This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft File: hpwOc330guiapnJs3YqZWKp0ER4.mft (raw, json) Hash identifier: WlNb7VBD4OBiQJSjN1kM2iLDRORT/9MrWIaSdFZTSYY= Subject key identifier: 43:6E:6F:0E:3C:1B:13:DF:55:31:AA:09:9F:46:A2:4C:74:FF:5F:E5 Authority key identifier: 86:9C:0E:73:7D:F4:82:E8:9A:A6:72:6C:DD:8A:99:58:AA:74:11:1E Certificate issuer: /CN=869c0e737df482e89aa6726cdd8a9958aa74111e Certificate serial: 019BF6BE9DB1F6155F6D4B472CA13758941D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft Manifest number: 024C Signing time: Sun 25 Jan 2026 20:00:45 +0000 Manifest this update: Sun 25 Jan 2026 20:00:45 +0000 Manifest next update: Mon 26 Jan 2026 20:00:45 +0000 Files and hashes: 1: GoJ7p5byconiGncMqRmL8LXgnE8.roa (hash: ZMKph7pEjMlyasEu5eXgJpQBIoAaFlANMUUEAZTh0+E=) 2: hpwOc330guiapnJs3YqZWKp0ER4.crl (hash: 93oagLFFPDnafhnIbojX5BC4MyqMt5I8UkRG5HPlhLU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.crl rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:be:9d:b1:f6:15:5f:6d:4b:47:2c:a1:37:58:94:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=869c0e737df482e89aa6726cdd8a9958aa74111e Validity Not Before: Jan 25 20:00:45 2026 GMT Not After : Jan 26 20:00:45 2026 GMT Subject: CN=436e6f0e3c1b13df5531aa099f46a24c74ff5fe5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f0:ec:34:82:2b:18:d3:01:7e:6f:a8:a7:c5: d5:70:25:61:c2:5b:36:6d:31:c3:b7:ef:be:85:59: f8:f4:a7:f4:a2:4e:3e:80:f3:c4:25:73:5b:3c:c0: 07:77:f8:9d:62:a8:e8:b2:e5:f0:13:09:2d:25:76: 7a:e4:d4:9f:3d:5f:c3:03:d0:98:87:75:09:6a:10: f8:ff:8d:77:3f:12:7e:3f:99:a6:f0:66:c2:8e:4b: ab:7f:f6:9f:d3:36:0f:1b:9c:d0:95:63:a6:fb:97: 45:5d:27:33:56:eb:1f:16:d7:ee:df:8f:0e:c2:a0: d3:ff:e6:9e:2f:4f:bb:eb:21:aa:b3:5c:6e:34:cb: f9:a0:ee:f5:c6:85:d0:15:ac:de:00:63:50:dc:88: 6e:3b:78:9d:0d:62:89:58:1e:6a:d3:a9:33:ab:74: 3b:42:98:b5:7d:12:1c:49:0b:e9:43:56:06:41:09: c8:1f:bc:3e:be:bb:d5:ea:65:66:8c:b1:7f:7b:92: 47:29:4b:b2:03:73:77:52:f6:a5:86:16:04:93:15: 97:ab:ba:52:7a:0d:81:f8:65:7a:21:e4:b3:ec:4a: 56:1a:8b:b7:f9:39:0e:a1:6c:84:59:54:ee:1d:e5: c2:35:fc:47:f7:2f:c4:83:c4:da:d9:72:bb:87:af: fb:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:6E:6F:0E:3C:1B:13:DF:55:31:AA:09:9F:46:A2:4C:74:FF:5F:E5 X509v3 Authority Key Identifier: keyid:86:9C:0E:73:7D:F4:82:E8:9A:A6:72:6C:DD:8A:99:58:AA:74:11:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:d8:c6:15:ca:88:65:48:e4:f0:ff:78:b5:06:07:1b:ad:5e: 