This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/953a61-3349-47bf-a12b-e4c69334142c/1/afM-l5tD6I0OXsp5h5R9sh73yrk.mft File: afM-l5tD6I0OXsp5h5R9sh73yrk.mft (raw, json) Hash identifier: /z7ia7F7QUjL9kG44ryl0NYbz796sGMMrxgd8TEhVac= Subject key identifier: BF:DF:27:8A:4D:38:B8:31:F5:44:BB:36:FE:1B:B8:02:80:21:69:F0 Authority key identifier: 69:F3:3E:97:9B:43:E8:8D:0E:5E:CA:79:87:94:7D:B2:1E:F7:CA:B9 Certificate issuer: /CN=69f33e979b43e88d0e5eca7987947db21ef7cab9 Certificate serial: 019C43C6CCF66F779813EA4DAD3F146C9FF8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/afM-l5tD6I0OXsp5h5R9sh73yrk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/953a61-3349-47bf-a12b-e4c69334142c/1/afM-l5tD6I0OXsp5h5R9sh73yrk.mft Manifest number: 06CA Signing time: Mon 09 Feb 2026 19:00:27 +0000 Manifest this update: Mon 09 Feb 2026 19:00:27 +0000 Manifest next update: Tue 10 Feb 2026 19:00:27 +0000 Files and hashes: 1: afM-l5tD6I0OXsp5h5R9sh73yrk.crl (hash: w05ZA9fUt4F2zkk7LuL8yRoCxmXyXGRIBsMpHFlsUW0=) 2: eNYwFKvhTYAKwUVHqfcOhm_redw.roa (hash: h0zFFTvlVNTqfoPE4dwnvafuj6T5qC/XkjacHGe2Fjo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/953a61-3349-47bf-a12b-e4c69334142c/1/afM-l5tD6I0OXsp5h5R9sh73yrk.crl rsync://rpki.ripe.net/repository/DEFAULT/22/953a61-3349-47bf-a12b-e4c69334142c/1/afM-l5tD6I0OXsp5h5R9sh73yrk.mft rsync://rpki.ripe.net/repository/DEFAULT/afM-l5tD6I0OXsp5h5R9sh73yrk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:cc:f6:6f:77:98:13:ea:4d:ad:3f:14:6c:9f:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69f33e979b43e88d0e5eca7987947db21ef7cab9 Validity Not Before: Feb 9 19:00:27 2026 GMT Not After : Feb 10 19:00:27 2026 GMT Subject: CN=bfdf278a4d38b831f544bb36fe1bb802802169f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:72:2e:bf:40:79:cd:5c:e9:9f:7d:d1:86:4b: 45:c1:41:f9:67:9a:23:23:ef:d9:72:6a:7a:b8:18: 70:0d:ea:fc:c8:9d:c5:74:08:2b:fb:4a:48:07:8f: 46:7c:16:ae:7d:74:de:de:eb:1a:f2:76:2b:e4:5f: 7b:19:6f:e4:6b:18:90:e2:d2:a6:ce:51:83:cb:41: 52:dd:f0:60:d3:5d:e2:c0:39:91:de:11:83:92:19: fe:aa:f5:4a:92:49:fe:33:6b:35:be:80:fe:83:e5: 6a:f9:be:75:ee:bf:2a:c5:ca:9c:5d:1d:ad:bf:00: 82:73:24:2f:8b:ba:f6:f0:bd:be:25:33:b7:fe:7c: 49:57:1a:77:44:79:c4:1e:71:96:77:02:55:92:90: ba:04:48:bd:76:26:a8:1f:72:4e:8c:a9:67:7e:5a: 37:5b:8f:ae:5a:39:50:52:96:74:06:ee:77:90:64: 5d:8a:64:ac:b1:25:a0:28:9b:2a:40:f5:29:49:23: 62:61:aa:1b:ab:af:b3:05:fa:4a:44:0b:9c:95:ef: f9:f8:ec:0d:80:31:9b:bd:54:7e:4b:3a:98:10:13: 8b:cc:1d:12:d4:7b:2f:a4:dc:15:c5:cb:14:f2:24: 2f:8c:39:b4:aa:e7:da:2e:fc:63:f9:d5:0b:f8:4c: aa:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:DF:27:8A:4D:38:B8:31:F5:44:BB:36:FE:1B:B8:02:80:21:69:F0 X509v3 Authority Key Identifier: keyid:69:F3:3E:97:9B:43:E8:8D:0E:5E:CA:79:87:94:7D:B2:1E:F7:CA:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/afM-l5tD6I0OXsp5h5R9sh73yrk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/953a61-3349-47bf-a12b-e4c69334142c/1/afM-l5tD6I0OXsp5h5R9sh73yrk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/953a61-3349-47bf-a12b-e4c69334142c/1/afM-l5tD6I0OXsp5h5R9sh73yrk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:23:be:88:af:e6:a7:06:20:69:c7:19:6d:67:b5:73:fc:e4: 5f:6b:47:61:df:c7:2b:0a:4a:2f:8a:48:ff:6c:24:05:e2:a1: 32:07:b9:23:e7:e2:80:a9:c1:6f:9f:4c:03:18:fb:b2:fd:bb: 1d:9b:66:7b:6c:cd:88:cc:17:07:c4:86:be:40:d5:46:52:93: 6c:03:5f:9d:36:a2:5a:31:eb:e3:f7:3e:34:ad:ba:da:d8:1f: 72:c8:7e:28:08:f5:fd:f7:d8:47:fb:55:f6:25:ba:c1:9a:b2: 34:33:3e:b5:58:cc:e1:54:61:89:23:80:70:00:bc:4a:55:06: d5:17:44:b3:8a:89:76:36:95:a7:7b:28:1d:28:0f:a8:27:6b: c8:92:ca:ee:cb:94:7a:a0:93:08:3f:94:9c:57:e7:55:a8:aa: e5:b3:d6:37:5f:51:6b:e8:18:58:57:45:1f:37:1e:f3:23:a1: 71:5b:70:50:9f:d1:17:19:ae:db:6d:7d:a7:ca:dc:53:3c:9a: 34:62:a2:17:5c:3c:6a:6e:11:6a:22:02:99:74:ec:e9:7b:63: d3:58:c8:24:7e:25:a4:d5:3f:5f:a3:6b:ab:1b:1b:a1:f6:de: 7f:ed:45:0f:68:12:f2:bd:40:77:25:eb:0a:54:f6:03:d9:97: d3:cd:a2:06 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxsz2b3eYE+pNrT8UbJ/4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ZjMzZTk3OWI0M2U4OGQwZTVlY2E3OTg3OTQ3ZGIyMWVm N2NhYjkwHhcNMjYwMjA5MTkwMDI3WhcNMjYwMjEwMTkwMDI3WjAzMTEwLwYDVQQD EyhiZmRmMjc4YTRkMzhiODMxZjU0NGJiMzZmZTFiYjgwMjgwMjE2OWYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArHIuv0B5zVzpn33RhktFwUH5Z5oj I+/Zcmp6uBhwDer8yJ3FdAgr+0pIB49GfBaufXTe3usa8nYr5F97GW/kaxiQ4tKm zlGDy0FS3fBg013iwDmR3hGDkhn+qvVKkkn+M2s1voD+g+Vq+b517r8qxcqcXR2t vwCCcyQvi7r28L2+JTO3/nxJVxp3RHnEHnGWdwJVkpC6BEi9diaoH3JOjKlnflo3 W4+uWjlQUpZ0Bu53kGRdimSssSWgKJsqQPUpSSNiYaobq6+zBfpKRAucle/5+OwN gDGbvVR+SzqYEBOLzB0S1HsvpNwVxcsU8iQvjDm0qufaLvxj+dUL+EyqtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL/fJ4pNOLgx9US7Nv4buAKAIWnwMB8GA1UdIwQY MBaAFGnzPpebQ+iNDl7KeYeUfbIe98q5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWZNLWw1dEQ2STBPWHNwNWg1UjlzaDczeXJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi85NTNhNjEtMzM0OS00N2JmLWExMmIt ZTRjNjkzMzQxNDJjLzEvYWZNLWw1dEQ2STBPWHNwNWg1UjlzaDczeXJrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi85NTNhNjEtMzM0OS00N2JmLWExMmItZTRjNjkzMzQxNDJj LzEvYWZNLWw1dEQ2STBPWHNwNWg1UjlzaDczeXJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoSO+iK/m pwYgaccZbWe1c/zkX2tHYd/HKwpKL4pI/2wkBeKhMge5I+figKnBb59MAxj7sv27 HZtme2zNiMwXB8SGvkDVRlKTbANfnTaiWjHr4/c+NK262tgfcsh+KAj1/ffYR/tV 9iW6wZqyNDM+tVjM4VRhiSOAcAC8SlUG1RdEs4qJdjaVp3soHSgPqCdryJLK7suU eqCTCD+UnFfnVaiq5bPWN19Ra+gYWFdFHzce8yOhcVtwUJ/RFxmu2219p8rcUzya NGKiF1w8am4RaiICmXTs6Xtj01jIJH4lpNU/X6Nrqxsbofbef+1FD2gS8r1AdyXr ClT2A9mX082iBg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:00 2026 by rpki-client