This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/1a9248-ec91-43fa-86ff-4b137a4dbc6e/1/aUSJSM9NjazkdxjA9yWe3usJPns.mft File: aUSJSM9NjazkdxjA9yWe3usJPns.mft (raw, json) Hash identifier: guZ18mRtVG69wB4ShcgBJrcPmReff2C/PcLVqO5368c= Subject key identifier: 55:69:22:B3:FE:FC:43:60:73:23:9E:7B:BF:01:F2:59:96:88:E4:8F Authority key identifier: 69:44:89:48:CF:4D:8D:AC:E4:77:18:C0:F7:25:9E:DE:EB:09:3E:7B Certificate issuer: /CN=69448948cf4d8dace47718c0f7259edeeb093e7b Certificate serial: 019C427DA78E75102755013F6A20E68C9A2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aUSJSM9NjazkdxjA9yWe3usJPns.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/1a9248-ec91-43fa-86ff-4b137a4dbc6e/1/aUSJSM9NjazkdxjA9yWe3usJPns.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 13:00:56 +0000 Manifest this update: Mon 09 Feb 2026 13:00:56 +0000 Manifest next update: Tue 10 Feb 2026 13:00:56 +0000 Files and hashes: 1: aUSJSM9NjazkdxjA9yWe3usJPns.crl (hash: h41VaFlEwat0ql+igDVEISPlQlycgaGU/+opK8EU30A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/1a9248-ec91-43fa-86ff-4b137a4dbc6e/1/aUSJSM9NjazkdxjA9yWe3usJPns.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/1a9248-ec91-43fa-86ff-4b137a4dbc6e/1/aUSJSM9NjazkdxjA9yWe3usJPns.mft rsync://rpki.ripe.net/repository/DEFAULT/aUSJSM9NjazkdxjA9yWe3usJPns.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:a7:8e:75:10:27:55:01:3f:6a:20:e6:8c:9a:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69448948cf4d8dace47718c0f7259edeeb093e7b Validity Not Before: Feb 9 13:00:56 2026 GMT Not After : Feb 10 13:00:56 2026 GMT Subject: CN=556922b3fefc436073239e7bbf01f2599688e48f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:50:53:ee:cf:56:2c:1f:a3:56:e0:03:86:39: 63:ba:a9:37:ae:12:42:79:53:36:27:1c:58:00:9f: 9d:a0:19:4c:da:31:cb:04:08:d5:ce:8d:0c:70:a0: e5:ec:75:e5:3c:6a:f6:35:c5:e7:b9:1e:42:93:91: 1e:52:eb:7b:f5:0d:50:3a:0e:a2:ed:b5:29:22:92: ac:51:4e:72:10:68:60:3c:bd:05:2d:04:f6:12:d6: 87:1e:4d:83:a6:a8:a0:b5:52:a0:09:4a:7e:b0:f6: 96:65:a7:54:1a:d7:e0:51:98:26:2e:90:f8:aa:d9: ee:99:1c:87:ca:c6:0f:0b:86:7c:14:f6:d6:ac:f5: 25:f6:6d:6f:12:b2:1f:eb:88:fd:5e:9e:71:76:5c: d8:b7:01:81:c3:29:3c:b7:d2:99:4a:32:4f:35:07: 51:42:8a:92:ec:b5:da:dd:7d:2b:57:6d:0b:b5:bb: fe:a8:29:96:cb:04:6f:98:2a:b6:54:f2:67:46:5b: d6:37:3f:47:e6:8a:42:97:71:51:06:25:e5:4a:d8: 3d:be:b9:f8:e0:2a:66:76:1a:7a:86:68:7f:16:bd: f8:03:d1:2e:c8:4f:84:42:b3:89:37:50:53:64:8f: d8:ef:0e:c0:29:58:22:f8:15:cf:f4:16:b6:84:fc: 93:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:69:22:B3:FE:FC:43:60:73:23:9E:7B:BF:01:F2:59:96:88:E4:8F X509v3 Authority Key Identifier: keyid:69:44:89:48:CF:4D:8D:AC:E4:77:18:C0:F7:25:9E:DE:EB:09:3E:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aUSJSM9NjazkdxjA9yWe3usJPns.