This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft File: A2hHspcjX68HFob-0sHpEL9gBIY.mft (raw, json) Hash identifier: 4ut2PodH+DnZCdziIqcBdp1g/6KMowH4eOfeBxEgIz8= Subject key identifier: CA:36:CE:21:E6:CB:B7:95:EA:1F:8B:8B:2A:58:87:48:A9:23:67:CB Authority key identifier: 03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86 Certificate issuer: /CN=036847b297235faf071686fed2c1e910bf600486 Certificate serial: 019C4322FD8407410BAB721A54A101EDBBF0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft Manifest number: 14A0 Signing time: Mon 09 Feb 2026 16:01:32 +0000 Manifest this update: Mon 09 Feb 2026 16:01:32 +0000 Manifest next update: Tue 10 Feb 2026 16:01:32 +0000 Files and hashes: 1: A2hHspcjX68HFob-0sHpEL9gBIY.crl (hash: YhLH38swsvVTCpiSTG6WAlQbhKcmHJZbgbyZ7eZdhVs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:fd:84:07:41:0b:ab:72:1a:54:a1:01:ed:bb:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=036847b297235faf071686fed2c1e910bf600486 Validity Not Before: Feb 9 16:01:32 2026 GMT Not After : Feb 10 16:01:32 2026 GMT Subject: CN=ca36ce21e6cbb795ea1f8b8b2a588748a92367cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:82:d7:4d:f2:62:fc:54:2d:5e:e8:09:8e:20: 89:8f:74:af:c5:ed:fe:85:f1:05:ef:d0:3b:b9:e7: e9:4d:a3:ba:88:91:0f:ea:73:9f:3f:fd:66:18:4a: c6:f3:94:a6:b4:cf:35:e7:0d:ff:bd:50:ce:0a:63: 58:b8:3f:34:de:6e:d8:13:d0:f5:dc:61:b8:94:00: dd:68:75:7e:ce:5d:6f:9d:7b:e2:44:20:ee:34:d5: c1:88:f5:be:a3:6f:fa:94:63:8d:85:a6:42:40:d6: 76:15:3f:2d:94:d6:25:7b:2f:bb:86:c1:2c:d1:0e: 37:97:29:03:51:03:12:e8:b2:3a:db:7c:c5:cf:bf: 70:ce:ad:f0:90:28:07:29:b7:1f:c8:a6:a1:0c:4e: 29:b1:1d:db:5a:49:48:7f:52:4b:0a:b5:e8:6e:99: f4:d4:93:5a:2e:28:30:71:4a:94:a6:d5:20:2d:5b: 23:2f:e6:4b:dd:b4:7f:d8:ae:0a:81:9b:9f:1b:00: 7a:f3:e8:df:30:93:c8:f0:26:bf:e8:2f:9d:02:69: 4b:10:39:7b:4a:5c:5b:5d:ba:20:ed:f3:0a:f0:74: bd:60:d8:da:ae:7d:23:6a:3b:df:89:2e:32:73:a6: 36:64:1a:b7:50:05:fe:39:1f:f5:eb:fc:11:d1:e4: 8c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:36:CE:21:E6:CB:B7:95:EA:1F:8B:8B:2A:58:87:48:A9:23:67:CB X509v3 Authority Key Identifier: keyid:03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:c4:61:ba:c4:54:90:d1:a3:65:d1:fe:1e:fc:f5:a4:26:63: 82:31:fe:52:9e:8b:ab:cc:e6:b4:f1:a2:e0:95:2c:28:c3:ea: d2:fb:fc:46:73:8b:8b:8e:1c:f9:8d:33:27:06:1e:76:be:b8: 