This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft File: AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft (raw, json) Hash identifier: 8D6yJNOKAWL8nYAElvzNsTq6aSrDtl/syBKdROhERcU= Subject key identifier: A8:5F:F7:8E:E6:9B:41:66:52:69:88:C1:B7:BF:5C:8F:76:03:B9:0F Authority key identifier: 02:51:F6:AB:E0:BB:26:BF:E4:85:9E:54:DE:E0:FD:C9:A5:B7:8A:05 Certificate issuer: /CN=0251f6abe0bb26bfe4859e54dee0fdc9a5b78a05 Certificate serial: 019C43230442491159FACCD2A3C80B72CC0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 16:01:34 +0000 Manifest this update: Mon 09 Feb 2026 16:01:34 +0000 Manifest next update: Tue 10 Feb 2026 16:01:34 +0000 Files and hashes: 1: AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl (hash: vnsspvy4ZspVdlJJAodEYmtvou5XEc4aLnif8mPPQTo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:23:04:42:49:11:59:fa:cc:d2:a3:c8:0b:72:cc:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0251f6abe0bb26bfe4859e54dee0fdc9a5b78a05 Validity Not Before: Feb 9 16:01:34 2026 GMT Not After : Feb 10 16:01:34 2026 GMT Subject: CN=a85ff78ee69b4166526988c1b7bf5c8f7603b90f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:64:0c:a3:e8:a6:6f:ae:4c:84:43:a7:a4:16: a5:96:7d:93:98:90:e8:32:3a:e3:72:69:7d:f0:04: c2:82:e4:35:0f:07:2e:7e:79:df:47:9e:d8:08:d1: cf:db:90:83:7c:6c:7a:f9:b3:c6:47:50:50:d4:1a: 88:4e:55:46:22:49:20:07:4f:95:7b:30:20:53:10: 49:11:b4:06:e6:44:9c:81:85:85:86:ca:99:ff:72: b7:35:c5:2e:36:da:b2:40:9d:69:b2:7a:b7:c0:21: 1a:4d:72:07:ab:73:20:d7:e8:8f:15:dc:f6:ba:9e: 28:48:14:44:91:4e:94:5a:65:04:4b:89:b8:a3:df: f9:8c:30:0a:d0:c7:e8:b4:9c:dd:ca:4b:91:32:40: 08:d4:2a:8c:0d:07:40:d7:1a:7d:d9:a9:f3:a3:c9: 90:91:eb:b6:12:3e:7e:bb:eb:af:dd:03:83:cf:d8: 0a:56:e7:13:34:50:9f:28:a6:c3:a2:07:49:c4:b5: 16:1a:c9:cc:09:c6:19:fc:22:aa:ba:d1:27:1a:ec: 39:37:e3:2b:8c:70:b3:90:bc:3e:31:33:d5:f4:63: 52:69:25:bf:20:2c:59:4f:13:5a:bb:79:b6:0f:f5: 71:8a:1e:2b:cb:1c:d1:45:8c:cc:f5:19:e7:db:9f: 35:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:5F:F7:8E:E6:9B:41:66:52:69:88:C1:B7:BF:5C:8F:76:03:B9:0F X509v3 Authority Key Identifier: keyid:02:51:F6:AB:E0:BB:26:BF:E4:85:9E:54:DE:E0:FD:C9:A5:B7:8A:05 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:1d:23:27:79:2e:9f:c3:1f:7d:7e:ff:c3:4c:0a:73:d9:9b: 21:a5:65:77:6e:a7:51:ed:6c:a9:ac:52:c4:bd:bf:7d:86:e1: 