This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/36c808-dd87-48f8-97e0-aa0f35824a27/1/HBx1S3pbVBiSVA0kq5jTFTeXRXQ.mft File: HBx1S3pbVBiSVA0kq5jTFTeXRXQ.mft (raw, json) Hash identifier: /oz6Tp/3+R/e3u5r2k7TVBdo2HJT4/P8Cnw6I8SfLp4= Subject key identifier: 5B:BC:B1:DE:9B:24:05:1B:16:73:1D:E8:F6:04:0B:D3:39:B8:01:E5 Authority key identifier: 1C:1C:75:4B:7A:5B:54:18:92:54:0D:24:AB:98:D3:15:37:97:45:74 Certificate issuer: /CN=1c1c754b7a5b541892540d24ab98d31537974574 Certificate serial: 019C43C6D5882033E52756C1390892BDFA7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HBx1S3pbVBiSVA0kq5jTFTeXRXQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/36c808-dd87-48f8-97e0-aa0f35824a27/1/HBx1S3pbVBiSVA0kq5jTFTeXRXQ.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 19:00:30 +0000 Manifest this update: Mon 09 Feb 2026 19:00:30 +0000 Manifest next update: Tue 10 Feb 2026 19:00:30 +0000 Files and hashes: 1: HBx1S3pbVBiSVA0kq5jTFTeXRXQ.crl (hash: jGcUtsNRV43FzK2ngQBy9kYzSzNCCFCrXxi871KkUvA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/36c808-dd87-48f8-97e0-aa0f35824a27/1/HBx1S3pbVBiSVA0kq5jTFTeXRXQ.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/36c808-dd87-48f8-97e0-aa0f35824a27/1/HBx1S3pbVBiSVA0kq5jTFTeXRXQ.mft rsync://rpki.ripe.net/repository/DEFAULT/HBx1S3pbVBiSVA0kq5jTFTeXRXQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:d5:88:20:33:e5:27:56:c1:39:08:92:bd:fa:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c1c754b7a5b541892540d24ab98d31537974574 Validity Not Before: Feb 9 19:00:30 2026 GMT Not After : Feb 10 19:00:30 2026 GMT Subject: CN=5bbcb1de9b24051b16731de8f6040bd339b801e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:73:6b:cf:7a:73:2d:86:f5:09:3c:2f:fe:ca: a6:3e:20:8a:0f:e2:ce:72:79:9f:67:74:d8:3f:39: b5:18:d7:e5:58:9b:5f:d0:0d:fc:99:e3:fa:8e:19: 95:47:e5:e2:ae:ea:1b:90:ae:62:84:0d:e7:cc:d3: 4a:0d:89:37:a7:fd:9a:b4:f6:60:8e:e2:07:e6:6d: 2f:58:ff:49:a1:a6:9d:83:20:f7:21:0b:c3:14:a7: 56:24:13:81:c3:78:88:32:d3:5c:72:06:e0:96:62: 81:c5:cc:b6:d8:4e:68:95:4e:3b:e0:31:72:6e:fa: 8f:ed:a5:ec:b0:4f:89:52:1e:fa:52:aa:29:ec:bc: a4:3c:34:ec:0c:e5:af:99:a0:29:e7:15:d2:9b:9b: 30:3e:e8:56:03:6a:c9:72:b6:fe:22:db:5b:fa:d4: 99:73:26:79:c0:98:3f:7a:c5:08:31:32:92:18:18: 2b:25:63:ba:9e:b3:bc:a3:73:ce:15:15:11:c5:d0: 1e:20:9b:e3:db:48:90:c8:b5:90:a1:6a:29:19:55: 7d:6f:92:f9:e3:6f:86:f0:00:00:5d:41:b1:11:1c: 26:7a:13:3f:3a:46:db:14:a9:4b:52:fd:94:c4:88: df:7f:be:b4:4d:39:f8:4c:67:6e:59:75:ca:62:ff: df:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:BC:B1:DE:9B:24:05:1B:16:73:1D:E8:F6:04:0B:D3:39:B8:01:E5 X509v3 Authority Key Identifier: