This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft File: hbYRoLfUM0t6I5XozOew48m4OOg.mft (raw, json) Hash identifier: 0OikHJsBmMyE6D8OwbzPdETuXxsIeJg57PL+xwhlbvY= Subject key identifier: D3:D0:34:85:F6:B2:24:DF:D8:A7:FB:00:FA:8D:09:BE:11:77:7A:5E Authority key identifier: 85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8 Certificate issuer: /CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8 Certificate serial: 019BF988B2A5D1525DA1434C4F5205E753B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft Manifest number: 12F2 Signing time: Mon 26 Jan 2026 09:00:43 +0000 Manifest this update: Mon 26 Jan 2026 09:00:43 +0000 Manifest next update: Tue 27 Jan 2026 09:00:43 +0000 Files and hashes: 1: hbYRoLfUM0t6I5XozOew48m4OOg.crl (hash: C3LUaCUD8wF19jlbTeCen8Fi6S6YqnaQv7eLnG6PzMQ=) 2: m-rsXaeOpkpdSMqwVTpewPk00d4.roa (hash: rIs/IZogYIqQxOz7ptGPvRo3thst3hZ+JDFL9DxC1k8=) 3: x_DMZGJsbuDtxrP8_5aAtJAHah4.roa (hash: MEzmMNL5npMBSYbvubxXk2b9wk818GmjUSqjwh512m0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 09:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:88:b2:a5:d1:52:5d:a1:43:4c:4f:52:05:e7:53:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8 Validity Not Before: Jan 26 09:00:43 2026 GMT Not After : Jan 27 09:00:43 2026 GMT Subject: CN=d3d03485f6b224dfd8a7fb00fa8d09be11777a5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ec:f3:0e:dd:6d:c2:d4:e5:ba:c4:8e:46:f2: b6:3c:4e:f8:7f:b3:f0:eb:44:19:e8:c8:3e:0d:32: e4:75:e4:a2:71:c1:c1:cf:b6:37:8e:65:48:ec:f2: cc:3f:c7:84:c8:0b:16:04:3d:fa:9a:4b:0c:21:4f: 41:82:b5:6a:be:55:e3:40:24:c7:a9:5e:9e:c0:95: 58:79:76:c5:c1:44:c6:17:aa:0a:b5:ea:f1:2c:10: 28:36:ce:04:76:13:cb:cf:f8:52:c4:7e:8d:e7:58: 8e:b9:ba:1b:5b:18:74:41:25:32:61:47:fd:bc:3f: 0c:bb:47:ef:69:96:38:6c:41:8e:3d:26:e6:cf:e9: a8:c3:17:e8:bf:bd:5f:19:4f:d2:f7:21:f0:9f:eb: af:8d:d1:98:42:73:7f:92:39:16:2f:20:17:ab:1c: 64:96:35:d9:8b:29:5a:36:ee:d2:07:43:6b:b4:71: b6:fa:cd:31:c6:58:a1:ce:6b:03:bc:f7:0f:c1:21: 88:67:22:b5:f7:3c:d0:df:99:bc:6f:88:b4:5a:ed: 2a:ad:6c:a0:9f:9e:ef:57:df:9f:96:19:6b:0c:8d: 82:62:c5:aa:04:36:47:26:03:85:48:cf:12:7f:e4: 2e:5c:78:42:14:8e:14:35:2c:95:7d:09:8a:9b:da: c1:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:D0:34:85:F6:B2:24:DF:D8:A7:FB:00:FA:8D:09:BE:11:77:7A:5E X509v3 Authority Key Identifier: keyid:85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:18:3c:99:72:32:56:4b:a8:4e:d2:27:d0:05:31:df:94:5a: