58: 10:1a:44:b0:57:f6:c5:57:12:69:cd:5e:57:61:ae:4e:cd:95: 8a:42:46:cd:54:27:a5:35:81:4e:8f:72:46:a5:71:37:99:e1: fc:16:ea:6a:73:b4:72:45:a2:53:bc:d6:d6:33:8d:1f:c6:bd: 4a:38:d9:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZukx3+f8NVoVWKgyPoajiipMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlYWI0ZTAwYzBkOTJjYjUwMWJiYjIyM2FjZjAzOWUyNzA5 MWRiNGUwHhcNMjYwMTA5MjIwMTM2WhcNMjYwMTEwMjIwMTM2WjAzMTEwLwYDVQQD EygxMzYwY2Y3MWJmMTU1YjI2YjNjZjNiZTAwZTRkNzA2YTA0MmI4OTM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwrdkntCs7To5qMDc6HbNpyopABx7 dbBcr8nXjujxH8xIKbxNCPQUyGrQ1iQ/IPDnJBWeK4Udopao55LDQrgtTkTb6I0x bNay8nO28b5JWEBNtmAjQh6qthdTT6kML06wR/xYvaz+8PVroXLdelfTiVXo+G42 c1iwpBr3VOQmCIP0mz31Ny3Q+ZEohL2SqsRuP05XK8WBR6TNzVVUlpag3dhYcYwq 4aBgLPJocIfjOEg7rMBtcnJ5LWifk8ktMUFCR904uCqIrfYw3MnmNqIVZxJ5pjLe u0Sbckp/TAXKtCirHKzMxdgAeerbkoJ7aFKcjmgn6vGSqM3kc09wLHEU+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBNgz3G/FVsms8874A5NcGoEK4k1MB8GA1UdIwQY MBaAFB6rTgDA2Sy1AbuyI6zwOeJwkdtOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHF0T0FNRFpMTFVCdTdJanJQQTU0bkNSMjA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9hOWE2YmEtZDc0OC00MGM3LTg1MDMt MTliYTg0ZDg0YWYwLzEvSHF0T0FNRFpMTFVCdTdJanJQQTU0bkNSMjA0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy9hOWE2YmEtZDc0OC00MGM3LTg1MDMtMTliYTg0ZDg0YWYw LzEvSHF0T0FNRFpMTFVCdTdJanJQQTU0bkNSMjA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoQBNMD6Y vJxPU7uvnYSuvtZsZMniAjYXF2ET003HEFQyorvgvviTgiR5ehkep8KnS7NO++xu iJMRPzxvX0Xlz3xtj3aqOJ9D61Zg+qoeHIk3tn77vkbYu9On3Tc/XENO+JMKWTr9 GW9beu9kvzTp1ZStrvMCnZU/eGifLhZIm+2I2EI9sCk5txaCcQa+95ejgcbSUYxL 7nRdkzPWXqgqIPljzeD+qOUUqz1mx6zPh/QBCAzmH9kEXy0LOOsZbuUIpLgZeOxY EBpEsFf2xVcSac1eV2GuTs2VikJGzVQnpTWBTo9yRqVxN5nh/BbqanO0ckWiU7zW 1jONH8a9SjjZRg== -----END CERTIFICATE-----Generated at Sat Jan 10 07:10:57 2026 by rpki-client