This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft File: rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft (raw, json) Hash identifier: 3q2VGTeJcsMDbylpRuJEl0oqv3eCIdCxGKyMy8P04Og= Subject key identifier: B5:3C:C2:7E:3E:9C:1B:BE:CF:8F:C0:26:1E:84:7C:4B:42:9C:B5:53 Authority key identifier: AC:08:81:5E:8C:65:03:60:1F:25:4C:AB:37:1B:EC:47:1B:D7:EA:A6 Certificate issuer: /CN=ac08815e8c6503601f254cab371bec471bd7eaa6 Certificate serial: 019C42B3F147767682AF15884CE544013366 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rAiBXoxlA2AfJUyrNxvsRxvX6qY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft Manifest number: 0C1F Signing time: Mon 09 Feb 2026 14:00:14 +0000 Manifest this update: Mon 09 Feb 2026 14:00:14 +0000 Manifest next update: Tue 10 Feb 2026 14:00:14 +0000 Files and hashes: 1: 24WxHxaeAmm5E1Q3Id3rg_qvvPY.roa (hash: cVrKb1vSqi82yPVZCgvu5xU3xXbeXHexmU9eyiwbU3E=) 2: rAiBXoxlA2AfJUyrNxvsRxvX6qY.crl (hash: t7PRUIwLiTsa4mkNEsD5BQO2Ewy+52CbDipGpt8IL9w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.crl rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft rsync://rpki.ripe.net/repository/DEFAULT/rAiBXoxlA2AfJUyrNxvsRxvX6qY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b3:f1:47:76:76:82:af:15:88:4c:e5:44:01:33:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac08815e8c6503601f254cab371bec471bd7eaa6 Validity Not Before: Feb 9 14:00:14 2026 GMT Not After : Feb 10 14:00:14 2026 GMT Subject: CN=b53cc27e3e9c1bbecf8fc0261e847c4b429cb553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:00:a9:2e:7d:14:17:e5:74:e7:74:58:e2:49: ea:6c:9b:0f:d8:68:58:2f:c3:fe:33:c9:a9:e2:15: f7:e1:48:e7:9c:6a:27:81:1a:7d:ee:81:10:05:9a: ae:1a:0c:4a:33:f2:a8:11:60:f5:73:59:7d:74:0b: 47:7a:39:67:58:63:45:ad:49:a4:4b:b8:70:b2:11: 76:ce:69:a4:d3:38:8d:71:da:51:67:30:ab:56:59: 22:a7:fd:aa:d1:c3:10:b9:81:9b:f9:21:ca:aa:5b: 12:73:d6:55:2e:0d:5b:a8:74:f3:81:76:41:01:d5: 9c:66:70:ed:74:b6:52:32:8c:ac:6c:cc:6e:ab:26: c4:27:48:79:0b:d6:43:29:82:94:76:3c:a5:7a:9a: 71:ae:72:cf:7e:03:8d:7e:14:28:5d:f9:57:68:5d: 76:9b:81:72:f1:af:e5:f4:84:55:f5:ce:7c:11:ba: 1d:0d:b2:70:bd:9e:19:fd:15:2b:9f:5b:d0:1b:97: 8e:72:47:b2:89:e9:6a:bf:70:4c:b7:68:96:f1:86: 77:11:96:a5:4e:c3:0d:7a:a7:23:f1:28:a4:1b:b4: 4d:d9:b2:96:e4:dd:f1:d0:2a:2f:b2:06:51:c0:23: 95:34:bd:d0:9a:d2:3e:34:d1:d5:10:bc:a5:f2:b5: 6a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:3C:C2:7E:3E:9C:1B:BE:CF:8F:C0:26:1E:84:7C:4B:42:9C:B5:53 X509v3 Authority Key Identifier: keyid:AC:08:81:5E:8C:65:03:60:1F:25:4C:AB:37:1B:EC:47:1B:D7:EA:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rAiBXoxlA2AfJUyrNxvsRxvX6qY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:e1:f5:84:bf:53:bf:49:53:59:47:82:6c:bd:33:bc:20:b7: d3:43:00:9b:dc:31:92:11:43:e8:33:3a:85:11:d6:2e:db:df: d4:cd:5c:38:36:52:d6:b8:0a:89:7b:39:fd:bd:77:29:c8:0b: 58:93:50:39:a1:19:19:dd:1d:f4:87:c0:aa:8f:88:80:eb:7a: 4c:1a:5d:d8:df:22:da:b5:c6:90:08:ac:60:f6:03:d6:1f:4c: ed:da:6e:7d:ff:30:e9:ad:89:89:c9:4b:5a:7f:8a:b2:02:c3: f6:f9:ba:d8:c5:89:28:6a:3b:44:8c:e3:f3:dc:ae:35:e7:d0: 27:e6:2b:35:99:1f:a5:18:bc:88:cf:2f:e4:44:70:0c:9e:da: 20:7c:aa:98:16:a6:38:17:c3:be:d3:bc:ca:04:e9:10:b6:54: fa:64:c0:0c:8d:e0:6c:e4:47:6f:6d:d3:f0:59:13:f7:a0:86: 83:b7:80:9e:21:b9:7d:40:09:4a:22:74:e9:66:21:7d:d7:02: 98:7c:a5:d4:e0:ef:4a:35:e7:22:7c:59:86:c6:72:25:c1:9c: 02:23:09:ea:0d:04:0b:3c:a9:43:b4:1b:92:33:a5:8c:a4:35: 5b:ed:fd:6d:e6:66:2c:7c:2e:84:88:7f:d6:f5:6a:1e:39:0a: 7f:72:0d:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCs/FHdnaCrxWITOVEATNmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjMDg4MTVlOGM2NTAzNjAxZjI1NGNhYjM3MWJlYzQ3MWJk N2VhYTYwHhcNMjYwMjA5MTQwMDE0WhcNMjYwMjEwMTQwMDE0WjAzMTEwLwYDVQQD EyhiNTNjYzI3ZTNlOWMxYmJlY2Y4ZmMwMjYxZTg0N2M0YjQyOWNiNTUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnQCpLn0UF+V053RY4knqbJsP2GhY L8P+M8mp4hX34UjnnGongRp97oEQBZquGgxKM/KoEWD1c1l9dAtHejlnWGNFrUmk S7hwshF2zmmk0ziNcdpRZzCrVlkip/2q0cMQuYGb+SHKqlsSc9ZVLg1bqHTzgXZB AdWcZnDtdLZSMoysbMxuqybEJ0h5C9ZDKYKUdjyleppxrnLPfgONfhQoXflXaF12 m4Fy8a/l9IRV9c58EbodDbJwvZ4Z/RUrn1vQG5eOckeyielqv3BMt2iW8YZ3EZal TsMNeqcj8SikG7RN2bKW5N3x0CovsgZRwCOVNL3QmtI+NNHVELyl8rVqQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLU8wn4+nBu+z4/AJh6EfEtCnLVTMB8GA1UdIwQY MBaAFKwIgV6MZQNgHyVMqzcb7Ecb1+qmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvckFpQlhveGxBMkFmSlV5ck54dnNSeHZYNnFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC81NmYyYTMtN2ViNy00NTEzLTlmNTUt Njc3ODcxYTAzMzU1LzEvckFpQlhveGxBMkFmSlV5ck54dnNSeHZYNnFZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC81NmYyYTMtN2ViNy00NTEzLTlmNTUtNjc3ODcxYTAzMzU1 LzEvckFpQlhveGxBMkFmSlV5ck54dnNSeHZYNnFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXOH1hL9T v0lTWUeCbL0zvCC300MAm9wxkhFD6DM6hRHWLtvf1M1cODZS1rgKiXs5/b13KcgL WJNQOaEZGd0d9IfAqo+IgOt6TBpd2N8i2rXGkAisYPYD1h9M7dpuff8w6a2JiclL Wn+KsgLD9vm62MWJKGo7RIzj89yuNefQJ+YrNZkfpRi8iM8v5ERwDJ7aIHyqmBam OBfDvtO8ygTpELZU+mTADI3gbORHb23T8FkT96CGg7eAniG5fUAJSiJ06WYhfdcC mHyl1ODvSjXnInxZhsZyJcGcAiMJ6g0ECzypQ7QbkjOljKQ1W+39beZmLHwuhIh/ 1vVqHjkKf3IN7Q== -----END CERTIFICATE-----Generated at Mon Feb 9 21:08:21 2026 by rpki-client