This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft File: uwKqn6RfyXvbLm3I_Ap_A3HITek.mft (raw, json) Hash identifier: 2p1pPAkJb3PMIu6kuVaTzvlcfSnKmjASGYDczw2Ws+8= Subject key identifier: 65:F4:8D:BF:1B:72:58:FC:B9:7F:A3:1C:1F:DF:AB:3B:16:87:4B:6D Authority key identifier: BB:02:AA:9F:A4:5F:C9:7B:DB:2E:6D:C8:FC:0A:7F:03:71:C8:4D:E9 Certificate issuer: /CN=bb02aa9fa45fc97bdb2e6dc8fc0a7f0371c84de9 Certificate serial: 019C41A165D60B8E5C7D883FE70934989D40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uwKqn6RfyXvbLm3I_Ap_A3HITek.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft Manifest number: 03BB Signing time: Mon 09 Feb 2026 09:00:22 +0000 Manifest this update: Mon 09 Feb 2026 09:00:22 +0000 Manifest next update: Tue 10 Feb 2026 09:00:22 +0000 Files and hashes: 1: FStRWITrx7mXYLP1GLGN2-na9w0.roa (hash: 9Kguvpi0MkdObkp26nsq/5tht75+Q0yDWXnyUXnDBmI=) 2: uwKqn6RfyXvbLm3I_Ap_A3HITek.crl (hash: x4EDjKy2TAwwkLSRbbB0Q8n/MPZ3ADwJZH0tWNHfYpU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft rsync://rpki.ripe.net/repository/DEFAULT/uwKqn6RfyXvbLm3I_Ap_A3HITek.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:65:d6:0b:8e:5c:7d:88:3f:e7:09:34:98:9d:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bb02aa9fa45fc97bdb2e6dc8fc0a7f0371c84de9 Validity Not Before: Feb 9 09:00:22 2026 GMT Not After : Feb 10 09:00:22 2026 GMT Subject: CN=65f48dbf1b7258fcb97fa31c1fdfab3b16874b6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:20:01:8c:0d:fa:2e:e5:52:df:42:f4:af:98: 8e:9b:c8:98:1b:f7:99:3a:84:07:69:d2:fc:d9:af: 4e:87:d6:ce:13:29:ec:a3:ad:54:07:e6:1b:4c:67: bd:5b:e8:57:8e:97:f7:4d:c6:5f:e1:34:d7:f2:f2: 98:c7:b8:6b:0e:d2:96:bb:13:24:51:a4:87:2b:d3: 49:bc:0c:45:48:12:c7:36:96:f9:c2:e1:98:b2:93: 49:98:91:0d:fe:1c:6d:5e:67:cc:6a:93:63:5c:30: 39:a8:c5:31:3b:6c:1c:2f:bd:d3:91:6c:d7:03:97: d1:24:da:c6:fb:63:d3:7b:2e:7c:ce:88:16:58:5d: 51:8e:73:18:c8:f8:95:38:79:28:89:dd:5a:a5:69: 41:88:93:ca:f0:7a:0a:28:2a:05:fe:54:ad:82:0f: 7e:c5:57:35:56:a0:2b:5e:38:39:bc:46:f3:9f:5a: b0:05:8b:14:dc:17:b9:b3:f0:0d:6d:02:82:ea:e4: 74:4e:4d:70:05:ba:ad:62:3e:fa:dd:1b:14:02:1c: 8c:18:ab:d0:f2:4c:a5:c4:b4:40:6d:75:a3:71:3f: d1:d0:4f:fd:50:a8:5f:0a:9d:21:dc:f0:12:70:f6: 58:15:45:74:2e:c8:b1:e4:44:8b:6a:ab:c4:de:1a: 22:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:F4:8D:BF:1B:72:58:FC:B9:7F:A3:1C:1F:DF:AB:3B:16:87:4B:6D X509v3 Authority Key Identifier: keyid:BB:02:AA:9F:A4:5F:C9:7B:DB:2E:6D:C8:FC:0A:7F:03:71:C8:4D:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uwKqn6RfyXvbLm3I_Ap_A3HITek.