This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.mft File: HPoACq4LHA_NOZiRS7dt_HLoc1g.mft (raw, json) Hash identifier: 2CMENXCa1VjvxQtXPJT4KKxp17kxneRKGHoUSClBqNg= Subject key identifier: 6F:D2:FF:F1:4D:F4:70:EC:D6:BF:BD:00:C0:38:04:54:CB:8E:5C:C5 Authority key identifier: 1C:FA:00:0A:AE:0B:1C:0F:CD:39:98:91:4B:B7:6D:FC:72:E8:73:58 Certificate issuer: /CN=1cfa000aae0b1c0fcd3998914bb76dfc72e87358 Certificate serial: 019C43FD9F92545E205C2198E2B7105AD8A0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HPoACq4LHA_NOZiRS7dt_HLoc1g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.mft Manifest number: 04E7 Signing time: Mon 09 Feb 2026 20:00:20 +0000 Manifest this update: Mon 09 Feb 2026 20:00:20 +0000 Manifest next update: Tue 10 Feb 2026 20:00:20 +0000 Files and hashes: 1: HPoACq4LHA_NOZiRS7dt_HLoc1g.crl (hash: 5K8W+ei16UQE/yHAKGo9Snk7a8+/KOJs2db6W00qqys=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.crl rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.mft rsync://rpki.ripe.net/repository/DEFAULT/HPoACq4LHA_NOZiRS7dt_HLoc1g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:9f:92:54:5e:20:5c:21:98:e2:b7:10:5a:d8:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1cfa000aae0b1c0fcd3998914bb76dfc72e87358 Validity Not Before: Feb 9 20:00:20 2026 GMT Not After : Feb 10 20:00:20 2026 GMT Subject: CN=6fd2fff14df470ecd6bfbd00c0380454cb8e5cc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:a1:59:aa:5d:3e:46:34:ad:45:0d:6c:49:77: 9b:a0:76:54:4c:f3:76:a3:07:a9:79:c3:e1:8b:91: c8:27:6c:53:83:01:62:d8:f4:92:13:4b:1b:1b:46: 2e:d3:81:c1:30:08:57:7b:58:77:5c:74:d2:2f:24: e0:72:bf:a1:73:2c:f2:b6:59:6b:75:22:c4:fb:66: 01:43:fd:d4:fc:ce:48:66:89:b2:42:60:ab:b8:5a: 16:d9:1a:48:10:00:71:22:e3:b3:63:98:18:4c:1f: 65:4a:3c:a3:88:4e:c5:fd:79:f8:7c:c4:a9:84:f3: 83:0e:32:da:e4:78:b1:89:10:c4:2f:e2:e4:57:4e: 08:f4:3c:c4:3f:ec:6c:5f:e0:16:a1:bc:71:56:3f: a0:77:ae:9b:01:a2:1b:a6:8a:ee:87:a6:f4:db:30: 26:81:60:c9:b8:11:57:fd:9a:26:44:fb:f9:7e:0b: 29:84:ad:98:28:bb:c0:bc:71:6a:34:ce:06:6a:d0: d3:ec:22:c8:6b:c0:b8:02:d6:a0:0f:bf:7d:5f:08: 1e:88:9a:a1:b8:b1:6f:92:74:d4:25:d1:b7:bc:1c: 38:19:f4:d7:74:34:c3:d5:02:46:a8:7e:7d:6f:6e: 52:09:5e:06:fd:8d:09:53:7e:48:6d:ae:13:b2:70: ce:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:D2:FF:F1:4D:F4:70:EC:D6:BF:BD:00:C0:38:04:54:CB:8E:5C:C5 X509v3 Authority Key Identifier: keyid:1C:FA:00:0A:AE:0B:1C:0F:CD:39:98:91:4B:B7:6D:FC:72:E8:73:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HPoACq4LHA_NOZiRS7dt_HLoc1g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:c2:ff:68:77:15:a5:bb:22:db:3a:08:94:e1:c1:9e:e3:a2: 