This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/e21b69-9df9-48a3-a1e1-70342a2e7533/1/AZYrnNLlVrWW_HJDVlgHueLchoo.mft File: AZYrnNLlVrWW_HJDVlgHueLchoo.mft (raw, json) Hash identifier: 3iNnXQB32qJAWRwBIw3BArIUyrnZNV3qe5tHHvsMw9E= Subject key identifier: 88:B6:ED:6D:B3:BF:40:CA:1D:D8:B7:E4:BD:CF:76:34:E6:3C:98:D9 Authority key identifier: 01:96:2B:9C:D2:E5:56:B5:96:FC:72:43:56:58:07:B9:E2:DC:86:8A Certificate issuer: /CN=01962b9cd2e556b596fc7243565807b9e2dc868a Certificate serial: 019C4322720974A7EE687C9504298F44147F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AZYrnNLlVrWW_HJDVlgHueLchoo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/e21b69-9df9-48a3-a1e1-70342a2e7533/1/AZYrnNLlVrWW_HJDVlgHueLchoo.mft Manifest number: 0919 Signing time: Mon 09 Feb 2026 16:00:56 +0000 Manifest this update: Mon 09 Feb 2026 16:00:56 +0000 Manifest next update: Tue 10 Feb 2026 16:00:56 +0000 Files and hashes: 1: AZYrnNLlVrWW_HJDVlgHueLchoo.crl (hash: 2SZ90mp5TW8Rd5jg8dRryc9kJ3zpoj1YjpHgzoOg6to=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/e21b69-9df9-48a3-a1e1-70342a2e7533/1/AZYrnNLlVrWW_HJDVlgHueLchoo.crl rsync://rpki.ripe.net/repository/DEFAULT/26/e21b69-9df9-48a3-a1e1-70342a2e7533/1/AZYrnNLlVrWW_HJDVlgHueLchoo.mft rsync://rpki.ripe.net/repository/DEFAULT/AZYrnNLlVrWW_HJDVlgHueLchoo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:72:09:74:a7:ee:68:7c:95:04:29:8f:44:14:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01962b9cd2e556b596fc7243565807b9e2dc868a Validity Not Before: Feb 9 16:00:56 2026 GMT Not After : Feb 10 16:00:56 2026 GMT Subject: CN=88b6ed6db3bf40ca1dd8b7e4bdcf7634e63c98d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:53:ba:6d:36:58:f5:6f:fb:55:98:bc:66:9b: fb:80:54:2c:c3:a2:61:2e:af:36:c7:e7:3c:01:f8: bb:0f:b7:49:a2:82:ed:42:14:4f:80:60:f3:4b:cb: b3:65:04:1b:58:88:18:06:ef:f7:13:bb:07:72:7f: 62:e6:6c:07:a3:80:88:f7:e8:a3:35:7e:89:0c:6b: 12:a0:7e:65:73:6e:cc:74:9d:12:73:06:0c:ea:cf: bd:4d:0e:ef:11:2e:e9:85:36:4e:42:66:11:b7:89: b0:f3:96:06:d7:f4:76:c9:41:b5:ea:d1:f9:36:b7: a5:7e:9a:1b:8f:64:33:d4:f1:ad:da:f6:e9:dd:c2: 21:98:06:49:05:09:62:d4:29:66:27:77:7a:2c:e5: 4f:18:e4:a2:9b:81:c9:3f:50:fd:5f:93:47:40:cc: 31:d3:24:5d:a9:56:b7:8c:e4:9b:3d:d5:53:73:7c: 14:b7:cd:08:be:fb:0e:ad:85:ee:0b:c5:2b:37:d7: 20:ca:af:c0:6f:f3:29:e5:63:d4:ec:1a:b9:c0:7b: 14:86:bb:a9:dd:cb:2d:1d:7b:17:d9:c2:c6:d1:22: a2:a3:ad:d3:fe:1e:f2:d4:d1:7d:5e:9d:de:e6:d5: 39:2f:c2:dc:c2:69:97:0c:9d:62:47:67:01:e1:d2: 19:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:B6:ED:6D:B3:BF:40:CA:1D:D8:B7:E4:BD:CF:76:34:E6:3C:98:D9 X509v3 Authority Key Identifier: keyid:01:96:2B:9C:D2:E5:56:B5:96:FC:72:43:56:58:07:B9:E2:DC:86:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AZYrnNLlVrWW_HJDVlgHueLchoo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e21b69-9df9-48a3-a1e1-70342a2e7533/1/AZYrnNLlVrWW_HJDVlgHueLchoo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e21b69-9df9-48a3-a1e1-70342a2e7533/1/AZYrnNLlVrWW_HJDVlgHueLchoo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:8b:95:d9:9f:5f:76:e4:68:1b:87:0f:13:3d:94:7d:8c:89: 62:ee:1a:97:97:6a:dc:21:5e:29:cc:aa:9a:4e:8e:40:97:18: 04:98:f1:4c:c6:52:72:ed:b8:4f:2b:0e:8a:a0:2b:23:5f:66: bb:f5:1a:b4:9d:32:03:57:10:cb:d6:36:5a:bf:49:a2:23:c0: 09:e4:44:fc:18:72:30:f2:73:66:92:dc:73:48:87:22:1f:b5: b9:40:b8:c9:34:35:48:1f:83:2b:bd:b6:eb:a5:e8:0e:8f:9f: be:25:b7:0f:6c:3f:6f:52:a1:99:37:5a:8a:b3:1c:fa:73:ed: 45:d8:7b:87:f1:7e:ad:6b:73:c1:27:e2:b9:59:a6:01:42:67: 9d:e8:2f:6a:2d:dd:85:51:31:66:37:f7:bb:36:72:2e:60:3d: c1:ab:84:5e:ae:af:b0:ff:c0:52:a3:8b:97:cf:b5:a1:fc:d8: b5:1e:f1:f5:75:be:ac:6a:18:93:b2:4a:84:37:68:73:b1:cd: 59:7f:1d:65:68:48:65:54:67:a9:de:2b:05:82:aa:97:3b:dd: e2:c1:d2:76:22:8a:62:4f:7b:4c:a2:62:8d:82:f4:fa:c6:a2: d1:8d:24:f3:ac:6a:54:e4:b8:3a:b7:70:66:d6:dd:8e:96:c4: b8:95:e3:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDInIJdKfuaHyVBCmPRBR/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxOTYyYjljZDJlNTU2YjU5NmZjNzI0MzU2NTgwN2I5ZTJk Yzg2OGEwHhcNMjYwMjA5MTYwMDU2WhcNMjYwMjEwMTYwMDU2WjAzMTEwLwYDVQQD Eyg4OGI2ZWQ2ZGIzYmY0MGNhMWRkOGI3ZTRiZGNmNzYzNGU2M2M5OGQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA01O6bTZY9W/7VZi8Zpv7gFQsw6Jh Lq82x+c8Afi7D7dJooLtQhRPgGDzS8uzZQQbWIgYBu/3E7sHcn9i5mwHo4CI9+ij NX6JDGsSoH5lc27MdJ0ScwYM6s+9TQ7vES7phTZOQmYRt4mw85YG1/R2yUG16tH5 Nrelfpobj2Qz1PGt2vbp3cIhmAZJBQli1ClmJ3d6LOVPGOSim4HJP1D9X5NHQMwx 0yRdqVa3jOSbPdVTc3wUt80IvvsOrYXuC8UrN9cgyq/Ab/Mp5WPU7Bq5wHsUhrup 3cstHXsX2cLG0SKio63T/h7y1NF9Xp3e5tU5L8LcwmmXDJ1iR2cB4dIZuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIi27W2zv0DKHdi35L3PdjTmPJjZMB8GA1UdIwQY MBaAFAGWK5zS5Va1lvxyQ1ZYB7ni3IaKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVpZcm5OTGxWcldXX0hKRFZsZ0h1ZUxjaG9vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi9lMjFiNjktOWRmOS00OGEzLWExZTEt NzAzNDJhMmU3NTMzLzEvQVpZcm5OTGxWcldXX0hKRFZsZ0h1ZUxjaG9vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi9lMjFiNjktOWRmOS00OGEzLWExZTEtNzAzNDJhMmU3NTMz LzEvQVpZcm5OTGxWcldXX0hKRFZsZ0h1ZUxjaG9vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC4uV2Z9f duRoG4cPEz2UfYyJYu4al5dq3CFeKcyqmk6OQJcYBJjxTMZScu24TysOiqArI19m u/UatJ0yA1cQy9Y2Wr9JoiPACeRE/BhyMPJzZpLcc0iHIh+1uUC4yTQ1SB+DK722 66XoDo+fviW3D2w/b1KhmTdairMc+nPtRdh7h/F+rWtzwSfiuVmmAUJnnegvai3d hVExZjf3uzZyLmA9wauEXq6vsP/AUqOLl8+1ofzYtR7x9XW+rGoYk7JKhDdoc7HN WX8dZWhIZVRnqd4rBYKqlzvd4sHSdiKKYk97TKJijYL0+sai0Y0k86xqVOS4Ordw ZtbdjpbEuJXj5A== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:57 2026 by rpki-client