This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft File: aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft (raw, json) Hash identifier: cSMPcay0ABMGMzfhNEsxeDYmZlZSUb2w2f6HUejJImg= Subject key identifier: 61:F1:CC:76:44:8E:39:69:A7:2F:DD:1D:7E:D5:8F:13:CF:E0:61:07 Authority key identifier: 69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69 Certificate issuer: /CN=695dce5e37a862538a0f66883de206ffb7c93b69 Certificate serial: 019C420F63633F0F4142A1C12DACB383113D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft Manifest number: 084D Signing time: Mon 09 Feb 2026 11:00:30 +0000 Manifest this update: Mon 09 Feb 2026 11:00:30 +0000 Manifest next update: Tue 10 Feb 2026 11:00:30 +0000 Files and hashes: 1: 4oDq4WaHtzxq4X2XmYKxOilfXjc.roa (hash: 0o/IvKk3dqBypwXiDheqBd2S3T9GWA2BbRQUpKWXnt8=) 2: aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl (hash: GQdbpoohrgs7ADDD9+f7LBJQ77hY/yc21aTL+CNd02Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:63:63:3f:0f:41:42:a1:c1:2d:ac:b3:83:11:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=695dce5e37a862538a0f66883de206ffb7c93b69 Validity Not Before: Feb 9 11:00:30 2026 GMT Not After : Feb 10 11:00:30 2026 GMT Subject: CN=61f1cc76448e3969a72fdd1d7ed58f13cfe06107 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f0:1a:23:28:be:62:2d:2c:60:e5:96:2c:0d: 7f:d4:ce:3f:01:bf:a5:f0:2c:6e:90:8c:10:56:29: 91:f4:08:4f:f1:fc:c4:24:dc:cc:9c:0c:27:e9:2f: 7b:99:53:4a:55:2b:ba:94:d8:ac:08:2d:05:0c:9c: 45:2b:16:c3:49:cb:70:bf:b6:61:ec:87:38:55:81: d6:ed:cc:e5:3e:a2:ca:f8:56:60:46:ef:bc:83:23: 57:b0:37:a9:2d:11:46:4e:8d:0d:cb:1d:48:ee:2f: 07:2d:0a:fc:72:f5:79:9e:09:19:c2:a0:ac:b7:48: df:25:18:90:de:00:8d:ba:70:c1:59:86:7b:dd:09: b3:b5:ac:66:68:a1:99:ae:1a:e5:0f:82:c2:87:26: 59:54:7d:b8:e1:64:81:4a:2e:64:81:31:d7:84:ab: b5:83:a9:1e:4f:c2:5a:58:a5:77:f7:b6:f3:55:9e: ee:0e:a0:be:86:00:6c:61:24:e4:46:41:c8:f5:8a: 82:05:28:31:74:84:99:60:dc:71:2d:9c:96:30:08: 36:d5:17:93:58:69:fb:c2:02:2f:95:b1:7a:c7:cd: 38:92:5a:94:c7:94:ec:02:40:c1:ee:df:f1:3a:cc: d8:b4:46:64:c8:62:1f:92:45:46:1d:cf:de:a5:7c: 83:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:F1:CC:76:44:8E:39:69:A7:2F:DD:1D:7E:D5:8F:13:CF:E0:61:07 X509v3 Authority Key Identifier: keyid:69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:31:fc:6a:95:90:fb:52:58:0d:9b:9b:ac:e9:77:ba:1f:b8: 