This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft File: hlsHwonfa8nHYttDKboM48Up_ss.mft (raw, json) Hash identifier: UbiGa1vHhThpxIPXB6VLnWd4nMj9I62HkQ0/+BP7ZYE= Subject key identifier: F0:F8:F6:23:43:7D:2E:CA:CE:9F:F0:0A:F7:08:F8:A2:CC:92:F7:A2 Authority key identifier: 86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB Certificate issuer: /CN=865b07c289df6bc9c762db4329ba0ce3c529fecb Certificate serial: 019BF5E2EFA3CB82D17C0C0B5E9FD3A6AE70 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft Manifest number: 01DB Signing time: Sun 25 Jan 2026 16:00:48 +0000 Manifest this update: Sun 25 Jan 2026 16:00:48 +0000 Manifest next update: Mon 26 Jan 2026 16:00:48 +0000 Files and hashes: 1: IvgzP8R_m0s8ePEZg6507quDNrI.roa (hash: X+lmN30HaOhvqFaQd7SLA7a7tpCSF9gpRrhHUrIx2Ls=) 2: hlsHwonfa8nHYttDKboM48Up_ss.crl (hash: rqlyqKbUIT5jf1Zs1P3JEg9Ubi7a2nv++mtyym32bt4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:e2:ef:a3:cb:82:d1:7c:0c:0b:5e:9f:d3:a6:ae:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=865b07c289df6bc9c762db4329ba0ce3c529fecb Validity Not Before: Jan 25 16:00:48 2026 GMT Not After : Jan 26 16:00:48 2026 GMT Subject: CN=f0f8f623437d2ecace9ff00af708f8a2cc92f7a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:0d:2a:62:19:ec:c4:09:63:a7:3c:78:fd:7c: a1:5c:12:db:c6:f9:dc:8d:35:14:42:d2:11:aa:99: 7a:50:79:ba:10:f7:b0:72:3c:62:20:40:77:67:e9: 61:d4:d7:a7:16:fd:96:71:24:0b:d0:e9:d2:08:f1: b4:bc:8d:96:cf:93:f2:e8:d4:8f:55:7b:7e:55:9d: 08:64:3f:1a:9c:8a:8f:a4:80:ee:96:30:27:46:4b: 48:20:cf:6c:81:5c:19:1f:20:58:42:6c:c6:e2:5b: df:53:90:d7:25:4a:bb:5b:bf:d5:00:1d:e8:7a:c4: 30:52:65:71:bb:ce:ec:6d:cc:36:23:a8:88:57:29: 93:17:02:a9:03:b1:d2:b5:1b:bf:41:1e:b1:bd:71: 4c:ff:8c:80:ed:1b:71:92:58:da:f9:c1:46:2f:72: 32:ac:0f:a9:f9:89:b2:c0:32:fe:f0:c6:95:99:a9: 3e:7b:9f:7d:47:f4:9f:e4:4a:be:75:e2:66:67:5c: 5f:3d:dc:d5:a5:ed:55:01:b0:9e:e2:c2:87:e8:69: bf:9c:60:43:86:ba:ae:91:a0:cf:bd:32:4c:7a:5a: 45:fb:cc:20:48:44:86:fb:c4:dd:75:15:d6:e4:8a: 60:8f:ac:7a:b5:82:c5:db:04:68:71:91:cf:b7:ec: 36:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:F8:F6:23:43:7D:2E:CA:CE:9F:F0:0A:F7:08:F8:A2:CC:92:F7:A2 X509v3 Authority Key Identifier: keyid:86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:3f:69:1d:8c:fa:e3:60:75:89:63:0f:03:98:60:e7:df:3f: 67:9d:31:7a:25:97:7b:5f:b6:69:a3:c8:f5:31:18:d9:3c:1c: 