This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft File: aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft (raw, json) Hash identifier: xpn0ZPbcolCIEXOJXBjqeIy+PIe7E/LFycVq0ngidbA= Subject key identifier: 30:28:9A:EF:04:7D:F2:06:F2:B0:0D:E4:D4:1F:BF:95:39:3E:D2:D9 Authority key identifier: 68:09:51:5D:09:36:44:67:87:03:C0:24:D9:20:14:C5:32:F3:16:EA Certificate issuer: /CN=6809515d093644678703c024d92014c532f316ea Certificate serial: 019C42102E314BC743CBD47087C8E8E6CB2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft Manifest number: 140E Signing time: Mon 09 Feb 2026 11:01:22 +0000 Manifest this update: Mon 09 Feb 2026 11:01:22 +0000 Manifest next update: Tue 10 Feb 2026 11:01:22 +0000 Files and hashes: 1: aAlRXQk2RGeHA8Ak2SAUxTLzFuo.crl (hash: Nw4j4A9IqwtMPwPDLSx+IQDSh3NQk89eN/I7+vuydVw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.crl rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft rsync://rpki.ripe.net/repository/DEFAULT/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:2e:31:4b:c7:43:cb:d4:70:87:c8:e8:e6:cb:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6809515d093644678703c024d92014c532f316ea Validity Not Before: Feb 9 11:01:22 2026 GMT Not After : Feb 10 11:01:22 2026 GMT Subject: CN=30289aef047df206f2b00de4d41fbf95393ed2d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:5d:64:7d:89:a9:79:6c:6c:70:41:27:7e:c5: 6d:1e:d9:60:f7:23:66:a1:9f:fd:99:cf:fd:be:b7: e3:8c:81:88:9f:68:0c:21:25:58:61:4d:fa:43:54: 82:a2:eb:b6:7a:5b:b6:54:e0:fb:85:cd:ca:92:00: dc:43:48:96:88:79:f2:02:d2:8a:69:3f:14:40:a5: a1:18:a3:bd:b1:d2:8d:0a:a3:e0:da:e8:b4:19:37: eb:fc:02:07:bf:1c:40:02:60:6f:e8:62:b2:b5:5f: 84:e6:1a:ed:fd:61:dc:45:d9:b9:c7:d0:ad:9d:17: 40:d2:39:fe:87:cc:35:9c:39:63:4c:6d:5a:38:1c: 8f:9c:28:33:a7:8d:97:69:01:76:02:f5:9a:60:79: c0:53:3a:49:6d:b1:f1:e5:02:20:f1:17:55:0b:da: fb:c1:e8:04:cf:f2:f4:76:76:c3:72:e6:0f:60:7d: ef:53:86:df:2e:f7:03:bd:56:26:6c:4c:da:ee:31: 0c:ca:10:14:e4:75:c9:7a:7c:e6:7a:d5:ba:81:e8: c9:28:f2:8c:47:9b:b2:3f:cc:07:92:05:1d:f2:8e: 49:e1:7d:95:06:48:0e:2b:54:d2:fc:27:73:66:6a: 6b:e0:74:cf:0f:24:f9:93:b1:9b:52:0c:6e:2e:33: 69:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:28:9A:EF:04:7D:F2:06:F2:B0:0D:E4:D4:1F:BF:95:39:3E:D2:D9 X509v3 Authority Key Identifier: keyid:68:09:51:5D:09:36:44:67:87:03:C0:24:D9:20:14:C5:32:F3:16:EA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d757c0-89c3-4669-85b8-423104770552/1/aAlRXQk2RGeHA8Ak2SAUxTLzFuo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:92:f7:cd:8f:1c:3a:71:c9:f7:35:23:a3:71:9b:69:92:86: 