This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft File: aIEP_k-SA6EAZ31lGTtEJniaz1w.mft (raw, json) Hash identifier: F8NnuBzUHtXoDsd1V8qZEMcB15T+vqYEjTdvFkFTPPA= Subject key identifier: 5D:23:3A:7E:31:8C:6F:97:1E:25:7E:FC:5B:CA:5B:DB:75:24:A9:0C Authority key identifier: 68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C Certificate issuer: /CN=68810ffe4f9203a100677d65193b4426789acf5c Certificate serial: 019C42103D5AD4EF33E7E125F07119247DE7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft Manifest number: 0C21 Signing time: Mon 09 Feb 2026 11:01:26 +0000 Manifest this update: Mon 09 Feb 2026 11:01:26 +0000 Manifest next update: Tue 10 Feb 2026 11:01:26 +0000 Files and hashes: 1: 4kjooCn4utyvNqQOgFxK7-kKLu0.roa (hash: UOUVc0j6e6Ip7AZ/AsFrmNnJ9pEwnrKNZc+DelE5OzU=) 2: aIEP_k-SA6EAZ31lGTtEJniaz1w.crl (hash: 4PWsfOCJd+JHFO7zwGnA0NnqcdwKRXNWFv9LczIjXTs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:3d:5a:d4:ef:33:e7:e1:25:f0:71:19:24:7d:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68810ffe4f9203a100677d65193b4426789acf5c Validity Not Before: Feb 9 11:01:26 2026 GMT Not After : Feb 10 11:01:26 2026 GMT Subject: CN=5d233a7e318c6f971e257efc5bca5bdb7524a90c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:be:a3:73:ac:9a:dd:7c:e4:92:0a:ab:0e:b5: 43:f0:23:9a:01:0f:00:77:24:f2:11:b3:69:4e:ea: 90:33:8f:1a:32:be:22:19:97:98:7e:0a:e3:c2:3f: 7c:8a:f6:d8:08:68:5b:09:5d:98:88:14:dd:5f:82: 33:ad:67:97:b0:cb:b5:44:bb:a5:0a:d1:62:3e:e2: 49:fe:79:dc:34:0b:74:8b:3e:93:2a:b2:6b:99:80: ea:6b:2f:27:ba:f5:df:94:1f:bd:5f:69:65:1e:22: 04:e2:d6:37:85:6c:b2:fd:25:e3:7c:0b:ca:56:0b: fd:2b:1c:24:b0:41:fd:90:a4:88:4b:ba:18:03:6e: 2f:11:c6:4a:06:3e:d8:ae:69:3d:8b:f1:69:5e:68: ea:69:5d:49:83:d6:85:c4:8e:62:95:a6:e4:24:03: 0c:e5:cb:96:ee:b3:56:46:d9:f7:47:b5:2e:99:8f: e2:c1:f0:a5:fe:b7:30:ee:5f:f4:c0:1a:7a:83:45: e7:ee:bc:93:4f:96:de:40:53:8b:a5:dc:4d:40:3c: 90:29:08:0a:18:ec:85:24:c2:ef:ea:32:08:78:a5: 59:02:2b:93:4d:64:b2:d0:65:04:4f:ee:bb:e6:5f: 5b:9a:f3:d9:47:22:bc:e6:c8:c3:2c:f0:ac:ce:1b: 5a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:23:3A:7E:31:8C:6F:97:1E:25:7E:FC:5B:CA:5B:DB:75:24:A9:0C X509v3 Authority Key Identifier: keyid:68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:74:7c:69:a9:1c:c6:1d:46:ea:95:4e:0b:7c:f8:1b:76:d7: 99:f7:6c:af:03:3d:27:9e:ff:11:02:53:ae:94:8e:1f:8b:6a: 