This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft File: HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json) Hash identifier: Vf3Dp3wID3dns78RinwSigqNLAU6Ip+GC7ZWwlDWq34= Subject key identifier: 0F:4F:5E:16:D6:C4:B1:09:9F:A0:F2:8C:FA:C2:F6:C2:0C:C3:3B:93 Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A Certificate issuer: /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a Certificate serial: 019BF7D1BBDAD91982A15781BE0974B4A75D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft Manifest number: 12E9 Signing time: Mon 26 Jan 2026 01:01:15 +0000 Manifest this update: Mon 26 Jan 2026 01:01:15 +0000 Manifest next update: Tue 27 Jan 2026 01:01:15 +0000 Files and hashes: 1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: RDQWf0W7f5dhDPqB/nMym5+JmEbGflFIGS8mhL2bLXI=) 2: XKQN9GdCDnkkYw875rkSfXAvJBg.roa (hash: fV6EdFaVajqg4dj/k6xrLoqomy/vlK7OlhjNnf6pmQA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:d1:bb:da:d9:19:82:a1:57:81:be:09:74:b4:a7:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a Validity Not Before: Jan 26 01:01:15 2026 GMT Not After : Jan 27 01:01:15 2026 GMT Subject: CN=0f4f5e16d6c4b1099fa0f28cfac2f6c20cc33b93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1f:5b:a6:c9:a1:07:4d:76:a2:56:bf:48:c9: ac:6c:cd:c8:35:58:42:02:c5:2c:f6:1e:65:dd:c2: 4d:c3:b9:a5:ee:ac:64:1e:06:c1:6a:ec:d2:b1:1c: 0e:26:73:03:77:f6:50:01:4d:3b:d9:e2:46:9d:27: fb:39:ca:7e:83:ff:a8:47:55:f6:39:8a:69:4e:f4: 87:8e:9b:a2:c0:2a:49:be:55:fe:d9:ed:57:72:f9: 08:1a:bd:dc:e7:f1:20:3a:f9:0d:5a:a2:c3:62:08: b5:bb:a3:b0:94:39:4b:0d:fb:4d:f8:d7:6c:e5:8a: 67:d6:15:2f:96:60:4d:12:57:b7:65:a2:f1:f9:60: 1c:5d:2c:f0:bf:1a:b2:44:4b:5d:9e:c6:55:81:0f: 38:dc:58:fb:4f:33:6b:88:5a:cf:5d:9d:84:2a:24: 13:72:1d:21:dd:64:3c:3c:71:3d:33:e7:b9:38:56: 22:b0:57:b3:87:71:17:e1:fb:bd:02:e3:1b:d9:9e: 14:32:af:6f:4f:7b:af:42:74:0b:1b:72:c1:77:24: b0:77:26:42:86:bb:7e:02:04:55:53:53:9c:09:94: 29:3e:eb:5a:3a:e2:73:b2:54:d7:25:f6:e7:31:66: ae:72:89:d7:d0:44:c6:70:11:35:d8:2d:1a:c3:67: f2:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:4F:5E:16:D6:C4:B1:09:9F:A0:F2:8C:FA:C2:F6:C2:0C:C3:3B:93 X509v3 Authority Key Identifier: keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:82:88:ae:88:21:2c:95:c6:8b:d6:94:e3:05:1c:c7:6f:91: c6:3a:d6:a1:be:7e:10:75:3c:f7:81:2d:2a:ff:85:5e:88:f1: d1:3e:b8:d9:3b:0f:91:e9:d9:01:ec:b1:90:75:5b:21:7e:b6: 1f:ba:8c:c3:5c:5d:ee:d2:24:73:49:94:df:f3:21:64:9c:ae: b6:7c:39:1b:fb:4b:cc:ad:84:c4:91:a6:15:e4:b5:ae:38:07: 81:7b:be:15:d0:52:76:4d:4d:21:67:00:17:b8:bb:a3:3b:ae: e0:0d:ad:39:49:26:c7:b2:52:e6:a9:2a:dd:a1:6e:80:57:4c: f5:b7:52:a2:5d:f9:da:e6:b3:13:90:3c:4c:ee:44:01:98:4f: d5:c7:d7:50:51:07:d8:b8:0b:96:75:93:0f:97:5e:4a:0a:b4: dd:5d:61:ff:06:dd:9d:70:ec:22:c5:de:fe:2b:8e:2b:21:a2: 13:28:88:3e:99:7e:02:6e:04:08:cc:f0:8f:12:42:95:6b:c0: c2:bf:06:0b:87:b5:1f:8d:c8:f6:c9:18:93:a6:ee:72:f9:ad: 03:04:cd:41:b5:a8:b7:cb:d7:1c:2b:78:8a:96:6c:d8:32:65: 21:f9:52:b4:57:37:61:a1:59:9d:58:24:10:4b:21:53:22:a2: 7f:a6:59:54 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv30bva2RmCoVeBvgl0tKddMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjYWRmYjljZmNkYTg0MjYyMTJkZDdkODg3M2I1ZmU0OGI0 MTJmMmEwHhcNMjYwMTI2MDEwMTE1WhcNMjYwMTI3MDEwMTE1WjAzMTEwLwYDVQQD EygwZjRmNWUxNmQ2YzRiMTA5OWZhMGYyOGNmYWMyZjZjMjBjYzMzYjkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzR9bpsmhB012ola/SMmsbM3INVhC AsUs9h5l3cJNw7ml7qxkHgbBauzSsRwOJnMDd/ZQAU072eJGnSf7Ocp+g/+oR1X2 OYppTvSHjpuiwCpJvlX+2e1XcvkIGr3c5/EgOvkNWqLDYgi1u6OwlDlLDftN+Nds 5Ypn1hUvlmBNEle3ZaLx+WAcXSzwvxqyREtdnsZVgQ843Fj7TzNriFrPXZ2EKiQT ch0h3WQ8PHE9M+e5OFYisFezh3EX4fu9AuMb2Z4UMq9vT3uvQnQLG3LBdySwdyZC hrt+AgRVU1OcCZQpPutaOuJzslTXJfbnMWauconX0ETGcBE12C0aw2fyoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA9PXhbWxLEJn6DyjPrC9sIMwzuTMB8GA1UdIwQY MBaAFByt+5z82oQmIS3X2Ic7X+SLQS8qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9jODQwNmQtYTU2NC00Nzk1LTk4YjAt ODY4MTYwNjY4MzgyLzEvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My9jODQwNmQtYTU2NC00Nzk1LTk4YjAtODY4MTYwNjY4Mzgy LzEvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZYKIrogh LJXGi9aU4wUcx2+RxjrWob5+EHU894EtKv+FXojx0T642TsPkenZAeyxkHVbIX62 H7qMw1xd7tIkc0mU3/MhZJyutnw5G/tLzK2ExJGmFeS1rjgHgXu+FdBSdk1NIWcA F7i7ozuu4A2tOUkmx7JS5qkq3aFugFdM9bdSol352uazE5A8TO5EAZhP1cfXUFEH 2LgLlnWTD5deSgq03V1h/wbdnXDsIsXe/iuOKyGiEyiIPpl+Am4ECMzwjxJClWvA wr8GC4e1H43I9skYk6bucvmtAwTNQbWot8vXHCt4ipZs2DJlIflStFc3YaFZnVgk EEshUyKif6ZZVA== -----END CERTIFICATE-----Generated at Mon Jan 26 04:58:08 2026 by rpki-client