This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/3bab57-db3b-4be8-b279-00f56f4721c2/1/aesKgBz9tLWANaXQdaKQSy6qX5E.mft File: aesKgBz9tLWANaXQdaKQSy6qX5E.mft (raw, json) Hash identifier: BRo15Qp/UPG7wmdBgJFJwUQD800anlvHDkbZygJylwY= Subject key identifier: 4F:0A:42:CB:7B:B8:29:95:0B:93:9B:FD:9B:8E:D0:96:E1:35:57:00 Authority key identifier: 69:EB:0A:80:1C:FD:B4:B5:80:35:A5:D0:75:A2:90:4B:2E:AA:5F:91 Certificate issuer: /CN=69eb0a801cfdb4b58035a5d075a2904b2eaa5f91 Certificate serial: 019C4321E1FA6E99435C971E2F8406C933CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aesKgBz9tLWANaXQdaKQSy6qX5E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/3bab57-db3b-4be8-b279-00f56f4721c2/1/aesKgBz9tLWANaXQdaKQSy6qX5E.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 16:00:19 +0000 Manifest this update: Mon 09 Feb 2026 16:00:19 +0000 Manifest next update: Tue 10 Feb 2026 16:00:19 +0000 Files and hashes: 1: aesKgBz9tLWANaXQdaKQSy6qX5E.crl (hash: O6DavFc7NDpUQtPl0zuxN6ZFjUnEhQUcsZiFyhTGrkk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/3bab57-db3b-4be8-b279-00f56f4721c2/1/aesKgBz9tLWANaXQdaKQSy6qX5E.crl rsync://rpki.ripe.net/repository/DEFAULT/07/3bab57-db3b-4be8-b279-00f56f4721c2/1/aesKgBz9tLWANaXQdaKQSy6qX5E.mft rsync://rpki.ripe.net/repository/DEFAULT/aesKgBz9tLWANaXQdaKQSy6qX5E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:e1:fa:6e:99:43:5c:97:1e:2f:84:06:c9:33:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69eb0a801cfdb4b58035a5d075a2904b2eaa5f91 Validity Not Before: Feb 9 16:00:19 2026 GMT Not After : Feb 10 16:00:19 2026 GMT Subject: CN=4f0a42cb7bb829950b939bfd9b8ed096e1355700 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:f2:24:72:6e:14:61:0e:56:1a:59:b7:34:34: e1:1a:94:54:6d:7c:d6:aa:11:63:25:ff:77:89:9c: eb:a1:7c:1d:86:b4:65:d5:63:e1:47:06:ab:f4:1e: a6:03:06:51:e0:2c:0e:f4:4c:a5:ce:6a:4f:e6:83: 31:9e:d7:d8:7b:18:fe:65:d5:46:17:81:f7:71:b3: 76:ff:c9:4c:82:9d:03:96:2b:22:c3:88:94:47:8c: 77:a0:00:8e:ee:82:e1:23:69:72:41:1f:8d:d9:38: 5b:21:3e:88:ec:33:d8:6e:6f:31:78:ef:7a:32:62: 75:cb:f5:3f:0f:66:9f:e1:35:06:35:d5:a3:df:20: f6:ae:02:b4:6f:25:ac:a9:aa:2b:ce:b4:63:50:4a: e7:98:6d:05:ea:09:6b:79:c5:ce:31:35:1b:f5:e1: 4c:92:d3:67:e0:f7:48:9d:f7:c6:ed:5e:1d:ac:7d: ba:e5:c6:4e:86:35:64:12:df:82:15:1b:2a:b3:f8: 47:ba:14:89:13:05:34:44:34:97:46:71:b4:85:1f: ad:38:bd:5f:25:a2:11:9c:6e:a0:4d:8a:b5:02:aa: ad:5a:bf:a5:79:6d:e9:24:ab:2b:4f:d9:31:56:d6: b0:28:56:2f:90:c9:c5:f8:c1:a3:2e:2b:57:05:80: 78:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:0A:42:CB:7B:B8:29:95:0B:93:9B:FD:9B:8E:D0:96:E1:35:57:00 X509v3 Authority Key Identifier: keyid:69:EB:0A:80:1C:FD:B4:B5:80:35:A5:D0:75:A2:90:4B:2E:AA:5F:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aesKgBz9tLWANaXQdaKQSy6qX5E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/3bab57-db3b-4be8-b279-00f56f4721c2/1/aesKgBz9tLWANaXQdaKQSy6qX5E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/3bab57-db3b-4be8-b279-00f56f4721c2/1/aesKgBz9tLWANaXQdaKQSy6qX5E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:4c:ac:be:59:ff:9d:ad:9d:2d:11:d9:a8:d4:86:45:38:75: 8d:5f:5e:04:78:c9:00:b8:50:32:94:d6:aa:59:ab:dd:57:72: 5e:94:60:ec:c3:02:03:2d:35:49:bb:86:13:d7:72:4d:1f:a2: 29:67:74:d6:3f:bd:32:c5:17:11:90:ce:7b:b3:a1:ea:ba:fc: e1:a2:f8:78:5a:3f:ba:2e:db:86:ed:24:2e:ad:af:20:3d:40: f2:8d:bd:68:dd:ed:74:30:dc:70:45:ab:1b:26:78:d5:28:29: 4d:eb:e4:67:12:4a:4c:ae:5f:d7:59:ce:11:4a:df:21:05:d1: 44:fb:50:5d:7a:33:2a:89:59:b7:87:cd:66:5f:8b:a1:90:83: 83:52:49:42:80:f0:66:13:a5:d0:09:c9:c1:20:e8:75:f4:b0: 85:55:73:9b:41:0e:49:f1:92:d7:de:c3:56:1f:ef:06:42:62: dc:3d:63:9f:d7:ed:0d:98:1a:7d:87:28:7a:c0:89:43:bc:9d: 42:dc:27:b7:75:56:0c:60:26:d3:97:ec:59:e1:0e:2e:c3:ab: 7c:c3:01:e2:fa:bc:26:c3:9d:bf:e4:9a:89:ef:6b:87:52:07: 61:9e:ef:23:1b:73:4c:d6:01:ad:5b:e8:da:14:ba:af:59:af: 76:ec:02:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIeH6bplDXJceL4QGyTPMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ZWIwYTgwMWNmZGI0YjU4MDM1YTVkMDc1YTI5MDRiMmVh YTVmOTEwHhcNMjYwMjA5MTYwMDE5WhcNMjYwMjEwMTYwMDE5WjAzMTEwLwYDVQQD Eyg0ZjBhNDJjYjdiYjgyOTk1MGI5MzliZmQ5YjhlZDA5NmUxMzU1NzAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6vIkcm4UYQ5WGlm3NDThGpRUbXzW qhFjJf93iZzroXwdhrRl1WPhRwar9B6mAwZR4CwO9EylzmpP5oMxntfYexj+ZdVG F4H3cbN2/8lMgp0Dlisiw4iUR4x3oACO7oLhI2lyQR+N2ThbIT6I7DPYbm8xeO96 MmJ1y/U/D2af4TUGNdWj3yD2rgK0byWsqaorzrRjUErnmG0F6glrecXOMTUb9eFM ktNn4PdInffG7V4drH265cZOhjVkEt+CFRsqs/hHuhSJEwU0RDSXRnG0hR+tOL1f JaIRnG6gTYq1AqqtWr+leW3pJKsrT9kxVtawKFYvkMnF+MGjLitXBYB4JwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE8KQst7uCmVC5Ob/ZuO0JbhNVcAMB8GA1UdIwQY MBaAFGnrCoAc/bS1gDWl0HWikEsuql+RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWVzS2dCejl0TFdBTmFYUWRhS1FTeTZxWDVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy8zYmFiNTctZGIzYi00YmU4LWIyNzkt MDBmNTZmNDcyMWMyLzEvYWVzS2dCejl0TFdBTmFYUWRhS1FTeTZxWDVFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy8zYmFiNTctZGIzYi00YmU4LWIyNzktMDBmNTZmNDcyMWMy LzEvYWVzS2dCejl0TFdBTmFYUWRhS1FTeTZxWDVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYEysvln/ na2dLRHZqNSGRTh1jV9eBHjJALhQMpTWqlmr3VdyXpRg7MMCAy01SbuGE9dyTR+i KWd01j+9MsUXEZDOe7Oh6rr84aL4eFo/ui7bhu0kLq2vID1A8o29aN3tdDDccEWr GyZ41SgpTevkZxJKTK5f11nOEUrfIQXRRPtQXXozKolZt4fNZl+LoZCDg1JJQoDw ZhOl0AnJwSDodfSwhVVzm0EOSfGS197DVh/vBkJi3D1jn9ftDZgafYcoesCJQ7yd Qtwnt3VWDGAm05fsWeEOLsOrfMMB4vq8JsOdv+Saie9rh1IHYZ7vIxtzTNYBrVvo 2hS6r1mvduwC6Q== -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:24 2026 by rpki-client