This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/8539cd-80ba-4c66-ba27-fe51a48c6801/1/hvKEMvItcjPdX3Xz07HMCHN4-0g.mft File: hvKEMvItcjPdX3Xz07HMCHN4-0g.mft (raw, json) Hash identifier: pipYDuW6ykSCIEYfqgMGDgzXEtUP5kZZEzrcTeAG6e4= Subject key identifier: 35:2E:AF:92:5C:0A:94:24:EE:62:E8:FC:81:65:54:2B:98:7D:05:7C Authority key identifier: 86:F2:84:32:F2:2D:72:33:DD:5F:75:F3:D3:B1:CC:08:73:78:FB:48 Certificate issuer: /CN=86f28432f22d7233dd5f75f3d3b1cc087378fb48 Certificate serial: 019C42EBA339FE877A33733ADBA982FBF086 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hvKEMvItcjPdX3Xz07HMCHN4-0g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/8539cd-80ba-4c66-ba27-fe51a48c6801/1/hvKEMvItcjPdX3Xz07HMCHN4-0g.mft Manifest number: 01BC Signing time: Mon 09 Feb 2026 15:01:04 +0000 Manifest this update: Mon 09 Feb 2026 15:01:04 +0000 Manifest next update: Tue 10 Feb 2026 15:01:04 +0000 Files and hashes: 1: hvKEMvItcjPdX3Xz07HMCHN4-0g.crl (hash: hqIPrBIF+Icv4VOzelajyo2u526u7IMBnVzR2R1ERiU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/8539cd-80ba-4c66-ba27-fe51a48c6801/1/hvKEMvItcjPdX3Xz07HMCHN4-0g.crl rsync://rpki.ripe.net/repository/DEFAULT/df/8539cd-80ba-4c66-ba27-fe51a48c6801/1/hvKEMvItcjPdX3Xz07HMCHN4-0g.mft rsync://rpki.ripe.net/repository/DEFAULT/hvKEMvItcjPdX3Xz07HMCHN4-0g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:a3:39:fe:87:7a:33:73:3a:db:a9:82:fb:f0:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86f28432f22d7233dd5f75f3d3b1cc087378fb48 Validity Not Before: Feb 9 15:01:04 2026 GMT Not After : Feb 10 15:01:04 2026 GMT Subject: CN=352eaf925c0a9424ee62e8fc8165542b987d057c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:58:eb:38:3d:32:c6:c7:d2:45:bc:4b:0f:c0: f4:1a:e2:de:9c:bd:f7:ac:c6:9e:08:c5:88:37:91: ed:bc:64:bb:a3:ed:f9:eb:16:73:66:28:a5:dc:ea: e5:29:d9:65:a2:b7:f4:15:18:47:0e:c6:1a:6c:c4: b4:bd:52:54:d8:a9:66:e2:11:de:1d:57:2c:d9:b5: 7c:c2:6d:5c:01:27:0e:2e:22:91:4d:14:f5:ad:62: 27:64:e5:c2:a3:5c:28:4c:64:b1:e4:0c:64:94:a2: 0a:a8:f0:ca:80:7a:6b:17:ba:b5:78:b0:fd:1a:5a: d0:1f:5a:ce:f4:58:eb:a6:cb:06:6e:19:f0:2e:cc: ba:8c:d0:22:cb:21:68:66:f2:b4:bb:44:cc:14:3f: 11:57:12:46:2b:5b:98:b9:ed:40:b7:0e:e0:bb:b9: 46:da:08:f5:16:cd:c7:af:45:70:71:4a:6f:58:8d: bb:04:18:05:db:a6:03:e1:f5:03:bf:c7:9f:95:91: 86:4d:c1:c0:16:b3:40:48:f2:ee:a5:a4:ed:e2:6e: ab:5a:4b:d0:67:26:11:79:f5:b4:30:b3:61:f0:94: 49:d8:92:e6:91:85:53:a8:c1:e0:73:9a:b3:8c:1b: d5:28:fe:7b:84:86:32:69:b6:98:87:7f:84:c6:2b: d7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:2E:AF:92:5C:0A:94:24:EE:62:E8:FC:81:65:54:2B:98:7D:05:7C X509v3 Authority Key Identifier: keyid:86:F2:84:32:F2:2D:72:33:DD:5F:75:F3:D3:B1:CC:08:73:78:FB:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hvKEMvItcjPdX3Xz07HMCHN4-0g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/8539cd-80ba-4c66-ba27-fe51a48c6801/1/hvKEMvItcjPdX3Xz07HMCHN4-0g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/8539cd-80ba-4c66-ba27-fe51a48c6801/1/hvKEMvItcjPdX3Xz07HMCHN4-0g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:51:7f:c7:6c:31:f8:b9:e5:b6:f1:31:30:a9:d9:35:24:51: fb:f0:39:6d:e9:3d:24:7d:c0:79:a2:f9:39:da:84:59:76:7f: 62:ca:cb:77:07:b9:7d:81:49:6d:09:a6:17:42:bf:18:42:0e: d7:e4:4c:31:9c:55:0b:62:da:46:49:97:aa:9c:4a:51:6d:1f: 87:be:fd:92:9a:53:15:1c:a4:ed:3d:fa:fe:de:66:a6:6a:c7: cf:80:ea:d2:3e:db:6c:a1:59:87:1a:5c:61:7a:21:a3:29:87: ee:60:af:be:84:b0:d8:20:4a:6a:fc:04:4b:c7:18:9e:13:f7: 1f:dd:e0:b7:a7:59:80:01:dd:18:cd:e4:5d:ea:85:dd:1a:94: 4e:cf:a6:e9:d3:9a:4d:7c:0c:2a:d5:4d:56:4c:68:e5:a8:0f: 68:f4:cf:62:9c:f1:60:0c:55:d2:b2:d7:35:0f:5e:6e:ee:ae: 13:7a:9d:f5:a4:a7:a3:39:45:87:09:7a:ed:5b:8a:50:41:9f: df:c2:fc:6b:03:f6:fe:ed:b6:ee:3d:f5:a9:e7:b2:ea:cd:d1: 7a:c7:80:e6:48:24:45:f0:50:ea:98:43:2d:23:eb:11:68:70: ec:6c:d0:19:62:3e:6e:cd:eb:79:7f:f6:a2:fc:e1:56:7c:22: ad:c8:0f:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC66M5/od6M3M626mC+/CGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2ZjI4NDMyZjIyZDcyMzNkZDVmNzVmM2QzYjFjYzA4NzM3 OGZiNDgwHhcNMjYwMjA5MTUwMTA0WhcNMjYwMjEwMTUwMTA0WjAzMTEwLwYDVQQD EygzNTJlYWY5MjVjMGE5NDI0ZWU2MmU4ZmM4MTY1NTQyYjk4N2QwNTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvljrOD0yxsfSRbxLD8D0GuLenL33 rMaeCMWIN5HtvGS7o+356xZzZiil3OrlKdllorf0FRhHDsYabMS0vVJU2Klm4hHe HVcs2bV8wm1cAScOLiKRTRT1rWInZOXCo1woTGSx5AxklKIKqPDKgHprF7q1eLD9 GlrQH1rO9FjrpssGbhnwLsy6jNAiyyFoZvK0u0TMFD8RVxJGK1uYue1Atw7gu7lG 2gj1Fs3Hr0VwcUpvWI27BBgF26YD4fUDv8eflZGGTcHAFrNASPLupaTt4m6rWkvQ ZyYRefW0MLNh8JRJ2JLmkYVTqMHgc5qzjBvVKP57hIYyabaYh3+ExivXbwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDUur5JcCpQk7mLo/IFlVCuYfQV8MB8GA1UdIwQY MBaAFIbyhDLyLXIz3V9189OxzAhzePtIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHZLRU12SXRjalBkWDNYejA3SE1DSE40LTBnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi84NTM5Y2QtODBiYS00YzY2LWJhMjct ZmU1MWE0OGM2ODAxLzEvaHZLRU12SXRjalBkWDNYejA3SE1DSE40LTBnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi84NTM5Y2QtODBiYS00YzY2LWJhMjctZmU1MWE0OGM2ODAx LzEvaHZLRU12SXRjalBkWDNYejA3SE1DSE40LTBnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZlF/x2wx +LnltvExMKnZNSRR+/A5bek9JH3AeaL5OdqEWXZ/YsrLdwe5fYFJbQmmF0K/GEIO 1+RMMZxVC2LaRkmXqpxKUW0fh779kppTFRyk7T36/t5mpmrHz4Dq0j7bbKFZhxpc YXohoymH7mCvvoSw2CBKavwES8cYnhP3H93gt6dZgAHdGM3kXeqF3RqUTs+m6dOa TXwMKtVNVkxo5agPaPTPYpzxYAxV0rLXNQ9ebu6uE3qd9aSnozlFhwl67VuKUEGf 38L8awP2/u227j31qeey6s3ReseA5kgkRfBQ6phDLSPrEWhw7GzQGWI+bs3reX/2 ovzhVnwircgPfw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:30:48 2026 by rpki-client