This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/1a9248-ec91-43fa-86ff-4b137a4dbc6e/1/aUSJSM9NjazkdxjA9yWe3usJPns.mft File: aUSJSM9NjazkdxjA9yWe3usJPns.mft (raw, json) Hash identifier: D4ls4m1IXQ1QJzyb++6s9df3aRV15nFteN0WeMDZZ8o= Subject key identifier: 21:F4:32:10:8F:28:F5:B5:82:09:4F:40:0F:83:8B:8D:8C:29:3D:3B Authority key identifier: 69:44:89:48:CF:4D:8D:AC:E4:77:18:C0:F7:25:9E:DE:EB:09:3E:7B Certificate issuer: /CN=69448948cf4d8dace47718c0f7259edeeb093e7b Certificate serial: 019C446C0449C6F0DA4136C326D6C369C44B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aUSJSM9NjazkdxjA9yWe3usJPns.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/1a9248-ec91-43fa-86ff-4b137a4dbc6e/1/aUSJSM9NjazkdxjA9yWe3usJPns.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 22:00:55 +0000 Manifest this update: Mon 09 Feb 2026 22:00:55 +0000 Manifest next update: Tue 10 Feb 2026 22:00:55 +0000 Files and hashes: 1: aUSJSM9NjazkdxjA9yWe3usJPns.crl (hash: wA+bwas8lbxelCcqL4uhvD4oqBMc4F5/LAbD+hbCEWM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/1a9248-ec91-43fa-86ff-4b137a4dbc6e/1/aUSJSM9NjazkdxjA9yWe3usJPns.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/1a9248-ec91-43fa-86ff-4b137a4dbc6e/1/aUSJSM9NjazkdxjA9yWe3usJPns.mft rsync://rpki.ripe.net/repository/DEFAULT/aUSJSM9NjazkdxjA9yWe3usJPns.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6c:04:49:c6:f0:da:41:36:c3:26:d6:c3:69:c4:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69448948cf4d8dace47718c0f7259edeeb093e7b Validity Not Before: Feb 9 22:00:55 2026 GMT Not After : Feb 10 22:00:55 2026 GMT Subject: CN=21f432108f28f5b582094f400f838b8d8c293d3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:fe:b0:6e:72:f9:3e:69:db:e7:88:57:5a:b1: 16:85:31:d3:fa:de:e0:df:8e:a1:92:f4:a5:a4:b6: c6:9f:ff:41:e0:bc:61:8e:3d:b0:e4:7e:0b:ad:1e: 0b:df:4c:ab:e8:ee:aa:61:77:a3:40:47:a2:91:93: 23:ff:f7:73:51:0c:47:12:ef:9e:b9:51:8f:62:5b: 2f:9f:95:da:4c:d0:fc:d2:92:93:f8:cf:7a:d2:cd: 18:aa:18:f0:55:7f:0e:5e:8b:16:5c:c6:4a:1b:83: 23:c0:29:37:08:9a:5c:7f:2d:de:61:f7:d7:e5:02: ea:87:8f:26:f9:92:44:c9:82:5a:af:f2:07:c2:13: 6a:b9:2a:20:af:f1:2b:c2:6f:2c:eb:69:c2:5c:51: f0:55:36:20:9f:be:ed:ab:6f:5a:d1:15:19:a1:14: 01:15:69:e6:9e:42:d6:d6:80:b1:06:39:f0:b6:8d: 2c:a8:58:1b:b6:67:1b:50:2f:5c:06:80:4f:1b:61: 79:a2:2b:78:34:4d:45:51:69:f1:f7:21:e9:3c:93: fd:8f:34:40:c4:49:f0:95:40:75:00:8a:f6:24:ac: b3:a2:93:92:fb:10:b2:46:9a:2a:52:eb:45:6e:55: 10:31:3a:58:71:17:be:e2:ab:21:55:a5:0d:2e:cc: a8:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:F4:32:10:8F:28:F5:B5:82:09:4F:40:0F:83:8B:8D:8C:29:3D:3B X509v3 Authority Key Identifier: keyid:69:44:89:48:CF:4D:8D:AC:E4:77:18:C0:F7:25:9E:DE:EB:09:3E:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aUSJSM9NjazkdxjA9yWe3usJPns.