This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft File: ajqLdK1O1nN5ep9rd0nCI0VpedA.mft (raw, json) Hash identifier: SOGRe7Vma+yE+jgfo803x8Fldh4TPFmecCegu5PgVYA= Subject key identifier: C9:9A:79:CF:C0:46:86:32:13:14:C2:FF:B2:BB:C2:BF:E0:37:88:CE Authority key identifier: 6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0 Certificate issuer: /CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0 Certificate serial: 019C42461C1B3EFC8CEBF020FC9803B12E1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft Manifest number: 16D3 Signing time: Mon 09 Feb 2026 12:00:16 +0000 Manifest this update: Mon 09 Feb 2026 12:00:16 +0000 Manifest next update: Tue 10 Feb 2026 12:00:16 +0000 Files and hashes: 1: WiR_mQTYvksNuDh5PyOkyT_J_1s.roa (hash: zaouvXmVUtph8h3UF1IqoXJQFtK55FqMyr4EuKbD7oI=) 2: ajqLdK1O1nN5ep9rd0nCI0VpedA.crl (hash: p4H3cWKkv66c6YX3GiTyDEUuBraDCPY7bamiLEg55xI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:1c:1b:3e:fc:8c:eb:f0:20:fc:98:03:b1:2e:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0 Validity Not Before: Feb 9 12:00:16 2026 GMT Not After : Feb 10 12:00:16 2026 GMT Subject: CN=c99a79cfc04686321314c2ffb2bbc2bfe03788ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:84:af:82:0e:69:11:fd:ea:a8:41:91:9d:40: 20:00:88:21:f9:61:db:a8:35:59:7d:37:c1:5c:e8: c3:9d:de:0d:4d:40:86:e1:76:e5:c4:bf:70:02:76: 38:1d:fd:70:1d:b3:b5:cb:1d:2c:d9:7a:10:66:f2: 45:00:a5:32:57:4d:6d:56:4d:72:a5:f4:9b:06:ee: c0:53:2c:2d:d1:98:e1:d5:ee:d6:0d:75:2c:66:7c: f1:6d:dc:4e:f7:5b:a0:b4:ac:9e:6f:20:71:a3:a7: 8a:e0:28:5a:a7:f7:3d:88:18:87:10:6d:4d:06:d0: 4b:ea:55:9b:7f:2b:f1:d0:89:e6:e2:32:43:1f:14: 2e:40:d2:0b:a0:c4:82:11:d2:d1:63:09:74:ed:04: 77:4a:bb:64:52:0f:c3:c8:3c:15:6c:40:ec:f7:8b: a6:1c:eb:ba:14:a3:3c:ee:21:4c:91:1b:e1:29:68: 8d:75:8d:0b:8e:23:1d:6b:a7:b8:83:b6:c2:62:2d: 87:f5:38:96:e7:71:cb:1c:52:0e:d6:84:50:1a:24: 98:f8:ac:98:4d:2e:df:13:0e:6d:fc:d2:f4:df:0d: 6c:aa:cf:47:3b:d4:6a:d1:13:39:8c:d0:a6:98:19: 67:cf:5a:4d:d1:39:f2:4a:15:85:aa:c8:16:4e:8f: 18:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:9A:79:CF:C0:46:86:32:13:14:C2:FF:B2:BB:C2:BF:E0:37:88:CE X509v3 Authority Key Identifier: keyid:6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:b4:ec:72:50:15:78:ee:37:7c:52:0d:54:3d:42:61:0f:9d: 78:3d:e9:75:5f:61:ab:2c:ea:87:89:fa:92:2f:fd:73:4a:5e: f5:20:d6:56:7c:c2:85:fa:d6:d4:90:4f:60:50:5e:94:17:80: da:32:a6:73:57:eb:ab:31:1f:a0:28:2c:1c:62:74:9c:00:f5: 90:82:37:3a:22:fa:ec:91:df:8a:4a:4f:2a:f2:fe:e4:d6:89: 8f:68:dd:a7:a0:09:18:d1:0d:67:db:f0:0e:bb:ef:85:36:d1: da:27:2b:6a:7e:18:50:4b:a8:db:62:ce:b5:57:79:7a:ec:98: 8a:d6:d3:f0:33:be:2a:89:c0:9f:5a:d8:bf:b1:50:01:5f:3b: 8c:c2:8c:99:b1:43:b3:aa:6b:34:78:88:78:b2:f1:c9:db:fb: 32:0c:d8:c7:0f:c0:06:8c:11:ff:ae:32:70:c5:49:72:73:2e: 32:06:78:c6:8c:ff:e1:be:f1:48:b8:30:73:fd:5e:69:66:65: 06:49:a6:cf:53:60:d8:c0:03:25:06:66:b4:a4:5d:0a:f1:e1: 0f:ce:ed:5a:ed:28:ff:f0:4d:5d:75:ea:00:2c:62:45:6e:8a: 72:51:99:d7:c5:65:27:2d:cf:6f:71:8d:b8:57:fc:72:b4:a4: 3c:4d:56:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRhwbPvyM6/Ag/JgDsS4bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhM2E4Yjc0YWQ0ZWQ2NzM3OTdhOWY2Yjc3NDljMjIzNDU2 OTc5ZDAwHhcNMjYwMjA5MTIwMDE2WhcNMjYwMjEwMTIwMDE2WjAzMTEwLwYDVQQD EyhjOTlhNzljZmMwNDY4NjMyMTMxNGMyZmZiMmJiYzJiZmUwMzc4OGNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqYSvgg5pEf3qqEGRnUAgAIgh+WHb qDVZfTfBXOjDnd4NTUCG4XblxL9wAnY4Hf1wHbO1yx0s2XoQZvJFAKUyV01tVk1y pfSbBu7AUywt0Zjh1e7WDXUsZnzxbdxO91ugtKyebyBxo6eK4Chap/c9iBiHEG1N BtBL6lWbfyvx0Inm4jJDHxQuQNILoMSCEdLRYwl07QR3SrtkUg/DyDwVbEDs94um HOu6FKM87iFMkRvhKWiNdY0LjiMda6e4g7bCYi2H9TiW53HLHFIO1oRQGiSY+KyY TS7fEw5t/NL03w1sqs9HO9Rq0RM5jNCmmBlnz1pN0TnyShWFqsgWTo8YFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMmaec/ARoYyExTC/7K7wr/gN4jOMB8GA1UdIwQY MBaAFGo6i3StTtZzeXqfa3dJwiNFaXnQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWpxTGRLMU8xbk41ZXA5cmQwbkNJMFZwZWRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS81M2FjYTItZTg4OC00MjFjLWI1OWEt Yzk1OGJmNGY4OTkxLzEvYWpxTGRLMU8xbk41ZXA5cmQwbkNJMFZwZWRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS81M2FjYTItZTg4OC00MjFjLWI1OWEtYzk1OGJmNGY4OTkx LzEvYWpxTGRLMU8xbk41ZXA5cmQwbkNJMFZwZWRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARbTsclAV eO43fFINVD1CYQ+deD3pdV9hqyzqh4n6ki/9c0pe9SDWVnzChfrW1JBPYFBelBeA 2jKmc1frqzEfoCgsHGJ0nAD1kII3OiL67JHfikpPKvL+5NaJj2jdp6AJGNENZ9vw DrvvhTbR2icran4YUEuo22LOtVd5euyYitbT8DO+KonAn1rYv7FQAV87jMKMmbFD s6prNHiIeLLxydv7MgzYxw/ABowR/64ycMVJcnMuMgZ4xoz/4b7xSLgwc/1eaWZl Bkmmz1Ng2MADJQZmtKRdCvHhD87tWu0o//BNXXXqACxiRW6KclGZ18VlJy3Pb3GN uFf8crSkPE1WwQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:27 2026 by rpki-client