This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft File: HgClX517dTlrS_oT54lgpaEvTvU.mft (raw, json) Hash identifier: NYnOhElK6lAAdFrzOGwZ3AIliIBqZNCob1sep1k7TfM= Subject key identifier: 18:4B:62:C5:EF:A4:09:C0:01:CA:C2:5E:E8:F3:FF:19:B6:B0:37:94 Authority key identifier: 1E:00:A5:5F:9D:7B:75:39:6B:4B:FA:13:E7:89:60:A5:A1:2F:4E:F5 Certificate issuer: /CN=1e00a55f9d7b75396b4bfa13e78960a5a12f4ef5 Certificate serial: 019BF65117A6DB888981468242DB44FF5732 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgClX517dTlrS_oT54lgpaEvTvU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft Manifest number: 0F9F Signing time: Sun 25 Jan 2026 18:01:08 +0000 Manifest this update: Sun 25 Jan 2026 18:01:08 +0000 Manifest next update: Mon 26 Jan 2026 18:01:08 +0000 Files and hashes: 1: HgClX517dTlrS_oT54lgpaEvTvU.crl (hash: euURlA4Scn8REQqf3woOSugX8uwoq3vcMJPudA5XbTg=) 2: u_mH6EUqNkqz_nJQ2xMzHjAOs5k.roa (hash: Bwm8rVbQPci5MWzF+kRT+h1fK3xCwzJ+2otJGbrOfJM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.crl rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft rsync://rpki.ripe.net/repository/DEFAULT/HgClX517dTlrS_oT54lgpaEvTvU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 18:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:51:17:a6:db:88:89:81:46:82:42:db:44:ff:57:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e00a55f9d7b75396b4bfa13e78960a5a12f4ef5 Validity Not Before: Jan 25 18:01:08 2026 GMT Not After : Jan 26 18:01:08 2026 GMT Subject: CN=184b62c5efa409c001cac25ee8f3ff19b6b03794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d7:16:2b:bb:3a:a5:b6:e4:8a:44:d6:c0:c6: a9:62:39:08:a7:a9:1c:54:e5:c8:55:28:55:13:e1: 67:a3:1a:cd:3d:4c:e9:f3:51:7a:eb:f2:04:f6:1d: b6:59:ab:ab:97:f4:e2:93:48:ce:12:12:12:36:2f: b1:90:c1:29:61:8d:2c:1d:ce:9a:b9:35:f0:01:ee: f4:38:ff:93:a4:7a:46:e0:d3:a8:72:12:bb:0d:df: 15:94:90:d9:fb:2c:2a:a6:f0:ec:de:90:26:ff:00: 81:3e:85:24:98:d4:11:14:fe:1a:8a:0f:1e:e7:2b: 82:9e:8c:f7:66:a0:37:ad:30:84:14:39:6a:51:53: 9f:ed:4c:54:7b:0f:4f:d3:d6:62:15:b7:00:4b:26: ed:85:71:e9:84:aa:ba:28:72:4f:fb:c7:45:4e:19: 97:89:f0:e5:42:e0:8a:cb:ce:7e:13:e7:bd:7d:17: 70:5f:d1:45:be:8a:70:11:49:30:8b:78:52:a0:66: ab:44:63:b4:e3:b7:8a:57:ca:76:11:d3:06:04:46: e4:b2:3a:82:f7:bc:fd:0a:be:8e:cd:c6:de:06:92: 85:8c:eb:38:d7:bb:ee:ea:93:2a:62:79:62:58:4d: 08:f8:79:db:c5:30:c4:48:49:0a:d4:cd:bf:9b:f8: 35:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:4B:62:C5:EF:A4:09:C0:01:CA:C2:5E:E8:F3:FF:19:B6:B0:37:94 X509v3 Authority Key Identifier: keyid:1E:00:A5:5F:9D:7B:75:39:6B:4B:FA:13:E7:89:60:A5:A1:2F:4E:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgClX517dTlrS_oT54lgpaEvTvU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:e2:d8:65:43:b6:8f:6d:d7:f1:1c:41:e0:7c:ce:e7:24:31: 2b:59:ec:68:4c:3e:3c:7a:ba:b8:5e:b8:89:50:35:6b:16:df: aa:ec:ba:2b:b6:b1:d3:3c:b8:07:d6:2c:10:65:54:14:d2:99: bf:ee:9e:51:53:cd:5f:21:71:ac:e2:2b:f8:ac:55:be:48:71: ba:b1:f8:9d:20:76:32:79:4b:c6:dc:fc:4e:f7:bc:3a:1c:f8: 6d:57:99:bd:ed:64:56:23:93:2d:18:49:ae:ca:60:86:89:1b: f4:2f:76:4b:43:6f:de:36:18:c0:88:ee:28:51:3e:fe:55:bc: 21:82:d7:93:4d:3a:f8:19:31:97:01:db:3e:8d:59:08:8f:cf: 66:59:5c:f4:3b:49:2b:51:d0:94:f4:ee:b2:ef:28:a3:19:27: 72:e8:e6:1f:a3:71:62:2d:5e:35:d8:f6:bb:44:ae:02:28:98: 0b:b8:55:02:e9:42:b7:a4:7c:93:bd:50:6c:a2:ed:64:04:e7: bd:aa:53:ab:f5:d1:c4:d5:66:29:d1:91:b6:ba:80:60:5e:ad: 7a:71:9a:41:68:6d:d5:4c:76:92:30:a7:f8:e3:f6:06:66:23: ae:f4:30:84:16:b9:69:58:aa:c6:7d:86:cd:a2:d6:c0:32:4f: ef:de:67:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2URem24iJgUaCQttE/1cyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlMDBhNTVmOWQ3Yjc1Mzk2YjRiZmExM2U3ODk2MGE1YTEy ZjRlZjUwHhcNMjYwMTI1MTgwMTA4WhcNMjYwMTI2MTgwMTA4WjAzMTEwLwYDVQQD EygxODRiNjJjNWVmYTQwOWMwMDFjYWMyNWVlOGYzZmYxOWI2YjAzNzk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6dcWK7s6pbbkikTWwMapYjkIp6kc VOXIVShVE+FnoxrNPUzp81F66/IE9h22Waurl/Tik0jOEhISNi+xkMEpYY0sHc6a uTXwAe70OP+TpHpG4NOochK7Dd8VlJDZ+ywqpvDs3pAm/wCBPoUkmNQRFP4aig8e 5yuCnoz3ZqA3rTCEFDlqUVOf7UxUew9P09ZiFbcASybthXHphKq6KHJP+8dFThmX ifDlQuCKy85+E+e9fRdwX9FFvopwEUkwi3hSoGarRGO047eKV8p2EdMGBEbksjqC 97z9Cr6OzcbeBpKFjOs417vu6pMqYnliWE0I+HnbxTDESEkK1M2/m/g17wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBhLYsXvpAnAAcrCXujz/xm2sDeUMB8GA1UdIwQY MBaAFB4ApV+de3U5a0v6E+eJYKWhL071MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGdDbFg1MTdkVGxyU19vVDU0bGdwYUV2VHZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS82ODE1MjYtODYzZC00Njk4LWIxMjUt Y2Y3ZWRmM2Y1ZWFjLzEvSGdDbFg1MTdkVGxyU19vVDU0bGdwYUV2VHZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NS82ODE1MjYtODYzZC00Njk4LWIxMjUtY2Y3ZWRmM2Y1ZWFj LzEvSGdDbFg1MTdkVGxyU19vVDU0bGdwYUV2VHZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgOLYZUO2 j23X8RxB4HzO5yQxK1nsaEw+PHq6uF64iVA1axbfquy6K7ax0zy4B9YsEGVUFNKZ v+6eUVPNXyFxrOIr+KxVvkhxurH4nSB2MnlLxtz8Tve8Ohz4bVeZve1kViOTLRhJ rspghokb9C92S0Nv3jYYwIjuKFE+/lW8IYLXk006+BkxlwHbPo1ZCI/PZllc9DtJ K1HQlPTusu8ooxkncujmH6NxYi1eNdj2u0SuAiiYC7hVAulCt6R8k71QbKLtZATn vapTq/XRxNVmKdGRtrqAYF6tenGaQWht1Ux2kjCn+OP2BmYjrvQwhBa5aViqxn2G zaLWwDJP795n2w== -----END CERTIFICATE-----Generated at Mon Jan 26 03:11:32 2026 by rpki-client