This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft File: HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft (raw, json) Hash identifier: CIpJJI5Pd0mdY0Q3pIp1kQ4Zcu0wCX0cfXXoH/TKUm4= Subject key identifier: 0F:EC:25:CC:51:8A:DC:20:97:3A:1A:36:2F:93:19:0F:1D:66:FF:BD Authority key identifier: 1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91 Certificate issuer: /CN=1e514098a5a9736cda4303e0495e94652390aa91 Certificate serial: 019BDEEDB3F7491CCEEFC96818B75AD76767 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft Manifest number: 17E2 Signing time: Wed 21 Jan 2026 05:01:18 +0000 Manifest this update: Wed 21 Jan 2026 05:01:18 +0000 Manifest next update: Thu 22 Jan 2026 05:01:18 +0000 Files and hashes: 1: HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl (hash: RIJ79mGYPlBJ/n75SewJMvO8ifxkopGS/AI5r/EtuLw=) 2: LPjmn9PolMemZlvU3gzZjHmr9fw.roa (hash: hJNmZuxOH01P3sPwMJ+PO3mkfbGrlehVtU6QgCrjEhc=) 3: POj4_0IjkoRQHzWCydUSaXOI1sk.roa (hash: OXXoe1i5VmrRsJ4ZrhX2i51+dmFyvJThd+6tYO7luGY=) 4: lco6WDUn71zluEHfq5idlQ5WFJ0.roa (hash: S/GDmIIfLVIAhrpUagqamSs5aG9BVe2FNjExEfd2lVA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:de:ed:b3:f7:49:1c:ce:ef:c9:68:18:b7:5a:d7:67:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e514098a5a9736cda4303e0495e94652390aa91 Validity Not Before: Jan 21 05:01:18 2026 GMT Not After : Jan 22 05:01:18 2026 GMT Subject: CN=0fec25cc518adc20973a1a362f93190f1d66ffbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:90:61:66:df:46:52:45:64:e2:09:fe:d3:43: 91:c7:fb:31:1e:ef:94:87:6f:1a:a1:bd:0a:d7:75: 73:3e:91:73:25:3d:67:2c:8d:ee:8d:9a:91:8c:37: 4a:28:e8:8b:7c:d0:5b:84:60:c4:9a:ef:b5:44:11: 4e:8e:67:19:fb:8d:ee:b4:38:f1:10:0b:7a:12:cc: 16:f4:cb:c7:b2:13:e5:67:c7:3c:d6:84:72:73:67: 34:f9:39:df:61:a1:39:44:23:c5:d2:45:83:dd:3a: 18:e2:36:10:32:86:57:53:8d:fd:89:58:b9:27:f4: 16:ae:d6:92:a8:ae:51:e1:f9:83:e2:b3:4e:43:62: 84:4c:a0:44:6b:45:75:b7:df:7c:6b:fa:28:48:27: 2f:d4:cb:74:2d:04:6b:a9:ac:c4:86:47:96:e9:b4: 20:9f:6e:16:d3:40:5c:ef:8c:b9:85:fd:8b:6a:7b: f8:0c:b4:28:5a:0a:58:5f:04:90:32:aa:d7:37:17: 54:0a:8b:90:01:43:b5:1c:b9:db:d5:e0:b3:60:d8: 53:77:c4:ba:ce:5e:2f:cd:44:9b:ba:d5:a2:e7:d8: 7f:9c:e2:79:16:bc:c8:eb:c6:8f:6a:4b:7c:98:16: b7:ba:71:f0:35:58:1c:77:2e:b6:07:dd:60:57:bb: 2d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:EC:25:CC:51:8A:DC:20:97:3A:1A:36:2F:93:19:0F:1D:66:FF:BD X509v3 Authority Key Identifier: