This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft File: A2hHspcjX68HFob-0sHpEL9gBIY.mft (raw, json) Hash identifier: oywopR5xXNGEqlSTPe1YdJSBaEDpww40tmJCIYQ+R/I= Subject key identifier: AE:5D:45:03:44:AF:1B:11:A9:AE:C2:BE:6A:D4:88:FB:A2:0B:EE:1D Authority key identifier: 03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86 Certificate issuer: /CN=036847b297235faf071686fed2c1e910bf600486 Certificate serial: 019C45111780839227595651102DDA3F36C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft Manifest number: 14A1 Signing time: Tue 10 Feb 2026 01:01:13 +0000 Manifest this update: Tue 10 Feb 2026 01:01:13 +0000 Manifest next update: Wed 11 Feb 2026 01:01:13 +0000 Files and hashes: 1: A2hHspcjX68HFob-0sHpEL9gBIY.crl (hash: W2B+rcEYJq+hA1+dsD08BXHVVlTmmvL84YAEUfUP/eo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:11:17:80:83:92:27:59:56:51:10:2d:da:3f:36:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=036847b297235faf071686fed2c1e910bf600486 Validity Not Before: Feb 10 01:01:13 2026 GMT Not After : Feb 11 01:01:13 2026 GMT Subject: CN=ae5d450344af1b11a9aec2be6ad488fba20bee1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:87:64:c4:de:8c:36:b4:52:6d:9c:78:e0:cf: a5:fc:2e:71:6d:60:d4:cb:9e:5f:7c:a6:db:76:dd: ca:ca:07:98:dc:62:03:b6:11:0a:4e:32:32:a8:36: 88:3f:a6:c8:22:b9:98:4b:e4:45:ee:d2:fd:b2:29: fb:f9:6c:0d:2b:28:8b:fa:77:92:50:a5:06:77:cd: c4:00:99:a8:8d:61:43:0a:d8:c0:44:2a:91:af:7e: ad:73:50:39:50:6c:cb:11:fa:e6:1d:b7:62:59:13: 19:32:ba:18:70:92:d2:ce:0e:ee:6f:50:c3:eb:ff: 4f:81:02:37:a8:fa:90:fe:4d:07:2f:da:07:b3:ac: a0:51:8a:68:ee:84:b8:47:43:bf:45:aa:30:12:00: 07:45:b2:a8:2b:ea:10:fa:7b:be:8d:85:1f:ce:75: 77:4c:42:7b:86:42:a0:f3:50:8a:24:b2:2b:3b:70: 78:28:3b:e5:da:52:cf:b7:2c:df:b8:b7:a7:94:40: 2d:1f:a8:0f:e7:ac:2a:bc:27:85:aa:8a:c7:71:f5: 4c:c3:3b:f2:a4:69:1e:1a:bd:fb:78:f5:1a:7f:36: 77:5f:b8:0a:58:67:9c:e2:9f:51:ad:91:25:b4:d3: a8:c0:8f:3a:bd:d5:fc:eb:c2:d6:95:c0:88:a5:b4: b8:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:5D:45:03:44:AF:1B:11:A9:AE:C2:BE:6A:D4:88:FB:A2:0B:EE:1D X509v3 Authority Key Identifier: keyid:03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:54:ab:da:20:4d:92:37:03:4d:20:83:42:c4:82:fc:52:74: 03:81:2c:ce:ed:b2:66:03:b4:a5:18:63:3f:3b:75:8b:99:1f: 05:90:fa:8a:2d:af:39:e9:72:72:20:68:4c:b0:61:45:18:75: 