This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft File: HMIQHIyT1FjSXDElyMm8ya8TKHE.mft (raw, json) Hash identifier: o1dOoRHc3Ub7YyjQpumyZ/VMxSLp4vJSY3g/ohZDWZI= Subject key identifier: 1B:02:87:D4:FB:0C:3F:1A:5D:AC:BE:08:87:50:1D:96:D2:5B:B7:1B Authority key identifier: 1C:C2:10:1C:8C:93:D4:58:D2:5C:31:25:C8:C9:BC:C9:AF:13:28:71 Certificate issuer: /CN=1cc2101c8c93d458d25c3125c8c9bcc9af132871 Certificate serial: 019C43225808EDFE2E7EA63320D1E2455049 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HMIQHIyT1FjSXDElyMm8ya8TKHE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft Manifest number: 0644 Signing time: Mon 09 Feb 2026 16:00:50 +0000 Manifest this update: Mon 09 Feb 2026 16:00:50 +0000 Manifest next update: Tue 10 Feb 2026 16:00:50 +0000 Files and hashes: 1: HMIQHIyT1FjSXDElyMm8ya8TKHE.crl (hash: E4jQZBCRCavbeMQcr1SMK8827pPIZnD6qeN53a+Tr0s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft rsync://rpki.ripe.net/repository/DEFAULT/HMIQHIyT1FjSXDElyMm8ya8TKHE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:58:08:ed:fe:2e:7e:a6:33:20:d1:e2:45:50:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1cc2101c8c93d458d25c3125c8c9bcc9af132871 Validity Not Before: Feb 9 16:00:50 2026 GMT Not After : Feb 10 16:00:50 2026 GMT Subject: CN=1b0287d4fb0c3f1a5dacbe0887501d96d25bb71b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:94:42:8f:74:44:58:86:9b:47:fa:ec:cd:3e: 79:a8:ab:11:4b:d1:de:a5:36:0f:d2:97:f1:91:b5: c3:63:39:62:c2:1b:60:4f:86:69:b6:fd:ab:b0:5b: cc:d3:96:24:a7:90:01:dd:8d:c9:cd:67:5c:10:5e: 7f:30:11:c7:25:13:6c:3b:44:d8:1c:a1:68:4e:85: 01:5f:db:77:82:37:b1:05:19:f4:20:e1:f2:c5:3f: 68:04:0b:3f:2b:c3:39:d0:78:70:16:c8:ef:8a:f8: 11:eb:19:ee:84:87:b0:3a:b7:08:45:8c:d4:3a:4c: 45:fb:0b:98:a6:c8:fe:8b:6d:46:97:d9:1a:55:ac: 6c:eb:1a:43:5f:f4:3f:5f:49:5d:60:30:8a:05:cd: 30:6f:ed:8b:a6:75:b2:12:ed:06:02:4c:74:d9:be: ed:09:4e:46:83:97:50:e9:b9:a7:97:e3:98:56:6e: 75:71:7a:6b:51:3f:bb:54:ea:e2:2c:f4:db:7e:cc: 43:4d:c1:9f:73:75:94:1c:da:ce:d7:07:cc:fd:4d: 5d:71:e1:e5:26:84:69:f9:4e:f9:4d:14:6b:c5:88: 50:6e:9b:0e:c5:ab:25:dd:fe:0a:c5:6d:d3:7e:9e: 6e:9f:84:01:23:d2:7f:95:90:f9:aa:2f:54:11:4b: a7:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:02:87:D4:FB:0C:3F:1A:5D:AC:BE:08:87:50:1D:96:D2:5B:B7:1B X509v3 Authority Key Identifier: keyid:1C:C2:10:1C:8C:93:D4:58:D2:5C:31:25:C8:C9:BC:C9:AF:13:28:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HMIQHIyT1FjSXDElyMm8ya8TKHE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:fd:79:7e:17:49:ad:53:95:12:5c:68:57:85:e8:17:bb:f8: 