This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft File: aLw5QAVdFXTyY7X5arCQDGu0xfk.mft (raw, json) Hash identifier: qOufsHyUntEIPh4g0m/VRri0gj8vTaofo/PsZ4ZQKPk= Subject key identifier: 82:7C:F4:31:AE:B9:E6:33:79:EF:ED:D4:02:99:67:F5:42:10:EE:21 Authority key identifier: 68:BC:39:40:05:5D:15:74:F2:63:B5:F9:6A:B0:90:0C:6B:B4:C5:F9 Certificate issuer: /CN=68bc3940055d1574f263b5f96ab0900c6bb4c5f9 Certificate serial: 019C4321E209C92915A800757A7CE698A1E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft Manifest number: 057C Signing time: Mon 09 Feb 2026 16:00:19 +0000 Manifest this update: Mon 09 Feb 2026 16:00:19 +0000 Manifest next update: Tue 10 Feb 2026 16:00:19 +0000 Files and hashes: 1: BcT1YlHw7D1Dk2z_LIFmn3rThJY.roa (hash: Eovd3kGKSBHE8soZjKT4R8yDeoxnP/onLhr4NTs+e6o=) 2: aLw5QAVdFXTyY7X5arCQDGu0xfk.crl (hash: 9CYeYK49WMwNZ0QoBcWda+3zCPDlY/kgrmQ63NFGLxc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:e2:09:c9:29:15:a8:00:75:7a:7c:e6:98:a1:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68bc3940055d1574f263b5f96ab0900c6bb4c5f9 Validity Not Before: Feb 9 16:00:19 2026 GMT Not After : Feb 10 16:00:19 2026 GMT Subject: CN=827cf431aeb9e63379efedd4029967f54210ee21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2d:91:e2:d5:32:bd:8f:89:e6:9f:26:29:2d: 44:f7:9b:b6:90:19:bc:f5:83:ba:8b:2a:96:6d:56: d2:6f:c6:3e:d0:a3:15:31:89:da:2c:99:39:66:fe: 94:9c:50:16:44:75:a5:6d:67:42:fc:64:3f:9e:d0: c7:97:4b:0e:28:3f:c0:3c:0f:f1:56:33:4f:3f:93: 2b:83:8f:d0:28:70:fe:f6:42:3c:39:e6:9f:fd:51: 92:c6:92:a0:04:b0:61:41:81:86:ae:4b:6a:ee:dd: 59:82:e8:ad:b0:94:d9:b6:20:f4:3d:19:b6:40:ba: 21:ce:c7:f8:72:59:53:7b:36:c7:9a:15:a4:9d:0e: db:79:3f:db:3d:c8:ce:b6:d5:08:51:65:81:9c:af: 11:06:16:c2:8c:86:ff:8d:75:42:a0:4b:05:62:7f: 4a:eb:5d:17:92:1c:0b:a4:7b:47:37:b4:87:30:e0: fd:d6:26:18:1a:f4:84:19:c5:45:18:1f:d6:69:1a: 14:b9:aa:f3:42:39:7a:7a:98:9a:e1:a9:f4:73:7a: 90:d4:cc:2b:75:de:a0:68:ba:ac:95:09:91:03:85: 60:1b:9f:81:81:5b:a7:96:db:15:71:fc:92:09:74: ca:17:1e:ba:ad:3c:d0:65:2a:52:48:19:c6:b9:de: 56:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:7C:F4:31:AE:B9:E6:33:79:EF:ED:D4:02:99:67:F5:42:10:EE:21 X509v3 Authority Key Identifier: keyid:68:BC:39:40:05:5D:15:74:F2:63:B5:F9:6A:B0:90:0C:6B:B4:C5:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLw5QAVdFXTyY7X5arCQDGu0xfk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d02b32-967d-4751-82d3-121a14a9a40e/1/aLw5QAVdFXTyY7X5arCQDGu0xfk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:a0:1e:bf:5a:92:00:10:36:8b:be:0a:b7:ee:1b:18:ce:1a: 