This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.mft File: _hpSVPN9jCkbEd2r7YiwY0gdr2s.mft (raw, json) Hash identifier: /AoE7TgIFcONLiud3Ox95VizBUvov7auO6HgD9ifKak= Subject key identifier: 71:3F:09:CC:0C:8A:D5:1E:F2:55:98:A0:FD:0D:A5:AF:A9:6D:02:A1 Authority key identifier: FE:1A:52:54:F3:7D:8C:29:1B:11:DD:AB:ED:88:B0:63:48:1D:AF:6B Certificate issuer: /CN=fe1a5254f37d8c291b11ddabed88b063481daf6b Certificate serial: 019C43225C68E6DDC46A7955D8D49DA354BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_hpSVPN9jCkbEd2r7YiwY0gdr2s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 16:00:50 +0000 Manifest this update: Mon 09 Feb 2026 16:00:50 +0000 Manifest next update: Tue 10 Feb 2026 16:00:50 +0000 Files and hashes: 1: _hpSVPN9jCkbEd2r7YiwY0gdr2s.crl (hash: QRX/DMFTI1VGlpvAewTTAYJMYjzVY/9QisQ8/yp2ID0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.mft rsync://rpki.ripe.net/repository/DEFAULT/_hpSVPN9jCkbEd2r7YiwY0gdr2s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:5c:68:e6:dd:c4:6a:79:55:d8:d4:9d:a3:54:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fe1a5254f37d8c291b11ddabed88b063481daf6b Validity Not Before: Feb 9 16:00:50 2026 GMT Not After : Feb 10 16:00:50 2026 GMT Subject: CN=713f09cc0c8ad51ef25598a0fd0da5afa96d02a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:39:b9:8b:69:e2:b6:26:f6:cc:83:7a:3d:50: 12:d1:f1:24:bb:df:0e:4b:5d:91:aa:91:65:04:6e: 0e:ad:66:bf:fd:ca:ea:f0:ae:61:9a:f6:98:3d:4f: 3a:f0:c3:74:c8:92:6c:e1:0f:49:9e:0f:93:2c:b1: 77:c0:1a:04:9c:44:5a:c5:d0:e8:ad:b9:24:a1:a4: a1:19:d1:d6:aa:ff:7f:1a:de:2e:a9:c4:c9:bb:0d: 8f:1f:6a:ef:07:d4:6e:6a:eb:d4:1c:fd:19:53:ae: 1a:d0:73:85:dc:f7:f4:2d:ba:89:27:b4:5b:95:17: 0d:5c:21:8e:e5:b7:bf:b8:44:a6:02:f6:ad:d8:bb: 6b:ba:fb:46:bb:8d:c7:aa:b2:c7:50:90:9f:13:ae: 51:cf:73:72:73:a6:c7:e9:a6:b7:f3:53:37:ca:d0: 5d:a9:17:01:94:d7:f1:f2:30:6f:a6:f0:c1:20:d4: 4e:9c:cb:4b:84:3c:a8:84:2d:48:76:c7:b2:e4:ec: 69:59:7f:a4:b1:c3:bb:08:6c:38:17:3f:57:42:a0: 1d:e8:b2:1e:03:7c:74:fa:95:06:0b:f7:17:21:22: a6:1b:8c:c4:e9:46:7c:08:9b:d6:63:ca:b3:74:99: 1f:99:16:62:f9:82:b5:1e:58:f6:b7:e0:2d:84:84: 1c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:3F:09:CC:0C:8A:D5:1E:F2:55:98:A0:FD:0D:A5:AF:A9:6D:02:A1 X509v3 Authority Key Identifier: keyid:FE:1A:52:54:F3:7D:8C:29:1B:11:DD:AB:ED:88:B0:63:48:1D:AF:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_hpSVPN9jCkbEd2r7YiwY0gdr2s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:9d:88:c3:0a:39:e1:52:29:b6:9c:a3:50:ce:b1:64:bd:46: