This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft File: HqVZ2L9qwtho0GZa1X0sasFHIZM.mft (raw, json) Hash identifier: IQD8b6ZwUCdLECFf5GPGo5XeRpVfyMb2gkmFKsHk5y0= Subject key identifier: 45:A8:D8:F8:77:AE:98:25:81:91:6B:8A:D3:A2:2A:77:32:3E:70:2E Authority key identifier: 1E:A5:59:D8:BF:6A:C2:D8:68:D0:66:5A:D5:7D:2C:6A:C1:47:21:93 Certificate issuer: /CN=1ea559d8bf6ac2d868d0665ad57d2c6ac1472193 Certificate serial: 019C4434DF3EE85AD9CA7AA858726D696949 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqVZ2L9qwtho0GZa1X0sasFHIZM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft Manifest number: 17A2 Signing time: Mon 09 Feb 2026 21:00:41 +0000 Manifest this update: Mon 09 Feb 2026 21:00:41 +0000 Manifest next update: Tue 10 Feb 2026 21:00:41 +0000 Files and hashes: 1: HqVZ2L9qwtho0GZa1X0sasFHIZM.crl (hash: 7Q6dnCG8IcXM8YXAL3pE/II3ks0aBMN/bCJWxNCLdl4=) 2: h2Pj0fup6PmGgboIXfm183EEF9c.roa (hash: eferMGwRa6YXz1Q8h3PiGClbC5vOEBn3msIVlW/jo08=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft rsync://rpki.ripe.net/repository/DEFAULT/HqVZ2L9qwtho0GZa1X0sasFHIZM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:34:df:3e:e8:5a:d9:ca:7a:a8:58:72:6d:69:69:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ea559d8bf6ac2d868d0665ad57d2c6ac1472193 Validity Not Before: Feb 9 21:00:41 2026 GMT Not After : Feb 10 21:00:41 2026 GMT Subject: CN=45a8d8f877ae982581916b8ad3a22a77323e702e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e0:1e:82:c6:18:73:f8:b7:75:05:5c:e6:d2: 22:f8:ec:7f:88:6c:94:dd:16:33:c4:f1:3c:22:d4: ec:bc:7e:cb:e2:77:4c:a9:3a:4c:da:c6:6e:0e:90: 7e:4b:a5:d5:ae:c0:fd:cd:bb:fc:b0:d6:89:fd:49: 65:06:a4:2a:90:2b:ee:fe:0c:e0:04:73:16:da:5f: 7a:a8:cb:bd:f6:0d:44:58:77:d3:a4:95:8f:ef:41: 0d:e1:80:c7:7e:58:3f:bc:56:6a:8b:60:49:ea:52: e4:5d:bd:3a:b6:48:a8:8a:67:8c:d9:de:09:ea:98: 24:35:7c:d8:16:f4:9a:4c:54:9a:70:3c:ea:85:b7: 57:43:e7:6f:60:98:07:b1:23:65:01:4c:1b:ae:ea: da:21:90:18:95:c8:2c:e9:5a:1f:27:b1:3c:ca:ab: 12:cf:8e:5d:e8:e6:31:9c:ce:e9:30:57:b9:f8:8a: b4:8d:37:09:ff:99:aa:5d:17:4d:33:31:56:38:3f: e1:fe:c3:c3:3b:a8:2e:79:8d:ff:0c:aa:6c:d6:9d: 90:83:08:6a:34:71:1e:07:58:3d:73:eb:ca:30:d5: 70:ce:1c:50:c5:fa:82:7b:f0:e7:c9:b8:59:6a:5c: ff:8b:19:17:cb:59:5c:6a:3e:48:50:b3:49:a1:ad: 40:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:A8:D8:F8:77:AE:98:25:81:91:6B:8A:D3:A2:2A:77:32:3E:70:2E X509v3 Authority Key Identifier: keyid:1E:A5:59:D8:BF:6A:C2:D8:68:D0:66:5A:D5:7D:2C:6A:C1:47:21:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqVZ2L9qwtho0GZa1X0sasFHIZM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:38:58:80:01:6a:9f:a2:68:0c:af:57:73:41:9e:58:78:3a: 