This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.mft File: gaAh1UDtfYLGkK3AT72d1u5Q6NU.mft (raw, json) Hash identifier: SlNHIYFY7jFmMyMBtHuIsayKEk/ovq8UgArXptS3IWw= Subject key identifier: 59:A7:82:1E:3D:DC:D2:D2:61:AB:17:F0:92:DF:AA:88:DC:B2:9C:EC Authority key identifier: 81:A0:21:D5:40:ED:7D:82:C6:90:AD:C0:4F:BD:9D:D6:EE:50:E8:D5 Certificate issuer: /CN=81a021d540ed7d82c690adc04fbd9dd6ee50e8d5 Certificate serial: 019C41D8524147F14B85A6BB8537CA80650B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaAh1UDtfYLGkK3AT72d1u5Q6NU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.mft Manifest number: 1552 Signing time: Mon 09 Feb 2026 10:00:21 +0000 Manifest this update: Mon 09 Feb 2026 10:00:21 +0000 Manifest next update: Tue 10 Feb 2026 10:00:21 +0000 Files and hashes: 1: 61ONFvLT5Rg0-imK5TJAXsyuc_s.roa (hash: 7I5ltFHrgSt2SphyinCJqzIRRXKzrlYeALmK4YgvaSA=) 2: gaAh1UDtfYLGkK3AT72d1u5Q6NU.crl (hash: htyF0nfxGE5h3VSu0A2unEtAbzuOuvqDwnpmhYbGIEY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.crl rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.mft rsync://rpki.ripe.net/repository/DEFAULT/gaAh1UDtfYLGkK3AT72d1u5Q6NU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:52:41:47:f1:4b:85:a6:bb:85:37:ca:80:65:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81a021d540ed7d82c690adc04fbd9dd6ee50e8d5 Validity Not Before: Feb 9 10:00:21 2026 GMT Not After : Feb 10 10:00:21 2026 GMT Subject: CN=59a7821e3ddcd2d261ab17f092dfaa88dcb29cec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bf:e0:2a:83:d1:50:b8:5b:31:dc:ff:9c:c7: f3:5f:f7:4a:8b:67:8c:3d:ca:b8:ca:65:fd:50:48: fd:a0:eb:95:a9:a8:5e:6c:1e:d6:70:0c:0a:7f:95: c9:50:2a:0b:f5:8f:c1:e7:36:04:d1:15:1e:62:ce: 8d:18:a7:0e:5c:3a:89:42:48:31:37:c8:70:4a:20: 53:86:6d:04:01:fd:9d:b4:c7:ad:57:6e:c3:b4:30: 92:6b:06:be:38:8e:bd:ed:a4:d9:77:f7:07:2b:fa: 47:0c:6d:35:b2:e5:e6:ce:0a:90:10:89:52:61:89: 2a:93:a4:25:2e:05:0f:55:02:ae:c8:d5:6a:75:4c: cb:bd:00:91:50:37:ea:84:a0:77:60:1f:e6:36:c3: b8:5b:19:eb:8e:98:13:8c:3a:ea:98:8b:d1:33:93: 4e:f9:a3:83:81:9b:b5:5a:95:e3:4a:11:5c:2c:de: 91:ca:09:83:8b:76:5d:c1:5b:f9:87:0b:50:49:11: be:56:fb:bc:a6:f8:bd:4a:f0:f1:b1:45:29:21:57: ee:66:bd:d4:d8:93:d6:53:8a:ff:ba:30:c9:92:2d: c7:c0:0c:89:29:18:5a:e6:4f:3d:e3:dd:22:e2:78: 2c:e2:af:d4:41:d1:5f:6f:c3:92:b8:8c:8e:27:fb: e4:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:A7:82:1E:3D:DC:D2:D2:61:AB:17:F0:92:DF:AA:88:DC:B2:9C:EC X509v3 Authority Key Identifier: keyid:81:A0:21:D5:40:ED:7D:82:C6:90:AD:C0:4F:BD:9D:D6:EE:50:E8:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaAh1UDtfYLGkK3AT72d1u5Q6NU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:4b:f7:91:d8:6f:5d:18:11:df:50:3d:67:e4:54:a0:9b:74: 5f:e5:21:00:90:fd:9e:75:18:35:cb:a7:04:e9:b9:21:52:15: 97:2a:ab:91:26:b9:93:80:e0:12:14:33:ba:b4:05:2e:09:46: e7:e0:05:8c:92:41:d4:d9:90:52:a3:28:76:8b:b9:bd:47:18: 41:53:cf:6e:bf:11:c5:cd:64:f1:cf:29:3c:f2:0d:d0:89:6f: 53:3a:89:eb:f8:1a:a9:0f:ae:1d:0a:e4:e3:90:7f:9b:7f:c1: 38:2d:11:00:30:45:5d:a5:10:b0:22:8f:9f:9e:c3:23:0d:df: 1b:4a:af:73:7a:93:5f:81:b2:c9:1a:d5:95:e2:69:4c:61:45: c3:ee:f9:72:d3:01:aa:91:ae:07:fb:e6:80:8e:f4:be:9b:a5: f8:3c:5b:18:ec:3c:cc:df:d9:d4:e8:b9:07:4c:71:a4:e5:13: 75:0f:0d:02:93:3e:10:e4:1c:21:70:fa:d5:58:b8:67:35:d8: a3:f4:b1:0a:43:48:ee:31:bf:96:f0:52:98:51:2f:88:76:56: 06:de:de:7a:7d:81:21:49:dc:55:bf:d8:e4:ef:da:3c:0f:5c: a4:cc:5c:df:23:c3:f5:58:d5:ca:ce:bc:50:0b:e1:d3:cb:aa: 36:f0:88:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2FJBR/FLhaa7hTfKgGULMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxYTAyMWQ1NDBlZDdkODJjNjkwYWRjMDRmYmQ5ZGQ2ZWU1 MGU4ZDUwHhcNMjYwMjA5MTAwMDIxWhcNMjYwMjEwMTAwMDIxWjAzMTEwLwYDVQQD Eyg1OWE3ODIxZTNkZGNkMmQyNjFhYjE3ZjA5MmRmYWE4OGRjYjI5Y2VjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs7/gKoPRULhbMdz/nMfzX/dKi2eM Pcq4ymX9UEj9oOuVqahebB7WcAwKf5XJUCoL9Y/B5zYE0RUeYs6NGKcOXDqJQkgx N8hwSiBThm0EAf2dtMetV27DtDCSawa+OI697aTZd/cHK/pHDG01suXmzgqQEIlS YYkqk6QlLgUPVQKuyNVqdUzLvQCRUDfqhKB3YB/mNsO4WxnrjpgTjDrqmIvRM5NO +aODgZu1WpXjShFcLN6RygmDi3ZdwVv5hwtQSRG+Vvu8pvi9SvDxsUUpIVfuZr3U 2JPWU4r/ujDJki3HwAyJKRha5k89490i4ngs4q/UQdFfb8OSuIyOJ/vkgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFmngh493NLSYasX8JLfqojcspzsMB8GA1UdIwQY MBaAFIGgIdVA7X2CxpCtwE+9ndbuUOjVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2FBaDFVRHRmWUxHa0szQVQ3MmQxdTVRNk5VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9lMmI5NDYtMWI0YS00MjE0LTkyMzQt YWQwMjczMjdmOWQ4LzEvZ2FBaDFVRHRmWUxHa0szQVQ3MmQxdTVRNk5VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9lMmI5NDYtMWI0YS00MjE0LTkyMzQtYWQwMjczMjdmOWQ4 LzEvZ2FBaDFVRHRmWUxHa0szQVQ3MmQxdTVRNk5VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATkv3kdhv XRgR31A9Z+RUoJt0X+UhAJD9nnUYNcunBOm5IVIVlyqrkSa5k4DgEhQzurQFLglG 5+AFjJJB1NmQUqModou5vUcYQVPPbr8Rxc1k8c8pPPIN0IlvUzqJ6/gaqQ+uHQrk 45B/m3/BOC0RADBFXaUQsCKPn57DIw3fG0qvc3qTX4GyyRrVleJpTGFFw+75ctMB qpGuB/vmgI70vpul+DxbGOw8zN/Z1Oi5B0xxpOUTdQ8NApM+EOQcIXD61Vi4ZzXY o/SxCkNI7jG/lvBSmFEviHZWBt7een2BIUncVb/Y5O/aPA9cpMxc3yPD9VjVys68 UAvh08uqNvCItA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:16 2026 by rpki-client