34:8a:bb:27:db:7f:56:56:9b:48:07:df:3d:82:da:2d:27:54: 1c:9d:97:95:12:c8:07:2e:42:27:ee:c0:2f:96:2c:d2:d1:75: 72:d7:56:87:a6:93:df:46:aa:bd:e3:a8:1f:d7:34:54:68:d2: 89:47:41:0a:be:21:a1:65:ca:00:0e:b5:07:96:88:91:d7:5f: 71:24:1b:3e:e4:6f:72:49:ba:7d:f0:fe:60:a3:5a:cf:29:39: ec:96:e9:ac:b3:c4:f4:32:fd:df:9f:cc:57:b8:9c:1e:53:2e: dd:09:d2:42:7a:96:07:82:f6:50:8a:ad:89:af:dd:fb:d5:9c: 41:c6:25:0f:9a:d7:76:70:05:9e:22:ca:d2:3d:04:c1:da:f7: 9d:00:fb:cc:f1:56:e7:c4:86:c5:02:ba:86:3c:08:96:43:dd: 87:04:d0:3b:39:e1:9c:e3:fc:32:a1:91:dd:2b:03:7f:d7:ad: 1a:93:15:26:12:fa:72:70:71:dc:58:52:38:69:a7:90:30:c7: 24:cd:a7:c9:4f:84:8c:30:d0:98:a2:c4:ed:56:c0:39:18:e2: 4d:d9:34:03:6f:c5:9b:50:2f:25:b0:94:77:be:b9:10:9c:d3: ff:92:76:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/Z+SVF4gXCGY4rcQWtigMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjZmEwMDBhYWUwYjFjMGZjZDM5OTg5MTRiYjc2ZGZjNzJl ODczNTgwHhcNMjYwMjA5MjAwMDIwWhcNMjYwMjEwMjAwMDIwWjAzMTEwLwYDVQQD Eyg2ZmQyZmZmMTRkZjQ3MGVjZDZiZmJkMDBjMDM4MDQ1NGNiOGU1Y2M1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgqFZql0+RjStRQ1sSXeboHZUTPN2 owepecPhi5HIJ2xTgwFi2PSSE0sbG0Yu04HBMAhXe1h3XHTSLyTgcr+hcyzytllr dSLE+2YBQ/3U/M5IZomyQmCruFoW2RpIEABxIuOzY5gYTB9lSjyjiE7F/Xn4fMSp hPODDjLa5HixiRDEL+LkV04I9DzEP+xsX+AWobxxVj+gd66bAaIbporuh6b02zAm gWDJuBFX/ZomRPv5fgsphK2YKLvAvHFqNM4GatDT7CLIa8C4AtagD799XwgeiJqh uLFvknTUJdG3vBw4GfTXdDTD1QJGqH59b25SCV4G/Y0JU35Iba4TsnDOJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG/S//FN9HDs1r+9AMA4BFTLjlzFMB8GA1UdIwQY MBaAFBz6AAquCxwPzTmYkUu3bfxy6HNYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFBvQUNxNExIQV9OT1ppUlM3ZHRfSExvYzFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi82OWI3YzQtZTQyMy00YmZjLWJhNGIt OGVmNzA5ZGUyZDY0LzEvSFBvQUNxNExIQV9OT1ppUlM3ZHRfSExvYzFnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYi82OWI3YzQtZTQyMy00YmZjLWJhNGItOGVmNzA5ZGUyZDY0 LzEvSFBvQUNxNExIQV9OT1ppUlM3ZHRfSExvYzFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPML/aHcV pbsi2zoIlOHBnuOiNIq7J9t/VlabSAffPYLaLSdUHJ2XlRLIBy5CJ+7AL5Ys0tF1 ctdWh6aT30aqveOoH9c0VGjSiUdBCr4hoWXKAA61B5aIkddfcSQbPuRvckm6ffD+ YKNazyk57JbprLPE9DL935/MV7icHlMu3QnSQnqWB4L2UIqtia/d+9WcQcYlD5rX dnAFniLK0j0Ewdr3nQD7zPFW58SGxQK6hjwIlkPdhwTQOznhnOP8MqGR3SsDf9et GpMVJhL6cnBx3FhSOGmnkDDHJM2nyU+EjDDQmKLE7VbAORjiTdk0A2/Fm1AvJbCU d765EJzT/5J2dg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:39:03 2026 by rpki-client