This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft File: HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft (raw, json) Hash identifier: V04FC+kOxXxazV7tI3sMTvl2ybDRVYKGdZkWEG4XSRw= Subject key identifier: 02:8D:B2:B8:42:54:33:DE:CA:7C:25:C9:7E:DB:B3:69:20:BC:85:58 Authority key identifier: 1E:D9:30:84:CE:C4:49:BE:D8:A6:FC:00:8B:C7:DD:99:5E:B3:73:1C Certificate issuer: /CN=1ed93084cec449bed8a6fc008bc7dd995eb3731c Certificate serial: 019C427D818D8ED95F8E80F903945106DEB3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HtkwhM7ESb7YpvwAi8fdmV6zcxw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft Manifest number: 1534 Signing time: Mon 09 Feb 2026 13:00:47 +0000 Manifest this update: Mon 09 Feb 2026 13:00:47 +0000 Manifest next update: Tue 10 Feb 2026 13:00:47 +0000 Files and hashes: 1: HtkwhM7ESb7YpvwAi8fdmV6zcxw.crl (hash: S498BG6njDW/J9GodxLSM+SWg5m12OvD1R5PpuSriEs=) 2: sliXU2u2F5b-dxDpfrgoAvWB8tc.roa (hash: shJia0FcMyfJBOItG4MpW4lD3TG/16YLivfvP64r49Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.crl rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft rsync://rpki.ripe.net/repository/DEFAULT/HtkwhM7ESb7YpvwAi8fdmV6zcxw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:81:8d:8e:d9:5f:8e:80:f9:03:94:51:06:de:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ed93084cec449bed8a6fc008bc7dd995eb3731c Validity Not Before: Feb 9 13:00:47 2026 GMT Not After : Feb 10 13:00:47 2026 GMT Subject: CN=028db2b8425433deca7c25c97edbb36920bc8558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e4:0e:e6:c5:7b:19:d9:88:fa:9c:d0:20:ef: 6f:5f:4d:de:6a:e4:90:fd:b8:5b:2b:ef:e9:d6:81: 82:b1:6b:ed:eb:10:e0:9d:46:a1:e7:ff:02:5f:31: 4b:31:7a:dc:93:22:b3:a0:0d:0d:87:2b:e0:9e:09: f4:09:43:4f:1c:7f:82:cd:2c:c7:9b:cc:67:d0:15: f5:3b:a8:c1:39:92:b7:33:84:21:a8:12:e0:93:74: 74:9f:e0:41:97:34:21:f4:0a:66:db:cb:35:f8:b7: 02:ee:c0:e3:14:f7:a5:44:9f:55:6f:a1:76:5e:12: d9:09:18:41:d5:e0:b2:a4:f5:5e:d0:b6:b3:66:17: 7a:47:cf:c5:ad:34:eb:36:d2:c0:24:31:95:5d:4c: 3f:d6:a8:fd:b6:1b:47:7d:40:42:2b:d6:17:0a:eb: e0:96:bb:c2:61:88:58:d2:34:64:64:ed:3a:3b:fc: 1f:f8:c8:6f:6c:f1:4d:8b:c5:73:1a:99:40:b7:34: c0:00:88:ff:f3:11:97:ef:8b:48:f6:57:cf:8b:51: 9b:69:25:60:b2:cf:28:68:b9:e4:8a:a6:d0:31:08: fd:47:2f:db:b7:28:06:dc:18:ad:fd:6c:b4:d0:b1: fc:d0:82:76:d7:02:fd:16:6b:f0:62:a4:03:54:bf: 69:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:8D:B2:B8:42:54:33:DE:CA:7C:25:C9:7E:DB:B3:69:20:BC:85:58 X509v3 Authority Key Identifier: keyid:1E:D9:30:84:CE:C4:49:BE:D8:A6:FC:00:8B:C7:DD:99:5E:B3:73:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HtkwhM7ESb7YpvwAi8fdmV6zcxw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:ad:91:65:86:a1:ab:ed:9d:73:f3:bb:c6:f2:09:95:82:1b: f2:4e:7b:0b:77:b4:57:34:55:1b:42:30:42:20:38:33:86:50: a3:e1:57:03:b1:e6:3c:f3:0a:65:0f:06:59:8d:ac:ae:34:f7: fb:14:fb:84:19:cf:51:10:d7:bb:f8:ec:f8:64:ba:27:08:13: 2a:0e:be:76:2a:4c:ca:51:02:01:cf:ad:b8:b6:a5:48:f3:93: c0:63:d2:9b:c9:a7:04:39:0e:f6:09:9e:a8:09:d1:ed:95:66: 66:35:d6:d5:f9:12:30:e1:a0:60:1a:2d:8b:a1:50:82:33:bc: a3:dc:e7:2e:ad:b5:e2:bd:16:50:d9:ba:d5:e6:6d:49:e9:c1: 1b:fd:36:dd:98:01:22:61:dc:01:00:9a:fe:f5:d0:72:d7:b7: 38:83:ce:a7:65:bc:81:13:4c:f8:36:88:38:9a:b0:85:87:f0: 95:09:80:0c:22:b1:32:9e:4e:ad:9b:80:c6:5a:5f:72:81:2a: c3:94:1e:91:07:ad:e7:19:e1:9d:82:a6:93:66:62:23:25:ff: db:7d:db:76:1d:2e:ab:3a:3f:4d:02:44:4a:5e:d4:03:2d:d2: 1a:5e:73:0d:db:f3:5a:fd:33:a9:a5:c4:7f:61:8b:0b:ec:40: 60:1b:3b:ec -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfYGNjtlfjoD5A5RRBt6zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlZDkzMDg0Y2VjNDQ5YmVkOGE2ZmMwMDhiYzdkZDk5NWVi MzczMWMwHhcNMjYwMjA5MTMwMDQ3WhcNMjYwMjEwMTMwMDQ3WjAzMTEwLwYDVQQD EygwMjhkYjJiODQyNTQzM2RlY2E3YzI1Yzk3ZWRiYjM2OTIwYmM4NTU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApuQO5sV7GdmI+pzQIO9vX03eauSQ /bhbK+/p1oGCsWvt6xDgnUah5/8CXzFLMXrckyKzoA0Nhyvgngn0CUNPHH+CzSzH m8xn0BX1O6jBOZK3M4QhqBLgk3R0n+BBlzQh9Apm28s1+LcC7sDjFPelRJ9Vb6F2 XhLZCRhB1eCypPVe0LazZhd6R8/FrTTrNtLAJDGVXUw/1qj9thtHfUBCK9YXCuvg lrvCYYhY0jRkZO06O/wf+MhvbPFNi8VzGplAtzTAAIj/8xGX74tI9lfPi1GbaSVg ss8oaLnkiqbQMQj9Ry/btygG3Bit/Wy00LH80IJ21wL9FmvwYqQDVL9pRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAKNsrhCVDPeynwlyX7bs2kgvIVYMB8GA1UdIwQY MBaAFB7ZMITOxEm+2Kb8AIvH3Zles3McMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHRrd2hNN0VTYjdZcHZ3QWk4ZmRtVjZ6Y3h3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS9mMGI3MjMtNzdmMS00NGMwLThmY2Et N2M2NDY3OTUwOTBiLzEvSHRrd2hNN0VTYjdZcHZ3QWk4ZmRtVjZ6Y3h3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZS9mMGI3MjMtNzdmMS00NGMwLThmY2EtN2M2NDY3OTUwOTBi LzEvSHRrd2hNN0VTYjdZcHZ3QWk4ZmRtVjZ6Y3h3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUK2RZYah q+2dc/O7xvIJlYIb8k57C3e0VzRVG0IwQiA4M4ZQo+FXA7HmPPMKZQ8GWY2srjT3 +xT7hBnPURDXu/js+GS6JwgTKg6+dipMylECAc+tuLalSPOTwGPSm8mnBDkO9gme qAnR7ZVmZjXW1fkSMOGgYBoti6FQgjO8o9znLq214r0WUNm61eZtSenBG/023ZgB ImHcAQCa/vXQcte3OIPOp2W8gRNM+DaIOJqwhYfwlQmADCKxMp5OrZuAxlpfcoEq w5QekQet5xnhnYKmk2ZiIyX/233bdh0uqzo/TQJESl7UAy3SGl5zDdvzWv0zqaXE f2GLC+xAYBs77A== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:02 2026 by rpki-client