This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft File: aajmjRKuKTryNpBDzVmgINrCQGI.mft (raw, json) Hash identifier: 8aqGSBV92Xi0IJ4EXu6O/R+t94bhqeAVlL35PMF67+o= Subject key identifier: 53:85:41:81:23:A1:79:21:96:88:CD:03:6F:21:06:FC:3D:DC:A6:16 Authority key identifier: 69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62 Certificate issuer: /CN=69a8e68d12ae293af2369043cd59a020dac24062 Certificate serial: 019C41A1D568687BDD9C2A89225ED0FD7A04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft Manifest number: 0D01 Signing time: Mon 09 Feb 2026 09:00:50 +0000 Manifest this update: Mon 09 Feb 2026 09:00:50 +0000 Manifest next update: Tue 10 Feb 2026 09:00:50 +0000 Files and hashes: 1: aajmjRKuKTryNpBDzVmgINrCQGI.crl (hash: KzQxifWr1LVgpZqg0RToLUNSa7mi2LpP3GyQmr9JPlo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:d5:68:68:7b:dd:9c:2a:89:22:5e:d0:fd:7a:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69a8e68d12ae293af2369043cd59a020dac24062 Validity Not Before: Feb 9 09:00:50 2026 GMT Not After : Feb 10 09:00:50 2026 GMT Subject: CN=5385418123a179219688cd036f2106fc3ddca616 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b3:34:af:de:fe:3b:1c:a0:b2:ca:0a:7d:60: 00:57:82:d5:ad:11:27:00:0c:db:30:65:6e:9e:f6: 64:a4:dd:42:0b:8d:ed:ef:a5:a9:8d:32:13:63:4e: 42:57:40:bf:a9:7c:6e:58:46:b7:23:fd:a1:54:29: 70:69:a4:4e:7e:1f:cd:1f:cc:71:0e:69:4d:e5:18: 50:86:7d:0a:45:3b:99:da:85:bc:6f:df:14:4b:db: 59:ad:2e:5c:e0:b1:d6:df:cf:4b:90:8b:3c:66:13: f7:74:f7:54:65:1e:ce:a1:0a:41:79:1a:ba:e8:01: 54:da:a6:ad:6b:ef:a9:3a:3a:0f:19:6e:11:9f:7d: a7:26:89:a5:77:44:9d:78:ee:1a:87:e0:85:59:02: 74:0c:6d:11:a9:6e:a1:03:ff:0b:a6:3f:7f:10:c7: e5:7a:1d:c1:0a:50:ec:40:2d:51:07:7d:03:91:9b: 14:07:5e:93:dc:1f:df:02:32:6c:e5:92:d1:7b:0b: af:f5:10:c0:b9:a7:63:cc:ed:eb:c1:6e:bf:85:aa: 18:57:0d:31:ff:73:3d:5e:cb:04:23:5d:0d:b0:32: 7a:c3:eb:c3:93:d3:75:e3:1c:ba:f7:cf:ab:bf:35: be:86:57:cf:ec:d3:47:85:75:a8:3a:14:36:be:66: 52:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:85:41:81:23:A1:79:21:96:88:CD:03:6F:21:06:FC:3D:DC:A6:16 X509v3 Authority Key Identifier: keyid:69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:04:ed:c8:fb:70:1f:14:79:76:72:c7:e4:60:39:55:8b:43: 9f:1e:69:d4:58:2c:56:e5:8c:b0:05:e1:18:61:a5:69:83:bb: 25:e1:64:4c:2a:a8:c7:86:54:4e:bb:ed:76:be:30:c5:95:72: 