This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/ea2c50-afca-40b1-9381-7decf1e47865/1/APkIwDKKjpc_pArFL8M359PE_tA.mft File: APkIwDKKjpc_pArFL8M359PE_tA.mft (raw, json) Hash identifier: 7jaLH8l2etBJPYPcA5V6blaP7hIw8LAz30Wv5R+0/UU= Subject key identifier: 4D:17:72:0B:C2:37:0E:AB:EC:E9:DD:AC:C5:BE:D4:F1:0F:ED:72:F8 Authority key identifier: 00:F9:08:C0:32:8A:8E:97:3F:A4:0A:C5:2F:C3:37:E7:D3:C4:FE:D0 Certificate issuer: /CN=00f908c0328a8e973fa40ac52fc337e7d3c4fed0 Certificate serial: 019C43226C716C9C8EDE9FA2141A309A892E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/APkIwDKKjpc_pArFL8M359PE_tA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/ea2c50-afca-40b1-9381-7decf1e47865/1/APkIwDKKjpc_pArFL8M359PE_tA.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 16:00:55 +0000 Manifest this update: Mon 09 Feb 2026 16:00:55 +0000 Manifest next update: Tue 10 Feb 2026 16:00:55 +0000 Files and hashes: 1: APkIwDKKjpc_pArFL8M359PE_tA.crl (hash: QdswFCr5UoFBMtOBuQPjK1M/sC5oC95SFCfUlEBLFcw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/ea2c50-afca-40b1-9381-7decf1e47865/1/APkIwDKKjpc_pArFL8M359PE_tA.crl rsync://rpki.ripe.net/repository/DEFAULT/09/ea2c50-afca-40b1-9381-7decf1e47865/1/APkIwDKKjpc_pArFL8M359PE_tA.mft rsync://rpki.ripe.net/repository/DEFAULT/APkIwDKKjpc_pArFL8M359PE_tA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:6c:71:6c:9c:8e:de:9f:a2:14:1a:30:9a:89:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00f908c0328a8e973fa40ac52fc337e7d3c4fed0 Validity Not Before: Feb 9 16:00:55 2026 GMT Not After : Feb 10 16:00:55 2026 GMT Subject: CN=4d17720bc2370eabece9ddacc5bed4f10fed72f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:8b:d6:7e:d7:ec:9a:24:c7:64:98:f2:d0:8e: 17:3c:61:c7:e5:ee:58:4a:74:d4:50:6d:0f:b8:bc: 17:7f:7c:2a:b7:24:0f:0c:04:f5:e8:4e:2d:f9:ed: cc:c6:e6:b8:9c:b1:46:8d:07:b4:fd:c4:35:ad:be: 48:b5:93:80:a8:08:80:37:f0:61:2e:c8:0b:e2:af: d7:0d:8d:16:96:a6:3b:d7:48:82:b4:d6:af:87:9e: b7:d9:86:58:6a:04:28:03:3a:7a:ac:e8:a9:4f:a6: ff:84:ed:29:d6:8c:8f:93:d3:1f:ca:d7:20:2f:61: 19:43:07:5f:3c:a4:2f:d2:e2:e7:37:df:17:66:3d: 02:de:37:c2:d2:4c:f5:40:06:2d:c5:a3:e2:2c:86: c0:ed:a0:0f:3c:ae:d6:6c:2f:ca:b3:4e:15:f2:64: e7:e6:8a:76:68:20:7d:30:e0:8c:76:16:41:3a:78: 6a:29:dd:93:cd:70:70:fb:1d:a0:61:1d:ed:33:30: 0a:23:66:a3:a6:ae:d1:a2:4e:ef:bd:eb:17:46:3d: 11:32:dd:98:c2:7b:e8:b9:9e:48:1c:c5:eb:2b:d7: eb:79:63:48:14:2c:93:6c:e0:a5:81:f5:e3:63:ef: e7:36:30:38:fa:3d:a2:af:95:f4:a1:0b:59:73:03: e1:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:17:72:0B:C2:37:0E:AB:EC:E9:DD:AC:C5:BE:D4:F1:0F:ED:72:F8 X509v3 Authority Key Identifier: keyid:00:F9:08:C0:32:8A:8E:97:3F:A4:0A:C5:2F:C3:37:E7:D3:C4:FE:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/APkIwDKKjpc_pArFL8M359PE_tA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea2c50-afca-40b1-9381-7decf1e47865/1/APkIwDKKjpc_pArFL8M359PE_tA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea2c50-afca-40b1-9381-7decf1e47865/1/APkIwDKKjpc_pArFL8M359PE_tA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ba:a0:ce:d1:05:b8:69:e2:d4:3f:30:34:7b:c4:e6:94:57:e8: fa:f8:b7:6f:7b:19:9d:5b:c2:49:f0:11:86:f4:c3:b0:87:3d: fe:63:fb:ad:f5:18:c9:d7:a4:5a:09:32:64:27:72:fb:ff:ce: 84:2e:39:4a:94:1f:db:bc:a3:6f:eb:00:d5:40:1a:52:4d:33: 83:99:1a:17:54:25:4d:b1:3c:2c:38:2d:38:8d:70:97:25:68: 83:0a:2c:53:ea:33:e1:ed:b2:83:a5:bf:95:0a:f9:e0:b2:cd: 87:64:68:9b:7a:3a:35:50:5b:c4:94:66:64:0a:3d:01:ea:98: ee:d2:d5:37:25:41:7c:56:2c:18:60:a2:1c:b7:e5:c4:30:bb: 00:6a:b5:41:3f:dc:6c:2a:26:0e:ea:6f:12:44:8e:72:1f:52: 78:7d:ec:23:06:1d:77:d5:7a:01:33:a5:6b:fa:b7:62:bf:4a: 78:a8:b6:2b:18:67:78:b5:9c:d2:40:41:ff:29:24:a4:eb:45: a9:b2:2b:bb:d7:6b:54:cd:b3:7e:d0:e9:7a:e9:1a:44:3c:05: 1c:f9:ac:a9:b4:a5:37:df:4a:f4:b1:c8:bb:43:0d:52:5a:17: 05:2f:f1:d9:68:20:69:85:a6:0d:29:3d:eb:66:99:b2:88:60: b0:61:48:5f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDImxxbJyO3p+iFBowmokuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZjkwOGMwMzI4YThlOTczZmE0MGFjNTJmYzMzN2U3ZDNj NGZlZDAwHhcNMjYwMjA5MTYwMDU1WhcNMjYwMjEwMTYwMDU1WjAzMTEwLwYDVQQD Eyg0ZDE3NzIwYmMyMzcwZWFiZWNlOWRkYWNjNWJlZDRmMTBmZWQ3MmY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6IvWftfsmiTHZJjy0I4XPGHH5e5Y SnTUUG0PuLwXf3wqtyQPDAT16E4t+e3Mxua4nLFGjQe0/cQ1rb5ItZOAqAiAN/Bh LsgL4q/XDY0WlqY710iCtNavh5632YZYagQoAzp6rOipT6b/hO0p1oyPk9Mfytcg L2EZQwdfPKQv0uLnN98XZj0C3jfC0kz1QAYtxaPiLIbA7aAPPK7WbC/Ks04V8mTn 5op2aCB9MOCMdhZBOnhqKd2TzXBw+x2gYR3tMzAKI2ajpq7Rok7vvesXRj0RMt2Y wnvouZ5IHMXrK9freWNIFCyTbOClgfXjY+/nNjA4+j2ir5X0oQtZcwPhCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE0XcgvCNw6r7OndrMW+1PEP7XL4MB8GA1UdIwQY MBaAFAD5CMAyio6XP6QKxS/DN+fTxP7QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVBrSXdES0tqcGNfcEFyRkw4TTM1OVBFX3RBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9lYTJjNTAtYWZjYS00MGIxLTkzODEt N2RlY2YxZTQ3ODY1LzEvQVBrSXdES0tqcGNfcEFyRkw4TTM1OVBFX3RBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS9lYTJjNTAtYWZjYS00MGIxLTkzODEtN2RlY2YxZTQ3ODY1 LzEvQVBrSXdES0tqcGNfcEFyRkw4TTM1OVBFX3RBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuqDO0QW4 aeLUPzA0e8TmlFfo+vi3b3sZnVvCSfARhvTDsIc9/mP7rfUYydekWgkyZCdy+//O hC45SpQf27yjb+sA1UAaUk0zg5kaF1QlTbE8LDgtOI1wlyVogwosU+oz4e2yg6W/ lQr54LLNh2Rom3o6NVBbxJRmZAo9AeqY7tLVNyVBfFYsGGCiHLflxDC7AGq1QT/c bComDupvEkSOch9SeH3sIwYdd9V6ATOla/q3Yr9KeKi2KxhneLWc0kBB/ykkpOtF qbIru9drVM2zftDpeukaRDwFHPmsqbSlN99K9LHIu0MNUloXBS/x2WggaYWmDSk9 62aZsohgsGFIXw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:23 2026 by rpki-client