This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft File: HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json) Hash identifier: SbJhKPye2z9TfDAgjQ5SyfpZWPvn6kfHxIw+ZcorbIo= Subject key identifier: A8:D3:48:76:35:2C:F0:4F:68:3C:4F:58:6C:21:A5:B2:28:71:CF:15 Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A Certificate issuer: /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a Certificate serial: 019BAA92603294F4277B6EEF13734BBDAB1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft Manifest number: 12C1 Signing time: Sun 11 Jan 2026 01:01:18 +0000 Manifest this update: Sun 11 Jan 2026 01:01:18 +0000 Manifest next update: Mon 12 Jan 2026 01:01:18 +0000 Files and hashes: 1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: Tm+7f8dPMEko6Gb6XHmuy9WvjVoCAbDTTJYkEqKMn60=) 2: XKQN9GdCDnkkYw875rkSfXAvJBg.roa (hash: fV6EdFaVajqg4dj/k6xrLoqomy/vlK7OlhjNnf6pmQA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 01:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:aa:92:60:32:94:f4:27:7b:6e:ef:13:73:4b:bd:ab:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a Validity Not Before: Jan 11 01:01:18 2026 GMT Not After : Jan 12 01:01:18 2026 GMT Subject: CN=a8d34876352cf04f683c4f586c21a5b22871cf15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8c:eb:9b:c0:f7:88:c7:60:d0:d2:cd:07:ad: 27:8c:96:a0:dd:d6:e5:a8:39:98:05:2e:52:2e:9d: 31:d0:90:be:59:dc:94:45:d4:b8:7c:84:ac:65:30: d3:1b:74:77:00:c2:43:f2:75:b0:cc:9c:d4:2f:f9: 69:71:3a:00:f5:97:bb:61:40:f6:09:d2:ce:d4:a9: 4b:f2:1c:87:52:eb:5d:b9:a1:51:6c:7b:23:2f:ef: 29:a1:09:d3:0d:53:48:ce:fc:03:8a:45:20:72:90: 71:97:a9:e2:fc:05:80:fa:b6:87:59:4c:e9:c4:20: 50:ca:f8:90:c9:1a:1f:9a:f8:81:b0:04:63:14:c8: 95:27:4f:15:cb:6f:17:2b:ea:e6:d5:c0:dc:18:56: 42:94:7d:f0:6a:f9:3f:c4:98:94:b0:f4:d0:9a:39: 2c:5c:8c:9e:a4:3d:49:3a:8b:d2:6a:00:4f:2f:33: a4:4f:c7:35:21:cd:46:7f:b9:5b:d3:96:af:73:15: 00:16:2a:9b:81:77:01:79:6c:99:e3:d3:95:04:ed: da:b5:a1:8f:f0:e6:47:7a:3e:2f:98:91:58:81:6f: 8f:63:d5:f4:c0:17:07:58:9a:a8:7a:8a:1e:12:e7: d1:20:4f:af:d5:27:b7:dd:05:7a:3d:c3:ce:10:d1: e4:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:D3:48:76:35:2C:F0:4F:68:3C:4F:58:6C:21:A5:B2:28:71:CF:15 X509v3 Authority Key Identifier: keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:15:ae:c4:df:d3:d2:b6:2b:cf:3e:fd:fc:f0:dc:68:6f:7e: 41:c3:1b:9a:ea:2a:88:7b:5f:1c:1d:dd:a1:80:b1:4d:c2:1a: bf:87:1f:20:92:e3:4b:49:77:09:c3:d4:ff:31:60:6c:ba:c0: 64:ad:87:34:29:92:31:72:78:1e:d9:2f:2b:9b:dc:f1:a3:5a: b6:10:8d:9f:93:0f:dd:28:6c:de:9d:95:4b:f6:90:34:85:e3: 23:67:5d:4b:c9:32:5e:80:69:6c:29:0a:16:ca:3a:dd:8f:e6: e8:7c:c3:32:30:27:19:8e:0d:6a:86:61:50:e2:57:76:3e:f2: 78:1f:d0:cc:6a:96:87:dc:6a:67:fa:d7:c6:12:1c:0c:80:69: e1:36:fd:f3:78:03:35:7f:2e:9c:4e:ce:2a:97:2c:17:e1:e0: 09:b1:84:1c:07:05:ec:98:6b:27:a4:e4:04:1b:fe:3b:c7:7c: ba:29:cc:31:41:db:7e:c6:ea:76:1e:b3:66:3f:d4:d9:58:e3: cd:c6:31:de:49:05:3c:de:ca:d0:27:72:2f:a4:18:9e:18:c3: a9:90:22:db:b0:99:81:e5:da:ad:d9:80:96:23:c6:9e:48:95: 25:32:c5:a0:6f:41:c8:80:83:f1:9a:c4:2c:8b:c3:12:7e:dc: 0e:22:8e:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuqkmAylPQne27vE3NLvasaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjYWRmYjljZmNkYTg0MjYyMTJkZDdkODg3M2I1ZmU0OGI0 MTJmMmEwHhcNMjYwMTExMDEwMTE4WhcNMjYwMTEyMDEwMTE4WjAzMTEwLwYDVQQD EyhhOGQzNDg3NjM1MmNmMDRmNjgzYzRmNTg2YzIxYTViMjI4NzFjZjE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt4zrm8D3iMdg0NLNB60njJag3dbl qDmYBS5SLp0x0JC+WdyURdS4fISsZTDTG3R3AMJD8nWwzJzUL/lpcToA9Ze7YUD2 CdLO1KlL8hyHUutduaFRbHsjL+8poQnTDVNIzvwDikUgcpBxl6ni/AWA+raHWUzp xCBQyviQyRofmviBsARjFMiVJ08Vy28XK+rm1cDcGFZClH3wavk/xJiUsPTQmjks XIyepD1JOovSagBPLzOkT8c1Ic1Gf7lb05avcxUAFiqbgXcBeWyZ49OVBO3ataGP 8OZHej4vmJFYgW+PY9X0wBcHWJqoeooeEufRIE+v1Se33QV6PcPOENHkTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKjTSHY1LPBPaDxPWGwhpbIocc8VMB8GA1UdIwQY MBaAFByt+5z82oQmIS3X2Ic7X+SLQS8qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9jODQwNmQtYTU2NC00Nzk1LTk4YjAt ODY4MTYwNjY4MzgyLzEvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My9jODQwNmQtYTU2NC00Nzk1LTk4YjAtODY4MTYwNjY4Mzgy LzEvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXBWuxN/T 0rYrzz79/PDcaG9+QcMbmuoqiHtfHB3doYCxTcIav4cfIJLjS0l3CcPU/zFgbLrA ZK2HNCmSMXJ4HtkvK5vc8aNathCNn5MP3Shs3p2VS/aQNIXjI2ddS8kyXoBpbCkK Fso63Y/m6HzDMjAnGY4NaoZhUOJXdj7yeB/QzGqWh9xqZ/rXxhIcDIBp4Tb983gD NX8unE7OKpcsF+HgCbGEHAcF7JhrJ6TkBBv+O8d8uinMMUHbfsbqdh6zZj/U2Vjj zcYx3kkFPN7K0CdyL6QYnhjDqZAi27CZgeXardmAliPGnkiVJTLFoG9ByICD8ZrE LIvDEn7cDiKOtg== -----END CERTIFICATE-----Generated at Sun Jan 11 11:33:02 2026 by rpki-client