77:34:f5:23:d0:2e:c7:15:06:d7:fc:87:05:27:51:41:87:7c: a5:a9:db:28:41:42:a1:a1:23:fc:a1:a9:39:7f:55:dd:3f:ff: 73:62:2d:ad:b0:de:1c:ef:05:e1:80:23:30:dd:fd:05:e2:96: 08:eb:99:de:7e:20:1b:e4:74:8c:0c:7e:60:15:de:1c:fe:41: b2:68:99:f7:9a:36:c7:68:9c:0b:37:d3:86:fc:85:02:43:4c: bd:36:79:59:f3:2b:17:30:b3:6b:4b:a7:fe:f5:fe:16:58:2f: 2c:c2:f7:37:57:2a:f5:84:2b:98:a5:ca:e3:d9:bc:8b:d8:49: 14:91:58:94:8f:d6:63:55:f2:e0:e6:1a:55:72:4a:c8:53:3a: 5a:06:e9:a6:71:ca:ba:b7:54:0c:94:48:63:f3:bb:12:bc:b2: 7f:01:b1:6c:92:46:85:f6:dc:58:82:fe:13:4b:b2:7e:be:fc: 0b:61:92:5f:6b:fc:ac:21:2a:f1:0e:8a:94:49:a4:3c:bd:3c: 8d:d9:d5:b5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBodVoaHvdnCqJIl7Q/XoEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5YThlNjhkMTJhZTI5M2FmMjM2OTA0M2NkNTlhMDIwZGFj MjQwNjIwHhcNMjYwMjA5MDkwMDUwWhcNMjYwMjEwMDkwMDUwWjAzMTEwLwYDVQQD Eyg1Mzg1NDE4MTIzYTE3OTIxOTY4OGNkMDM2ZjIxMDZmYzNkZGNhNjE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0rM0r97+OxygssoKfWAAV4LVrREn AAzbMGVunvZkpN1CC43t76WpjTITY05CV0C/qXxuWEa3I/2hVClwaaROfh/NH8xx DmlN5RhQhn0KRTuZ2oW8b98US9tZrS5c4LHW389LkIs8ZhP3dPdUZR7OoQpBeRq6 6AFU2qata++pOjoPGW4Rn32nJomld0SdeO4ah+CFWQJ0DG0RqW6hA/8Lpj9/EMfl eh3BClDsQC1RB30DkZsUB16T3B/fAjJs5ZLRewuv9RDAuadjzO3rwW6/haoYVw0x /3M9XssEI10NsDJ6w+vDk9N14xy698+rvzW+hlfP7NNHhXWoOhQ2vmZSpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFOFQYEjoXkhlojNA28hBvw93KYWMB8GA1UdIwQY MBaAFGmo5o0Srik68jaQQ81ZoCDawkBiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWFqbWpSS3VLVHJ5TnBCRHpWbWdJTnJDUUdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC8yNDJmYWEtZWFlMy00NmE1LWI3NzQt Mzg4MjA1NDg3NTVjLzEvYWFqbWpSS3VLVHJ5TnBCRHpWbWdJTnJDUUdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC8yNDJmYWEtZWFlMy00NmE1LWI3NzQtMzg4MjA1NDg3NTVj LzEvYWFqbWpSS3VLVHJ5TnBCRHpWbWdJTnJDUUdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZwTtyPtw HxR5dnLH5GA5VYtDnx5p1FgsVuWMsAXhGGGlaYO7JeFkTCqox4ZUTrvtdr4wxZVy dzT1I9AuxxUG1/yHBSdRQYd8panbKEFCoaEj/KGpOX9V3T//c2ItrbDeHO8F4YAj MN39BeKWCOuZ3n4gG+R0jAx+YBXeHP5BsmiZ95o2x2icCzfThvyFAkNMvTZ5WfMr FzCza0un/vX+FlgvLML3N1cq9YQrmKXK49m8i9hJFJFYlI/WY1Xy4OYaVXJKyFM6 WgbppnHKurdUDJRIY/O7EryyfwGxbJJGhfbcWIL+E0uyfr78C2GSX2v8rCEq8Q6K lEmkPL08jdnVtQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:51 2026 by rpki-client