This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft File: aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft (raw, json) Hash identifier: sW0s3S3YnBCNKgfSQYtZSvmGCT7e+yJ7RzhwqmgGTKA= Subject key identifier: FE:AC:9D:C5:41:5A:39:CE:1B:B4:1D:EB:7E:9B:DC:10:5B:2E:28:F4 Authority key identifier: 69:87:D0:04:7F:B1:D8:91:2C:63:F9:11:30:5A:71:4F:43:8B:1E:71 Certificate issuer: /CN=6987d0047fb1d8912c63f911305a714f438b1e71 Certificate serial: 019C43901729D78A09A98028E371C4CFE72D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 18:00:42 +0000 Manifest this update: Mon 09 Feb 2026 18:00:42 +0000 Manifest next update: Tue 10 Feb 2026 18:00:42 +0000 Files and hashes: 1: RxByI3rH_YsmBp9MFWCFAA3GDzM.roa (hash: kPBLDDqbqmranSBPQ+O5l9xhMyzuVrqfoP6GlvpDNU8=) 2: aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl (hash: UBCF6UuVNzi8TdfAZK0HiXufBolg9dQrN/J49KyAXkI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:17:29:d7:8a:09:a9:80:28:e3:71:c4:cf:e7:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6987d0047fb1d8912c63f911305a714f438b1e71 Validity Not Before: Feb 9 18:00:42 2026 GMT Not After : Feb 10 18:00:42 2026 GMT Subject: CN=feac9dc5415a39ce1bb41deb7e9bdc105b2e28f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:6d:2b:23:27:bf:64:1c:a9:ff:e2:87:13:7b: 61:f8:c3:26:0f:42:9e:5a:20:9b:db:51:2c:8c:34: f1:dd:2d:fb:fa:a2:b6:b1:01:f4:0c:18:48:9f:0f: b3:bd:5a:a7:fe:8e:97:7f:4c:9d:89:93:2c:5c:08: a6:22:36:85:83:1a:f1:24:5d:2c:a2:9c:ef:44:5d: 0a:67:13:2a:3e:1f:57:45:b1:93:84:30:c4:59:cf: b4:74:ac:6f:60:6a:95:18:60:1a:34:bf:83:29:20: a3:1e:53:18:4c:7c:01:f7:8e:4c:ec:dc:98:c7:b2: 0b:86:e7:ea:d1:37:81:39:8e:b2:55:d5:e0:99:55: 22:f4:37:0b:12:75:1e:35:dc:d6:30:47:71:ee:13: e8:62:fa:4c:2b:3f:27:63:f2:7d:88:cb:25:d0:0d: 68:73:20:b0:38:40:3c:5b:64:3e:1c:46:b1:f6:3d: ac:66:5c:f7:05:68:79:79:40:28:69:f5:95:d9:48: 6a:0c:66:ac:f4:81:c7:5e:8a:ec:d4:e2:dc:ae:03: 25:51:a3:6c:10:89:7f:e8:89:19:08:05:46:2b:da: a7:eb:1c:bc:16:0e:18:37:a3:5f:09:72:17:44:5c: 83:0a:72:47:38:ba:59:9f:2a:49:90:d6:16:68:67: 5a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:AC:9D:C5:41:5A:39:CE:1B:B4:1D:EB:7E:9B:DC:10:5B:2E:28:F4 X509v3 Authority Key Identifier: keyid:69:87:D0:04:7F:B1:D8:91:2C:63:F9:11:30:5A:71:4F:43:8B:1E:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:4a:82:57:a9:04:d6:6a:bd:6e:8a:83:27:1c:3d:0a:69:4e: