This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft File: ap2Z4esn7Hq76TViechBGkEw_co.mft (raw, json) Hash identifier: o9eEHGi5eome06IFp+rmxanHdwBevY+SC5ZUmzg33CE= Subject key identifier: DB:56:25:98:8A:4F:22:32:75:39:EE:01:05:97:ED:37:3E:04:47:FC Authority key identifier: 6A:9D:99:E1:EB:27:EC:7A:BB:E9:35:62:79:C8:41:1A:41:30:FD:CA Certificate issuer: /CN=6a9d99e1eb27ec7abbe9356279c8411a4130fdca Certificate serial: 019C438FA99F068CFCDDE6B3C4D049867CEE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ap2Z4esn7Hq76TViechBGkEw_co.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft Manifest number: 0E86 Signing time: Mon 09 Feb 2026 18:00:14 +0000 Manifest this update: Mon 09 Feb 2026 18:00:14 +0000 Manifest next update: Tue 10 Feb 2026 18:00:14 +0000 Files and hashes: 1: ap2Z4esn7Hq76TViechBGkEw_co.crl (hash: U3yaXjmE+vlVs9EPECw4xtDBT+YH6lRQ7QcDqcWE/V0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft rsync://rpki.ripe.net/repository/DEFAULT/ap2Z4esn7Hq76TViechBGkEw_co.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:a9:9f:06:8c:fc:dd:e6:b3:c4:d0:49:86:7c:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6a9d99e1eb27ec7abbe9356279c8411a4130fdca Validity Not Before: Feb 9 18:00:14 2026 GMT Not After : Feb 10 18:00:14 2026 GMT Subject: CN=db5625988a4f22327539ee010597ed373e0447fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:f4:e4:cb:80:7a:9f:51:7f:b1:20:21:e7:70: 32:4b:cf:b4:ab:93:59:d0:4a:5a:06:50:dd:3a:1b: f0:30:21:5b:d5:59:ee:c9:e1:19:59:56:8b:09:24: ba:e2:a1:23:50:2d:6a:7d:65:63:78:c4:e2:fa:86: c7:6c:9d:52:c1:2e:ea:e0:24:3a:c2:a7:16:b7:45: 28:44:76:27:94:cf:19:06:ee:3e:2c:3f:08:24:84: 00:48:c8:19:c8:1c:45:eb:20:c9:e0:c2:4c:98:b2: ea:04:39:d6:f7:9d:c2:00:dc:82:09:b7:bc:9d:b4: d0:b0:67:f1:6f:82:50:55:bd:36:f8:3c:60:ce:7c: b9:80:b7:17:4a:f7:25:fb:ea:4c:a5:4b:5c:9c:c2: 55:dc:7e:9c:c8:e8:c1:3e:85:95:97:66:fb:59:08: 4c:65:f1:fe:72:a2:f8:06:b7:31:3a:16:1a:7c:e3: 9f:bd:36:69:d2:8f:ec:1d:b8:55:a9:a9:44:2b:2a: 81:d7:96:88:d9:54:91:d6:fa:05:76:cd:4f:ff:1d: c9:e7:f1:3a:e8:cf:d8:c7:f0:7b:a5:d1:5a:cd:16: 04:d8:f5:a4:9b:26:49:8d:d7:11:58:27:89:1e:e4: 3d:d0:08:48:a9:0e:67:67:f8:3b:ea:69:04:3c:f9: e3:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:56:25:98:8A:4F:22:32:75:39:EE:01:05:97:ED:37:3E:04:47:FC X509v3 Authority Key Identifier: keyid:6A:9D:99:E1:EB:27:EC:7A:BB:E9:35:62:79:C8:41:1A:41:30:FD:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ap2Z4esn7Hq76TViechBGkEw_co.