This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft File: aOlYF0Bglex8tceyhrETM0l7lFE.mft (raw, json) Hash identifier: gbKn2NPM6wOzfWmDtBx6BrAYYAOcQLoqzAfurWTGbwA= Subject key identifier: D4:25:1F:13:93:C4:E7:42:D0:8B:48:CC:87:57:1B:0D:46:87:22:0A Authority key identifier: 68:E9:58:17:40:60:95:EC:7C:B5:C7:B2:86:B1:13:33:49:7B:94:51 Certificate issuer: /CN=68e95817406095ec7cb5c7b286b11333497b9451 Certificate serial: 019C427D6AFF7B9BD0F5ED80AEED3D38F82E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft Manifest number: 0A1C Signing time: Mon 09 Feb 2026 13:00:41 +0000 Manifest this update: Mon 09 Feb 2026 13:00:41 +0000 Manifest next update: Tue 10 Feb 2026 13:00:41 +0000 Files and hashes: 1: MCQJgOH0F61zyqort3aDkrCqcME.roa (hash: dFlLGTPXyNVZq9IJXBt9j7cJ/cyhu9qP1civtpo4hwY=) 2: aOlYF0Bglex8tceyhrETM0l7lFE.crl (hash: JwoI4Ls6Xp3nYFZyoFG4MurIq232jdKOrq5th6ZaQow=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.crl rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:6a:ff:7b:9b:d0:f5:ed:80:ae:ed:3d:38:f8:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68e95817406095ec7cb5c7b286b11333497b9451 Validity Not Before: Feb 9 13:00:41 2026 GMT Not After : Feb 10 13:00:41 2026 GMT Subject: CN=d4251f1393c4e742d08b48cc87571b0d4687220a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:23:0f:57:5b:00:98:51:41:86:c3:d6:a9:4f: 2c:e6:78:68:f1:0c:af:a0:db:15:8e:9e:1f:9d:d4: 16:21:67:e9:9d:ac:52:23:ea:5b:4d:e6:3d:a0:96: a1:70:84:03:5f:de:98:7c:1c:20:94:9f:8f:08:64: 6c:7f:f8:2d:e2:b3:be:da:08:18:19:ae:f0:25:3b: 21:bf:4d:4e:5f:d0:13:ab:fd:72:6a:65:31:3c:06: 23:75:0d:41:26:21:4c:98:48:4d:7c:51:57:2d:bd: 06:24:5b:07:ad:d2:16:fb:b7:cc:e3:4c:3c:5d:4f: b7:13:93:91:56:a1:5d:12:9e:fa:eb:64:85:9a:4d: e4:39:1a:52:b0:54:85:e8:0b:28:d9:ec:3f:13:d7: 64:b5:f9:ef:07:ec:79:2b:34:ae:62:11:d4:dc:1c: 4b:7c:bb:a5:46:79:2f:9f:c2:21:fb:6c:7c:64:3b: 86:a0:67:7b:60:ac:95:cb:4c:fa:fd:aa:fe:f9:ef: 7e:35:fb:4d:cc:dc:63:cf:fc:05:ab:df:e4:a2:79: 12:82:1e:c8:73:5a:a8:f5:a9:17:a6:fb:0c:87:39: f8:18:cd:05:ca:2b:13:3b:0d:18:af:03:a2:c4:30: 4d:df:3f:d6:d7:ad:99:d0:b1:d9:d8:d4:ad:dc:51: f0:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:25:1F:13:93:C4:E7:42:D0:8B:48:CC:87:57:1B:0D:46:87:22:0A X509v3 Authority Key Identifier: keyid:68:E9:58:17:40:60:95:EC:7C:B5:C7:B2:86:B1:13:33:49:7B:94:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:f4:95:48:e8:b4:43:28:aa:7b:80:52:5f:ea:2e:9b:1b:27: 