e8:1c:1d:bb:c7:df:47:b2:68:cb:36:51:f3:ff:aa:34:34:f6: 00:38:23:92:27:12:3a:ec:da:ad:d0:9c:ba:a9:bb:15:cd:29: 6f:a4:b8:32:08:64:58:ba:6e:87:be:9f:6c:b7:03:06:ad:d7: 1d:37:22:f8:6e:f4:27:6f:57:ea:bc:d4:87:b7:20:08:5e:2e: 1d:a7:85:ad:c5:44:25:2f:6e:41:65:db:2a:cb:35:85:d0:8d: f5:9c:b7:6b:28:72:da:c6:04:fa:33:49:08:1a:a6:06:e2:ab: a1:12:94:90:15:8c:75:72:97:a0:5a:85:c3:ea:38:1c:e4:36: dc:ff:8c:ba:c2:5d:57:1a:1f:29:31:dc:1d:57:38:06:cd:41: 73:06:31:47:08:9a:29:ec:5b:62:19:ee:07:13:34:5b:2e:7e: f7:5b:3f:2b:03:19:39:fa:4b:b3:e4:8d:d8:bb:90:2a:fa:cb: f7:14:b8:c5:60:eb:c0:22:7b:37:be:b6:25:e9:37:65:46:98: 79:84:3c:34:35:9f:10:15:69:69:92:66:07:63:74:5d:75:0e: ae:4b:4c:01:5e:99:da:a8:af:e8:6b:c3:0a:48:03:31:8d:9a: d3:1a:de:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5iLKl0VJdoUNMT1IF51O5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1YjYxMWEwYjdkNDMzNGI3YTIzOTVlOGNjZTdiMGUzYzli ODM4ZTgwHhcNMjYwMTI2MDkwMDQzWhcNMjYwMTI3MDkwMDQzWjAzMTEwLwYDVQQD EyhkM2QwMzQ4NWY2YjIyNGRmZDhhN2ZiMDBmYThkMDliZTExNzc3YTVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0+zzDt1twtTlusSORvK2PE74f7Pw 60QZ6Mg+DTLkdeSiccHBz7Y3jmVI7PLMP8eEyAsWBD36mksMIU9BgrVqvlXjQCTH qV6ewJVYeXbFwUTGF6oKterxLBAoNs4EdhPLz/hSxH6N51iOubobWxh0QSUyYUf9 vD8Mu0fvaZY4bEGOPSbmz+mowxfov71fGU/S9yHwn+uvjdGYQnN/kjkWLyAXqxxk ljXZiylaNu7SB0NrtHG2+s0xxlihzmsDvPcPwSGIZyK19zzQ35m8b4i0Wu0qrWyg n57vV9+flhlrDI2CYsWqBDZHJgOFSM8Sf+QuXHhCFI4UNSyVfQmKm9rBtQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNPQNIX2siTf2Kf7APqNCb4Rd3peMB8GA1UdIwQY MBaAFIW2EaC31DNLeiOV6MznsOPJuDjoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGJZUm9MZlVNMHQ2STVYb3pPZXc0OG00T09nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC85ZDU2M2QtYzQ3MC00M2IzLTgyYmIt ODhjYjRlNzEwNmVhLzEvaGJZUm9MZlVNMHQ2STVYb3pPZXc0OG00T09nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC85ZDU2M2QtYzQ3MC00M2IzLTgyYmItODhjYjRlNzEwNmVh LzEvaGJZUm9MZlVNMHQ2STVYb3pPZXc0OG00T09nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACxg8mXIy VkuoTtIn0AUx35Ra6Bwdu8ffR7JoyzZR8/+qNDT2ADgjkicSOuzardCcuqm7Fc0p b6S4MghkWLpuh76fbLcDBq3XHTci+G70J29X6rzUh7cgCF4uHaeFrcVEJS9uQWXb Kss1hdCN9Zy3ayhy2sYE+jNJCBqmBuKroRKUkBWMdXKXoFqFw+o4HOQ23P+MusJd VxofKTHcHVc4Bs1BcwYxRwiaKexbYhnuBxM0Wy5+91s/KwMZOfpLs+SN2LuQKvrL 9xS4xWDrwCJ7N762Jek3ZUaYeYQ8NDWfEBVpaZJmB2N0XXUOrktMAV6Z2qiv6GvD CkgDMY2a0xreWg== -----END CERTIFICATE-----Generated at Mon Jan 26 11:46:46 2026 by rpki-client