This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/a5d3c1-bd5e-4356-971c-098a02929089/1/a5HhwatXAlaAjt-5y3VZxV3PrWE.mft File: a5HhwatXAlaAjt-5y3VZxV3PrWE.mft (raw, json) Hash identifier: /CjSU5OaBm072dnLX11oIR/KdPNBYKz+x+ocxwelOvo= Subject key identifier: DF:0A:AF:B0:FA:D1:70:35:1D:DA:47:80:AA:7D:0F:B3:9E:7E:AE:72 Authority key identifier: 6B:91:E1:C1:AB:57:02:56:80:8E:DF:B9:CB:75:59:C5:5D:CF:AD:61 Certificate issuer: /CN=6b91e1c1ab570256808edfb9cb7559c55dcfad61 Certificate serial: 019C446B739FEB28E51ADC637610E3F26DB2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a5HhwatXAlaAjt-5y3VZxV3PrWE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/a5d3c1-bd5e-4356-971c-098a02929089/1/a5HhwatXAlaAjt-5y3VZxV3PrWE.mft Manifest number: 0BD0 Signing time: Mon 09 Feb 2026 22:00:18 +0000 Manifest this update: Mon 09 Feb 2026 22:00:18 +0000 Manifest next update: Tue 10 Feb 2026 22:00:18 +0000 Files and hashes: 1: a5HhwatXAlaAjt-5y3VZxV3PrWE.crl (hash: 18iZVQ9TxIypgxqe3qEv649NqrylLd1vIlXT99+JA18=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/a5d3c1-bd5e-4356-971c-098a02929089/1/a5HhwatXAlaAjt-5y3VZxV3PrWE.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/a5d3c1-bd5e-4356-971c-098a02929089/1/a5HhwatXAlaAjt-5y3VZxV3PrWE.mft rsync://rpki.ripe.net/repository/DEFAULT/a5HhwatXAlaAjt-5y3VZxV3PrWE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:73:9f:eb:28:e5:1a:dc:63:76:10:e3:f2:6d:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6b91e1c1ab570256808edfb9cb7559c55dcfad61 Validity Not Before: Feb 9 22:00:18 2026 GMT Not After : Feb 10 22:00:18 2026 GMT Subject: CN=df0aafb0fad170351dda4780aa7d0fb39e7eae72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:7c:79:76:2c:5a:b8:f9:7d:42:7f:b0:52:77: 28:a8:83:e7:2b:a4:e0:1a:c7:28:56:63:16:41:f6: 2b:c7:2b:1c:c2:9b:0b:79:07:a7:3a:f7:05:6d:e7: 9c:a0:7e:03:db:91:cf:8b:4c:02:c3:df:29:e1:46: 46:be:a6:75:3b:2e:86:a1:f0:a5:ae:f7:e5:12:31: a9:55:0b:21:08:f9:57:eb:2b:3d:4f:f4:7a:24:ae: 14:c4:ee:d2:cd:eb:27:92:97:06:7c:f7:1f:9a:f8: 97:01:e9:fd:c0:01:fc:0d:85:69:73:33:17:b9:fa: 49:51:88:b4:a2:36:14:9f:24:2d:e2:27:bb:b3:f0: 94:a1:df:c7:46:da:ee:43:07:9b:09:03:9c:21:bd: 3d:cb:82:4d:24:86:8f:37:f8:2f:49:7e:e9:de:06: 2e:69:62:cc:98:18:f2:aa:95:ab:ae:2d:1f:76:71: 97:1b:f7:1a:06:d4:b2:b1:6a:9f:e4:4c:1a:5f:6b: 42:20:32:c6:0b:af:f3:6b:7a:a7:ac:ed:10:e9:61: 43:b9:38:62:5d:fe:5a:7a:0a:ce:5d:ed:a8:65:69: 52:40:c1:8a:5e:7d:77:46:d1:fd:59:0b:78:e7:64: 91:9a:c4:d6:7d:5a:a6:6d:e0:d2:d8:98:8a:f7:54: f0:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:0A:AF:B0:FA:D1:70:35:1D:DA:47:80:AA:7D:0F:B3:9E:7E:AE:72 X509v3 Authority Key Identifier: keyid:6B:91:E1:C1:AB:57:02:56:80:8E:DF:B9:CB:75:59:C5:5D:CF:AD:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5HhwatXAlaAjt-5y3VZxV3PrWE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/a5d3c1-bd5e-4356-971c-098a02929089/1/a5HhwatXAlaAjt-5y3VZxV3PrWE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/a5d3c1-bd5e-4356-971c-098a02929089/1/a5HhwatXAlaAjt-5y3VZxV3PrWE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:2d:4b:58:a1:1c:ad:79:56:df:9f:33:1e:3b:21:77:23:8b: 5c:97:74:23:a9:03:e8:06:e5:50:84:48:a8:ee:2c:2b:f2:23: fb:05:d9:3a:ca:90:cd:0d:e0:0f:e2:b1:f6:c6:26:44:a0:9b: bb:49:9c:52:3d:2e:6e:06:cb:b7:0d:a9:ea:c8:c1:bd:a5:90: 8b:95:fd:1d:92:95:00:a1:ab:aa:94:25:de:42:56:7d:aa:7b: 57:53:cb:ea:df:f1:82:56:3f:fe:f9:a2:a8:a3:eb:6d:ae:fa: 2a:d3:a6:c6:26:e4:b9:7b:af:77:d4:4e:76:48:6e:69:70:5b: be:cd:10:48:b7:4a:6d:1a:80:03:69:20:75:78:1d:68:6e:37: ab:00:60:83:28:7d:fd:20:aa:bc:12:74:57:ab:6a:62:7f:1c: 58:35:71:52:9d:08:ce:30:01:b8:98:2a:db:79:7b:14:4b:6e: 55:55:31:83:b4:ed:dd:cd:89:05:1a:9d:22:74:77:34:50:8b: 0a:84:58:61:22:bc:93:3c:21:a3:b4:87:ef:b7:00:af:90:36: d0:88:10:63:86:9e:bd:f8:e5:c6:1e:80:7b:35:1a:4f:3f:35: 4c:6f:e4:e1:b1:3e:e0:b7:19:4e:3f:5e:23:ea:e3:6b:da:de: 15:95:dc:0c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa3Of6yjlGtxjdhDj8m2yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiOTFlMWMxYWI1NzAyNTY4MDhlZGZiOWNiNzU1OWM1NWRj ZmFkNjEwHhcNMjYwMjA5MjIwMDE4WhcNMjYwMjEwMjIwMDE4WjAzMTEwLwYDVQQD EyhkZjBhYWZiMGZhZDE3MDM1MWRkYTQ3ODBhYTdkMGZiMzllN2VhZTcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Hx5dixauPl9Qn+wUncoqIPnK6Tg GscoVmMWQfYrxyscwpsLeQenOvcFbeecoH4D25HPi0wCw98p4UZGvqZ1Oy6GofCl rvflEjGpVQshCPlX6ys9T/R6JK4UxO7SzesnkpcGfPcfmviXAen9wAH8DYVpczMX ufpJUYi0ojYUnyQt4ie7s/CUod/HRtruQwebCQOcIb09y4JNJIaPN/gvSX7p3gYu aWLMmBjyqpWrri0fdnGXG/caBtSysWqf5EwaX2tCIDLGC6/za3qnrO0Q6WFDuThi Xf5aegrOXe2oZWlSQMGKXn13RtH9WQt452SRmsTWfVqmbeDS2JiK91TwvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN8Kr7D60XA1HdpHgKp9D7Oefq5yMB8GA1UdIwQY MBaAFGuR4cGrVwJWgI7fuct1WcVdz61hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYTVIaHdhdFhBbGFBanQtNXkzVlp4VjNQcldFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9hNWQzYzEtYmQ1ZS00MzU2LTk3MWMt MDk4YTAyOTI5MDg5LzEvYTVIaHdhdFhBbGFBanQtNXkzVlp4VjNQcldFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9hNWQzYzEtYmQ1ZS00MzU2LTk3MWMtMDk4YTAyOTI5MDg5 LzEvYTVIaHdhdFhBbGFBanQtNXkzVlp4VjNQcldFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJi1LWKEc rXlW358zHjshdyOLXJd0I6kD6AblUIRIqO4sK/Ij+wXZOsqQzQ3gD+Kx9sYmRKCb u0mcUj0ubgbLtw2p6sjBvaWQi5X9HZKVAKGrqpQl3kJWfap7V1PL6t/xglY//vmi qKPrba76KtOmxibkuXuvd9ROdkhuaXBbvs0QSLdKbRqAA2kgdXgdaG43qwBggyh9 /SCqvBJ0V6tqYn8cWDVxUp0IzjABuJgq23l7FEtuVVUxg7Tt3c2JBRqdInR3NFCL CoRYYSK8kzwho7SH77cAr5A20IgQY4aevfjlxh6AezUaTz81TG/k4bE+4LcZTj9e I+rja9reFZXcDA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:31:19 2026 by rpki-client