ae:15:66:d7:ba:f7:7d:09:62:92:74:32:48:87:86:72:6b:4f: 61:dc:78:f7:18:af:70:9b:d2:9e:23:12:17:35:2a:fe:ca:95: 13:86:d2:ab:2b:bd:7a:95:35:08:6f:cc:eb:7a:ce:7a:38:15: 14:5a:cb:b9:c2:c7:81:c3:b1:49:41:7c:9b:91:cd:b0:9c:cf: 5c:89:8f:7f:61:28:89:36:f3:1a:d4:11:33:4d:1c:a8:f4:87: 15:88:47:77:0f:23:ad:55:2a:1e:d6:0b:d7:c5:3f:a8:6a:9d: 84:c7:a3:a2:3a:20:04:63:d6:83:2f:0d:a7:ca:8c:c2:28:14: 4c:a9:ea:55:ea:6d:5a:37:d6:5e:d1:75:1d:a9:df:67:d7:e3: 9e:d8:19:72:1d:02:47:ed:9d:0f:e1:9f:92:86:84:00:87:34: 59:b8:f4:1c:ff:01:7b:50:5b:5c:a8:c8:b6:bb:38:85:71:67: 4d:7c:c8:96:03:04:95:4a:53:cc:bb:57:99:ec:d6:00:8e:ac: fd:6a:be:70:1a:63:a2:80:7d:6d:37:07:54:3f:55:b3:d8:db: 72:21:37:d1:b0:14:ec:e7:10:40:06:e1:0f:f9:2d:f2:f3:3c: f7:63:c1:4e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIlxo5t3EanlV2NSdo1S+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlMWE1MjU0ZjM3ZDhjMjkxYjExZGRhYmVkODhiMDYzNDgx ZGFmNmIwHhcNMjYwMjA5MTYwMDUwWhcNMjYwMjEwMTYwMDUwWjAzMTEwLwYDVQQD Eyg3MTNmMDljYzBjOGFkNTFlZjI1NTk4YTBmZDBkYTVhZmE5NmQwMmExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyDm5i2nitib2zIN6PVAS0fEku98O S12RqpFlBG4OrWa//crq8K5hmvaYPU868MN0yJJs4Q9Jng+TLLF3wBoEnERaxdDo rbkkoaShGdHWqv9/Gt4uqcTJuw2PH2rvB9RuauvUHP0ZU64a0HOF3Pf0LbqJJ7Rb lRcNXCGO5be/uESmAvat2LtruvtGu43HqrLHUJCfE65Rz3Nyc6bH6aa381M3ytBd qRcBlNfx8jBvpvDBINROnMtLhDyohC1Idsey5OxpWX+kscO7CGw4Fz9XQqAd6LIe A3x0+pUGC/cXISKmG4zE6UZ8CJvWY8qzdJkfmRZi+YK1Hlj2t+AthIQc4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHE/CcwMitUe8lWYoP0Npa+pbQKhMB8GA1UdIwQY MBaAFP4aUlTzfYwpGxHdq+2IsGNIHa9rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX2hwU1ZQTjlqQ2tiRWQycjdZaXdZMGdkcjJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS82M2Y2MGEtMjdkNy00OTFlLWJkYzIt ZmEwZDBlODA1ZGY4LzEvX2hwU1ZQTjlqQ2tiRWQycjdZaXdZMGdkcjJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS82M2Y2MGEtMjdkNy00OTFlLWJkYzItZmEwZDBlODA1ZGY4 LzEvX2hwU1ZQTjlqQ2tiRWQycjdZaXdZMGdkcjJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUp2Iwwo5 4VIptpyjUM6xZL1GrhVm17r3fQliknQySIeGcmtPYdx49xivcJvSniMSFzUq/sqV E4bSqyu9epU1CG/M63rOejgVFFrLucLHgcOxSUF8m5HNsJzPXImPf2EoiTbzGtQR M00cqPSHFYhHdw8jrVUqHtYL18U/qGqdhMejojogBGPWgy8Np8qMwigUTKnqVept WjfWXtF1HanfZ9fjntgZch0CR+2dD+GfkoaEAIc0Wbj0HP8Be1BbXKjItrs4hXFn TXzIlgMElUpTzLtXmezWAI6s/Wq+cBpjooB9bTcHVD9Vs9jbciE30bAU7OcQQAbh D/kt8vM892PBTg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:42:32 2026 by rpki-client