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:57:d9:b2:e7:6f:c9:2d:d6:ae:02:48:a4:12:5f:ea:52:ae: a1:9f:be:dd:63:ef:04:35:db:01:90:f6:42:e5:46:2e:7d:d6: d0:04:1d:1b:f9:1b:1b:da:5b:5e:9a:97:10:16:3b:b0:f1:f9: f3:91:50:b9:7c:3c:89:3b:50:d8:40:0c:81:35:fc:c6:2e:62: ec:fb:26:87:23:5e:3a:17:6d:3c:eb:49:63:03:2b:63:da:04: 96:e1:97:6f:28:3b:89:f0:5c:be:2e:e0:6e:ee:d4:a2:5d:3b: 95:14:a6:ee:be:82:d0:86:d4:40:bc:f0:0c:fc:ae:f4:4a:98: 08:6e:1f:1a:74:cb:f0:87:6a:a6:9e:78:de:6f:d6:78:d1:83: c4:8b:f0:52:db:21:2c:e0:cb:ed:13:f3:17:3a:d8:91:61:c0: 96:af:7f:6b:b8:ad:8c:ff:67:d8:fb:e1:c0:9f:91:fb:e6:6e: 54:3e:82:84:aa:2a:a0:ba:a3:d1:aa:14:44:84:a5:e7:01:1c: 2c:c1:73:c4:05:dd:9e:51:18:15:47:b9:3f:28:af:09:ea:5b: 6b:ed:2f:53:0d:96:55:bf:9b:3e:6c:ae:d6:85:6a:25:de:b7: 71:56:59:bc:4d:5d:91:39:c4:b7:2a:01:64:3a:77:3b:19:b5: dd:77:c6:54 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoWXWC45cfYg/5wk0mJ1AMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiMDJhYTlmYTQ1ZmM5N2JkYjJlNmRjOGZjMGE3ZjAzNzFj ODRkZTkwHhcNMjYwMjA5MDkwMDIyWhcNMjYwMjEwMDkwMDIyWjAzMTEwLwYDVQQD Eyg2NWY0OGRiZjFiNzI1OGZjYjk3ZmEzMWMxZmRmYWIzYjE2ODc0YjZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2CABjA36LuVS30L0r5iOm8iYG/eZ OoQHadL82a9Oh9bOEynso61UB+YbTGe9W+hXjpf3TcZf4TTX8vKYx7hrDtKWuxMk UaSHK9NJvAxFSBLHNpb5wuGYspNJmJEN/hxtXmfMapNjXDA5qMUxO2wcL73TkWzX A5fRJNrG+2PTey58zogWWF1RjnMYyPiVOHkoid1apWlBiJPK8HoKKCoF/lStgg9+ xVc1VqArXjg5vEbzn1qwBYsU3Be5s/ANbQKC6uR0Tk1wBbqtYj763RsUAhyMGKvQ 8kylxLRAbXWjcT/R0E/9UKhfCp0h3PAScPZYFUV0Lsix5ESLaqvE3hoipQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGX0jb8bclj8uX+jHB/fqzsWh0ttMB8GA1UdIwQY MBaAFLsCqp+kX8l72y5tyPwKfwNxyE3pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXdLcW42UmZ5WHZiTG0zSV9BcF9BM0hJVGVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9jYzIwMzktMjQ1MS00MDVlLWIwNmQt YWMxODNhOWFkZWIxLzEvdXdLcW42UmZ5WHZiTG0zSV9BcF9BM0hJVGVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC9jYzIwMzktMjQ1MS00MDVlLWIwNmQtYWMxODNhOWFkZWIx LzEvdXdLcW42UmZ5WHZiTG0zSV9BcF9BM0hJVGVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY1fZsudv yS3WrgJIpBJf6lKuoZ++3WPvBDXbAZD2QuVGLn3W0AQdG/kbG9pbXpqXEBY7sPH5 85FQuXw8iTtQ2EAMgTX8xi5i7PsmhyNeOhdtPOtJYwMrY9oEluGXbyg7ifBcvi7g bu7Uol07lRSm7r6C0IbUQLzwDPyu9EqYCG4fGnTL8Idqpp543m/WeNGDxIvwUtsh LODL7RPzFzrYkWHAlq9/a7itjP9n2PvhwJ+R++ZuVD6ChKoqoLqj0aoURISl5wEc LMFzxAXdnlEYFUe5PyivCepba+0vUw2WVb+bPmyu1oVqJd63cVZZvE1dkTnEtyoB ZDp3Oxm13XfGVA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:19 2026 by rpki-client