This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft File: HlcDhG16g2S-wwMDTbkay_9C2gw.mft (raw, json) Hash identifier: t1rMYF+KnSuG0+g3JaTnD2/1+Zs0QcK9ys7hLiH/tbE= Subject key identifier: 08:B1:A4:50:26:4A:E6:46:2A:92:CE:20:6E:35:4D:87:45:76:56:A6 Authority key identifier: 1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C Certificate issuer: /CN=1e5703846d7a8364bec303034db91acbff42da0c Certificate serial: 019BF5AC360E6051E79AF76BEAB53FBAD2BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft Manifest number: 0BA9 Signing time: Sun 25 Jan 2026 15:01:02 +0000 Manifest this update: Sun 25 Jan 2026 15:01:02 +0000 Manifest next update: Mon 26 Jan 2026 15:01:02 +0000 Files and hashes: 1: HlcDhG16g2S-wwMDTbkay_9C2gw.crl (hash: OWwvMXaIjifA+cVfzfVWVPN+oD6NLYW4fpT/1GeossI=) 2: brOPRHZE8w8OlykjjLgAfmNZ_2E.roa (hash: KdHvIOBRCGI/cneTU0VrbKbHmdpXYBJ4OfKXRKTAahs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:ac:36:0e:60:51:e7:9a:f7:6b:ea:b5:3f:ba:d2:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e5703846d7a8364bec303034db91acbff42da0c Validity Not Before: Jan 25 15:01:02 2026 GMT Not After : Jan 26 15:01:02 2026 GMT Subject: CN=08b1a450264ae6462a92ce206e354d87457656a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:7c:90:9d:7d:bc:f1:5a:17:ed:9b:c0:bb:ff: a8:9b:7d:88:11:1d:d3:72:2c:83:c2:7f:7d:ae:8c: e7:0b:79:de:f7:9c:7b:ca:58:b1:1a:2c:9d:29:70: eb:65:4c:e7:6a:36:c5:8a:11:25:79:1b:f8:57:71: f5:84:81:7b:20:14:f4:2d:a1:4c:54:41:b5:71:7b: 43:41:40:ae:13:8e:da:59:09:d0:1a:4f:59:cb:23: 6e:0a:73:f9:c8:a6:64:86:07:89:5e:a2:28:52:35: a0:c5:d8:46:d7:cd:4b:b9:4c:db:80:f5:12:12:2d: 77:36:96:8e:1e:1e:71:c0:33:0b:4f:af:d0:e0:6a: 6c:4c:2d:e1:3e:ea:66:48:48:a6:e8:a1:4a:0c:29: 95:6a:d8:0f:b6:05:c8:ac:9c:ef:26:1a:ff:a5:0f: da:94:1f:e6:89:a5:66:61:c3:7d:08:8c:9a:69:51: 82:19:59:8c:46:6c:ad:ad:03:1f:b2:e2:42:fa:e3: 95:49:8c:4e:50:1f:e3:af:6f:28:94:ff:81:69:cf: 89:a9:fa:35:fd:73:bf:24:40:7d:8d:f2:cc:6a:58: d7:90:3d:dc:58:b0:9a:e0:ec:cf:a4:4f:d8:43:3a: 00:24:3d:9b:62:50:16:22:b0:08:42:07:13:98:3b: dd:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:B1:A4:50:26:4A:E6:46:2A:92:CE:20:6E:35:4D:87:45:76:56:A6 X509v3 Authority Key Identifier: keyid:1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:63:2e:0c:e2:bf:55:7f:e3:71:3c:e6:28:be:94:32:10:85: 67:74:d8:99:3d:05:8e:34:76:f4:b9:2e:af:6e:13:93:eb:d8: 