78:68:76:e8:ff:95:0f:2b:19:34:33:09:ec:43:72:2c:38:da: fd:47:fe:2c:56:1e:1c:ce:88:ff:67:55:20:03:d1:5c:46:19: 13:5f:72:b7:cb:0f:c7:0b:35:d8:32:c7:bb:02:28:b0:64:af: 53:ad:a5:4b:00:88:f0:1d:61:ad:18:41:58:fc:50:77:10:8c: a7:13:06:39:06:af:38:cd:32:f6:e6:aa:59:f4:d4:0a:49:1f: ce:c7:26:73:31:3f:47:98:c1:cc:88:ca:7b:8a:f3:bb:1e:6c: 08:eb:9b:82:9b:30:81:0e:57:dd:bd:92:d4:49:22:f2:58:df: 6b:17:d4:db:cf:a7:58:52:fb:bb:a5:bb:29:ea:3b:eb:fc:e1: 51:50:a0:6f:e7:42:59:c6:ac:53:92:8b:03:92:9f:27:ac:ab: 55:3a:c6:82:98:21:1d:71:6e:17:fd:bc:b7:cb:b2:b3:bc:94: 2f:ab:83:ef:0a:03:24:f8:1f:6b:7b:de:63:57:55:70:66:d8: 4f:7b:ac:58:0e:0c:bc:70:d8:e1:b7:4b:5a:d9:d4:36:99:f1: c2:14:9d:c7:9b:40:19:4c:1b:fa:c1:d2:44:98:73:26:f5:d4: 46:75:4c:5e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIeIJySkVqAB1enzmmKHkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4YmMzOTQwMDU1ZDE1NzRmMjYzYjVmOTZhYjA5MDBjNmJi NGM1ZjkwHhcNMjYwMjA5MTYwMDE5WhcNMjYwMjEwMTYwMDE5WjAzMTEwLwYDVQQD Eyg4MjdjZjQzMWFlYjllNjMzNzllZmVkZDQwMjk5NjdmNTQyMTBlZTIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsi2R4tUyvY+J5p8mKS1E95u2kBm8 9YO6iyqWbVbSb8Y+0KMVMYnaLJk5Zv6UnFAWRHWlbWdC/GQ/ntDHl0sOKD/APA/x VjNPP5Mrg4/QKHD+9kI8Oeaf/VGSxpKgBLBhQYGGrktq7t1ZguitsJTZtiD0PRm2 QLohzsf4cllTezbHmhWknQ7beT/bPcjOttUIUWWBnK8RBhbCjIb/jXVCoEsFYn9K 610XkhwLpHtHN7SHMOD91iYYGvSEGcVFGB/WaRoUuarzQjl6epia4an0c3qQ1Mwr dd6gaLqslQmRA4VgG5+BgVunltsVcfySCXTKFx66rTzQZSpSSBnGud5W7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIJ89DGuueYzee/t1AKZZ/VCEO4hMB8GA1UdIwQY MBaAFGi8OUAFXRV08mO1+WqwkAxrtMX5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUx3NVFBVmRGWFR5WTdYNWFyQ1FER3UweGZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy9kMDJiMzItOTY3ZC00NzUxLTgyZDMt MTIxYTE0YTlhNDBlLzEvYUx3NVFBVmRGWFR5WTdYNWFyQ1FER3UweGZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy9kMDJiMzItOTY3ZC00NzUxLTgyZDMtMTIxYTE0YTlhNDBl LzEvYUx3NVFBVmRGWFR5WTdYNWFyQ1FER3UweGZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN6Aev1qS ABA2i74Kt+4bGM4aeGh26P+VDysZNDMJ7ENyLDja/Uf+LFYeHM6I/2dVIAPRXEYZ E19yt8sPxws12DLHuwIosGSvU62lSwCI8B1hrRhBWPxQdxCMpxMGOQavOM0y9uaq WfTUCkkfzscmczE/R5jBzIjKe4rzux5sCOubgpswgQ5X3b2S1Eki8ljfaxfU28+n WFL7u6W7Keo76/zhUVCgb+dCWcasU5KLA5KfJ6yrVTrGgpghHXFuF/28t8uys7yU L6uD7woDJPgfa3veY1dVcGbYT3usWA4MvHDY4bdLWtnUNpnxwhSdx5tAGUwb+sHS RJhzJvXURnVMXg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:00 2026 by rpki-client