70:83:f8:da:d8:70:e6:d5:75:72:40:af:44:1c:d1:bd:14:86: 4c:36:86:77:27:b5:1d:cd:79:43:bb:5c:15:ce:3a:bd:18:1c: a7:0d:4c:32:a8:61:f0:54:8a:0e:37:3d:97:9a:a7:14:e3:bc: 07:13:e5:20:74:e2:c0:40:2e:50:83:56:ba:89:64:e6:42:e0: 92:85:7a:70:e5:02:fd:b2:59:0c:30:bc:ea:d0:81:b0:5c:0f: e4:ba:3e:dd:7d:09:b3:db:47:e8:42:da:8d:bc:63:95:a4:0a: f3:70:b2:1e:42:be:3d:14:f0:14:fd:a8:75:a5:22:ce:32:a5: 0b:1c:e5:31:eb:33:cd:1c:5c:12:7a:90:a0:5f:1e:98:0f:f0: ce:eb:ac:8d:76:72:b3:c3:77:2c:77:75:54:26:b7:de:91:a0: 79:84:bc:19:7d:44:e9:dc:54:3c:d5:e1:68:ea:e9:86:97:d5: 3f:92:e7:90:77:47:f0:1c:37:6c:f4:f7:a8:38:9b:6b:86:5f: 2f:07:00:19:77:b1:a8:fa:73:ac:5b:99:c0:a9:05:37:26:7b: e9:a0:5d:82:fe:0e:f0:51:34:19:e8:21:5b:45:34:23:24:ec: f9:52:3f:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2vp2x9hVfbUtHLKE3WJQdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2OWMwZTczN2RmNDgyZTg5YWE2NzI2Y2RkOGE5OTU4YWE3 NDExMWUwHhcNMjYwMTI1MjAwMDQ1WhcNMjYwMTI2MjAwMDQ1WjAzMTEwLwYDVQQD Eyg0MzZlNmYwZTNjMWIxM2RmNTUzMWFhMDk5ZjQ2YTI0Yzc0ZmY1ZmU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqPDsNIIrGNMBfm+op8XVcCVhwls2 bTHDt+++hVn49Kf0ok4+gPPEJXNbPMAHd/idYqjosuXwEwktJXZ65NSfPV/DA9CY h3UJahD4/413PxJ+P5mm8GbCjkurf/af0zYPG5zQlWOm+5dFXSczVusfFtfu348O wqDT/+aeL0+76yGqs1xuNMv5oO71xoXQFazeAGNQ3IhuO3idDWKJWB5q06kzq3Q7 Qpi1fRIcSQvpQ1YGQQnIH7w+vrvV6mVmjLF/e5JHKUuyA3N3UvalhhYEkxWXq7pS eg2B+GV6IeSz7EpWGou3+TkOoWyEWVTuHeXCNfxH9y/Eg8Ta2XK7h6/7JwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFENubw48GxPfVTGqCZ9Gokx0/1/lMB8GA1UdIwQY MBaAFIacDnN99ILomqZybN2KmViqdBEeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHB3T2MzMzBndWlhcG5KczNZcVpXS3AwRVI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9hNzk4MGItY2VmOC00YjUzLWEwMzEt YzVlMGZhY2E0YTVlLzEvaHB3T2MzMzBndWlhcG5KczNZcVpXS3AwRVI0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny9hNzk4MGItY2VmOC00YjUzLWEwMzEtYzVlMGZhY2E0YTVl LzEvaHB3T2MzMzBndWlhcG5KczNZcVpXS3AwRVI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeNjGFcqI ZUjk8P94tQYHG61ecIP42thw5tV1ckCvRBzRvRSGTDaGdye1Hc15Q7tcFc46vRgc pw1MMqhh8FSKDjc9l5qnFOO8BxPlIHTiwEAuUINWuolk5kLgkoV6cOUC/bJZDDC8 6tCBsFwP5Lo+3X0Js9tH6ELajbxjlaQK83CyHkK+PRTwFP2odaUizjKlCxzlMesz zRxcEnqQoF8emA/wzuusjXZys8N3LHd1VCa33pGgeYS8GX1E6dxUPNXhaOrphpfV P5LnkHdH8Bw3bPT3qDiba4ZfLwcAGXexqPpzrFuZwKkFNyZ76aBdgv4O8FE0Gegh W0U0IyTs+VI/ig== -----END CERTIFICATE-----Generated at Mon Jan 26 02:15:13 2026 by rpki-client