23:cb:03:ac:48:78:b7:d8:99:fb:e1:03:3c:f1:9e:0e:10:01: a2:a9:ff:91:bd:d1:80:7f:e9:23:5b:37:da:c4:b8:8e:62:c8: d4:b6:c0:90:ab:3f:45:a9:59:5c:50:92:09:79:0b:ee:17:31: b9:63:84:83:5e:fc:b7:ba:87:3e:15:5f:e4:70:88:99:3b:e6: c7:3b:5d:1c:ef:91:5f:8e:f3:fd:e7:2d:83:93:cf:a5:5a:85: 95:4f:be:e2:25:70:13:ea:01:7e:30:3d:2a:0a:db:91:3d:24: d2:26:c7:e5:5d:d5:e3:08:ac:da:58:b6:83:7c:b0:db:18:21: e0:30:7e:ea:07:b5:f2:95:dd:45:09:3c:4c:ca:c5:12:df:d0: 96:62:bb:d4:73:42:04:be:45:4f:f2:83:5d:0b:4c:6a:20:61: 47:eb:b9:62:80:b0:3e:3c:73:a8:b4:a7:7f:8e:b3:b7:df:39: 9c:58:90:4b:b8:f7:5f:98:c5:d3:8b:13:14:c3:1e:9c:fc:3c: 83:c1:fd:8d:94:b3:4f:f7:ab:b8:54:59:81:55:dc:4e:83:d8: 88:33:b2:67:09:d0:10:cb:61:87:77:b8:2d:16:a4:4c:1f:f1: 1c:bf:22:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxENN8+6FrZynqoWHJtaWlJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlYTU1OWQ4YmY2YWMyZDg2OGQwNjY1YWQ1N2QyYzZhYzE0 NzIxOTMwHhcNMjYwMjA5MjEwMDQxWhcNMjYwMjEwMjEwMDQxWjAzMTEwLwYDVQQD Eyg0NWE4ZDhmODc3YWU5ODI1ODE5MTZiOGFkM2EyMmE3NzMyM2U3MDJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0uAegsYYc/i3dQVc5tIi+Ox/iGyU 3RYzxPE8ItTsvH7L4ndMqTpM2sZuDpB+S6XVrsD9zbv8sNaJ/UllBqQqkCvu/gzg BHMW2l96qMu99g1EWHfTpJWP70EN4YDHflg/vFZqi2BJ6lLkXb06tkioimeM2d4J 6pgkNXzYFvSaTFSacDzqhbdXQ+dvYJgHsSNlAUwbruraIZAYlcgs6VofJ7E8yqsS z45d6OYxnM7pMFe5+Iq0jTcJ/5mqXRdNMzFWOD/h/sPDO6gueY3/DKps1p2Qgwhq NHEeB1g9c+vKMNVwzhxQxfqCe/DnybhZalz/ixkXy1lcaj5IULNJoa1AoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEWo2Ph3rpglgZFritOiKncyPnAuMB8GA1UdIwQY MBaAFB6lWdi/asLYaNBmWtV9LGrBRyGTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHFWWjJMOXF3dGhvMEdaYTFYMHNhc0ZISVpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC80ZmI3ODUtZmZmMS00M2EzLWFmZDEt NWZmY2M0NmFlN2I1LzEvSHFWWjJMOXF3dGhvMEdaYTFYMHNhc0ZISVpNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC80ZmI3ODUtZmZmMS00M2EzLWFmZDEtNWZmY2M0NmFlN2I1 LzEvSHFWWjJMOXF3dGhvMEdaYTFYMHNhc0ZISVpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVThYgAFq n6JoDK9Xc0GeWHg6I8sDrEh4t9iZ++EDPPGeDhABoqn/kb3RgH/pI1s32sS4jmLI 1LbAkKs/RalZXFCSCXkL7hcxuWOEg178t7qHPhVf5HCImTvmxztdHO+RX47z/ect g5PPpVqFlU++4iVwE+oBfjA9KgrbkT0k0ibH5V3V4wis2li2g3yw2xgh4DB+6ge1 8pXdRQk8TMrFEt/QlmK71HNCBL5FT/KDXQtMaiBhR+u5YoCwPjxzqLSnf46zt985 nFiQS7j3X5jF04sTFMMenPw8g8H9jZSzT/eruFRZgVXcToPYiDOyZwnQEMthh3e4 LRakTB/xHL8iuw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:35:52 2026 by rpki-client