This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft File: HEwmJz2igh_OJgdaoKbiMB7ISSc.mft (raw, json) Hash identifier: q7wbo2kqHkhaukCS3caEScURQvk1DsdWPDKpYz+NQec= Subject key identifier: 09:9E:87:AB:C5:75:71:1C:8C:EB:BF:36:E8:D4:71:F3:FE:46:40:2A Authority key identifier: 1C:4C:26:27:3D:A2:82:1F:CE:26:07:5A:A0:A6:E2:30:1E:C8:49:27 Certificate issuer: /CN=1c4c26273da2821fce26075aa0a6e2301ec84927 Certificate serial: 019BFC1BFD34C13C12F089894E46CD152415 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft Manifest number: 177C Signing time: Mon 26 Jan 2026 21:00:51 +0000 Manifest this update: Mon 26 Jan 2026 21:00:51 +0000 Manifest next update: Tue 27 Jan 2026 21:00:51 +0000 Files and hashes: 1: Ao01yBlxvJ843s8rmXALqicuFL4.roa (hash: mObGzmDyz7K0J3EGcnRV4ZYxrkCBxp3ntfUTw3IpS/Y=) 2: HEwmJz2igh_OJgdaoKbiMB7ISSc.crl (hash: zXiPgiiGGtNSFVCcYAbXkJd4PkbqfAPV1HYyccygZsw=) 3: nMd-Xw4DDeNMARsDmT0tnDJOIKY.roa (hash: IL7Kn+tf2yZBt5W5A2bV1BTlZ8XATxRpIlXULrCuaRY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:1b:fd:34:c1:3c:12:f0:89:89:4e:46:cd:15:24:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c4c26273da2821fce26075aa0a6e2301ec84927 Validity Not Before: Jan 26 21:00:51 2026 GMT Not After : Jan 27 21:00:51 2026 GMT Subject: CN=099e87abc575711c8cebbf36e8d471f3fe46402a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:66:ed:40:4d:77:5d:67:b7:c0:ec:d4:5d:29: 04:b8:00:df:9c:de:01:88:9d:05:17:4b:fd:e2:b3: 97:ec:d4:cc:c7:c0:37:54:cd:9a:61:18:88:39:43: 00:93:76:e0:da:59:7d:73:b3:97:f1:e4:70:4d:c6: a5:4b:74:47:30:f1:77:72:83:f9:63:f8:f4:85:48: e9:92:d8:a6:52:c1:f7:2d:0d:16:fe:1a:58:fa:e7: 0d:d4:76:27:df:61:10:78:c0:68:3c:50:84:bb:e2: 0d:85:68:ca:21:d0:aa:ef:7d:e0:52:b6:39:96:ba: 86:eb:ee:08:0c:fa:f2:04:c2:72:b2:50:2d:a7:a4: a9:df:a7:5b:37:9e:eb:31:66:97:98:0b:b4:be:a1: e5:7f:20:fd:83:cb:75:4b:67:fe:f4:2f:62:46:d6: 8a:f8:bc:aa:10:45:6a:da:1f:33:21:a6:70:f9:84: 2c:3f:07:90:69:3b:a6:b0:40:c5:6a:c8:f9:69:12: eb:fe:55:44:37:d7:2b:f8:7d:f0:58:bf:1b:68:27: 72:83:18:bc:65:f5:0a:55:05:19:7c:41:aa:4b:97: 3d:dd:be:15:b5:5a:91:98:a2:56:6e:54:a0:35:b0: 55:2c:ce:90:70:b0:c7:1d:90:87:58:d3:80:ec:12: 28:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:9E:87:AB:C5:75:71:1C:8C:EB:BF:36:E8:D4:71:F3:FE:46:40:2A X509v3 Authority Key Identifier: keyid:1C:4C:26:27:3D:A2:82:1F:CE:26:07:5A:A0:A6:E2:30:1E:C8:49:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:f1:15:33:2c:e2:2c:8f:00:5d:2b:cb:2a:55:39:12:40:2b: 