1e:7d:18:b7:53:b6:13:25:5e:5c:25:b4:b7:df:35:a8:98:60: c7:b2:d0:22:e2:c4:d4:d9:16:a0:48:05:64:81:fc:e6:cd:b1: 94:46:de:3c:2e:4f:1f:eb:f4:73:d1:5e:bd:cc:33:5a:9f:95: 45:ad:48:e4:d5:9f:9a:a3:28:f6:26:ee:26:27:37:70:4b:98: e7:97:8d:d4:13:9e:1e:ce:a4:cb:e1:7c:17:45:b2:8c:c2:de: b0:62:72:42:ca:34:02:17:3c:f4:1a:b4:9c:86:92:91:73:13: dd:51:d4:d7:bf:02:60:7c:72:f3:ab:87:85:e5:21:e0:e2:63: 20:ef:ce:d1:1d:28:8a:f2:46:f9:18:e6:7e:99:e8:16:c1:e9: ab:10:75:41:a5:dc:32:7a:d1:25:89:6d:f7:b9:16:d4:f9:ce: 06:41:7e:31:7f:35:f2:12:1a:1c:ff:64:85:01:be:bf:6a:2c: bf:3b:75:c1:91:3f:c3:3b:3a:da:72:6e:77:6c:0b:cb:c2:71: cd:57:0e:f2:77:b7:13:53:b3:30:47:d2:44:31:cc:0c:0d:cf: d0:ac:42:ad:12:08:3a:ea:8d:19:eb:4f:0d:e4:1d:fe:c7:d9: 63:03:c1:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD2NjPw9BQqHBLayzgxE9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5NWRjZTVlMzdhODYyNTM4YTBmNjY4ODNkZTIwNmZmYjdj OTNiNjkwHhcNMjYwMjA5MTEwMDMwWhcNMjYwMjEwMTEwMDMwWjAzMTEwLwYDVQQD Eyg2MWYxY2M3NjQ0OGUzOTY5YTcyZmRkMWQ3ZWQ1OGYxM2NmZTA2MTA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtPAaIyi+Yi0sYOWWLA1/1M4/Ab+l 8CxukIwQVimR9AhP8fzEJNzMnAwn6S97mVNKVSu6lNisCC0FDJxFKxbDSctwv7Zh 7Ic4VYHW7czlPqLK+FZgRu+8gyNXsDepLRFGTo0Nyx1I7i8HLQr8cvV5ngkZwqCs t0jfJRiQ3gCNunDBWYZ73QmztaxmaKGZrhrlD4LChyZZVH244WSBSi5kgTHXhKu1 g6keT8JaWKV397bzVZ7uDqC+hgBsYSTkRkHI9YqCBSgxdISZYNxxLZyWMAg21ReT WGn7wgIvlbF6x804klqUx5TsAkDB7t/xOszYtEZkyGIfkkVGHc/epXyD1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGHxzHZEjjlppy/dHX7VjxPP4GEHMB8GA1UdIwQY MBaAFGldzl43qGJTig9miD3iBv+3yTtpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVYzT1hqZW9ZbE9LRDJhSVBlSUdfN2ZKTzJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi83MTY5MTEtMzBkZS00Yjc0LTk1OWIt MDE3ZGVlNDUyZWM0LzEvYVYzT1hqZW9ZbE9LRDJhSVBlSUdfN2ZKTzJrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi83MTY5MTEtMzBkZS00Yjc0LTk1OWItMDE3ZGVlNDUyZWM0 LzEvYVYzT1hqZW9ZbE9LRDJhSVBlSUdfN2ZKTzJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkzH8apWQ +1JYDZubrOl3uh+4Hn0Yt1O2EyVeXCW0t981qJhgx7LQIuLE1NkWoEgFZIH85s2x lEbePC5PH+v0c9FevcwzWp+VRa1I5NWfmqMo9ibuJic3cEuY55eN1BOeHs6ky+F8 F0WyjMLesGJyQso0Ahc89Bq0nIaSkXMT3VHU178CYHxy86uHheUh4OJjIO/O0R0o ivJG+RjmfpnoFsHpqxB1QaXcMnrRJYlt97kW1PnOBkF+MX818hIaHP9khQG+v2os vzt1wZE/wzs62nJud2wLy8JxzVcO8ne3E1OzMEfSRDHMDA3P0KxCrRIIOuqNGetP DeQd/sfZYwPBKg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:56:00 2026 by rpki-client