This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft File: aPYGg7N3JXQn279uzjXixYWjsB0.mft (raw, json) Hash identifier: 8xKVVq+atgNi6mqKV+5t9yZfGNjEFHKogl6SalgHQLE= Subject key identifier: 41:A3:EB:A6:60:06:EE:1A:25:3D:61:35:78:FD:F4:E4:67:8C:46:7C Authority key identifier: 68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D Certificate issuer: /CN=68f60683b377257427dbbf6ece35e2c585a3b01d Certificate serial: 019C43C6C1255E0B466D45DC67CFBB3E8497 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 19:00:24 +0000 Manifest this update: Mon 09 Feb 2026 19:00:24 +0000 Manifest next update: Tue 10 Feb 2026 19:00:24 +0000 Files and hashes: 1: aPYGg7N3JXQn279uzjXixYWjsB0.crl (hash: t1F7iovC5V/aWSPgrrvj60rGDA5chv/ei2xtN7zM404=) 2: eJ3f1i44Rqh5dEICPulbHl4WkkI.roa (hash: kZed20xL2+OJp4rVcGTuqnAX+7hPge7JicJ6LEk/ItE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:c1:25:5e:0b:46:6d:45:dc:67:cf:bb:3e:84:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68f60683b377257427dbbf6ece35e2c585a3b01d Validity Not Before: Feb 9 19:00:24 2026 GMT Not After : Feb 10 19:00:24 2026 GMT Subject: CN=41a3eba66006ee1a253d613578fdf4e4678c467c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ad:a3:72:94:17:9f:06:d0:b1:62:b5:d3:5c: d3:59:52:41:52:5a:20:0e:3b:23:6a:66:ed:85:9e: 07:11:7e:ec:5e:43:d5:df:f2:d7:e1:97:01:f1:54: ac:12:2c:fc:f0:40:1e:3d:81:f2:99:25:b2:bd:62: bb:5f:48:d3:8a:7b:e2:8a:f3:8e:d2:e1:12:8e:0c: 55:8a:74:b8:c2:e6:76:a7:a7:18:9e:67:a2:4a:c7: 93:7c:5f:3c:ca:81:09:5e:c8:6c:bd:1b:e3:67:73: 8f:03:d9:82:3f:ae:e5:e1:ae:db:a9:05:e8:21:95: b4:17:49:38:3f:ba:fe:55:9a:cc:06:04:9d:c1:84: 35:6c:d5:9e:73:b6:1a:fe:3e:3d:ad:81:84:d3:94: ac:7f:d5:29:f5:f4:48:db:7c:ec:c4:f5:c8:80:55: c2:68:71:73:0a:0d:60:b8:31:ca:92:71:90:c2:5a: 5d:c9:af:c5:2d:e6:50:c1:50:b9:0c:76:06:83:40: f1:cf:5f:4b:06:16:01:7f:54:26:c4:76:30:d1:86: fe:fa:f1:c7:9b:16:e1:82:40:87:b9:1a:52:e9:6f: e5:b1:57:39:18:16:de:c0:0e:c0:f2:7f:9b:13:ee: 37:b3:13:24:1f:05:51:e6:90:a2:78:64:57:74:07: 5b:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:A3:EB:A6:60:06:EE:1A:25:3D:61:35:78:FD:F4:E4:67:8C:46:7C X509v3 Authority Key Identifier: keyid:68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:13:6b:25:da:60:bc:78:85:7c:14:03:39:3f:ed:3d:ca:33: fb:f5:41:8a:c7:1c:6c:34:92:99:5f:ae:0c:46:0b:d4:48:b9: 