This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft File: HH3TyBbYWWCARyBUNICV7SuFUeU.mft (raw, json) Hash identifier: oIBsFXn6qZZDXxpQGnwi7sM7LqJbJmm5UMxhFG8jBhY= Subject key identifier: CC:62:C5:41:59:FA:F7:88:7C:6B:61:25:85:EC:67:A3:81:23:51:F5 Authority key identifier: 1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5 Certificate issuer: /CN=1c7dd3c816d8596080472054348095ed2b8551e5 Certificate serial: 019BF8764401F25EC3D928E297A13AC4F24E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft Manifest number: 155D Signing time: Mon 26 Jan 2026 04:00:58 +0000 Manifest this update: Mon 26 Jan 2026 04:00:58 +0000 Manifest next update: Tue 27 Jan 2026 04:00:58 +0000 Files and hashes: 1: HH3TyBbYWWCARyBUNICV7SuFUeU.crl (hash: MKT+bqsVNE2Y79w3SiWlYVvFFcCRrGsSamfp3N6z9gE=) 2: IMhrDeS7pt6POgdqkwhQn8NXjdQ.roa (hash: 8Co4GdnGTbaplfNAIs0VU0evrLpH3iNJkhwVpK6YVsc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:76:44:01:f2:5e:c3:d9:28:e2:97:a1:3a:c4:f2:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c7dd3c816d8596080472054348095ed2b8551e5 Validity Not Before: Jan 26 04:00:58 2026 GMT Not After : Jan 27 04:00:58 2026 GMT Subject: CN=cc62c54159faf7887c6b612585ec67a3812351f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b8:0a:be:ba:47:0f:fa:57:04:f0:87:20:c6: 04:e1:95:85:14:81:13:2e:6b:6e:52:bd:69:2b:b0: a7:17:d3:00:c1:09:81:d9:38:e2:f5:d0:5f:7b:d1: 53:54:29:7e:29:2b:4b:2e:13:18:62:41:bd:ba:fa: 04:c7:3b:e7:5b:ba:74:6b:f4:77:12:ce:30:ca:c9: 6b:87:35:57:b6:63:f0:85:e2:28:3e:84:13:84:bb: 70:b4:5d:eb:43:f7:ae:cd:a8:cc:1d:4c:2b:1b:20: fa:26:af:0c:ef:0b:cc:a0:b1:69:fe:30:4a:e1:4b: 78:f0:31:9a:67:80:f0:58:08:91:e9:45:91:cf:c9: 85:41:86:c0:fc:04:cf:0c:d4:3a:15:63:f0:0d:49: c3:c9:f1:c4:21:fb:8b:bb:4c:25:05:44:9c:54:b4: 60:7b:7d:35:0a:30:16:43:30:c2:20:d7:b3:f1:e9: 23:c1:88:5e:c5:e2:0a:78:4d:bf:f3:e3:42:9a:69: 13:49:ce:a3:5f:43:47:15:e7:4e:d3:03:35:b8:7a: 6b:64:cc:55:96:9c:41:c1:a3:01:05:e5:28:4e:ff: f1:77:b9:1b:96:2b:9f:63:78:4b:66:1d:32:70:e7: cf:2c:05:08:68:db:d9:1a:72:09:7e:22:0f:56:c0: af:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:62:C5:41:59:FA:F7:88:7C:6B:61:25:85:EC:67:A3:81:23:51:F5 X509v3 Authority Key Identifier: keyid:1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:0b:27:da:f6:1f:9e:23:29:09:53:6a:75:32:84:47:15:dc: 25:b5:15:44:dc:fa:6b:63:54:1c:8a:a2:38:cb:16:82:aa:3a: 