This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft File: hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft (raw, json) Hash identifier: lyYQpcYvDKofkD3qe38tDm5bgf+2FGn48TYTmszA8Tk= Subject key identifier: 68:F3:8F:3A:16:F6:5A:99:33:46:D4:87:DC:D9:91:A0:0A:3C:C2:FD Authority key identifier: 86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41 Certificate issuer: /CN=863841506d026131965057409a1604a5671f0541 Certificate serial: 019C427D496C1EBAAE647CDBB9362774B6EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft Manifest number: 05D8 Signing time: Mon 09 Feb 2026 13:00:32 +0000 Manifest this update: Mon 09 Feb 2026 13:00:32 +0000 Manifest next update: Tue 10 Feb 2026 13:00:32 +0000 Files and hashes: 1: A_-FW985zbY15HsoQHY3jzaLsqE.roa (hash: eSJY0BewKa72GIdMnrs7+2x+KiKuirCjSmv68OLB6u4=) 2: hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl (hash: XbaGYHbBVNkSgiySoFntmBHdGaruCguRSIpUIeL3Ftg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:49:6c:1e:ba:ae:64:7c:db:b9:36:27:74:b6:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=863841506d026131965057409a1604a5671f0541 Validity Not Before: Feb 9 13:00:32 2026 GMT Not After : Feb 10 13:00:32 2026 GMT Subject: CN=68f38f3a16f65a993346d487dcd991a00a3cc2fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:7c:cc:90:05:ab:cd:19:71:14:14:64:e9:72: 5a:bf:f3:0a:df:40:ca:ce:a5:1c:39:89:b3:bb:4c: 3b:11:f2:c2:51:de:0d:7b:ef:6d:81:36:e4:fd:00: 8c:a5:b8:62:38:f4:4f:1b:a6:a6:4e:2c:7e:b3:6d: 32:75:6a:74:7b:80:da:6a:ac:34:a0:eb:6c:34:46: f5:ee:54:13:b8:fa:c0:0c:09:c9:d1:19:bc:d5:36: fc:de:ed:4c:f1:97:ce:ce:c9:ae:6e:f7:c5:d1:7f: 56:82:73:29:2a:40:5d:0c:d1:3a:e8:5c:4e:14:9b: bc:41:11:c6:bb:e4:64:f2:8a:6d:e2:23:13:2e:34: 5b:38:34:38:75:5f:6f:88:2e:ce:97:41:fa:ae:3e: ad:fc:6f:ea:36:d2:2c:7d:3f:81:90:46:41:9f:e7: 7d:7c:90:ee:b6:94:ab:f9:b1:5b:d3:d6:62:5e:f4: 11:af:fd:c5:85:32:d6:ce:35:d9:a4:6d:f3:7c:0f: e8:6b:7d:41:23:bb:ab:20:65:39:e2:61:21:d5:ee: 23:60:18:25:24:aa:73:f7:3a:0a:dc:17:a4:4b:5d: 7b:30:f6:5f:79:fc:df:40:b7:90:3a:63:a5:54:fe: 6c:e9:09:b4:6c:8d:42:21:35:cb:c3:d9:84:c4:6a: 65:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F3:8F:3A:16:F6:5A:99:33:46:D4:87:DC:D9:91:A0:0A:3C:C2:FD X509v3 Authority Key Identifier: keyid:86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:42:80:31:82:47:08:f6:1a:b7:2f:3a:58:36:fa:d9:fe:b7: f7:03:b9:6a:54:d2:1b:36:e2:7a:a7:bb:67:79:f4:88:bb:67: 64:77:0e:4f:d1:5d:5e:19:4d:54:dd:c8:e7:b9:f3:19:95:13: 7e:c1:f9:1b:fe:27:4f:df:07:5d:31:3a:cd:2e:f8:cb:9c:62: 76:37:ae:ea:8a:5f:45:9c:58:ce:a4:e9:db:2d:65:44:f3:c1: 49:58:6e:f7:40:53:72:35:b8:5e:fd:72:de:79:5e:c3:b5:b2: 18:ab:0d:26:79:c6:a7:d0:f6:b4:cb:bc:50:3b:40:09:78:6d: a3:6d:c7:28:21:b7:e2:ab:c3:54:22:0b:56:c2:e5:5c:3f:80: aa:d3:a2:dd:54:b4:68:4d:98:f0:5f:f4:32:ba:f3:b4:a1:fa: 12:b5:2e:3f:0e:7b:b7:3b:8f:96:7d:81:0a:92:dc:25:a4:d4: 90:5a:29:11:a1:01:ae:41:99:92:16:29:d9:a1:8d:23:35:a2: a3:b1:63:f5:d6:1f:02:3d:e0:69:2f:82:23:b7:ac:37:48:98: 05:6e:25:6c:74:ef:40:cf:1d:6f:6e:87:2a:cb:74:d9:06:9b: 50:97:26:48:a8:ee:b6:3f:c3:3b:79:8a:82:db:e4:e3:73:b7: f4:3f:a2:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfUlsHrquZHzbuTYndLbsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2Mzg0MTUwNmQwMjYxMzE5NjUwNTc0MDlhMTYwNGE1Njcx ZjA1NDEwHhcNMjYwMjA5MTMwMDMyWhcNMjYwMjEwMTMwMDMyWjAzMTEwLwYDVQQD Eyg2OGYzOGYzYTE2ZjY1YTk5MzM0NmQ0ODdkY2Q5OTFhMDBhM2NjMmZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0XzMkAWrzRlxFBRk6XJav/MK30DK zqUcOYmzu0w7EfLCUd4Ne+9tgTbk/QCMpbhiOPRPG6amTix+s20ydWp0e4Daaqw0 oOtsNEb17lQTuPrADAnJ0Rm81Tb83u1M8ZfOzsmubvfF0X9WgnMpKkBdDNE66FxO FJu8QRHGu+Rk8opt4iMTLjRbODQ4dV9viC7Ol0H6rj6t/G/qNtIsfT+BkEZBn+d9 fJDutpSr+bFb09ZiXvQRr/3FhTLWzjXZpG3zfA/oa31BI7urIGU54mEh1e4jYBgl JKpz9zoK3BekS117MPZfefzfQLeQOmOlVP5s6Qm0bI1CITXLw9mExGplYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGjzjzoW9lqZM0bUh9zZkaAKPML9MB8GA1UdIwQY MBaAFIY4QVBtAmExllBXQJoWBKVnHwVBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8xZjE1NjMtYjMzMS00M2E5LWI5Y2Mt M2JmYTA1MDkyMDFmLzEvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi8xZjE1NjMtYjMzMS00M2E5LWI5Y2MtM2JmYTA1MDkyMDFm LzEvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVEKAMYJH CPYaty86WDb62f639wO5alTSGzbieqe7Z3n0iLtnZHcOT9FdXhlNVN3I57nzGZUT fsH5G/4nT98HXTE6zS74y5xidjeu6opfRZxYzqTp2y1lRPPBSVhu90BTcjW4Xv1y 3nlew7WyGKsNJnnGp9D2tMu8UDtACXhto23HKCG34qvDVCILVsLlXD+AqtOi3VS0 aE2Y8F/0MrrztKH6ErUuPw57tzuPln2BCpLcJaTUkFopEaEBrkGZkhYp2aGNIzWi o7Fj9dYfAj3gaS+CI7esN0iYBW4lbHTvQM8db26HKst02QabUJcmSKjutj/DO3mK gtvk43O39D+iJA== -----END CERTIFICATE-----Generated at Mon Feb 9 23:00:21 2026 by rpki-client