This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.mft File: hugNGBwlPRTaHgupwdVmb1Ym1YE.mft (raw, json) Hash identifier: Fh4A1K6Dy98pIik83XoBdLzSL/sFRPnefLG4+xf2KDU= Subject key identifier: 74:77:96:CA:74:B0:FE:D2:B1:00:0B:6F:1B:FB:10:B0:D2:D2:7D:D0 Authority key identifier: 86:E8:0D:18:1C:25:3D:14:DA:1E:0B:A9:C1:D5:66:6F:56:26:D5:81 Certificate issuer: /CN=86e80d181c253d14da1e0ba9c1d5666f5626d581 Certificate serial: 019C4246A52FAD1A13CFD8A266D901EC7E00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hugNGBwlPRTaHgupwdVmb1Ym1YE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.mft Manifest number: 0235 Signing time: Mon 09 Feb 2026 12:00:51 +0000 Manifest this update: Mon 09 Feb 2026 12:00:51 +0000 Manifest next update: Tue 10 Feb 2026 12:00:51 +0000 Files and hashes: 1: Q0BAQv9Y2KCGzUH12IIJCejGo9E.roa (hash: ZXRjv/WoTKdvC9GZzFdW6WbAOuxyKMhJM7y9cqTP30I=) 2: hugNGBwlPRTaHgupwdVmb1Ym1YE.crl (hash: +ora3RRcZpEvbYBnWLOCcHH77PX6aNs+VWhQbEhptrA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.mft rsync://rpki.ripe.net/repository/DEFAULT/hugNGBwlPRTaHgupwdVmb1Ym1YE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:a5:2f:ad:1a:13:cf:d8:a2:66:d9:01:ec:7e:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86e80d181c253d14da1e0ba9c1d5666f5626d581 Validity Not Before: Feb 9 12:00:51 2026 GMT Not After : Feb 10 12:00:51 2026 GMT Subject: CN=747796ca74b0fed2b1000b6f1bfb10b0d2d27dd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e7:67:69:08:1e:37:0f:6b:1b:f8:84:b5:32: a2:5c:4f:88:39:a2:1f:70:e8:e1:2d:4d:cc:1f:02: 1e:2b:bc:57:d9:13:14:e0:36:89:5c:b0:39:cd:96: 7b:35:a4:4c:9d:e5:38:c7:5e:98:a4:6b:57:c6:1d: 58:93:c0:a5:e3:93:35:fc:fa:5c:77:d3:4c:89:f9: 37:8f:46:56:63:ed:a2:fd:81:70:6d:56:0b:79:d9: f7:a8:0f:41:24:10:b9:2a:54:57:80:7e:07:7b:7c: 0c:d9:db:db:6f:36:42:b9:b6:02:26:4c:4b:1a:c5: c8:35:34:1b:ed:af:31:d6:85:62:e7:76:b4:45:3f: 2b:1f:c0:9b:86:31:0e:10:e9:e1:03:57:81:be:36: b4:69:1a:13:84:7d:10:65:9b:d9:3c:ed:4e:4e:7d: c2:2e:b5:88:53:8c:11:71:49:b0:29:f3:b7:68:e3: 96:88:a3:1f:1d:68:de:08:7c:dc:4b:36:79:dd:78: 25:c2:e7:28:49:cb:9a:b6:01:6a:cf:0a:67:2e:d8: da:89:09:2c:b9:45:e2:52:31:7b:92:ef:d0:fa:47: ed:5f:3b:7f:20:40:f4:9d:11:50:09:6b:2f:1e:06: 9c:38:80:95:95:6d:f5:0b:ad:c1:81:1c:64:a0:21: 26:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:77:96:CA:74:B0:FE:D2:B1:00:0B:6F:1B:FB:10:B0:D2:D2:7D:D0 X509v3 Authority Key Identifier: keyid:86:E8:0D:18:1C:25:3D:14:DA:1E:0B:A9:C1:D5:66:6F:56:26:D5:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hugNGBwlPRTaHgupwdVmb1Ym1YE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:2f:bf:a0:e4:7e:c0:30:b8:c9:85:bf:1f:b8:44:2d:29:ca: 3f:d4:2f:c9:cd:91:bc:98:22:0a:20:34:6f:79:95:66:c4:6b: b8:03:52:dc:c6:56:9c:64:a1:e9:65:de:52:df:f1:4c:bb:ff: fc:9e:7f:05:79:21:fa:a1:f3:e4:9d:83:1f:2c:9d:1e:01:e7: 2e:f5:ae:08:e1:de:c0:d3:44:8f:b2:4f:3c:0f:3f:d1:bc:55: b7:e9:35:62:38:70:a7:4c:9f:6b:15:99:1b:95:c8:3c:75:48: a6:a0:a8:1c:ee:aa:6a:16:5a:6a:a6:f9:9b:da:29:81:dd:f4: 50:8a:92:6a:39:72:f5:17:43:f2:59:bf:12:70:e3:b4:9c:cc: 53:f3:15:6f:45:00:22:55:e4:a1:9a:d7:6a:23:42:75:ff:71: 5e:2e:7c:74:11:58:e8:77:a4:23:ee:8c:ac:17:3f:5e:3c:49: 24:1a:5b:20:05:83:2a:43:c7:a7:d6:3a:a7:d0:82:ca:63:d2: 29:87:fe:45:8c:9e:54:e8:9a:a3:64:eb:9c:ad:24:06:ae:b7: aa:70:34:2b:8a:32:d3:e9:21:34:8f:6e:7c:4f:84:97:ed:2d: 46:c4:c0:ab:29:b6:49:56:5d:aa:2a:f7:16:30:f2:68:b7:10: 79:c7:65:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRqUvrRoTz9iiZtkB7H4AMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2ZTgwZDE4MWMyNTNkMTRkYTFlMGJhOWMxZDU2NjZmNTYy NmQ1ODEwHhcNMjYwMjA5MTIwMDUxWhcNMjYwMjEwMTIwMDUxWjAzMTEwLwYDVQQD Eyg3NDc3OTZjYTc0YjBmZWQyYjEwMDBiNmYxYmZiMTBiMGQyZDI3ZGQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3udnaQgeNw9rG/iEtTKiXE+IOaIf cOjhLU3MHwIeK7xX2RMU4DaJXLA5zZZ7NaRMneU4x16YpGtXxh1Yk8Cl45M1/Ppc d9NMifk3j0ZWY+2i/YFwbVYLedn3qA9BJBC5KlRXgH4He3wM2dvbbzZCubYCJkxL GsXINTQb7a8x1oVi53a0RT8rH8CbhjEOEOnhA1eBvja0aRoThH0QZZvZPO1OTn3C LrWIU4wRcUmwKfO3aOOWiKMfHWjeCHzcSzZ53XglwucoScuatgFqzwpnLtjaiQks uUXiUjF7ku/Q+kftXzt/IED0nRFQCWsvHgacOICVlW31C63BgRxkoCEmawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHR3lsp0sP7SsQALbxv7ELDS0n3QMB8GA1UdIwQY MBaAFIboDRgcJT0U2h4LqcHVZm9WJtWBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHVnTkdCd2xQUlRhSGd1cHdkVm1iMVltMVlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9lYTYwOWUtNjUzOC00NzIzLTgyNTkt NzNmNTQzNDg4MjNjLzEvaHVnTkdCd2xQUlRhSGd1cHdkVm1iMVltMVlFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC9lYTYwOWUtNjUzOC00NzIzLTgyNTktNzNmNTQzNDg4MjNj LzEvaHVnTkdCd2xQUlRhSGd1cHdkVm1iMVltMVlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEi+/oOR+ wDC4yYW/H7hELSnKP9Qvyc2RvJgiCiA0b3mVZsRruANS3MZWnGSh6WXeUt/xTLv/ /J5/BXkh+qHz5J2DHyydHgHnLvWuCOHewNNEj7JPPA8/0bxVt+k1Yjhwp0yfaxWZ G5XIPHVIpqCoHO6qahZaaqb5m9opgd30UIqSajly9RdD8lm/EnDjtJzMU/MVb0UA IlXkoZrXaiNCdf9xXi58dBFY6HekI+6MrBc/XjxJJBpbIAWDKkPHp9Y6p9CCymPS KYf+RYyeVOiao2TrnK0kBq63qnA0K4oy0+khNI9ufE+El+0tRsTAqym2SVZdqir3 FjDyaLcQecdltw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:00:28 2026 by rpki-client