7a:8b:35:7a:bf:a3:61:d6:8e:60:62:41:23:e3:26:9a:ff:09: 2c:d6:0c:d3:4f:3a:f6:f1:6f:55:d7:9d:72:91:67:d6:c2:2a: 79:30:9d:43:2b:3a:94:20:a4:9d:d7:bc:de:07:5f:8d:16:09: 15:a3:e8:ca:30:b0:9c:ed:67:4f:49:d5:4b:1a:d8:9f:87:27: fa:c7:95:ae:f2:1b:97:d2:7b:8b:d9:02:0e:cf:62:cf:8e:a4: 99:91:72:fd:28:ef:64:84:e3:8b:d9:c3:80:65:dc:99:59:0e: 52:dd:5b:4b:6b:82:08:96:2c:68:30:a4:34:5c:2d:b0:8c:0d: dd:7c:82:5c:81:e1:dd:6f:a3:fe:50:96:8c:52:a3:98:29:fa: 41:6f:45:75:78:2a:2a:34:b6:7c:01:17:b0:05:a9:77:0b:e9: 3e:32:55:6b:68:58:9f:e5:53:a3:9f:6c:ae:12:64:42:7a:3b: 95:32:eb:5c:53:0b:59:d2:fe:6b:26:67:e5:ba:e8:e9:97:5e: f2:a3:80:fc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIv2EB0ELq3IaVKEB7bvwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzNjg0N2IyOTcyMzVmYWYwNzE2ODZmZWQyYzFlOTEwYmY2 MDA0ODYwHhcNMjYwMjA5MTYwMTMyWhcNMjYwMjEwMTYwMTMyWjAzMTEwLwYDVQQD EyhjYTM2Y2UyMWU2Y2JiNzk1ZWExZjhiOGIyYTU4ODc0OGE5MjM2N2NiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtILXTfJi/FQtXugJjiCJj3Svxe3+ hfEF79A7uefpTaO6iJEP6nOfP/1mGErG85SmtM815w3/vVDOCmNYuD803m7YE9D1 3GG4lADdaHV+zl1vnXviRCDuNNXBiPW+o2/6lGONhaZCQNZ2FT8tlNYley+7hsEs 0Q43lykDUQMS6LI623zFz79wzq3wkCgHKbcfyKahDE4psR3bWklIf1JLCrXobpn0 1JNaLigwcUqUptUgLVsjL+ZL3bR/2K4KgZufGwB68+jfMJPI8Ca/6C+dAmlLEDl7 SlxbXbog7fMK8HS9YNjarn0jajvfiS4yc6Y2ZBq3UAX+OR/16/wR0eSMCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMo2ziHmy7eV6h+LiypYh0ipI2fLMB8GA1UdIwQY MBaAFANoR7KXI1+vBxaG/tLB6RC/YASGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQTJoSHNwY2pYNjhIRm9iLTBzSHBFTDlnQklZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS80NGI3OTctY2Q1Yi00ZGVkLWE1NjIt YmRkNzMyOGU5NGNiLzEvQTJoSHNwY2pYNjhIRm9iLTBzSHBFTDlnQklZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS80NGI3OTctY2Q1Yi00ZGVkLWE1NjItYmRkNzMyOGU5NGNi LzEvQTJoSHNwY2pYNjhIRm9iLTBzSHBFTDlnQklZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI8RhusRU kNGjZdH+Hvz1pCZjgjH+Up6Lq8zmtPGi4JUsKMPq0vv8RnOLi44c+Y0zJwYedr64 eos1er+jYdaOYGJBI+Mmmv8JLNYM00869vFvVdedcpFn1sIqeTCdQys6lCCknde8 3gdfjRYJFaPoyjCwnO1nT0nVSxrYn4cn+seVrvIbl9J7i9kCDs9iz46kmZFy/Sjv ZITji9nDgGXcmVkOUt1bS2uCCJYsaDCkNFwtsIwN3XyCXIHh3W+j/lCWjFKjmCn6 QW9FdXgqKjS2fAEXsAWpdwvpPjJVa2hYn+VTo59srhJkQno7lTLrXFMLWdL+ayZn 5bro6Zde8qOA/A== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:29 2026 by rpki-client