1f:80:38:31:1d:3c:d9:96:a0:8f:54:93:cb:f0:6f:90:72:09: b6:2a:13:37:5d:30:41:d4:40:8b:a8:64:0b:c3:cf:c7:a7:30: 89:f2:32:01:8f:46:45:c4:b8:0d:ef:74:37:c9:c6:26:9c:41: 25:87:cb:d4:21:59:ce:32:35:c5:de:fc:09:b2:18:a9:01:32: c9:53:6e:05:7d:b8:f2:fd:ae:71:0b:13:29:b8:41:2a:d1:bd: 81:e9:7a:72:4a:af:f7:39:a5:7f:8e:40:33:e6:9e:7e:cb:a5: 13:15:a0:dd:72:29:24:7e:6a:17:e9:3d:4c:93:1d:99:7b:1b: c2:9e:e6:3e:9f:bd:7f:d6:73:c9:b2:c2:6f:dd:1a:fa:d0:8f: 4c:17:31:f4:36:83:e2:6a:09:c0:93:88:02:71:c9:40:20:a7: 8f:f7:2a:2e:c9:65:72:9b:01:09:90:ae:c0:06:9c:44:f7:4f: 4e:16:1f:06:3e:d4:02:16:af:00:f3:ae:cf:ae:4d:d9:e8:cf: 8c:0f:cd:13:45:46:3b:21:7f:8c:f5:a7:fe:54:7a:2e:8f:0d: e7:1b:42:c7:a4:b3:ea:e2:7d:5a:30:26:07:f4:ed:e4:a5:2b: cc:f7:2d:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfWr/e5vQ9e2Aru09OPguMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZTk1ODE3NDA2MDk1ZWM3Y2I1YzdiMjg2YjExMzMzNDk3 Yjk0NTEwHhcNMjYwMjA5MTMwMDQxWhcNMjYwMjEwMTMwMDQxWjAzMTEwLwYDVQQD EyhkNDI1MWYxMzkzYzRlNzQyZDA4YjQ4Y2M4NzU3MWIwZDQ2ODcyMjBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzSMPV1sAmFFBhsPWqU8s5nho8Qyv oNsVjp4fndQWIWfpnaxSI+pbTeY9oJahcIQDX96YfBwglJ+PCGRsf/gt4rO+2ggY Ga7wJTshv01OX9ATq/1yamUxPAYjdQ1BJiFMmEhNfFFXLb0GJFsHrdIW+7fM40w8 XU+3E5ORVqFdEp7662SFmk3kORpSsFSF6Aso2ew/E9dktfnvB+x5KzSuYhHU3BxL fLulRnkvn8Ih+2x8ZDuGoGd7YKyVy0z6/ar++e9+NftNzNxjz/wFq9/konkSgh7I c1qo9akXpvsMhzn4GM0FyisTOw0YrwOixDBN3z/W162Z0LHZ2NSt3FHw9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNQlHxOTxOdC0ItIzIdXGw1GhyIKMB8GA1UdIwQY MBaAFGjpWBdAYJXsfLXHsoaxEzNJe5RRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU9sWUYwQmdsZXg4dGNleWhyRVRNMGw3bEZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy80YTVkNzEtZTExZC00ZDMyLWI1OTct MDE5ZWM5ZDlhNzU4LzEvYU9sWUYwQmdsZXg4dGNleWhyRVRNMGw3bEZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy80YTVkNzEtZTExZC00ZDMyLWI1OTctMDE5ZWM5ZDlhNzU4 LzEvYU9sWUYwQmdsZXg4dGNleWhyRVRNMGw3bEZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF/SVSOi0 Qyiqe4BSX+oumxsnH4A4MR082Zagj1STy/BvkHIJtioTN10wQdRAi6hkC8PPx6cw ifIyAY9GRcS4De90N8nGJpxBJYfL1CFZzjI1xd78CbIYqQEyyVNuBX248v2ucQsT KbhBKtG9gel6ckqv9zmlf45AM+aefsulExWg3XIpJH5qF+k9TJMdmXsbwp7mPp+9 f9ZzybLCb90a+tCPTBcx9DaD4moJwJOIAnHJQCCnj/cqLsllcpsBCZCuwAacRPdP ThYfBj7UAhavAPOuz65N2ejPjA/NE0VGOyF/jPWn/lR6Lo8N5xtCx6Sz6uJ9WjAm B/Tt5KUrzPctRw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:35 2026 by rpki-client