This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft File: ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft (raw, json) Hash identifier: yUG/ivnX9UJNvhd4eXW1FKRdd9LXWhMlW98pmZQJgQ4= Subject key identifier: D4:32:28:B7:51:31:1A:5F:7C:07:FA:F4:35:85:EE:58:34:D0:BF:6E Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf Certificate serial: 019C427DADEF68F5DDBEC8B2E5C3BA109D86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft Manifest number: 180F Signing time: Mon 09 Feb 2026 13:00:58 +0000 Manifest this update: Mon 09 Feb 2026 13:00:58 +0000 Manifest next update: Tue 10 Feb 2026 13:00:58 +0000 Files and hashes: 1: ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl (hash: E3eLKD8wJzQYplcCdTN2JldPimIvk5hw/nkl/JVWRBc=) 2: JjDhj2srmVAP3AT2q_uafFZ9Ihw.roa (hash: u5PsqVAMH7Yc5b8Mh+/CsUxDWS3RTBQzxJkkDCsiaVs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:ad:ef:68:f5:dd:be:c8:b2:e5:c3:ba:10:9d:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf Validity Not Before: Feb 9 13:00:58 2026 GMT Not After : Feb 10 13:00:58 2026 GMT Subject: CN=d43228b751311a5f7c07faf43585ee5834d0bf6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c0:02:2e:8e:3d:3c:bf:69:f7:5c:9a:ad:1f: 6c:aa:29:ad:fe:c3:fc:fd:55:df:06:a1:51:2e:89: e5:c0:98:01:91:30:06:cb:3f:2b:b2:26:15:9a:84: 4f:12:26:48:c7:af:e2:f0:f6:e5:f1:57:79:78:68: 25:10:61:17:6c:bc:6d:f1:66:e4:5f:5f:f1:ea:55: d6:72:01:69:1f:b8:d5:8f:6c:d2:7c:54:31:ab:1b: 0e:9e:47:09:3c:be:29:70:c4:e4:f9:e0:6b:1d:4d: 33:13:3a:a1:7f:bc:b8:63:70:f9:b1:bb:2f:2f:5e: 81:5b:7a:98:d8:99:68:a4:83:4f:57:66:4a:fd:8c: f5:e3:1d:d6:b7:27:12:85:5e:df:2a:bc:49:74:8d: 31:d7:17:52:5a:0f:a2:3e:fc:cb:1b:ca:7c:65:fe: 77:0b:0c:9b:06:74:c7:d6:09:52:41:7d:1a:31:3f: a6:a6:a8:a5:3b:52:b3:d5:1c:28:0a:26:28:14:44: a5:49:04:f5:e3:ac:49:7f:61:6d:80:05:c6:1a:5a: e3:db:a5:d2:6c:79:84:8d:35:87:74:00:79:73:54: 53:9a:0e:ab:d5:73:5f:ee:8c:5e:6f:15:7b:6b:2e: d5:c1:d0:5e:be:0e:29:c9:9c:79:f4:a3:45:2e:40: 4b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:32:28:B7:51:31:1A:5F:7C:07:FA:F4:35:85:EE:58:34:D0:BF:6E X509v3 Authority Key Identifier: keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:c5:f5:a0:c9:57:6e:c9:b0:99:96:f1:5d:3c:a1:36:68:3b: 3d:30:2c:7d:b5:5f:01:e2:f5:ea:09:74:96:0f:43:c3:fd:d4: 1e:cf:99:58:1e:d1:bb:89:c4:2a:1f:14:35:7a:a3:fe:33:91: 34:0d:ab:1a:b5:b2:2a:3c:e6:2b:d6:c4:f3:83:8e:6c:d8:ea: 3d:47:b5:8b:28:48:ac:56:a9:c3:5a:93:3b:ea:7e:37:6e:cb: 26:29:94:f1:c2:71:87:34:f9:88:57:87:90:b9:1b:52:de:f0: d1:f7:7c:a0:40:2a:be:74:3e:6f:8f:62:5d:77:c4:af:52:8e: 13:6d:39:77:0b:bc:e2:df:db:a5:4b:85:67:b0:bc:d7:6f:60: 25:36:c1:ce:2c:39:03:ca:44:d1:13:e1:3a:99:5d:49:c7:7b: 4d:54:0f:7b:8b:41:86:f6:80:f8:a4:0b:54:a8:6e:42:89:ef: 9c:ae:d2:5e:93:5d:b3:0b:b7:bb:af:69:05:f4:ef:a2:c6:94: f2:1d:55:c5:e3:e9:b4:7b:b0:49:64:d0:70:31:4a:ec:ff:ac: 01:5b:8c:bd:7d:9d:cf:ad:50:24:e5:17:1d:b1:d3:19:56:fd: ec:a2:4d:9e:c2:ae:24:3b:98:8e:5c:51:2c:6d:2d:62:d5:a0: 4e:6f:69:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfa3vaPXdvsiy5cO6EJ2GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyOTFkNGRlMTMwZGE2YWFjZTIyZWQ5OTY1MGJlMTgyNDk3 ZTBiY2YwHhcNMjYwMjA5MTMwMDU4WhcNMjYwMjEwMTMwMDU4WjAzMTEwLwYDVQQD EyhkNDMyMjhiNzUxMzExYTVmN2MwN2ZhZjQzNTg1ZWU1ODM0ZDBiZjZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwcACLo49PL9p91yarR9sqimt/sP8 /VXfBqFRLonlwJgBkTAGyz8rsiYVmoRPEiZIx6/i8Pbl8Vd5eGglEGEXbLxt8Wbk X1/x6lXWcgFpH7jVj2zSfFQxqxsOnkcJPL4pcMTk+eBrHU0zEzqhf7y4Y3D5sbsv L16BW3qY2JlopINPV2ZK/Yz14x3WtycShV7fKrxJdI0x1xdSWg+iPvzLG8p8Zf53 CwybBnTH1glSQX0aMT+mpqilO1Kz1RwoCiYoFESlSQT146xJf2FtgAXGGlrj26XS bHmEjTWHdAB5c1RTmg6r1XNf7oxebxV7ay7VwdBevg4pyZx59KNFLkBLgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNQyKLdRMRpffAf69DWF7lg00L9uMB8GA1UdIwQY MBaAFAKR1N4TDaaqziLtmWUL4YJJfgvPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9hOWE0NzktOWUyZi00Y2IwLThkZWQt Nzc4MTY4MTA3N2Y3LzEvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9hOWE0NzktOWUyZi00Y2IwLThkZWQtNzc4MTY4MTA3N2Y3 LzEvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXcX1oMlX bsmwmZbxXTyhNmg7PTAsfbVfAeL16gl0lg9Dw/3UHs+ZWB7Ru4nEKh8UNXqj/jOR NA2rGrWyKjzmK9bE84OObNjqPUe1iyhIrFapw1qTO+p+N27LJimU8cJxhzT5iFeH kLkbUt7w0fd8oEAqvnQ+b49iXXfEr1KOE205dwu84t/bpUuFZ7C8129gJTbBziw5 A8pE0RPhOpldScd7TVQPe4tBhvaA+KQLVKhuQonvnK7SXpNdswu3u69pBfTvosaU 8h1VxePptHuwSWTQcDFK7P+sAVuMvX2dz61QJOUXHbHTGVb97KJNnsKuJDuYjlxR LG0tYtWgTm9pvw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:51 2026 by rpki-client