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a9248-ec91-43fa-86ff-4b137a4dbc6e/1/aUSJSM9NjazkdxjA9yWe3usJPns.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a9248-ec91-43fa-86ff-4b137a4dbc6e/1/aUSJSM9NjazkdxjA9yWe3usJPns.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:8b:93:1d:3f:5f:96:d5:e0:10:3c:64:ed:ed:0d:22:92:f0: 6e:78:27:e2:38:c3:6e:87:db:43:f7:33:ab:66:c0:0e:aa:c0: 06:11:1b:32:b8:c1:7a:04:25:15:e8:13:81:6b:b9:8d:af:75: b5:7d:56:b3:7e:67:10:87:08:b3:49:00:15:3a:20:ac:1d:2e: 17:e6:8f:06:1b:36:29:6f:b0:22:60:ea:02:4f:59:aa:90:53: 89:1f:e6:13:23:e4:2e:fe:cb:1b:21:e8:24:51:da:60:0c:9a: d7:2f:17:96:1d:15:36:8c:fa:73:89:16:51:85:b0:cb:19:65: 3f:67:7a:3d:77:fd:69:49:bd:de:2e:95:eb:08:c4:fd:ac:7f: 7c:bd:f9:28:23:71:5c:a1:81:f2:d3:fd:e8:85:79:2d:f4:12: 2c:0f:4c:3a:86:22:5e:90:1b:90:b5:c6:df:eb:ff:72:23:1d: f8:a1:29:85:e3:aa:96:e5:37:c8:07:49:5f:bd:49:90:54:51: e2:3a:b4:56:4e:b9:32:ee:28:1c:a5:c9:77:4a:34:7d:4b:11: 93:77:6e:22:55:31:73:53:46:76:67:1b:fc:a2:cf:86:4e:d0: 8e:80:40:2d:b0:9a:6a:35:86:93:f0:27:39:77:a3:b7:d4:6a: 36:03:fd:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEbARJxvDaQTbDJtbDacRLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5NDQ4OTQ4Y2Y0ZDhkYWNlNDc3MThjMGY3MjU5ZWRlZWIw OTNlN2IwHhcNMjYwMjA5MjIwMDU1WhcNMjYwMjEwMjIwMDU1WjAzMTEwLwYDVQQD EygyMWY0MzIxMDhmMjhmNWI1ODIwOTRmNDAwZjgzOGI4ZDhjMjkzZDNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5v6wbnL5Pmnb54hXWrEWhTHT+t7g 346hkvSlpLbGn/9B4Lxhjj2w5H4LrR4L30yr6O6qYXejQEeikZMj//dzUQxHEu+e uVGPYlsvn5XaTND80pKT+M960s0YqhjwVX8OXosWXMZKG4MjwCk3CJpcfy3eYffX 5QLqh48m+ZJEyYJar/IHwhNquSogr/Erwm8s62nCXFHwVTYgn77tq29a0RUZoRQB FWnmnkLW1oCxBjnwto0sqFgbtmcbUC9cBoBPG2F5oit4NE1FUWnx9yHpPJP9jzRA xEnwlUB1AIr2JKyzopOS+xCyRpoqUutFblUQMTpYcRe+4qshVaUNLsyozQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCH0MhCPKPW1gglPQA+Di42MKT07MB8GA1UdIwQY MBaAFGlEiUjPTY2s5HcYwPclnt7rCT57MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVVTSlNNOU5qYXprZHhqQTl5V2UzdXNKUG5zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC8xYTkyNDgtZWM5MS00M2ZhLTg2ZmYt NGIxMzdhNGRiYzZlLzEvYVVTSlNNOU5qYXprZHhqQTl5V2UzdXNKUG5zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC8xYTkyNDgtZWM5MS00M2ZhLTg2ZmYtNGIxMzdhNGRiYzZl LzEvYVVTSlNNOU5qYXprZHhqQTl5V2UzdXNKUG5zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjYuTHT9f ltXgEDxk7e0NIpLwbngn4jjDbofbQ/czq2bADqrABhEbMrjBegQlFegTgWu5ja91 tX1Ws35nEIcIs0kAFTogrB0uF+aPBhs2KW+wImDqAk9ZqpBTiR/mEyPkLv7LGyHo JFHaYAya1y8Xlh0VNoz6c4kWUYWwyxllP2d6PXf9aUm93i6V6wjE/ax/fL35KCNx XKGB8tP96IV5LfQSLA9MOoYiXpAbkLXG3+v/ciMd+KEpheOqluU3yAdJX71JkFRR 4jq0Vk65Mu4oHKXJd0o0fUsRk3duIlUxc1NGdmcb/KLPhk7QjoBALbCaajWGk/An OXejt9RqNgP9rA== -----END CERTIFICATE-----Generated at Tue Feb 10 04:20:33 2026 by rpki-client