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a9248-ec91-43fa-86ff-4b137a4dbc6e/1/aUSJSM9NjazkdxjA9yWe3usJPns.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a9248-ec91-43fa-86ff-4b137a4dbc6e/1/aUSJSM9NjazkdxjA9yWe3usJPns.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:b2:8d:2f:76:43:fa:51:5f:ec:ea:06:56:47:00:65:cf:7c: 25:5f:7e:85:11:0b:02:22:57:61:9a:0e:ee:c0:d4:4d:c5:20: 1c:aa:6f:56:5e:52:19:1f:69:54:5b:00:b4:24:4d:5d:e0:0c: fe:b3:eb:b5:21:62:0f:e0:be:ad:8a:c7:2f:c6:39:c6:ad:26: 67:0b:59:99:d6:58:b4:a3:2a:c8:62:15:71:01:54:20:34:fb: ae:49:73:99:05:fc:d0:f7:d5:31:77:f9:ab:49:eb:86:5e:7a: a9:9a:56:0c:b4:4f:ed:96:d6:34:91:d2:49:2b:da:09:57:e2: ee:d4:43:c4:9c:f2:1f:9d:47:6c:ec:76:82:e6:3b:6e:02:b3: aa:38:b8:69:f2:a6:9e:a0:dc:7e:f7:63:6d:56:25:7c:db:36: 06:83:a6:15:db:a5:2f:41:06:17:9b:28:76:ce:45:81:6c:28: a1:14:d9:d7:dc:06:58:25:17:2f:17:dd:b7:42:e5:26:c7:ff: 3d:7c:08:4c:93:ae:85:57:64:19:66:5e:01:43:fd:73:ef:1a: df:bd:55:b9:51:52:13:e4:ea:90:17:13:8b:9c:06:dd:83:42: 6d:de:98:ab:86:98:aa:5f:3e:90:f2:c8:d4:b1:2a:04:ad:8e: 93:ce:12:ff -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfaeOdRAnVQE/aiDmjJouMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5NDQ4OTQ4Y2Y0ZDhkYWNlNDc3MThjMGY3MjU5ZWRlZWIw OTNlN2IwHhcNMjYwMjA5MTMwMDU2WhcNMjYwMjEwMTMwMDU2WjAzMTEwLwYDVQQD Eyg1NTY5MjJiM2ZlZmM0MzYwNzMyMzllN2JiZjAxZjI1OTk2ODhlNDhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzFBT7s9WLB+jVuADhjljuqk3rhJC eVM2JxxYAJ+doBlM2jHLBAjVzo0McKDl7HXlPGr2NcXnuR5Ck5EeUut79Q1QOg6i 7bUpIpKsUU5yEGhgPL0FLQT2EtaHHk2DpqigtVKgCUp+sPaWZadUGtfgUZgmLpD4 qtnumRyHysYPC4Z8FPbWrPUl9m1vErIf64j9Xp5xdlzYtwGBwyk8t9KZSjJPNQdR QoqS7LXa3X0rV20Ltbv+qCmWywRvmCq2VPJnRlvWNz9H5opCl3FRBiXlStg9vrn4 4Cpmdhp6hmh/Fr34A9EuyE+EQrOJN1BTZI/Y7w7AKVgi+BXP9Ba2hPyTaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFVpIrP+/ENgcyOee78B8lmWiOSPMB8GA1UdIwQY MBaAFGlEiUjPTY2s5HcYwPclnt7rCT57MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVVTSlNNOU5qYXprZHhqQTl5V2UzdXNKUG5zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC8xYTkyNDgtZWM5MS00M2ZhLTg2ZmYt NGIxMzdhNGRiYzZlLzEvYVVTSlNNOU5qYXprZHhqQTl5V2UzdXNKUG5zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC8xYTkyNDgtZWM5MS00M2ZhLTg2ZmYtNGIxMzdhNGRiYzZl LzEvYVVTSlNNOU5qYXprZHhqQTl5V2UzdXNKUG5zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATLKNL3ZD +lFf7OoGVkcAZc98JV9+hRELAiJXYZoO7sDUTcUgHKpvVl5SGR9pVFsAtCRNXeAM /rPrtSFiD+C+rYrHL8Y5xq0mZwtZmdZYtKMqyGIVcQFUIDT7rklzmQX80PfVMXf5 q0nrhl56qZpWDLRP7ZbWNJHSSSvaCVfi7tRDxJzyH51HbOx2guY7bgKzqji4afKm nqDcfvdjbVYlfNs2BoOmFdulL0EGF5sods5FgWwooRTZ19wGWCUXLxfdt0LlJsf/ PXwITJOuhVdkGWZeAUP9c+8a371VuVFSE+TqkBcTi5wG3YNCbd6Yq4aYql8+kPLI 1LEqBK2Ok84S/w== -----END CERTIFICATE-----Generated at Mon Feb 9 22:44:54 2026 by rpki-client