97:15:12:4b:9d:30:45:67:a5:df:4d:69:c3:f5:41:7d:ea:cc: 3a:12:89:f7:46:66:1f:48:4d:40:8a:7a:1d:30:a9:41:4c:df: 30:90:bb:52:32:da:f3:c9:70:64:a8:4a:e9:b8:72:e8:41:a4: 4c:47:88:e6:70:26:8d:ec:ad:45:88:de:5c:a3:1a:b5:a4:46: 1e:de:3e:af:65:7a:78:c2:aa:77:f8:5b:90:71:54:4b:cb:9d: 07:47:7a:70:1f:cb:46:2f:a7:b1:fd:af:91:39:d4:77:55:25: d6:9f:8b:02:e2:a4:c4:40:80:4b:e6:39:08:34:69:9b:60:d0: d6:f6:76:69:bc:3b:a5:5f:ff:8e:48:e7:48:18:2c:64:29:9f: 38:c1:e6:b9:56:3c:c9:7b:0f:5a:37:19:f8:83:41:92:e9:89: ff:6e:21:54:1a:64:c1:86:4e:b1:7d:db:5b:1b:bb:8e:75:71: 2c:b4:ab:b4:9a:8e:4d:66:80:97:15:10:23:35:a8:45:23:cd: f7:26:94:26:eb:59:d9:e7:39:25:f5:84:c3:60:6d:1b:e0:9e: b4:f0:93:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4dkQB8l7D2Sjil6E6xPJOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjN2RkM2M4MTZkODU5NjA4MDQ3MjA1NDM0ODA5NWVkMmI4 NTUxZTUwHhcNMjYwMTI2MDQwMDU4WhcNMjYwMTI3MDQwMDU4WjAzMTEwLwYDVQQD EyhjYzYyYzU0MTU5ZmFmNzg4N2M2YjYxMjU4NWVjNjdhMzgxMjM1MWY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArrgKvrpHD/pXBPCHIMYE4ZWFFIET LmtuUr1pK7CnF9MAwQmB2Tji9dBfe9FTVCl+KStLLhMYYkG9uvoExzvnW7p0a/R3 Es4wyslrhzVXtmPwheIoPoQThLtwtF3rQ/euzajMHUwrGyD6Jq8M7wvMoLFp/jBK 4Ut48DGaZ4DwWAiR6UWRz8mFQYbA/ATPDNQ6FWPwDUnDyfHEIfuLu0wlBUScVLRg e301CjAWQzDCINez8ekjwYhexeIKeE2/8+NCmmkTSc6jX0NHFedO0wM1uHprZMxV lpxBwaMBBeUoTv/xd7kbliufY3hLZh0ycOfPLAUIaNvZGnIJfiIPVsCv8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMxixUFZ+veIfGthJYXsZ6OBI1H1MB8GA1UdIwQY MBaAFBx908gW2FlggEcgVDSAle0rhVHlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEgzVHlCYllXV0NBUnlCVU5JQ1Y3U3VGVWVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9iYWFiMzYtODg4Ni00MjA2LTllNzkt Y2MyY2Q3ZDMxYTI2LzEvSEgzVHlCYllXV0NBUnlCVU5JQ1Y3U3VGVWVVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9iYWFiMzYtODg4Ni00MjA2LTllNzktY2MyY2Q3ZDMxYTI2 LzEvSEgzVHlCYllXV0NBUnlCVU5JQ1Y3U3VGVWVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgQsn2vYf niMpCVNqdTKERxXcJbUVRNz6a2NUHIqiOMsWgqo6lxUSS50wRWel301pw/VBferM OhKJ90ZmH0hNQIp6HTCpQUzfMJC7UjLa88lwZKhK6bhy6EGkTEeI5nAmjeytRYje XKMataRGHt4+r2V6eMKqd/hbkHFUS8udB0d6cB/LRi+nsf2vkTnUd1Ul1p+LAuKk xECAS+Y5CDRpm2DQ1vZ2abw7pV//jkjnSBgsZCmfOMHmuVY8yXsPWjcZ+INBkumJ /24hVBpkwYZOsX3bWxu7jnVxLLSrtJqOTWaAlxUQIzWoRSPN9yaUJutZ2ec5JfWE w2BtG+CetPCTSA== -----END CERTIFICATE-----Generated at Mon Jan 26 10:17:44 2026 by rpki-client