72:d7:c0:fb:87:d6:9b:e1:c1:7e:b5:90:c9:4c:5d:94:f0:a5: 56:03:3b:e3:05:f6:ad:5f:38:17:11:95:0d:6b:b0:86:cb:4b: 82:44:05:1a:b7:19:5a:b4:ed:fb:a5:3d:c9:58:5d:09:6a:24: 96:8a:c5:48:46:52:42:df:98:24:b9:b1:d2:f1:20:ba:b1:94: af:f4:e2:44:de:85:dc:af:af:3f:2b:22:31:3f:84:7d:7c:be: 4d:dd:5c:90:19:a5:8c:69:15:f7:7d:51:d4:e8:42:40:e1:31: 2a:b3:cd:38:0c:46:cf:1e:72:6c:15:b9:7a:d7:e4:2f:2f:e3: 69:ac:7e:5d:f2:c0:a6:84:23:97:46:7b:30:a2:ba:ca:7c:15: 69:d8:01:f9:77:bd:77:6a:49:b4:7d:fc:c5:cb:7c:e7:33:19: 90:f0:e2:5d:4a:db:5e:01:77:63:c4:e7:c6:af:b5:3d:1c:9a: c5:1d:1c:c5:ee:5a:27:cf:26:76:bf:23:01:dd:f6:8e:64:08: 1e:7f:46:93:f5:47:a4:58:53:db:31:5d:80:a6:77:38:5a:e0: 88:87:83:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCED1a1O8z5+El8HEZJH3nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ODEwZmZlNGY5MjAzYTEwMDY3N2Q2NTE5M2I0NDI2Nzg5 YWNmNWMwHhcNMjYwMjA5MTEwMTI2WhcNMjYwMjEwMTEwMTI2WjAzMTEwLwYDVQQD Eyg1ZDIzM2E3ZTMxOGM2Zjk3MWUyNTdlZmM1YmNhNWJkYjc1MjRhOTBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwb6jc6ya3XzkkgqrDrVD8COaAQ8A dyTyEbNpTuqQM48aMr4iGZeYfgrjwj98ivbYCGhbCV2YiBTdX4IzrWeXsMu1RLul CtFiPuJJ/nncNAt0iz6TKrJrmYDqay8nuvXflB+9X2llHiIE4tY3hWyy/SXjfAvK Vgv9KxwksEH9kKSIS7oYA24vEcZKBj7Yrmk9i/FpXmjqaV1Jg9aFxI5ilabkJAMM 5cuW7rNWRtn3R7UumY/iwfCl/rcw7l/0wBp6g0Xn7ryTT5beQFOLpdxNQDyQKQgK GOyFJMLv6jIIeKVZAiuTTWSy0GUET+675l9bmvPZRyK85sjDLPCszhtaswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF0jOn4xjG+XHiV+/FvKW9t1JKkMMB8GA1UdIwQY MBaAFGiBD/5PkgOhAGd9ZRk7RCZ4ms9cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUlFUF9rLVNBNkVBWjMxbEdUdEVKbmlhejF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8xNDEyMDMtODEzZi00NzEyLTliZDct YmRmNDMxZWI5NGYwLzEvYUlFUF9rLVNBNkVBWjMxbEdUdEVKbmlhejF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS8xNDEyMDMtODEzZi00NzEyLTliZDctYmRmNDMxZWI5NGYw LzEvYUlFUF9rLVNBNkVBWjMxbEdUdEVKbmlhejF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdHR8aakc xh1G6pVOC3z4G3bXmfdsrwM9J57/EQJTrpSOH4tqctfA+4fWm+HBfrWQyUxdlPCl VgM74wX2rV84FxGVDWuwhstLgkQFGrcZWrTt+6U9yVhdCWoklorFSEZSQt+YJLmx 0vEgurGUr/TiRN6F3K+vPysiMT+EfXy+Td1ckBmljGkV931R1OhCQOExKrPNOAxG zx5ybBW5etfkLy/jaax+XfLApoQjl0Z7MKK6ynwVadgB+Xe9d2pJtH38xct85zMZ kPDiXUrbXgF3Y8Tnxq+1PRyaxR0cxe5aJ88mdr8jAd32jmQIHn9Gk/VHpFhT2zFd gKZ3OFrgiIeDOw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:43 2026 by rpki-client