This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.mft File: HdGoMITMB7cxuvkdqvMTbC9rddM.mft (raw, json) Hash identifier: QHnTie+MtflXjjEWMNft8wsGkk7wCPbd9bRB/kQ/IRE= Subject key identifier: FB:A3:7C:69:DE:06:02:CB:74:07:3E:B7:0E:C3:D0:7E:93:B4:E1:CF Authority key identifier: 1D:D1:A8:30:84:CC:07:B7:31:BA:F9:1D:AA:F3:13:6C:2F:6B:75:D3 Certificate issuer: /CN=1dd1a83084cc07b731baf91daaf3136c2f6b75d3 Certificate serial: 019C43224483005AFE5604E987417BA6D628 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdGoMITMB7cxuvkdqvMTbC9rddM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.mft Manifest number: 13DD Signing time: Mon 09 Feb 2026 16:00:45 +0000 Manifest this update: Mon 09 Feb 2026 16:00:45 +0000 Manifest next update: Tue 10 Feb 2026 16:00:45 +0000 Files and hashes: 1: HdGoMITMB7cxuvkdqvMTbC9rddM.crl (hash: fMzULRV0OSSh2AlHDX89p4tjveiqBnGxx661VJdRaC8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.crl rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.mft rsync://rpki.ripe.net/repository/DEFAULT/HdGoMITMB7cxuvkdqvMTbC9rddM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:44:83:00:5a:fe:56:04:e9:87:41:7b:a6:d6:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1dd1a83084cc07b731baf91daaf3136c2f6b75d3 Validity Not Before: Feb 9 16:00:45 2026 GMT Not After : Feb 10 16:00:45 2026 GMT Subject: CN=fba37c69de0602cb74073eb70ec3d07e93b4e1cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:71:e3:2c:6f:ee:5f:23:c0:56:08:fb:fd:b9: 3a:35:6e:75:b8:51:e9:6f:a1:c3:1b:6b:3d:53:5d: 52:f7:f1:77:27:76:68:16:f4:f7:b2:22:11:24:38: 01:4c:d8:72:a6:46:90:50:a6:4a:33:54:60:04:e7: 3a:c3:11:3e:6d:92:15:fe:f3:15:77:82:a7:1a:76: b4:b0:44:c2:34:0c:85:43:1e:81:6b:32:ba:7d:96: d5:e9:98:c0:5a:db:8e:10:71:16:12:f5:4b:76:a2: 12:2f:5f:79:5b:3c:29:ec:e6:c8:0e:51:53:97:4a: 63:ca:e1:2b:41:9f:dc:88:1a:0a:39:27:c7:92:a2: 83:03:26:7a:f0:15:2c:c6:77:cd:d9:49:25:7c:43: 4b:90:11:7a:55:06:58:6f:e2:bc:1f:8a:a2:c3:b5: 81:8f:ee:01:10:0c:55:dc:4a:af:cb:9e:37:02:d3: 64:04:5e:66:e9:08:70:e3:73:63:60:d2:78:6a:f9: 8e:47:5d:d4:62:e6:db:21:c1:b2:22:cc:06:fb:8a: 24:0f:25:f6:71:6a:3b:e7:47:71:ae:2c:a7:6e:00: 3e:e8:85:7a:97:b4:80:af:10:a5:72:4d:37:7e:a0: f4:4d:0b:0c:ec:ec:04:d8:a5:2d:c5:30:d3:e5:b9: 14:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:A3:7C:69:DE:06:02:CB:74:07:3E:B7:0E:C3:D0:7E:93:B4:E1:CF X509v3 Authority Key Identifier: keyid:1D:D1:A8:30:84:CC:07:B7:31:BA:F9:1D:AA:F3:13:6C:2F:6B:75:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdGoMITMB7cxuvkdqvMTbC9rddM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b6:d7:fd:fc:66:07:29:7b:a8:6f:51:ea:e5:fe:c8:eb:ed:c4: f4:97:a9:4a:c0:50:64:ad:4d:ca:b2:1c:c8:2c:0d:44:b6:50: 23:d7:ec:05:af:a8:37:e8:11:0f:9c:94:a8:77:0b:33:94:50: 4e:ff:c0:af:d0:94:b0:f1:95:ea:d9:e0:78:2a:27:8b:e9:8e: f3:34:ae:09:40:58:dc:b8:99:11:b3:d4:0a:4a:24:05:c9:3d: 20:e2:61:52:64:28:31:c9:bf:4a:75:15:70:13:41:ed:00:9c: f0:af:46:c9:c6:f1:c6:af:dc:12:18:ea:aa:f3:2b:16:26:e7: 6f:29:25:7c:bd:b5:99:4c:89:5f:c3:b0:38:5d:c0:fd:9c:71: 26:18:eb:f0:23:c4:22:f5:25:ec:a9:62:71:93:4c:56:24:1b: 2b:a7:f2:3b:ba:93:e3:9b:5d:9f:6d:2e:58:59:a4:c6:6b:a5: 47:d0:ed:91:33:90:cc:2f:fb:c4:7c:95:f6:47:c0:d8:d1:27: c6:2b:75:e9:a7:5b:67:5a:19:bc:7a:7a:95:54:cf:ae:84:99: e6:50:e7:2d:90:b8:88:e1:e9:2c:18:e2:ea:19:ce:09:44:9d: 30:ef:e5:ea:cf:5b:78:a6:59:1e:5c:58:d5:e4:51:7a:2f:1e: 14:3d:b9:89 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIkSDAFr+VgTph0F7ptYoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkZDFhODMwODRjYzA3YjczMWJhZjkxZGFhZjMxMzZjMmY2 Yjc1ZDMwHhcNMjYwMjA5MTYwMDQ1WhcNMjYwMjEwMTYwMDQ1WjAzMTEwLwYDVQQD EyhmYmEzN2M2OWRlMDYwMmNiNzQwNzNlYjcwZWMzZDA3ZTkzYjRlMWNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArnHjLG/uXyPAVgj7/bk6NW51uFHp b6HDG2s9U11S9/F3J3ZoFvT3siIRJDgBTNhypkaQUKZKM1RgBOc6wxE+bZIV/vMV d4KnGna0sETCNAyFQx6BazK6fZbV6ZjAWtuOEHEWEvVLdqISL195Wzwp7ObIDlFT l0pjyuErQZ/ciBoKOSfHkqKDAyZ68BUsxnfN2UklfENLkBF6VQZYb+K8H4qiw7WB j+4BEAxV3Eqvy543AtNkBF5m6Qhw43NjYNJ4avmOR13UYubbIcGyIswG+4okDyX2 cWo750dxriynbgA+6IV6l7SArxClck03fqD0TQsM7OwE2KUtxTDT5bkUWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPujfGneBgLLdAc+tw7D0H6TtOHPMB8GA1UdIwQY MBaAFB3RqDCEzAe3Mbr5HarzE2wva3XTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGRHb01JVE1CN2N4dXZrZHF2TVRiQzlyZGRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS81ZDA5MjgtZTY4Zi00ZTE5LWIyMjYt NDAzNjI3OGI0M2Y5LzEvSGRHb01JVE1CN2N4dXZrZHF2TVRiQzlyZGRNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS81ZDA5MjgtZTY4Zi00ZTE5LWIyMjYtNDAzNjI3OGI0M2Y5 LzEvSGRHb01JVE1CN2N4dXZrZHF2TVRiQzlyZGRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAttf9/GYH KXuob1Hq5f7I6+3E9JepSsBQZK1NyrIcyCwNRLZQI9fsBa+oN+gRD5yUqHcLM5RQ Tv/Ar9CUsPGV6tngeConi+mO8zSuCUBY3LiZEbPUCkokBck9IOJhUmQoMcm/SnUV cBNB7QCc8K9Gycbxxq/cEhjqqvMrFibnbyklfL21mUyJX8OwOF3A/ZxxJhjr8CPE IvUl7KlicZNMViQbK6fyO7qT45tdn20uWFmkxmulR9DtkTOQzC/7xHyV9kfA2NEn xit16adbZ1oZvHp6lVTProSZ5lDnLZC4iOHpLBji6hnOCUSdMO/l6s9beKZZHlxY 1eRRei8eFD25iQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:38:14 2026 by rpki-client