3e:c6:82:2d:07:61:1b:1e:d9:c5:62:fb:31:eb:8f:e3:00:b7: 50:cb:10:23:8e:ac:fa:38:28:41:a4:2b:ad:37:22:ed:78:b1: 9e:69:4b:51:28:35:ed:1a:8c:56:2f:b3:3c:76:c7:e1:8b:8d: d9:c0:73:1a:5e:16:ce:e4:65:94:2f:ad:b0:af:c8:98:43:56: 51:24:81:47:ec:eb:3e:72:c6:99:61:b2:1f:57:b8:b7:3c:40: af:05:7b:bb:fc:76:1e:ef:44:43:90:6f:ab:89:cb:e5:5a:74: c2:39:b8:b4:e4:6b:f5:37:e6:55:0a:b8:e5:07:6f:d4:77:e2: e1:22:bf:31:4e:c9:41:d5:80:9f:43:ff:d4:db:10:6f:4d:7d: eb:41:d4:e9:37:d9:38:62:e8:2f:3b:95:4e:fc:57:e9:f9:31: 89:8d:fa:ef:34:43:23:63:e2:19:ca:e1:fb:e7:c0:93:53:2a: ec:dc:74:67:46:50:3f:6d:a2:39:ef:f4:b8:92:38:c2:d8:63: 40:98:c5:21:e3:b9:4a:fc:d3:cb:52:f9:25:9d:c8:15:67:f8: 1d:2a:6d:71 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxsElXgtGbUXcZ8+7PoSXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZjYwNjgzYjM3NzI1NzQyN2RiYmY2ZWNlMzVlMmM1ODVh M2IwMWQwHhcNMjYwMjA5MTkwMDI0WhcNMjYwMjEwMTkwMDI0WjAzMTEwLwYDVQQD Eyg0MWEzZWJhNjYwMDZlZTFhMjUzZDYxMzU3OGZkZjRlNDY3OGM0NjdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApK2jcpQXnwbQsWK101zTWVJBUlog DjsjambthZ4HEX7sXkPV3/LX4ZcB8VSsEiz88EAePYHymSWyvWK7X0jTinviivOO 0uESjgxVinS4wuZ2p6cYnmeiSseTfF88yoEJXshsvRvjZ3OPA9mCP67l4a7bqQXo IZW0F0k4P7r+VZrMBgSdwYQ1bNWec7Ya/j49rYGE05Ssf9Up9fRI23zsxPXIgFXC aHFzCg1guDHKknGQwlpdya/FLeZQwVC5DHYGg0Dxz19LBhYBf1QmxHYw0Yb++vHH mxbhgkCHuRpS6W/lsVc5GBbewA7A8n+bE+43sxMkHwVR5pCieGRXdAdbcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEGj66ZgBu4aJT1hNXj99ORnjEZ8MB8GA1UdIwQY MBaAFGj2BoOzdyV0J9u/bs414sWFo7AdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVBZR2c3TjNKWFFuMjc5dXpqWGl4WVdqc0IwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8yZWI5NjktODYzYS00NjJkLTlmOWQt MzU0NzQwMzZhOWQ3LzEvYVBZR2c3TjNKWFFuMjc5dXpqWGl4WVdqc0IwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi8yZWI5NjktODYzYS00NjJkLTlmOWQtMzU0NzQwMzZhOWQ3 LzEvYVBZR2c3TjNKWFFuMjc5dXpqWGl4WVdqc0IwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnRNrJdpg vHiFfBQDOT/tPcoz+/VBisccbDSSmV+uDEYL1Ei5PsaCLQdhGx7ZxWL7MeuP4wC3 UMsQI46s+jgoQaQrrTci7XixnmlLUSg17RqMVi+zPHbH4YuN2cBzGl4WzuRllC+t sK/ImENWUSSBR+zrPnLGmWGyH1e4tzxArwV7u/x2Hu9EQ5Bvq4nL5Vp0wjm4tORr 9TfmVQq45Qdv1Hfi4SK/MU7JQdWAn0P/1NsQb01960HU6TfZOGLoLzuVTvxX6fkx iY367zRDI2PiGcrh++fAk1Mq7Nx0Z0ZQP22iOe/0uJI4wthjQJjFIeO5SvzTy1L5 JZ3IFWf4HSptcQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:51 2026 by rpki-client