keyid:1C:1C:75:4B:7A:5B:54:18:92:54:0D:24:AB:98:D3:15:37:97:45:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HBx1S3pbVBiSVA0kq5jTFTeXRXQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/36c808-dd87-48f8-97e0-aa0f35824a27/1/HBx1S3pbVBiSVA0kq5jTFTeXRXQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/36c808-dd87-48f8-97e0-aa0f35824a27/1/HBx1S3pbVBiSVA0kq5jTFTeXRXQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:00:2e:4b:b1:b3:92:87:f2:f2:15:6a:62:21:49:84:21:8a: d4:bb:3f:fc:6c:9d:17:ab:1b:d2:b2:7e:d8:1b:23:94:b0:b4: 80:8d:5d:e0:40:2a:c5:fd:a7:9b:71:7d:26:53:b9:33:96:3a: 02:ce:72:59:39:0c:c4:a4:64:58:48:94:25:14:e3:20:81:e4: da:50:41:3b:89:77:5d:68:c0:03:01:e6:15:98:9f:5c:6c:00: 30:ef:89:87:bc:df:36:de:c8:b8:03:86:4b:fa:a5:3f:8c:b9: ff:96:3b:19:f2:4a:bd:b6:2e:1f:47:91:df:2f:c6:2b:98:6d: 36:8a:6f:24:e2:f8:5e:4f:8f:e0:d4:e8:d7:d9:e9:b0:78:d6: e0:3b:61:5d:62:ff:e2:f5:c9:04:22:a9:2b:84:5f:d6:7e:79: 43:ae:e3:06:03:9a:d4:c3:b7:e7:8e:8c:f8:b1:e0:bd:fa:66: 99:4b:33:15:e6:fb:89:de:24:0d:46:87:7c:6f:de:7b:9b:f4: 27:93:05:7c:0f:33:b5:cc:70:80:f6:f7:73:99:53:de:4b:d7: 09:72:71:f9:d4:31:ea:53:c2:e1:36:29:d3:b8:11:bd:8a:c1: d1:1d:d4:2d:11:5e:2b:db:cd:37:c8:42:16:38:c0:16:6b:33: 76:b6:55:bc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxtWIIDPlJ1bBOQiSvfp+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjMWM3NTRiN2E1YjU0MTg5MjU0MGQyNGFiOThkMzE1Mzc5 NzQ1NzQwHhcNMjYwMjA5MTkwMDMwWhcNMjYwMjEwMTkwMDMwWjAzMTEwLwYDVQQD Eyg1YmJjYjFkZTliMjQwNTFiMTY3MzFkZThmNjA0MGJkMzM5YjgwMWU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA33Nrz3pzLYb1CTwv/sqmPiCKD+LO cnmfZ3TYPzm1GNflWJtf0A38meP6jhmVR+XiruobkK5ihA3nzNNKDYk3p/2atPZg juIH5m0vWP9JoaadgyD3IQvDFKdWJBOBw3iIMtNccgbglmKBxcy22E5olU474DFy bvqP7aXssE+JUh76Uqop7LykPDTsDOWvmaAp5xXSm5swPuhWA2rJcrb+Ittb+tSZ cyZ5wJg/esUIMTKSGBgrJWO6nrO8o3POFRURxdAeIJvj20iQyLWQoWopGVV9b5L5 42+G8AAAXUGxERwmehM/OkbbFKlLUv2UxIjff760TTn4TGduWXXKYv/fowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFu8sd6bJAUbFnMd6PYEC9M5uAHlMB8GA1UdIwQY MBaAFBwcdUt6W1QYklQNJKuY0xU3l0V0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEJ4MVMzcGJWQmlTVkEwa3E1alRGVGVYUlhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS8zNmM4MDgtZGQ4Ny00OGY4LTk3ZTAt YWEwZjM1ODI0YTI3LzEvSEJ4MVMzcGJWQmlTVkEwa3E1alRGVGVYUlhRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS8zNmM4MDgtZGQ4Ny00OGY4LTk3ZTAtYWEwZjM1ODI0YTI3 LzEvSEJ4MVMzcGJWQmlTVkEwa3E1alRGVGVYUlhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATQAuS7Gz kofy8hVqYiFJhCGK1Ls//GydF6sb0rJ+2BsjlLC0gI1d4EAqxf2nm3F9JlO5M5Y6 As5yWTkMxKRkWEiUJRTjIIHk2lBBO4l3XWjAAwHmFZifXGwAMO+Jh7zfNt7IuAOG S/qlP4y5/5Y7GfJKvbYuH0eR3y/GK5htNopvJOL4Xk+P4NTo19npsHjW4DthXWL/ 4vXJBCKpK4Rf1n55Q67jBgOa1MO3546M+LHgvfpmmUszFeb7id4kDUaHfG/ee5v0 J5MFfA8ztcxwgPb3c5lT3kvXCXJx+dQx6lPC4TYp07gRvYrB0R3ULRFeK9vNN8hC FjjAFmszdrZVvA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:31:33 2026 by rpki-client