5b:74:26:8e:34:ab:9a:2f:61:4c:80:dc:28:33:d4:5d:a6:d8: 6e:89:f9:7d:fb:07:7d:34:18:4a:e6:21:14:0c:7f:7b:38:53: 3b:6d:da:51:97:19:0e:1b:a4:53:51:a7:c8:1d:5c:25:5b:8d: 9c:05:cc:55:87:8e:21:aa:12:c8:15:97:8e:d3:e2:c5:fe:82: c7:62:a5:3a:31:3e:33:69:ac:78:85:f1:cf:1c:00:c9:8a:9b: e5:d0:16:c6:26:57:6c:99:9d:b8:a0:5c:c2:cd:a8:a2:11:3f: 01:2a:37:0a:70:10:6d:c4:8a:4b:93:f7:af:dc:33:c3:66:96: 47:fc:16:13:9e:a9:d7:85:a9:20:42:af:02:11:0a:e0:e8:93: 3f:ee:e3:40:ad:62:05:0e:75:20:7b:99:9a:81:10:9c:f2:2f: 33:8a:3f:67:31:55:7a:30:9e:15:11:77:09:6f:46:19:f4:1c: 7e:41:c8:5e:19:fa:4b:99:2a:b4:ca:c0:0d:b5:00:57:0d:bd: 82:86:15:e8:3f:28:7d:c0:ed:1c:84:6a:fa:60:e6:7e:ba:fe: b6:9e:5d:43:88:aa:3a:09:5e:55:89:84:c0:52:41:dd:07:3c: 65:d6:95:6b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEC4xS8dDy9Rwh8jo5sstMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4MDk1MTVkMDkzNjQ0Njc4NzAzYzAyNGQ5MjAxNGM1MzJm MzE2ZWEwHhcNMjYwMjA5MTEwMTIyWhcNMjYwMjEwMTEwMTIyWjAzMTEwLwYDVQQD EygzMDI4OWFlZjA0N2RmMjA2ZjJiMDBkZTRkNDFmYmY5NTM5M2VkMmQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7l1kfYmpeWxscEEnfsVtHtlg9yNm oZ/9mc/9vrfjjIGIn2gMISVYYU36Q1SCouu2elu2VOD7hc3KkgDcQ0iWiHnyAtKK aT8UQKWhGKO9sdKNCqPg2ui0GTfr/AIHvxxAAmBv6GKytV+E5hrt/WHcRdm5x9Ct nRdA0jn+h8w1nDljTG1aOByPnCgzp42XaQF2AvWaYHnAUzpJbbHx5QIg8RdVC9r7 wegEz/L0dnbDcuYPYH3vU4bfLvcDvVYmbEza7jEMyhAU5HXJenzmetW6gejJKPKM R5uyP8wHkgUd8o5J4X2VBkgOK1TS/CdzZmpr4HTPDyT5k7GbUgxuLjNpbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDAomu8EffIG8rAN5NQfv5U5PtLZMB8GA1UdIwQY MBaAFGgJUV0JNkRnhwPAJNkgFMUy8xbqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUFsUlhRazJSR2VIQThBazJTQVV4VEx6RnVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS9kNzU3YzAtODljMy00NjY5LTg1Yjgt NDIzMTA0NzcwNTUyLzEvYUFsUlhRazJSR2VIQThBazJTQVV4VEx6RnVvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS9kNzU3YzAtODljMy00NjY5LTg1YjgtNDIzMTA0NzcwNTUy LzEvYUFsUlhRazJSR2VIQThBazJTQVV4VEx6RnVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAepL3zY8c OnHJ9zUjo3GbaZKGW3QmjjSrmi9hTIDcKDPUXabYbon5ffsHfTQYSuYhFAx/ezhT O23aUZcZDhukU1GnyB1cJVuNnAXMVYeOIaoSyBWXjtPixf6Cx2KlOjE+M2mseIXx zxwAyYqb5dAWxiZXbJmduKBcws2oohE/ASo3CnAQbcSKS5P3r9wzw2aWR/wWE56p 14WpIEKvAhEK4OiTP+7jQK1iBQ51IHuZmoEQnPIvM4o/ZzFVejCeFRF3CW9GGfQc fkHIXhn6S5kqtMrADbUAVw29goYV6D8ofcDtHIRq+mDmfrr+tp5dQ4iqOgleVYmE wFJB3Qc8ZdaVaw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:18 2026 by rpki-client