This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
File: A2hHspcjX68HFob-0sHpEL9gBIY.mft (raw, json)
Hash identifier: 4ut2PodH+DnZCdziIqcBdp1g/6KMowH4eOfeBxEgIz8=
Subject key identifier: CA:36:CE:21:E6:CB:B7:95:EA:1F:8B:8B:2A:58:87:48:A9:23:67:CB
Authority key identifier: 03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86
Certificate issuer: /CN=036847b297235faf071686fed2c1e910bf600486
Certificate serial: 019C4322FD8407410BAB721A54A101EDBBF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
Manifest number: 14A0
Signing time: Mon 09 Feb 2026 16:01:32 +0000
Manifest this update: Mon 09 Feb 2026 16:01:32 +0000
Manifest next update: Tue 10 Feb 2026 16:01:32 +0000
Files and hashes: 1: A2hHspcjX68HFob-0sHpEL9gBIY.crl (hash: YhLH38swsvVTCpiSTG6WAlQbhKcmHJZbgbyZ7eZdhVs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Feb 2026 15:10:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:43:22:fd:84:07:41:0b:ab:72:1a:54:a1:01:ed:bb:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=036847b297235faf071686fed2c1e910bf600486
Validity
Not Before: Feb 9 16:01:32 2026 GMT
Not After : Feb 10 16:01:32 2026 GMT
Subject: CN=ca36ce21e6cbb795ea1f8b8b2a588748a92367cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:82:d7:4d:f2:62:fc:54:2d:5e:e8:09:8e:20:
89:8f:74:af:c5:ed:fe:85:f1:05:ef:d0:3b:b9:e7:
e9:4d:a3:ba:88:91:0f:ea:73:9f:3f:fd:66:18:4a:
c6:f3:94:a6:b4:cf:35:e7:0d:ff:bd:50:ce:0a:63:
58:b8:3f:34:de:6e:d8:13:d0:f5:dc:61:b8:94:00:
dd:68:75:7e:ce:5d:6f:9d:7b:e2:44:20:ee:34:d5:
c1:88:f5:be:a3:6f:fa:94:63:8d:85:a6:42:40:d6:
76:15:3f:2d:94:d6:25:7b:2f:bb:86:c1:2c:d1:0e:
37:97:29:03:51:03:12:e8:b2:3a:db:7c:c5:cf:bf:
70:ce:ad:f0:90:28:07:29:b7:1f:c8:a6:a1:0c:4e:
29:b1:1d:db:5a:49:48:7f:52:4b:0a:b5:e8:6e:99:
f4:d4:93:5a:2e:28:30:71:4a:94:a6:d5:20:2d:5b:
23:2f:e6:4b:dd:b4:7f:d8:ae:0a:81:9b:9f:1b:00:
7a:f3:e8:df:30:93:c8:f0:26:bf:e8:2f:9d:02:69:
4b:10:39:7b:4a:5c:5b:5d:ba:20:ed:f3:0a:f0:74:
bd:60:d8:da:ae:7d:23:6a:3b:df:89:2e:32:73:a6:
36:64:1a:b7:50:05:fe:39:1f:f5:eb:fc:11:d1:e4:
8c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:36:CE:21:E6:CB:B7:95:EA:1F:8B:8B:2A:58:87:48:A9:23:67:CB
X509v3 Authority Key Identifier:
keyid:03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:c4:61:ba:c4:54:90:d1:a3:65:d1:fe:1e:fc:f5:a4:26:63:
82:31:fe:52:9e:8b:ab:cc:e6:b4:f1:a2:e0:95:2c:28:c3:ea:
d2:fb:fc:46:73:8b:8b:8e:1c:f9:8d:33:27:06:1e:76:be:b8:
7a:8b:35:7a:bf:a3:61:d6:8e:60:62:41:23:e3:26:9a:ff:09:
2c:d6:0c:d3:4f:3a:f6:f1:6f:55:d7:9d:72:91:67:d6:c2:2a:
79:30:9d:43:2b:3a:94:20:a4:9d:d7:bc:de:07:5f:8d:16:09:
15:a3:e8:ca:30:b0:9c:ed:67:4f:49:d5:4b:1a:d8:9f:87:27:
fa:c7:95:ae:f2:1b:97:d2:7b:8b:d9:02:0e:cf:62:cf:8e:a4:
99:91:72:fd:28:ef:64:84:e3:8b:d9:c3:80:65:dc:99:59:0e:
52:dd:5b:4b:6b:82:08:96:2c:68:30:a4:34:5c:2d:b0:8c:0d:
dd:7c:82:5c:81:e1:dd:6f:a3:fe:50:96:8c:52:a3:98:29:fa:
41:6f:45:75:78:2a:2a:34:b6:7c:01:17:b0:05:a9:77:0b:e9:
3e:32:55:6b:68:58:9f:e5:53:a3:9f:6c:ae:12:64:42:7a:3b:
95:32:eb:5c:53:0b:59:d2:fe:6b:26:67:e5:ba:e8:e9:97:5e:
f2:a3:80:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 9 22:43:29 2026 by rpki-client