This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft File: 0AL76fCkE2A-3vtzOlMfLiwOnAY.mft (raw, json) Hash identifier: 0kQHpYwmoJFrwUNUT7igFlqxk/ODl6LJZdsdEjHYW74= Subject key identifier: 25:AA:3C:1D:96:5E:C6:36:8A:30:7A:8D:54:F4:30:C6:57:76:33:22 Authority key identifier: D0:02:FB:E9:F0:A4:13:60:3E:DE:FB:73:3A:53:1F:2E:2C:0E:9C:06 Certificate issuer: /CN=d002fbe9f0a413603edefb733a531f2e2c0e9c06 Certificate serial: 019C4434D48CF9F6CD4F1E91CD1E66363DA7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 21:00:38 +0000 Manifest this update: Mon 09 Feb 2026 21:00:38 +0000 Manifest next update: Tue 10 Feb 2026 21:00:38 +0000 Files and hashes: 1: 0AL76fCkE2A-3vtzOlMfLiwOnAY.crl (hash: OtIzoG12q/pgtbq1cdeALV73R4Xdq6qOXIRg19xHsh0=) 2: dsXROTd2qvJarDLFNerpFXp5tvM.roa (hash: g4jlzZr8kyp6l2Rwmj8PdLtnag5RCNjP07Ftz4rMi7Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:34:d4:8c:f9:f6:cd:4f:1e:91:cd:1e:66:36:3d:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d002fbe9f0a413603edefb733a531f2e2c0e9c06 Validity Not Before: Feb 9 21:00:38 2026 GMT Not After : Feb 10 21:00:38 2026 GMT Subject: CN=25aa3c1d965ec6368a307a8d54f430c657763322 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2f:f3:d9:17:d0:d6:7b:80:38:64:de:7e:c0: d8:43:fd:71:d6:f8:ad:84:6f:30:94:87:67:32:a7: 57:98:a3:f2:27:d6:92:87:7c:ad:5e:58:4f:32:82: ae:92:c5:9a:db:21:fa:f6:62:68:80:db:14:92:a4: 09:fc:c3:ef:b6:17:3f:6a:76:9b:99:34:79:1f:93: 50:2c:73:07:b0:da:cc:5c:99:61:14:24:0a:35:a6: 20:e8:8c:f4:b0:f1:68:39:21:fa:1a:39:d6:dd:68: 42:d5:66:cb:39:5a:24:ae:48:9d:68:76:02:d6:0b: 45:77:57:74:29:2a:33:e8:6f:45:91:3a:ad:91:09: 15:fd:18:57:fc:3c:cc:9a:9b:f6:d3:37:73:69:92: d8:e0:58:47:c1:78:15:13:b4:23:ac:3c:e6:0d:ee: c7:20:77:b6:db:09:4b:00:4f:3e:0e:c8:e7:e0:09: cc:bf:3c:2a:04:90:56:81:d3:e1:93:8e:42:94:7b: 57:2b:e6:9a:8d:54:e9:b7:ee:e4:99:6a:5d:20:bf: d6:0f:de:b9:65:42:c2:52:df:93:72:fe:99:82:d2: d7:9c:2c:31:13:90:82:45:0b:20:82:57:31:7f:e2: f1:77:dc:e4:de:7b:33:b2:a8:14:41:f7:37:8b:b5: db:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:AA:3C:1D:96:5E:C6:36:8A:30:7A:8D:54:F4:30:C6:57:76:33:22 X509v3 Authority Key Identifier: keyid:D0:02:FB:E9:F0:A4:13:60:3E:DE:FB:73:3A:53:1F:2E:2C:0E:9C:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:02:95:14:c0:8c:83:ee:fc:b2:6a:53:60:6c:60:90:79:d2: 19:53:05:b6:66:52:4f:f1:03:12:16:36:42:2e:ed:90:37:58: af:fc:8d:17:7c:f4:de:4f:58:b4:5d:e7:73:c1:c8:6c:89:0e: b2:76:8c:d6:5e:bb:bd:c5:fd:b3:bd:6e:26:a6:40:35:88:fe: 84:e4:ec:3e:47:e2:38:16:0b:89:43:09:22:4d:e9:2d:d8:d4: 4a:77:28:6a:c5:78:cb:e0:3b:ae:01:09:28:64:c3:95:fc:c8: dd:fa:47:e0:be:23:44:c6:3b:59:35:87:fa:6e:c3:3f:42:44: 1f:a7:96:c4:c8:2f:fd:e2:e6:50:a8:95:2f:65:8a:b3:b7:6c: b4:8d:71:5a:36:81:42:cc:d7:93:c7:44:ba:df:ff:1a:a0:f2: d8:51:1f:29:59:1f:8c:54:1e:51:4b:92:de:5d:76:5c:ee:5a: f8:15:11:8d:33:3b:92:d1:29:8f:bf:20:b0:27:74:19:8c:10: 56:71:93:bd:52:df:6a:24:8e:eb:69:30:30:c7:29:4b:4f:d0: 86:d6:2e:31:3b:14:c1:c8:6b:64:35:cf:9c:70:0d:cd:9a:c5: 2f:80:24:aa:0c:5b:d3:f4:bc:39:39:0e:e2:35:02:c1:ba:c4: 8b:6d:43:72 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxENNSM+fbNTx6RzR5mNj2nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwMDJmYmU5ZjBhNDEzNjAzZWRlZmI3MzNhNTMxZjJlMmMw ZTljMDYwHhcNMjYwMjA5MjEwMDM4WhcNMjYwMjEwMjEwMDM4WjAzMTEwLwYDVQQD EygyNWFhM2MxZDk2NWVjNjM2OGEzMDdhOGQ1NGY0MzBjNjU3NzYzMzIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApi/z2RfQ1nuAOGTefsDYQ/1x1vit hG8wlIdnMqdXmKPyJ9aSh3ytXlhPMoKuksWa2yH69mJogNsUkqQJ/MPvthc/anab mTR5H5NQLHMHsNrMXJlhFCQKNaYg6Iz0sPFoOSH6GjnW3WhC1WbLOVokrkidaHYC 1gtFd1d0KSoz6G9FkTqtkQkV/RhX/DzMmpv20zdzaZLY4FhHwXgVE7QjrDzmDe7H IHe22wlLAE8+Dsjn4AnMvzwqBJBWgdPhk45ClHtXK+aajVTpt+7kmWpdIL/WD965 ZULCUt+Tcv6ZgtLXnCwxE5CCRQsgglcxf+Lxd9zk3nszsqgUQfc3i7XbUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCWqPB2WXsY2ijB6jVT0MMZXdjMiMB8GA1UdIwQY MBaAFNAC++nwpBNgPt77czpTHy4sDpwGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEFMNzZmQ2tFMkEtM3Z0ek9sTWZMaXdPbkFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS85YmFmYjEtMGM0Mi00MjViLWFhMjkt MTljMDQ1YzZhMTRmLzEvMEFMNzZmQ2tFMkEtM3Z0ek9sTWZMaXdPbkFZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS85YmFmYjEtMGM0Mi00MjViLWFhMjktMTljMDQ1YzZhMTRm LzEvMEFMNzZmQ2tFMkEtM3Z0ek9sTWZMaXdPbkFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgwKVFMCM g+78smpTYGxgkHnSGVMFtmZST/EDEhY2Qi7tkDdYr/yNF3z03k9YtF3nc8HIbIkO snaM1l67vcX9s71uJqZANYj+hOTsPkfiOBYLiUMJIk3pLdjUSncoasV4y+A7rgEJ KGTDlfzI3fpH4L4jRMY7WTWH+m7DP0JEH6eWxMgv/eLmUKiVL2WKs7dstI1xWjaB QszXk8dEut//GqDy2FEfKVkfjFQeUUuS3l12XO5a+BURjTM7ktEpj78gsCd0GYwQ VnGTvVLfaiSO62kwMMcpS0/QhtYuMTsUwchrZDXPnHANzZrFL4Akqgxb0/S8OTkO 4jUCwbrEi21Dcg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:45:19 2026 by rpki-client