This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft File: aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft (raw, json) Hash identifier: 2ViF2BmlCERFC7xQFuwb/p2Aqs31SmNSRaVq3ZR/aZE= Subject key identifier: EE:93:8B:C6:3D:D6:6C:7C:79:F6:C8:AC:AA:A9:D0:5E:B6:00:14:AC Authority key identifier: 69:E3:AD:8B:02:24:52:1C:D0:AE:74:92:C6:94:BC:2D:4E:E1:FD:B2 Certificate issuer: /CN=69e3ad8b0224521cd0ae7492c694bc2d4ee1fdb2 Certificate serial: 019C4321E6E25B9D920291934BCCDF889FE0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft Manifest number: 0C97 Signing time: Mon 09 Feb 2026 16:00:20 +0000 Manifest this update: Mon 09 Feb 2026 16:00:20 +0000 Manifest next update: Tue 10 Feb 2026 16:00:20 +0000 Files and hashes: 1: aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl (hash: vIHNDk1otkHbQKu/+V52M1k5gWBRLHeS0LHmiI47NMw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:e6:e2:5b:9d:92:02:91:93:4b:cc:df:88:9f:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69e3ad8b0224521cd0ae7492c694bc2d4ee1fdb2 Validity Not Before: Feb 9 16:00:20 2026 GMT Not After : Feb 10 16:00:20 2026 GMT Subject: CN=ee938bc63dd66c7c79f6c8acaaa9d05eb60014ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b2:d3:f5:1c:d7:18:c5:f3:a2:9b:e0:b4:af: 44:39:dc:77:87:8d:76:3a:8a:15:a9:09:e8:3b:d3: 3a:48:16:e6:d1:e9:0d:dc:38:08:04:4a:4f:9c:09: 56:17:c3:d2:84:c9:f0:41:ae:fa:f2:4e:eb:cb:fe: 8f:fe:01:96:b9:f4:4e:be:54:40:c1:20:0e:81:c1: 6d:49:2d:38:21:4a:d0:4f:7f:85:11:08:93:22:54: fc:6a:04:b3:f8:d8:7d:4c:27:3f:57:00:1a:ad:75: ec:d0:51:03:f8:ba:2b:f1:56:e7:a2:23:c6:88:ec: 12:0e:73:d9:c7:ad:13:8d:6b:5a:a0:ab:20:8f:dd: 98:89:cd:e2:9d:d9:a3:d3:ef:86:a7:c3:3f:87:ed: b0:9a:ad:e6:ef:17:e7:0c:ae:9c:70:2b:c1:1a:c7: e8:a9:25:47:34:3c:bc:52:0c:a9:13:e8:24:0a:b3: d5:a3:18:b3:6f:55:38:2a:11:fc:68:30:93:7e:9b: 34:fd:2e:0e:c4:49:17:a6:d0:98:ea:d7:97:6f:57: f5:a7:7f:b3:8c:6c:94:b9:05:ff:0f:a3:61:d5:a0: aa:d3:5a:5e:f4:30:1d:ab:4e:6e:ff:40:3f:f6:ed: 76:40:84:41:a9:f8:6a:c4:2f:6e:8a:d7:db:60:62: b6:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:93:8B:C6:3D:D6:6C:7C:79:F6:C8:AC:AA:A9:D0:5E:B6:00:14:AC X509v3 Authority Key Identifier: keyid:69:E3:AD:8B:02:24:52:1C:D0:AE:74:92:C6:94:BC:2D:4E:E1:FD:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:4a:4c:79:ec:c4:b5:f5:59:43:09:a3:90:d3:33:d9:4a:9b: 5e:b8:ac:0a:76:a2:01:e8:04:67:20:32:ba:4a:23:e3:08:0e: ea:98:f0:f0:dc:ba:96:5a:83:ec:2c:37:e5:84:fe:d9:ca:17: 1d:90:32:f9:a9:b7:7c:78:06:26:0f:c9:c0:8c:9b:e9:95:7a: a1:66:aa:70:91:40:db:5f:78:18:b3:4c:e7:e6:c2:68:33:f8: 61:d6:04:e9:11:e6:be:e2:e0:af:ef:cb:3b:2e:8d:d5:19:f5: 66:8d:2f:8b:91:14:d3:ab:2b:b1:7f:49:92:2f:7c:a7:48:2a: 76:bc:70:32:7b:f7:f6:82:66:bf:35:b9:94:52:3e:90:5e:1d: 72:ef:a0:47:00:a9:67:27:c0:c3:6f:ce:ae:a4:16:29:04:a3: d7:9d:7f:4b:f7:c8:95:68:54:15:6e:92:dd:91:a7:0a:5a:97: 98:8f:62:ca:bd:4b:59:84:f1:21:3a:b3:90:02:3a:06:62:dd: d7:07:6c:e5:a4:df:06:d3:17:0e:7d:c5:31:31:31:2c:2f:3d: dd:a9:d1:a7:bf:98:09:f0:5b:d5:cd:22:93:66:6a:a1:b3:ee: 3a:07:ab:59:ff:d2:23:56:85:09:31:c0:10:39:c4:9c:f4:12: 00:08:1f:6b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIebiW52SApGTS8zfiJ/gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ZTNhZDhiMDIyNDUyMWNkMGFlNzQ5MmM2OTRiYzJkNGVl MWZkYjIwHhcNMjYwMjA5MTYwMDIwWhcNMjYwMjEwMTYwMDIwWjAzMTEwLwYDVQQD EyhlZTkzOGJjNjNkZDY2YzdjNzlmNmM4YWNhYWE5ZDA1ZWI2MDAxNGFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo7LT9RzXGMXzopvgtK9EOdx3h412 OooVqQnoO9M6SBbm0ekN3DgIBEpPnAlWF8PShMnwQa768k7ry/6P/gGWufROvlRA wSAOgcFtSS04IUrQT3+FEQiTIlT8agSz+Nh9TCc/VwAarXXs0FED+Lor8VbnoiPG iOwSDnPZx60TjWtaoKsgj92Yic3indmj0++Gp8M/h+2wmq3m7xfnDK6ccCvBGsfo qSVHNDy8UgypE+gkCrPVoxizb1U4KhH8aDCTfps0/S4OxEkXptCY6teXb1f1p3+z jGyUuQX/D6Nh1aCq01pe9DAdq05u/0A/9u12QIRBqfhqxC9uitfbYGK2LQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO6Ti8Y91mx8efbIrKqp0F62ABSsMB8GA1UdIwQY MBaAFGnjrYsCJFIc0K50ksaUvC1O4f2yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWVPdGl3SWtVaHpRcm5TU3hwUzhMVTdoX2JJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9iZDhlYzEtMTdhNC00NGRmLTg4M2Qt ZTk3ZDIyNmZiZWVhLzEvYWVPdGl3SWtVaHpRcm5TU3hwUzhMVTdoX2JJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9iZDhlYzEtMTdhNC00NGRmLTg4M2QtZTk3ZDIyNmZiZWVh LzEvYWVPdGl3SWtVaHpRcm5TU3hwUzhMVTdoX2JJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADkpMeezE tfVZQwmjkNMz2UqbXrisCnaiAegEZyAyukoj4wgO6pjw8Ny6llqD7Cw35YT+2coX HZAy+am3fHgGJg/JwIyb6ZV6oWaqcJFA2194GLNM5+bCaDP4YdYE6RHmvuLgr+/L Oy6N1Rn1Zo0vi5EU06srsX9Jki98p0gqdrxwMnv39oJmvzW5lFI+kF4dcu+gRwCp ZyfAw2/OrqQWKQSj151/S/fIlWhUFW6S3ZGnClqXmI9iyr1LWYTxITqzkAI6BmLd 1wds5aTfBtMXDn3FMTExLC893anRp7+YCfBb1c0ik2ZqobPuOgerWf/SI1aFCTHA EDnEnPQSAAgfaw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:17:57 2026 by rpki-client