9b:bc:25:9a:4e:60:f6:78:0a:ed:24:0b:e5:b8:86:e1:7e:a4: 04:ad:0b:73:71:b6:af:c1:b4:16:cb:27:94:89:46:f5:0f:76: 3e:c0:26:3e:31:53:00:e6:66:8c:3f:87:ad:50:db:64:b9:00: b3:a9:56:46:83:b5:76:d6:a9:1b:99:d0:3a:18:bd:92:c9:c9: 73:fe:c1:b4:54:e1:5e:10:3a:af:43:04:91:12:d1:b2:d9:df: cb:e7:d2:5f:c5:f8:95:70:39:da:a8:02:86:72:6d:5e:c6:55: 14:33:6f:bc:0b:dd:3c:12:92:e9:91:22:1d:db:6d:a4:1f:45: ca:a6:b6:42:38:dc:8e:96:c9:f4:79:7d:da:dc:ab:a0:c6:48: 46:18:72:49:f3:16:ad:38:79:9c:7b:79:28:a3:f8:8c:a8:bb: bd:57:50:be:c2:99:35:4f:c2:95:d2:eb:58:b7:24:2e:85:9e: 8b:54:72:8e:a3:8d:59:a6:1b:e0:c7:6d:75:1a:ad:b1:c1:c3: 85:72:67:29 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFEReAg5InWVZREC3aPzbCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzNjg0N2IyOTcyMzVmYWYwNzE2ODZmZWQyYzFlOTEwYmY2 MDA0ODYwHhcNMjYwMjEwMDEwMTEzWhcNMjYwMjExMDEwMTEzWjAzMTEwLwYDVQQD EyhhZTVkNDUwMzQ0YWYxYjExYTlhZWMyYmU2YWQ0ODhmYmEyMGJlZTFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqYdkxN6MNrRSbZx44M+l/C5xbWDU y55ffKbbdt3KygeY3GIDthEKTjIyqDaIP6bIIrmYS+RF7tL9sin7+WwNKyiL+neS UKUGd83EAJmojWFDCtjARCqRr36tc1A5UGzLEfrmHbdiWRMZMroYcJLSzg7ub1DD 6/9PgQI3qPqQ/k0HL9oHs6ygUYpo7oS4R0O/RaowEgAHRbKoK+oQ+nu+jYUfznV3 TEJ7hkKg81CKJLIrO3B4KDvl2lLPtyzfuLenlEAtH6gP56wqvCeFqorHcfVMwzvy pGkeGr37ePUafzZ3X7gKWGec4p9RrZEltNOowI86vdX868LWlcCIpbS4MQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK5dRQNErxsRqa7CvmrUiPuiC+4dMB8GA1UdIwQY MBaAFANoR7KXI1+vBxaG/tLB6RC/YASGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQTJoSHNwY2pYNjhIRm9iLTBzSHBFTDlnQklZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS80NGI3OTctY2Q1Yi00ZGVkLWE1NjIt YmRkNzMyOGU5NGNiLzEvQTJoSHNwY2pYNjhIRm9iLTBzSHBFTDlnQklZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS80NGI3OTctY2Q1Yi00ZGVkLWE1NjItYmRkNzMyOGU5NGNi LzEvQTJoSHNwY2pYNjhIRm9iLTBzSHBFTDlnQklZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKlSr2iBN kjcDTSCDQsSC/FJ0A4Eszu2yZgO0pRhjPzt1i5kfBZD6ii2vOelyciBoTLBhRRh1 m7wlmk5g9ngK7SQL5biG4X6kBK0Lc3G2r8G0FssnlIlG9Q92PsAmPjFTAOZmjD+H rVDbZLkAs6lWRoO1dtapG5nQOhi9ksnJc/7BtFThXhA6r0MEkRLRstnfy+fSX8X4 lXA52qgChnJtXsZVFDNvvAvdPBKS6ZEiHdttpB9Fyqa2QjjcjpbJ9Hl92tyroMZI RhhySfMWrTh5nHt5KKP4jKi7vVdQvsKZNU/CldLrWLckLoWei1RyjqONWaYb4Mdt dRqtscHDhXJnKQ== -----END CERTIFICATE-----Generated at Tue Feb 10 04:19:56 2026 by rpki-client