keyid:1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:86:d4:83:dd:0f:7d:bb:b2:74:9c:66:c9:8f:b3:18:83:af: 0e:1f:3a:57:71:14:73:cb:40:37:fb:40:3d:19:68:2e:48:22: b2:b8:d0:36:1e:7a:a1:56:e1:fb:22:c3:49:b2:2f:b9:69:eb: 33:4f:3e:24:0d:60:e6:22:2a:c8:c6:3c:ef:49:af:95:81:8a: b8:34:02:56:8b:d3:a4:05:c4:c3:41:77:1c:d2:74:14:d4:61: 76:48:79:90:e8:04:23:72:14:1b:6c:ef:a2:08:cf:67:e2:be: a8:cd:43:1e:f0:b8:c8:b7:73:c5:f2:3d:a7:d6:c7:3d:50:2b: 47:b7:e4:21:3e:fd:41:36:de:cb:c3:1d:d2:c3:c5:4f:83:b2: 7e:72:38:cf:b9:32:85:7d:89:ff:80:c3:b1:78:9e:64:a2:d4: a7:e0:3c:44:76:fd:2b:af:13:8f:8c:11:9d:4b:c9:c1:7c:0f: e9:27:77:dc:74:c8:71:47:47:a1:8f:de:af:96:f0:43:44:29: 73:cc:df:40:93:74:01:49:f2:9a:8b:9f:5b:45:51:d1:af:7a: 7e:4c:5f:c8:5a:b4:1c:37:85:b0:3d:9f:d3:52:54:b3:69:cc: ea:59:71:da:9d:6c:f4:05:0d:c4:02:e1:03:8c:dc:d8:c1:32: ef:ec:67:e8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZve7bP3SRzO78loGLda12dnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlNTE0MDk4YTVhOTczNmNkYTQzMDNlMDQ5NWU5NDY1MjM5 MGFhOTEwHhcNMjYwMTIxMDUwMTE4WhcNMjYwMTIyMDUwMTE4WjAzMTEwLwYDVQQD EygwZmVjMjVjYzUxOGFkYzIwOTczYTFhMzYyZjkzMTkwZjFkNjZmZmJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0pBhZt9GUkVk4gn+00ORx/sxHu+U h28aob0K13VzPpFzJT1nLI3ujZqRjDdKKOiLfNBbhGDEmu+1RBFOjmcZ+43utDjx EAt6EswW9MvHshPlZ8c81oRyc2c0+TnfYaE5RCPF0kWD3ToY4jYQMoZXU439iVi5 J/QWrtaSqK5R4fmD4rNOQ2KETKBEa0V1t998a/ooSCcv1Mt0LQRrqazEhkeW6bQg n24W00Bc74y5hf2Lanv4DLQoWgpYXwSQMqrXNxdUCouQAUO1HLnb1eCzYNhTd8S6 zl4vzUSbutWi59h/nOJ5FrzI68aPakt8mBa3unHwNVgcdy62B91gV7stoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA/sJcxRitwglzoaNi+TGQ8dZv+9MB8GA1UdIwQY MBaAFB5RQJilqXNs2kMD4ElelGUjkKqRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGxGQW1LV3BjMnphUXdQZ1NWNlVaU09RcXBFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8zNWRmY2ItZDkyZC00OGZlLTlkYWQt ODU0MzgxNjg2YzdiLzEvSGxGQW1LV3BjMnphUXdQZ1NWNlVaU09RcXBFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy8zNWRmY2ItZDkyZC00OGZlLTlkYWQtODU0MzgxNjg2Yzdi LzEvSGxGQW1LV3BjMnphUXdQZ1NWNlVaU09RcXBFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYIbUg90P fbuydJxmyY+zGIOvDh86V3EUc8tAN/tAPRloLkgisrjQNh56oVbh+yLDSbIvuWnr M08+JA1g5iIqyMY870mvlYGKuDQCVovTpAXEw0F3HNJ0FNRhdkh5kOgEI3IUG2zv ogjPZ+K+qM1DHvC4yLdzxfI9p9bHPVArR7fkIT79QTbey8Md0sPFT4OyfnI4z7ky hX2J/4DDsXieZKLUp+A8RHb9K68Tj4wRnUvJwXwP6Sd33HTIcUdHoY/er5bwQ0Qp c8zfQJN0AUnymoufW0VR0a96fkxfyFq0HDeFsD2f01JUs2nM6llx2p1s9AUNxALh A4zc2MEy7+xn6A== -----END CERTIFICATE-----Generated at Wed Jan 21 08:58:00 2026 by rpki-client