76:94:ee:a2:1c:c2:3a:bd:7d:c6:c9:c3:8d:6d:94:f4:44:75: 4f:14:96:37:5a:c0:9f:a2:0c:a0:8f:0c:0b:b5:b6:8e:cc:47: 1b:28:fa:e6:38:17:46:19:86:f6:d4:19:94:a9:2e:97:4c:9f: d9:36:02:54:66:87:4a:b1:b0:28:2a:83:bb:cc:ae:b1:f3:74: ef:b8:cd:e1:9c:3f:70:01:b8:1c:0e:aa:45:2f:86:22:22:d4: ff:fc:2e:11:cb:17:05:5e:d7:b2:cb:a0:c2:cc:f6:7f:3b:8b: ea:1e:68:27:b2:b4:71:14:e2:6f:c3:b0:1e:fd:66:d6:0f:cf: ac:ee:81:5e:42:87:cf:db:e0:ed:b1:7d:ca:55:67:34:e9:23: 47:ba:f2:7e:1f:8f:e9:4f:71:77:a4:c3:0e:e3:95:b4:e1:55: 15:a3:ff:23:ec:dd:bb:db:ca:2b:37:5f:4d:ed:60:9e:5c:e3: 9c:6e:cd:31:3d:8a:64:69:db:3f:fc:3f:c7:11:00:8f:ec:99: 9c:4d:0f:97:73:8a:15:5c:21:0c:73:49:ff:4a:97:73:b1:ae: 6b:42:8f:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1rDYOYFHnmvdr6rU/utK+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlNTcwMzg0NmQ3YTgzNjRiZWMzMDMwMzRkYjkxYWNiZmY0 MmRhMGMwHhcNMjYwMTI1MTUwMTAyWhcNMjYwMTI2MTUwMTAyWjAzMTEwLwYDVQQD EygwOGIxYTQ1MDI2NGFlNjQ2MmE5MmNlMjA2ZTM1NGQ4NzQ1NzY1NmE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmnyQnX288VoX7ZvAu/+om32IER3T ciyDwn99roznC3ne95x7ylixGiydKXDrZUznajbFihEleRv4V3H1hIF7IBT0LaFM VEG1cXtDQUCuE47aWQnQGk9ZyyNuCnP5yKZkhgeJXqIoUjWgxdhG181LuUzbgPUS Ei13NpaOHh5xwDMLT6/Q4GpsTC3hPupmSEim6KFKDCmVatgPtgXIrJzvJhr/pQ/a lB/miaVmYcN9CIyaaVGCGVmMRmytrQMfsuJC+uOVSYxOUB/jr28olP+Bac+Jqfo1 /XO/JEB9jfLMaljXkD3cWLCa4OzPpE/YQzoAJD2bYlAWIrAIQgcTmDvdGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAixpFAmSuZGKpLOIG41TYdFdlamMB8GA1UdIwQY MBaAFB5XA4RteoNkvsMDA025Gsv/QtoMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGxjRGhHMTZnMlMtd3dNRFRia2F5XzlDMmd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9iYzY1OGYtYTUyOC00MzYwLWI1OGMt MDdiMDllNDY1MTE5LzEvSGxjRGhHMTZnMlMtd3dNRFRia2F5XzlDMmd3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC9iYzY1OGYtYTUyOC00MzYwLWI1OGMtMDdiMDllNDY1MTE5 LzEvSGxjRGhHMTZnMlMtd3dNRFRia2F5XzlDMmd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd2MuDOK/ VX/jcTzmKL6UMhCFZ3TYmT0FjjR29Lkur24Tk+vYdpTuohzCOr19xsnDjW2U9ER1 TxSWN1rAn6IMoI8MC7W2jsxHGyj65jgXRhmG9tQZlKkul0yf2TYCVGaHSrGwKCqD u8yusfN077jN4Zw/cAG4HA6qRS+GIiLU//wuEcsXBV7Xssugwsz2fzuL6h5oJ7K0 cRTib8OwHv1m1g/PrO6BXkKHz9vg7bF9ylVnNOkjR7ryfh+P6U9xd6TDDuOVtOFV FaP/I+zdu9vKKzdfTe1gnlzjnG7NMT2KZGnbP/w/xxEAj+yZnE0Pl3OKFVwhDHNJ /0qXc7Gua0KPpg== -----END CERTIFICATE-----Generated at Mon Jan 26 01:21:20 2026 by rpki-client