This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft File: aYVKV6sNijySLI9qeaqP6KaiwJ4.mft (raw, json) Hash identifier: RJ4nuznxJ1NhANcxmbsRtJSOo8lB654wXvXHmggCVd4= Subject key identifier: 00:0D:32:3A:9A:3C:56:0E:60:27:ED:83:6D:78:7B:5E:2E:81:35:29 Authority key identifier: 69:85:4A:57:AB:0D:8A:3C:92:2C:8F:6A:79:AA:8F:E8:A6:A2:C0:9E Certificate issuer: /CN=69854a57ab0d8a3c922c8f6a79aa8fe8a6a2c09e Certificate serial: 019C427D7B76E53099B84632CD4FAE8D8ABC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft Manifest number: 1272 Signing time: Mon 09 Feb 2026 13:00:45 +0000 Manifest this update: Mon 09 Feb 2026 13:00:45 +0000 Manifest next update: Tue 10 Feb 2026 13:00:45 +0000 Files and hashes: 1: aYVKV6sNijySLI9qeaqP6KaiwJ4.crl (hash: WzTFf4y6LFhLpiUt02iBoGOL6qLtaS/sulBehKM/TSA=) 2: udJoXx6SrWMuMK6jZ122dieN47A.roa (hash: XPA3Wkk2p2nbhHbQxZ80mWOEn3OR3Bs5szWaHz85HJo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.crl rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:7b:76:e5:30:99:b8:46:32:cd:4f:ae:8d:8a:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69854a57ab0d8a3c922c8f6a79aa8fe8a6a2c09e Validity Not Before: Feb 9 13:00:45 2026 GMT Not After : Feb 10 13:00:45 2026 GMT Subject: CN=000d323a9a3c560e6027ed836d787b5e2e813529 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:d7:76:06:bd:89:d9:6c:84:b9:87:66:fa:48: 21:bb:0b:52:b7:44:df:ca:57:15:e9:7d:e7:96:91: 99:16:3b:8f:4e:81:c3:a8:f7:54:a8:a9:11:41:bd: f1:63:20:73:e6:f9:91:23:53:49:fa:35:a2:e8:aa: 3f:e3:cc:87:b9:63:55:72:ef:ae:d1:4f:15:58:eb: 6e:81:ce:0d:7b:df:4b:c8:2c:94:2f:1e:0b:5b:14: 87:18:97:3b:1e:b5:4f:7c:09:af:e5:88:24:55:1e: ab:04:0b:a2:a2:55:ee:ec:9a:a5:f1:ac:22:c3:b3: 0c:68:d8:8a:66:e6:ad:af:41:52:37:f9:4d:40:00: c6:9f:cd:fa:dd:8a:65:f5:28:49:18:d2:59:36:c7: a2:97:95:36:f4:fd:d5:fa:c1:04:01:0d:4d:38:74: 5b:1b:97:f8:36:1a:2b:56:e2:45:61:bc:28:e2:40: b7:72:a5:30:1d:ff:e4:c4:1e:b9:94:a6:5a:16:ba: b9:3d:d5:09:62:db:7a:72:a8:0a:cb:17:da:df:ed: 71:3b:7d:9a:cf:f6:16:a2:e3:28:64:3c:9b:4f:45: 11:44:1b:a4:f0:59:09:a6:90:78:d8:cc:c1:04:32: f1:d6:0e:7b:43:c2:80:2e:81:92:f7:c8:8a:29:84: 88:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:0D:32:3A:9A:3C:56:0E:60:27:ED:83:6D:78:7B:5E:2E:81:35:29 X509v3 Authority Key Identifier: keyid:69:85:4A:57:AB:0D:8A:3C:92:2C:8F:6A:79:AA:8F:E8:A6:A2:C0:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:01:1a:f6:f7:12:67:61:7b:e0:58:27:ae:62:f7:0a:4f:57: a0:18:1e:d9:4b:09:04:bd:f6:72:a1:ec:a5:19:57:be:67:50: 8a:e2:ac:64:a9:d9:6b:89:e5:b4:92:6c:c4:fc:b8:72:d1:27: 1b:76:aa:f2:e8:82:8d:53:43:61:e8:d0:48:83:34:d8:1b:7a: b9:97:c4:4c:1f:69:cd:7b:ec:dd:e6:c2:48:8c:7c:c7:aa:c2: a0:9a:fb:c2:59:e0:da:5a:20:6c:26:12:fa:c3:69:a7:4e:c5: 5a:6b:f3:f7:e8:bb:89:1c:d5:ee:7a:64:f1:30:eb:12:9c:c1: af:10:98:ce:db:7f:a7:f4:2b:dd:bc:f1:24:ce:ee:1f:e8:92: 3f:e9:03:e3:62:56:50:af:52:bb:e5:13:71:d4:53:9f:f1:d4: 53:4a:41:b4:c8:4e:83:b3:c7:b7:21:57:d0:c4:11:e7:7e:ee: 99:11:71:45:35:62:ab:86:d1:24:65:6d:a8:c3:2e:8c:39:59: 70:34:e7:d0:cb:93:63:86:74:5c:84:de:14:c2:1d:b2:e2:7c: a6:62:f9:21:14:10:d6:77:4e:a2:b3:47:2e:34:2c:31:a4:a9: 49:11:49:46:a2:16:a0:6c:9d:10:8c:2e:ac:a6:d2:22:cd:50: b2:37:cf:91 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfXt25TCZuEYyzU+ujYq8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ODU0YTU3YWIwZDhhM2M5MjJjOGY2YTc5YWE4ZmU4YTZh MmMwOWUwHhcNMjYwMjA5MTMwMDQ1WhcNMjYwMjEwMTMwMDQ1WjAzMTEwLwYDVQQD EygwMDBkMzIzYTlhM2M1NjBlNjAyN2VkODM2ZDc4N2I1ZTJlODEzNTI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA59d2Br2J2WyEuYdm+kghuwtSt0Tf ylcV6X3nlpGZFjuPToHDqPdUqKkRQb3xYyBz5vmRI1NJ+jWi6Ko/48yHuWNVcu+u 0U8VWOtugc4Ne99LyCyULx4LWxSHGJc7HrVPfAmv5YgkVR6rBAuiolXu7Jql8awi w7MMaNiKZuatr0FSN/lNQADGn8363Ypl9ShJGNJZNseil5U29P3V+sEEAQ1NOHRb G5f4NhorVuJFYbwo4kC3cqUwHf/kxB65lKZaFrq5PdUJYtt6cqgKyxfa3+1xO32a z/YWouMoZDybT0URRBuk8FkJppB42MzBBDLx1g57Q8KALoGS98iKKYSIPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAANMjqaPFYOYCftg214e14ugTUpMB8GA1UdIwQY MBaAFGmFSlerDYo8kiyPanmqj+imosCeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVlWS1Y2c05panlTTEk5cWVhcVA2S2Fpd0o0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8zZjgxMDctZmMxNS00YzcxLTgxZDQt NTIzOGIwMzU0NWNhLzEvYVlWS1Y2c05panlTTEk5cWVhcVA2S2Fpd0o0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS8zZjgxMDctZmMxNS00YzcxLTgxZDQtNTIzOGIwMzU0NWNh LzEvYVlWS1Y2c05panlTTEk5cWVhcVA2S2Fpd0o0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASQEa9vcS Z2F74FgnrmL3Ck9XoBge2UsJBL32cqHspRlXvmdQiuKsZKnZa4nltJJsxPy4ctEn G3aq8uiCjVNDYejQSIM02Bt6uZfETB9pzXvs3ebCSIx8x6rCoJr7wlng2logbCYS +sNpp07FWmvz9+i7iRzV7npk8TDrEpzBrxCYztt/p/Qr3bzxJM7uH+iSP+kD42JW UK9Su+UTcdRTn/HUU0pBtMhOg7PHtyFX0MQR537umRFxRTViq4bRJGVtqMMujDlZ cDTn0MuTY4Z0XITeFMIdsuJ8pmL5IRQQ1ndOorNHLjQsMaSpSRFJRqIWoGydEIwu rKbSIs1QsjfPkQ== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:29 2026 by rpki-client