This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft File: hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft (raw, json) Hash identifier: prHxifQO0fXwNurVJC2doCh80YC+Pia1CrffgesgDhw= Subject key identifier: A1:0E:15:C0:7A:14:BD:7F:F4:45:80:32:04:EE:93:8B:F0:7E:FB:27 Authority key identifier: 85:04:EB:F9:DB:17:10:A4:7B:AE:45:08:CD:AF:81:31:E1:67:4A:54 Certificate issuer: /CN=8504ebf9db1710a47bae4508cdaf8131e1674a54 Certificate serial: 019C435953A63308D8931ABBCDE301B0F36F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hQTr-dsXEKR7rkUIza-BMeFnSlQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft Manifest number: 1813 Signing time: Mon 09 Feb 2026 17:00:53 +0000 Manifest this update: Mon 09 Feb 2026 17:00:53 +0000 Manifest next update: Tue 10 Feb 2026 17:00:53 +0000 Files and hashes: 1: hQTr-dsXEKR7rkUIza-BMeFnSlQ.crl (hash: 5pSwvKZmYNqakXuFZjIwK1gtKD2vUDDjjH2djJ8Kztk=) 2: vFI_szTdwGut2KUofHDh3zwoi1k.roa (hash: MxrZSZTPx1kjzcHF3plautdDk7QOfOy+oz7wimPfgjE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hQTr-dsXEKR7rkUIza-BMeFnSlQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:53:a6:33:08:d8:93:1a:bb:cd:e3:01:b0:f3:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8504ebf9db1710a47bae4508cdaf8131e1674a54 Validity Not Before: Feb 9 17:00:53 2026 GMT Not After : Feb 10 17:00:53 2026 GMT Subject: CN=a10e15c07a14bd7ff445803204ee938bf07efb27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:f9:a3:8b:af:39:7f:c6:32:51:5e:3d:7c:92: 49:54:e6:fc:bc:31:3e:d2:4f:36:8b:17:85:a1:3f: 52:41:26:7e:4b:05:b0:bd:cc:af:89:3f:60:5d:b2: 9b:80:3f:aa:a3:16:09:e9:c3:6e:95:77:da:93:f2: 74:93:a5:f2:74:38:c9:64:05:e0:05:e4:df:e4:2e: 2d:a8:40:4a:d2:36:3f:6f:67:6c:54:4d:05:8c:b4: 49:aa:be:6b:26:07:40:bf:35:92:35:ea:34:43:05: 62:31:1c:6d:c4:ee:4f:c1:18:02:5e:5c:6d:86:8a: 12:51:a6:b3:64:e0:8a:40:86:0d:a4:8f:b6:ee:d6: fb:f1:cf:3d:e4:27:a8:dd:20:70:9a:fd:ec:7e:d0: ed:b1:3e:e7:0d:d8:60:93:c0:29:a1:2e:12:48:b9: 70:52:2f:23:a7:eb:89:f4:78:f6:c3:25:38:e1:05: e0:09:33:f2:ba:20:3b:02:50:fd:91:fb:f2:d7:24: b1:80:f1:6f:3f:85:ca:1f:10:c9:3d:b5:51:f6:fe: 4b:e5:ae:8d:f9:6f:7e:36:87:6f:d7:06:08:66:64: 98:32:b2:54:2b:78:35:f7:37:68:e9:91:31:b3:13: 77:36:0d:c2:b0:92:16:04:5f:62:81:1b:15:d3:c5: d8:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:0E:15:C0:7A:14:BD:7F:F4:45:80:32:04:EE:93:8B:F0:7E:FB:27 X509v3 Authority Key Identifier: keyid:85:04:EB:F9:DB:17:10:A4:7B:AE:45:08:CD:AF:81:31:E1:67:4A:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hQTr-dsXEKR7rkUIza-BMeFnSlQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:f6:cd:5d:09:38:1c:aa:f1:22:b8:30:e4:7c:f5:6d:82:0d: f5:34:48:d5:7b:95:83:45:18:7b:f7:55:22:d1:21:4a:9b:6a: 68:4e:65:de:35:b3:c9:8e:0c:f4:d5:4c:64:1f:62:55:20:6e: 3d:b9:52:d8:6d:72:ed:24:8d:75:bb:37:b2:19:47:b9:7a:ae: f3:9d:b9:e9:8a:58:ab:5b:f9:5f:f2:d3:6b:a7:e1:79:e6:d2: 34:98:a1:3f:39:08:73:6b:b5:af:ae:eb:d0:b2:bd:af:bf:06: fd:41:fe:ca:c7:15:2d:2d:5b:0a:c5:82:57:3b:29:27:ae:5c: 0c:ea:ff:2d:cf:52:bf:4b:52:b1:96:15:94:a9:2a:ab:01:58: ca:77:db:18:59:8e:ee:41:1e:56:86:92:35:c2:2b:a0:ff:80: ab:cf:59:45:c3:c7:48:8e:00:26:4f:a4:cd:d5:e6:8c:31:67: 7e:58:9d:9a:f1:a8:34:a3:e6:3d:0c:2b:05:06:17:e6:5b:a4: 48:8d:69:c8:86:78:0e:6a:fe:7e:ea:de:0c:ec:27:1e:61:23: 51:8f:8a:18:cb:9f:2b:3c:0c:22:c8:a0:37:26:68:13:7f:d7: b4:66:ee:84:23:47:57:4c:c4:97:7f:0d:5d:b4:8e:df:87:14: ba:af:76:d3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWVOmMwjYkxq7zeMBsPNvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1MDRlYmY5ZGIxNzEwYTQ3YmFlNDUwOGNkYWY4MTMxZTE2 NzRhNTQwHhcNMjYwMjA5MTcwMDUzWhcNMjYwMjEwMTcwMDUzWjAzMTEwLwYDVQQD EyhhMTBlMTVjMDdhMTRiZDdmZjQ0NTgwMzIwNGVlOTM4YmYwN2VmYjI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6fmji685f8YyUV49fJJJVOb8vDE+ 0k82ixeFoT9SQSZ+SwWwvcyviT9gXbKbgD+qoxYJ6cNulXfak/J0k6XydDjJZAXg BeTf5C4tqEBK0jY/b2dsVE0FjLRJqr5rJgdAvzWSNeo0QwViMRxtxO5PwRgCXlxt hooSUaazZOCKQIYNpI+27tb78c895Ceo3SBwmv3sftDtsT7nDdhgk8ApoS4SSLlw Ui8jp+uJ9Hj2wyU44QXgCTPyuiA7AlD9kfvy1ySxgPFvP4XKHxDJPbVR9v5L5a6N +W9+Nodv1wYIZmSYMrJUK3g19zdo6ZExsxN3Ng3CsJIWBF9igRsV08XYMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKEOFcB6FL1/9EWAMgTuk4vwfvsnMB8GA1UdIwQY MBaAFIUE6/nbFxCke65FCM2vgTHhZ0pUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFFUci1kc1hFS1I3cmtVSXphLUJNZUZuU2xRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi83ZWZlMDEtZWM3NC00MGFjLWEyMzgt YTliMWRmNDRjZTJmLzEvaFFUci1kc1hFS1I3cmtVSXphLUJNZUZuU2xRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi83ZWZlMDEtZWM3NC00MGFjLWEyMzgtYTliMWRmNDRjZTJm LzEvaFFUci1kc1hFS1I3cmtVSXphLUJNZUZuU2xRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHPbNXQk4 HKrxIrgw5Hz1bYIN9TRI1XuVg0UYe/dVItEhSptqaE5l3jWzyY4M9NVMZB9iVSBu PblS2G1y7SSNdbs3shlHuXqu85256YpYq1v5X/LTa6fheebSNJihPzkIc2u1r67r 0LK9r78G/UH+yscVLS1bCsWCVzspJ65cDOr/Lc9Sv0tSsZYVlKkqqwFYynfbGFmO 7kEeVoaSNcIroP+Aq89ZRcPHSI4AJk+kzdXmjDFnflidmvGoNKPmPQwrBQYX5luk SI1pyIZ4Dmr+fureDOwnHmEjUY+KGMufKzwMIsigNyZoE3/XtGbuhCNHV0zEl38N XbSO34cUuq920w== -----END CERTIFICATE-----Generated at Mon Feb 9 23:52:19 2026 by rpki-client