1c:c7:52:d3:b0:83:73:cc:49:5c:27:3f:af:8b:a5:3f:a6:be: ed:a7:23:06:82:9a:5f:8d:74:b1:75:8b:59:d7:ee:39:81:36: 28:fe:83:a5:a2:2e:29:bf:e6:70:19:40:43:43:85:09:69:5d: 77:05:14:fc:1e:ba:a6:b1:58:4b:55:7b:d6:3e:29:62:01:33: 38:c6:63:f8:84:a0:ca:04:4b:d3:51:e9:06:ce:96:6c:80:8c: 5c:c6:93:10:ee:45:dd:84:94:bd:f7:43:c8:e7:9f:fe:75:76: e4:38:8a:1d:50:5c:e1:96:85:77:a6:ae:56:da:f1:c9:b0:30: e6:2f:27:35:42:9b:57:c7:ca:fe:c1:78:67:ad:1d:d4:33:21: 53:72:cd:f6:fe:34:85:9d:ee:d4:ee:9b:3e:1d:36:a2:c6:d7: 51:04:13:6a:68:bf:2f:8d:03:41:eb:c9:14:97:79:9b:00:b9: 68:d2:e7:0c:74:4c:44:93:dd:cf:66:b2:ef:89:9c:aa:a1:76: d6:cf:8b:7b:e4:a5:cd:3c:16:64:b1:3b:15:50:1f:aa:0f:5e: 43:ed:29:e8:cc:18:8e:9c:40:f5:59:34:b6:f6:56:9d:c6:8b: f4:a2:cf:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8G/00wTwS8ImJTkbNFSQVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjNGMyNjI3M2RhMjgyMWZjZTI2MDc1YWEwYTZlMjMwMWVj ODQ5MjcwHhcNMjYwMTI2MjEwMDUxWhcNMjYwMTI3MjEwMDUxWjAzMTEwLwYDVQQD EygwOTllODdhYmM1NzU3MTFjOGNlYmJmMzZlOGQ0NzFmM2ZlNDY0MDJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2mbtQE13XWe3wOzUXSkEuADfnN4B iJ0FF0v94rOX7NTMx8A3VM2aYRiIOUMAk3bg2ll9c7OX8eRwTcalS3RHMPF3coP5 Y/j0hUjpktimUsH3LQ0W/hpY+ucN1HYn32EQeMBoPFCEu+INhWjKIdCq733gUrY5 lrqG6+4IDPryBMJyslAtp6Sp36dbN57rMWaXmAu0vqHlfyD9g8t1S2f+9C9iRtaK +LyqEEVq2h8zIaZw+YQsPweQaTumsEDFasj5aRLr/lVEN9cr+H3wWL8baCdygxi8 ZfUKVQUZfEGqS5c93b4VtVqRmKJWblSgNbBVLM6QcLDHHZCHWNOA7BIoqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAmeh6vFdXEcjOu/NujUcfP+RkAqMB8GA1UdIwQY MBaAFBxMJic9ooIfziYHWqCm4jAeyEknMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEV3bUp6MmlnaF9PSmdkYW9LYmlNQjdJU1NjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS81NDVjY2UtYWYxMS00ZWY3LTlhNWQt ZDM1YjQzMGFmMjZkLzEvSEV3bUp6MmlnaF9PSmdkYW9LYmlNQjdJU1NjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS81NDVjY2UtYWYxMS00ZWY3LTlhNWQtZDM1YjQzMGFmMjZk LzEvSEV3bUp6MmlnaF9PSmdkYW9LYmlNQjdJU1NjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWPEVMyzi LI8AXSvLKlU5EkArHMdS07CDc8xJXCc/r4ulP6a+7acjBoKaX410sXWLWdfuOYE2 KP6DpaIuKb/mcBlAQ0OFCWlddwUU/B66prFYS1V71j4pYgEzOMZj+ISgygRL01Hp Bs6WbICMXMaTEO5F3YSUvfdDyOef/nV25DiKHVBc4ZaFd6auVtrxybAw5i8nNUKb V8fK/sF4Z60d1DMhU3LN9v40hZ3u1O6bPh02osbXUQQTami/L40DQevJFJd5mwC5 aNLnDHRMRJPdz2ay74mcqqF21s+Le+SlzTwWZLE7FVAfqg9eQ+0p6MwYjpxA9Vk0 tvZWncaL9KLP6Q== -----END CERTIFICATE-----Generated at Tue Jan 27 01:18:38 2026 by rpki-client