ef:36:9e:f9:95:1a:1f:1a:69:7b:41:78:60:80:24:8e:b7:e2: 0c:2f:06:f0:4d:62:0d:b8:fd:55:a6:03:f9:d7:67:55:5f:af: 69:0d:75:ee:2f:69:55:d3:45:15:c2:15:fc:54:49:5b:3f:77: 3d:1b:1a:23:77:78:cc:27:5f:d1:e9:33:cb:24:9e:e3:69:ec: b4:39:0e:cd:57:16:90:b5:6f:d2:ae:e1:df:ae:37:2e:66:5d: 4e:39:64:fd:4f:a1:c5:00:c9:4c:7a:b2:5f:7f:8a:26:21:ba: d7:92:8d:d8:2f:45:49:5e:94:68:aa:0b:cd:04:ca:40:d8:7e: 50:00:80:87:15:fb:3a:86:dd:9f:fe:b7:d6:27:10:9c:3c:6d: 11:43:89:42:fa:d4:03:33:61:0e:3c:c3:cf:74:60:b6:7f:d5: 8e:a2:bf:15:d3:21:da:94:ff:dd:e7:98:29:0f:e9:98:3e:11: 17:53:15:79:e1:bf:40:da:94:57:20:95:f2:3b:a9:f1:78:f3: 05:32:83:87:0d:1f:4f:3c:9f:18:14:3c:c6:21:ff:52:19:71: 6b:f3:56:c6:7e:3b:3d:3a:2d:1f:be:68:84:61:ca:76:58:eb: 16:11:9e:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkBcp14oJqYAo43HEz+ctMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ODdkMDA0N2ZiMWQ4OTEyYzYzZjkxMTMwNWE3MTRmNDM4 YjFlNzEwHhcNMjYwMjA5MTgwMDQyWhcNMjYwMjEwMTgwMDQyWjAzMTEwLwYDVQQD EyhmZWFjOWRjNTQxNWEzOWNlMWJiNDFkZWI3ZTliZGMxMDViMmUyOGY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7m0rIye/ZByp/+KHE3th+MMmD0Ke WiCb21EsjDTx3S37+qK2sQH0DBhInw+zvVqn/o6Xf0ydiZMsXAimIjaFgxrxJF0s opzvRF0KZxMqPh9XRbGThDDEWc+0dKxvYGqVGGAaNL+DKSCjHlMYTHwB945M7NyY x7ILhufq0TeBOY6yVdXgmVUi9DcLEnUeNdzWMEdx7hPoYvpMKz8nY/J9iMsl0A1o cyCwOEA8W2Q+HEax9j2sZlz3BWh5eUAoafWV2UhqDGas9IHHXors1OLcrgMlUaNs EIl/6IkZCAVGK9qn6xy8Fg4YN6NfCXIXRFyDCnJHOLpZnypJkNYWaGdaoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP6sncVBWjnOG7Qd636b3BBbLij0MB8GA1UdIwQY MBaAFGmH0AR/sdiRLGP5ETBacU9Dix5xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVlmUUJILXgySkVzWV9rUk1GcHhUME9MSG5FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy9kODM0NTQtZDM1OS00ZTllLTg0MWMt NDI5MTRiZTBhYTA0LzEvYVlmUUJILXgySkVzWV9rUk1GcHhUME9MSG5FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy9kODM0NTQtZDM1OS00ZTllLTg0MWMtNDI5MTRiZTBhYTA0 LzEvYVlmUUJILXgySkVzWV9rUk1GcHhUME9MSG5FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgkqCV6kE 1mq9boqDJxw9CmlO7zae+ZUaHxppe0F4YIAkjrfiDC8G8E1iDbj9VaYD+ddnVV+v aQ117i9pVdNFFcIV/FRJWz93PRsaI3d4zCdf0ekzyySe42nstDkOzVcWkLVv0q7h 3643LmZdTjlk/U+hxQDJTHqyX3+KJiG615KN2C9FSV6UaKoLzQTKQNh+UACAhxX7 Oobdn/631icQnDxtEUOJQvrUAzNhDjzDz3Rgtn/VjqK/FdMh2pT/3eeYKQ/pmD4R F1MVeeG/QNqUVyCV8jup8XjzBTKDhw0fTzyfGBQ8xiH/Uhlxa/NWxn47PTotH75o hGHKdljrFhGeZw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:12 2026 by rpki-client