This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft File: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft (raw, json) Hash identifier: JUjKXf9Yp0XUgetBmnt5AlzymLLAOV5OVQiHjtBEohs= Subject key identifier: AA:A8:AF:51:90:38:9B:CC:AC:9A:B3:57:A8:BC:9B:28:DC:0D:97:A9 Authority key identifier: 03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E Certificate issuer: /CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e Certificate serial: 019C42EB6BC5141AD3417ED045F10D112019 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft Manifest number: 07A1 Signing time: Mon 09 Feb 2026 15:00:50 +0000 Manifest this update: Mon 09 Feb 2026 15:00:50 +0000 Manifest next update: Tue 10 Feb 2026 15:00:50 +0000 Files and hashes: 1: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl (hash: whUvS9wve+gAu7l2u3DJrF+Y8FD1bJxbzwydubxUx9c=) 2: fPatIQG_vn-KpCzLNpi1KmGZICQ.roa (hash: rt2SMboQCCIlzb5Lym5TzRN3RtHv+A8V2C5lF65IdPc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:6b:c5:14:1a:d3:41:7e:d0:45:f1:0d:11:20:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e Validity Not Before: Feb 9 15:00:50 2026 GMT Not After : Feb 10 15:00:50 2026 GMT Subject: CN=aaa8af5190389bccac9ab357a8bc9b28dc0d97a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:47:16:8f:62:35:cc:4a:ac:a6:6f:54:48:59: 6c:a2:e6:8c:20:a1:18:83:b9:7a:fd:02:9b:78:14: f9:6a:72:06:86:67:db:e5:f3:0a:7f:ac:5c:50:d3: 2b:d5:2c:63:ce:97:d8:3f:9f:1d:5a:56:ca:33:fd: 74:b1:95:84:9c:66:98:fe:34:56:fa:ce:cb:c3:b4: 7e:f0:c6:70:b0:e9:c0:ad:a3:89:0d:ea:9a:66:c2: 0b:e2:59:26:43:38:47:3c:37:01:00:df:86:bb:a7: 39:b8:1c:3b:2e:ac:1c:83:a1:33:3b:6f:61:55:4a: 63:60:0c:b0:27:2d:83:7e:d1:b8:80:fc:cf:59:f6: f5:9b:78:99:87:24:94:6b:42:91:3a:6a:8b:2e:c9: 12:fc:7d:31:af:8a:54:90:f4:d9:a8:24:13:fa:fc: c8:c0:4d:68:8c:c2:44:21:66:a1:76:ca:dd:3a:e0: ca:bf:48:b3:16:a2:91:b6:46:fe:f2:c2:2c:2d:25: 72:bc:30:bf:d9:34:44:37:f6:f3:10:5d:d9:a7:03: 5a:71:25:03:23:01:65:32:14:8d:4d:6f:56:8a:b2: c4:36:bb:ee:64:fc:34:a3:25:f6:57:d5:cf:43:1a: 63:61:7f:1b:4d:d2:ac:be:ec:d1:3e:14:df:3d:34: 17:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A8:AF:51:90:38:9B:CC:AC:9A:B3:57:A8:BC:9B:28:DC:0D:97:A9 X509v3 Authority Key Identifier: keyid:03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:61:22:8d:ed:46:36:58:02:21:a9:06:0d:e7:87:71:3b:54: a0:62:89:fe:38:40:13:49:03:9f:b3:b5:9d:40:90:99:90:49: be:7a:1f:4d:2b:a8:0a:6e:46:6a:26:28:8f:fc:9f:a4:a2:40: 2f:98:d4:e2:23:ab:06:2f:c4:9d:04:1f:9c:6d:c0:ef:29:1f: f6:d8:90:b7:84:6c:50:ee:6b:19:9a:c9:77:05:3f:95:61:6f: 2c:75:0a:fd:3b:c8:b3:f0:47:6e:c1:3b:7b:64:1f:e4:ce:ae: e4:f2:cd:dc:76:10:40:1b:71:de:50:21:2a:e4:99:69:8d:10: 5c:67:ce:80:cb:b0:af:be:1f:49:3c:df:b8:be:c4:14:3a:5c: c4:50:42:59:0a:60:29:db:a9:0d:e8:59:fb:2b:62:df:d5:8a: ce:b3:54:1a:9e:5e:06:56:75:44:71:bc:99:fd:28:43:af:c8: cb:f3:6b:6c:0d:95:24:b1:80:5e:47:0d:99:d9:63:67:c8:0c: 16:68:dd:e4:14:76:dd:1a:21:37:02:50:9c:0b:19:65:13:a3: f1:34:ee:e3:87:2f:bf:4d:a4:03:ef:b9:31:b4:1d:10:fe:e0: 90:11:73:a0:73:f0:b7:5f:54:10:30:22:ce:34:71:cf:89:6b: 10:67:19:2b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC62vFFBrTQX7QRfENESAZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzNTg0NWY4NmNiYzNjZmE5ZTBlNzk4N2EwMzgyZDVkMGRk N2NlM2UwHhcNMjYwMjA5MTUwMDUwWhcNMjYwMjEwMTUwMDUwWjAzMTEwLwYDVQQD EyhhYWE4YWY1MTkwMzg5YmNjYWM5YWIzNTdhOGJjOWIyOGRjMGQ5N2E5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAskcWj2I1zEqspm9USFlsouaMIKEY g7l6/QKbeBT5anIGhmfb5fMKf6xcUNMr1SxjzpfYP58dWlbKM/10sZWEnGaY/jRW +s7Lw7R+8MZwsOnAraOJDeqaZsIL4lkmQzhHPDcBAN+Gu6c5uBw7Lqwcg6EzO29h VUpjYAywJy2DftG4gPzPWfb1m3iZhySUa0KROmqLLskS/H0xr4pUkPTZqCQT+vzI wE1ojMJEIWahdsrdOuDKv0izFqKRtkb+8sIsLSVyvDC/2TREN/bzEF3ZpwNacSUD IwFlMhSNTW9WirLENrvuZPw0oyX2V9XPQxpjYX8bTdKsvuzRPhTfPTQXdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKqor1GQOJvMrJqzV6i8myjcDZepMB8GA1UdIwQY MBaAFANYRfhsvDz6ng55h6A4LV0N184+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQTFoRi1HeThQUHFlRG5tSG9EZ3RYUTNYemo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9kMjc5ZDMtOTQ3ZS00NWM3LWE4OTAt M2I4NGQ3OWFiZGFmLzEvQTFoRi1HeThQUHFlRG5tSG9EZ3RYUTNYemo0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi9kMjc5ZDMtOTQ3ZS00NWM3LWE4OTAtM2I4NGQ3OWFiZGFm LzEvQTFoRi1HeThQUHFlRG5tSG9EZ3RYUTNYemo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE2Eije1G NlgCIakGDeeHcTtUoGKJ/jhAE0kDn7O1nUCQmZBJvnofTSuoCm5GaiYoj/yfpKJA L5jU4iOrBi/EnQQfnG3A7ykf9tiQt4RsUO5rGZrJdwU/lWFvLHUK/TvIs/BHbsE7 e2Qf5M6u5PLN3HYQQBtx3lAhKuSZaY0QXGfOgMuwr74fSTzfuL7EFDpcxFBCWQpg KdupDehZ+yti39WKzrNUGp5eBlZ1RHG8mf0oQ6/Iy/NrbA2VJLGAXkcNmdljZ8gM Fmjd5BR23RohNwJQnAsZZROj8TTu44cvv02kA++5MbQdEP7gkBFzoHPwt19UEDAi zjRxz4lrEGcZKw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:00 2026 by rpki-client