4c:99:b6:90:09:e6:d8:cb:44:76:d2:d2:db:84:c9:ca:18:d0: dd:8c:c8:9a:b5:84:cc:c0:8e:a0:fc:98:29:95:f5:1c:fc:e4: d9:78:bb:27:60:de:7b:53:f4:7b:54:82:d0:83:aa:b8:a6:1d: bc:96:aa:19:33:ff:75:c5:e6:de:de:64:88:d4:42:86:b7:4e: b2:dc:29:dd:59:d1:1d:89:e5:cd:e8:6d:62:b0:a1:1b:7c:b2: 1f:e6:31:ad:87:d7:47:4b:9a:28:92:61:83:a6:0f:cf:81:61: d2:32:b3:a4:1f:7f:de:df:54:e4:86:1e:59:58:8c:19:5d:f1: 2e:f7:0f:d4:b4:20:51:a3:f9:e8:80:9b:ac:ca:a9:e4:ec:d5: 95:2b:50:57:51:a4:48:31:a0:5c:95:59:5d:14:c9:b6:74:ef: a5:4b:99:84:40:f5:2a:ba:cb:5f:4f:d5:b5:5e:71:ef:36:b1: 47:6c:73:8b:52:80:3c:87:e9:a6:b6:5b:dc:20:20:a2:59:2c: 34:3d:24:4e:41:23:9e:d6:ee:bc:0e:bb:69:53:14:83:a0:9c: ab:f1:e0:7e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv14u+jy4LRfAwLXp/Tpq5wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2NWIwN2MyODlkZjZiYzljNzYyZGI0MzI5YmEwY2UzYzUy OWZlY2IwHhcNMjYwMTI1MTYwMDQ4WhcNMjYwMTI2MTYwMDQ4WjAzMTEwLwYDVQQD EyhmMGY4ZjYyMzQzN2QyZWNhY2U5ZmYwMGFmNzA4ZjhhMmNjOTJmN2EyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7A0qYhnsxAljpzx4/XyhXBLbxvnc jTUUQtIRqpl6UHm6EPewcjxiIEB3Z+lh1NenFv2WcSQL0OnSCPG0vI2Wz5Py6NSP VXt+VZ0IZD8anIqPpIDuljAnRktIIM9sgVwZHyBYQmzG4lvfU5DXJUq7W7/VAB3o esQwUmVxu87sbcw2I6iIVymTFwKpA7HStRu/QR6xvXFM/4yA7Rtxklja+cFGL3Iy rA+p+YmywDL+8MaVmak+e599R/Sf5Eq+deJmZ1xfPdzVpe1VAbCe4sKH6Gm/nGBD hrqukaDPvTJMelpF+8wgSESG+8TddRXW5Ipgj6x6tYLF2wRocZHPt+w2cwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPD49iNDfS7Kzp/wCvcI+KLMkveiMB8GA1UdIwQY MBaAFIZbB8KJ32vJx2LbQym6DOPFKf7LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGxzSHdvbmZhOG5IWXR0REtib000OFVwX3NzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi80ZDFhYjYtNDY1Yi00Mjc2LWJjNGEt MmFmYTMwM2U0OTVkLzEvaGxzSHdvbmZhOG5IWXR0REtib000OFVwX3NzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi80ZDFhYjYtNDY1Yi00Mjc2LWJjNGEtMmFmYTMwM2U0OTVk LzEvaGxzSHdvbmZhOG5IWXR0REtib000OFVwX3NzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANz9pHYz6 42B1iWMPA5hg598/Z50xeiWXe1+2aaPI9TEY2TwcTJm2kAnm2MtEdtLS24TJyhjQ 3YzImrWEzMCOoPyYKZX1HPzk2Xi7J2Dee1P0e1SC0IOquKYdvJaqGTP/dcXm3t5k iNRChrdOstwp3VnRHYnlzehtYrChG3yyH+YxrYfXR0uaKJJhg6YPz4Fh0jKzpB9/ 3t9U5IYeWViMGV3xLvcP1LQgUaP56ICbrMqp5OzVlStQV1GkSDGgXJVZXRTJtnTv pUuZhED1KrrLX0/VtV5x7zaxR2xzi1KAPIfpprZb3CAgolksND0kTkEjntbuvA67 aVMUg6Ccq/Hgfg== -----END CERTIFICATE-----Generated at Sun Jan 25 19:15:06 2026 by rpki-client