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:66:e7:2e:6b:af:f2:20:f0:49:a1:48:97:98:50:ab:de:0a: 4e:ca:7a:2b:64:bc:3d:fe:81:9a:4d:bb:b4:4c:fb:a1:e6:34: 4c:b8:4c:6f:8a:36:38:76:e7:68:f6:04:b7:4b:2e:63:03:ff: ff:10:ec:b2:a0:06:e1:d3:cc:44:ca:a3:28:d6:21:c1:ee:77: 9e:ee:29:55:66:bb:9d:15:26:05:13:12:db:50:83:59:da:d5: 6e:96:62:9b:7a:9a:f6:3d:09:5e:aa:87:14:d4:78:e7:24:2b: 1e:90:18:13:7f:48:66:75:a7:36:33:db:38:5c:78:0c:b4:37: 58:5b:a8:cf:5b:56:e7:0d:17:e3:89:e1:ca:d6:0b:77:31:d9: 1d:8a:3c:6a:a3:9d:1b:36:ff:9e:53:c6:db:79:9a:df:dc:f1: 95:3f:a0:87:f3:95:ac:1f:e3:b8:24:2c:7e:8a:01:fc:aa:8a: 2f:5c:4d:52:92:42:43:3d:98:1a:5d:76:05:23:b3:b7:f5:03: 49:76:f3:ca:48:c3:a3:2d:fd:39:0b:7d:5e:85:9e:72:f4:83: a8:7c:5c:fb:7b:28:27:c3:90:00:4a:e0:4c:d6:dc:1a:70:a6: 47:6f:ba:2b:5b:79:00:34:1a:8b:ad:5c:6b:59:de:cf:c8:4c: 83:a1:be:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj6mfBoz83eazxNBJhnzuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhOWQ5OWUxZWIyN2VjN2FiYmU5MzU2Mjc5Yzg0MTFhNDEz MGZkY2EwHhcNMjYwMjA5MTgwMDE0WhcNMjYwMjEwMTgwMDE0WjAzMTEwLwYDVQQD EyhkYjU2MjU5ODhhNGYyMjMyNzUzOWVlMDEwNTk3ZWQzNzNlMDQ0N2ZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkvTky4B6n1F/sSAh53AyS8+0q5NZ 0EpaBlDdOhvwMCFb1VnuyeEZWVaLCSS64qEjUC1qfWVjeMTi+obHbJ1SwS7q4CQ6 wqcWt0UoRHYnlM8ZBu4+LD8IJIQASMgZyBxF6yDJ4MJMmLLqBDnW953CANyCCbe8 nbTQsGfxb4JQVb02+Dxgzny5gLcXSvcl++pMpUtcnMJV3H6cyOjBPoWVl2b7WQhM ZfH+cqL4BrcxOhYafOOfvTZp0o/sHbhVqalEKyqB15aI2VSR1voFds1P/x3J5/E6 6M/Yx/B7pdFazRYE2PWkmyZJjdcRWCeJHuQ90AhIqQ5nZ/g76mkEPPnj7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNtWJZiKTyIydTnuAQWX7Tc+BEf8MB8GA1UdIwQY MBaAFGqdmeHrJ+x6u+k1YnnIQRpBMP3KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYXAyWjRlc243SHE3NlRWaWVjaEJHa0V3X2NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS83M2M4ZjAtN2E1YS00YWRiLWExMmQt YjdkYWYyZTYwZjZmLzEvYXAyWjRlc243SHE3NlRWaWVjaEJHa0V3X2NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS83M2M4ZjAtN2E1YS00YWRiLWExMmQtYjdkYWYyZTYwZjZm LzEvYXAyWjRlc243SHE3NlRWaWVjaEJHa0V3X2NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnWbnLmuv 8iDwSaFIl5hQq94KTsp6K2S8Pf6Bmk27tEz7oeY0TLhMb4o2OHbnaPYEt0suYwP/ /xDssqAG4dPMRMqjKNYhwe53nu4pVWa7nRUmBRMS21CDWdrVbpZim3qa9j0JXqqH FNR45yQrHpAYE39IZnWnNjPbOFx4DLQ3WFuoz1tW5w0X44nhytYLdzHZHYo8aqOd Gzb/nlPG23ma39zxlT+gh/OVrB/juCQsfooB/KqKL1xNUpJCQz2YGl12BSOzt/UD SXbzykjDoy39OQt9XoWecvSDqHxc+3soJ8OQAErgTNbcGnCmR2+6K1t5ADQai61c a1nez8hMg6G+Sw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:35:56 2026 by rpki-client