0f:9d:63:e8:4f:1b:c1:ca:13:91:5d:53:12:9e:dd:47:f7:35: a1:42:f8:3e:5f:23:24:de:e3:9e:11:7f:4e:bb:a1:20:3d:76: 08:10:ec:5b:1b:e7:27:b4:02:8d:3d:78:19:68:02:cd:9f:98: 7d:3a:c5:a3:36:f6:15:96:df:fa:7b:1d:40:8b:0b:fc:d4:c6: 96:d2:61:5e:97:d5:ab:42:ff:0d:02:09:16:93:cb:36:79:17: a5:d1:cd:09:b6:a2:8c:dc:c4:92:b9:a1:30:a6:d6:a3:6e:47: 1c:26:58:66:9a:23:29:b3:53:24:8e:c9:9c:0e:c0:bf:e9:d2: ae:c7:3e:28:d0:d5:f5:ff:9e:29:1a:64:88:b1:ef:1d:ba:83: b0:12:03:26:42:c3:a2:4d:83:16:85:da:19:91:03:6b:86:dd: 5b:52:0f:8e:17:b8:24:90:11:af:85:fb:f8:9e:64:b7:37:f0: b6:b8:d6:89:59:a4:2d:66:57:0b:51:fb:a4:e9:01:13:38:f9: 2d:ec:9c:13:59:a1:20:f7:77:a7:16:6f:3b:2d:97:6f:85:7d: 64:89:45:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIwRCSRFZ+szSo8gLcswLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyNTFmNmFiZTBiYjI2YmZlNDg1OWU1NGRlZTBmZGM5YTVi NzhhMDUwHhcNMjYwMjA5MTYwMTM0WhcNMjYwMjEwMTYwMTM0WjAzMTEwLwYDVQQD EyhhODVmZjc4ZWU2OWI0MTY2NTI2OTg4YzFiN2JmNWM4Zjc2MDNiOTBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApGQMo+imb65MhEOnpBalln2TmJDo Mjrjcml98ATCguQ1DwcufnnfR57YCNHP25CDfGx6+bPGR1BQ1BqITlVGIkkgB0+V ezAgUxBJEbQG5kScgYWFhsqZ/3K3NcUuNtqyQJ1psnq3wCEaTXIHq3Mg1+iPFdz2 up4oSBREkU6UWmUES4m4o9/5jDAK0MfotJzdykuRMkAI1CqMDQdA1xp92anzo8mQ keu2Ej5+u+uv3QODz9gKVucTNFCfKKbDogdJxLUWGsnMCcYZ/CKqutEnGuw5N+Mr jHCzkLw+MTPV9GNSaSW/ICxZTxNau3m2D/Vxih4ryxzRRYzM9Rnn2581twIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKhf947mm0FmUmmIwbe/XI92A7kPMB8GA1UdIwQY MBaAFAJR9qvguya/5IWeVN7g/cmlt4oFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWxIMnEtQzdKcl9raFo1VTN1RDl5YVczaWdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS8yZmFiZjUtZTNlZC00ZDlhLTljZDgt MmY0ZWI5YzA2MDM1LzEvQWxIMnEtQzdKcl9raFo1VTN1RDl5YVczaWdVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS8yZmFiZjUtZTNlZC00ZDlhLTljZDgtMmY0ZWI5YzA2MDM1 LzEvQWxIMnEtQzdKcl9raFo1VTN1RDl5YVczaWdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUB0jJ3ku n8MffX7/w0wKc9mbIaVld26nUe1sqaxSxL2/fYbhD51j6E8bwcoTkV1TEp7dR/c1 oUL4Pl8jJN7jnhF/TruhID12CBDsWxvnJ7QCjT14GWgCzZ+YfTrFozb2FZbf+nsd QIsL/NTGltJhXpfVq0L/DQIJFpPLNnkXpdHNCbaijNzEkrmhMKbWo25HHCZYZpoj KbNTJI7JnA7Av+nSrsc+KNDV9f+eKRpkiLHvHbqDsBIDJkLDok2DFoXaGZEDa4bd W1IPjhe4JJARr4X7+J5ktzfwtrjWiVmkLWZXC1H7pOkBEzj5LeycE1mhIPd3pxZv Oy2Xb4V9ZIlF4w== -----END CERTIFICATE-----Generated at Mon Feb 9 22:17:49 2026 by rpki-client