15:66:6f:9a:0f:63:f1:ea:bd:21:d1:e2:f8:26:58:3f:e8:fc: 1c:67:c5:d3:4c:e9:30:eb:39:49:4f:99:72:db:a7:98:4c:04: 07:dc:62:bc:f7:8f:8e:c0:ca:0d:70:42:86:f6:5e:d3:47:6c: a2:a6:9d:e8:4f:83:a3:8e:00:a4:2e:c4:8e:86:18:83:fe:2b: 20:1c:42:37:3b:dc:42:5d:b4:ce:5b:fe:36:1a:0a:31:53:e5: 55:a4:d9:97:2c:c4:fc:c2:b2:ca:c7:61:77:da:e9:33:a9:31: ae:6d:a9:a7:c1:8d:81:52:24:47:34:e4:d4:ad:94:cd:6f:a1: 13:71:ec:9d:1c:de:4e:95:ca:48:8b:f6:73:ba:f1:68:bf:02: 95:04:48:c3:26:e7:77:f7:fa:b4:eb:7c:fc:84:b6:ab:56:41: 39:a8:3c:85:a7:d7:d4:65:81:8f:c6:70:08:8a:e4:0a:31:39: 69:3f:e0:6f:9a:c1:2f:d8:77:f5:ad:fa:b7:23:84:a5:30:5f: dc:63:fe:7d:ea:75:79:6c:56:bb:eb:85:02:19:2e:36:42:a8: 5b:70:4d:98:37:31:65:5a:43:8b:db:6a:aa:f8:09:75:27:43: bb:8f:9e:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIlgI7f4ufqYzINHiRVBJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjYzIxMDFjOGM5M2Q0NThkMjVjMzEyNWM4YzliY2M5YWYx MzI4NzEwHhcNMjYwMjA5MTYwMDUwWhcNMjYwMjEwMTYwMDUwWjAzMTEwLwYDVQQD EygxYjAyODdkNGZiMGMzZjFhNWRhY2JlMDg4NzUwMWQ5NmQyNWJiNzFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3pRCj3REWIabR/rszT55qKsRS9He pTYP0pfxkbXDYzliwhtgT4Zptv2rsFvM05Ykp5AB3Y3JzWdcEF5/MBHHJRNsO0TY HKFoToUBX9t3gjexBRn0IOHyxT9oBAs/K8M50HhwFsjvivgR6xnuhIewOrcIRYzU OkxF+wuYpsj+i21Gl9kaVaxs6xpDX/Q/X0ldYDCKBc0wb+2LpnWyEu0GAkx02b7t CU5Gg5dQ6bmnl+OYVm51cXprUT+7VOriLPTbfsxDTcGfc3WUHNrO1wfM/U1dceHl JoRp+U75TRRrxYhQbpsOxasl3f4KxW3Tfp5un4QBI9J/lZD5qi9UEUunzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBsCh9T7DD8aXay+CIdQHZbSW7cbMB8GA1UdIwQY MBaAFBzCEByMk9RY0lwxJcjJvMmvEyhxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSE1JUUhJeVQxRmpTWERFbHlNbTh5YThUS0hFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8zYzI5M2YtNzg5ZC00Njk1LWI1N2Yt NmFhZjU0OTYwNjVlLzEvSE1JUUhJeVQxRmpTWERFbHlNbTh5YThUS0hFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS8zYzI5M2YtNzg5ZC00Njk1LWI1N2YtNmFhZjU0OTYwNjVl LzEvSE1JUUhJeVQxRmpTWERFbHlNbTh5YThUS0hFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGf15fhdJ rVOVElxoV4XoF7v4FWZvmg9j8eq9IdHi+CZYP+j8HGfF00zpMOs5SU+ZctunmEwE B9xivPePjsDKDXBChvZe00dsoqad6E+Do44ApC7EjoYYg/4rIBxCNzvcQl20zlv+ NhoKMVPlVaTZlyzE/MKyysdhd9rpM6kxrm2pp8GNgVIkRzTk1K2UzW+hE3HsnRze TpXKSIv2c7rxaL8ClQRIwybnd/f6tOt8/IS2q1ZBOag8hafX1GWBj8ZwCIrkCjE5 aT/gb5rBL9h39a36tyOEpTBf3GP+fep1eWxWu+uFAhkuNkKoW3BNmDcxZVpDi9tq qvgJdSdDu4+e3A== -----END CERTIFICATE-----Generated at Mon Feb 9 22:45:52 2026 by rpki-client