This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft File: 1AYg6l2vilSq6hfyy57N8114UwY.mft (raw, json) Hash identifier: U7wWXyma/1skgidZLjBrSsVTCw6wIJkimziD6N06qKU= Subject key identifier: CF:7D:21:12:72:5B:23:93:53:4D:ED:3F:95:3B:5F:D7:89:84:5E:58 Authority key identifier: D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06 Certificate issuer: /CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306 Certificate serial: 019C420FC1A5AAE9A78469DCF4AA9C3A8402 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft Manifest number: 12E8 Signing time: Mon 09 Feb 2026 11:00:54 +0000 Manifest this update: Mon 09 Feb 2026 11:00:54 +0000 Manifest next update: Tue 10 Feb 2026 11:00:54 +0000 Files and hashes: 1: 1AYg6l2vilSq6hfyy57N8114UwY.crl (hash: 3AsY2f5p7M8sL9av35PuwZfxTjsuK3/lrIQtfAnV8lM=) 2: 3HiDrZA7PYUoDOVj2lWK_MTDMy4.roa (hash: VEj0HSUKE42dKjFD2uYohf7XQqVFoN8s8ftve/Xm9PQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:c1:a5:aa:e9:a7:84:69:dc:f4:aa:9c:3a:84:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306 Validity Not Before: Feb 9 11:00:54 2026 GMT Not After : Feb 10 11:00:54 2026 GMT Subject: CN=cf7d2112725b2393534ded3f953b5fd789845e58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:dd:57:d8:e7:0c:fc:63:ba:93:23:bb:d6:a8: 74:cb:e6:24:ff:13:04:f4:60:ee:f6:73:8b:12:b1: 41:22:ee:c0:11:3e:e3:8a:54:f0:f0:1b:eb:b3:68: c6:b7:a7:62:e6:29:67:3f:85:39:2c:45:4b:bb:cd: c2:7a:83:ab:9b:f1:9d:ee:4c:5b:4a:7b:24:91:84: 98:35:27:3d:5d:d9:7c:f5:85:60:bf:d2:2a:c8:36: 98:bb:16:77:3c:d9:de:eb:24:41:7b:c5:84:00:0e: 5b:11:9a:67:de:8e:11:6e:b1:e2:25:a6:2b:67:11: f2:53:23:b0:71:13:1a:f9:85:95:03:43:ce:85:21: c3:51:8a:e5:03:17:0f:17:93:0d:29:d1:a9:d0:16: c2:b7:18:1c:54:95:d5:e2:4b:c4:f0:48:0e:ea:59: bb:9b:71:74:b3:bb:84:06:0b:06:51:d0:21:20:20: a1:80:a6:16:fb:92:18:f5:7e:95:19:38:8b:a7:32: ab:0d:42:02:eb:88:cc:44:26:72:ef:b3:0b:a8:36: d2:76:45:df:26:e0:db:b0:13:e7:db:3d:39:44:8e: 25:9f:3e:2d:d4:aa:05:b2:ac:4f:c2:eb:10:26:5a: 76:39:3d:0e:ad:d0:3e:01:ee:93:39:e6:cb:53:29: ff:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:7D:21:12:72:5B:23:93:53:4D:ED:3F:95:3B:5F:D7:89:84:5E:58 X509v3 Authority Key Identifier: keyid:D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:f0:ba:5c:92:5b:c0:69:3e:f7:31:42:f1:2c:e0:2c:1e:21: 67:eb:8c:97:cd:53:34:e0:17:d6:49:f2:98:a7:c6:06:fc:24: d5:00:e5:3e:90:8d:a2:55:d3:ee:96:4e:c0:07:10:80:e0:74: 52:dd:ca:39:0d:64:ba:b6:d2:f5:25:80:9d:ca:d2:a6:f0:86: b0:b6:9d:b5:5a:a2:26:4c:36:ab:cd:90:57:81:12:b2:fc:ef: 77:19:8d:96:89:be:d5:8a:17:11:e7:9a:c2:2c:49:78:f4:62: b3:86:81:a5:f5:8d:75:c9:7f:05:a2:c2:e3:7e:d2:b4:f6:ad: 91:3e:ef:7a:53:c9:70:1d:a6:54:0b:9a:28:29:e6:be:ff:2d: da:73:17:06:d8:e9:c3:d4:07:64:7d:63:e2:51:c3:cb:9b:ed: dd:ff:e4:3b:60:cf:67:67:62:06:8f:57:e7:07:12:9d:07:ad: 3f:c4:c6:ed:f6:ce:9d:07:27:1c:f1:1f:0e:e9:d6:0c:94:ab: a5:1f:ed:f5:45:2b:be:a6:4e:36:1a:d6:01:e8:9c:bc:8c:a1: a0:43:e5:02:2e:5c:a4:20:49:52:36:7f:d8:3c:6c:d9:96:2e: c3:22:30:cf:24:6e:5f:ad:07:6c:50:e9:9b:c1:d0:a6:7b:24: 6c:5a:74:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD8GlqumnhGnc9KqcOoQCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0MDYyMGVhNWRhZjhhNTRhYWVhMTdmMmNiOWVjZGYzNWQ3 ODUzMDYwHhcNMjYwMjA5MTEwMDU0WhcNMjYwMjEwMTEwMDU0WjAzMTEwLwYDVQQD EyhjZjdkMjExMjcyNWIyMzkzNTM0ZGVkM2Y5NTNiNWZkNzg5ODQ1ZTU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqt1X2OcM/GO6kyO71qh0y+Yk/xME 9GDu9nOLErFBIu7AET7jilTw8Bvrs2jGt6di5ilnP4U5LEVLu83CeoOrm/Gd7kxb SnskkYSYNSc9Xdl89YVgv9IqyDaYuxZ3PNne6yRBe8WEAA5bEZpn3o4RbrHiJaYr ZxHyUyOwcRMa+YWVA0POhSHDUYrlAxcPF5MNKdGp0BbCtxgcVJXV4kvE8EgO6lm7 m3F0s7uEBgsGUdAhICChgKYW+5IY9X6VGTiLpzKrDUIC64jMRCZy77MLqDbSdkXf JuDbsBPn2z05RI4lnz4t1KoFsqxPwusQJlp2OT0OrdA+Ae6TOebLUyn/eQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM99IRJyWyOTU03tP5U7X9eJhF5YMB8GA1UdIwQY MBaAFNQGIOpdr4pUquoX8suezfNdeFMGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUFZZzZsMnZpbFNxNmhmeXk1N044MTE0VXdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi83OThmYzUtYjU0Yy00MWMxLThhZmUt ZjA5ZTQ2YzY5YmY4LzEvMUFZZzZsMnZpbFNxNmhmeXk1N044MTE0VXdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi83OThmYzUtYjU0Yy00MWMxLThhZmUtZjA5ZTQ2YzY5YmY4 LzEvMUFZZzZsMnZpbFNxNmhmeXk1N044MTE0VXdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN/C6XJJb wGk+9zFC8SzgLB4hZ+uMl81TNOAX1knymKfGBvwk1QDlPpCNolXT7pZOwAcQgOB0 Ut3KOQ1kurbS9SWAncrSpvCGsLadtVqiJkw2q82QV4ESsvzvdxmNlom+1YoXEeea wixJePRis4aBpfWNdcl/BaLC437StPatkT7velPJcB2mVAuaKCnmvv8t2nMXBtjp w9QHZH1j4lHDy5vt3f/kO2DPZ2diBo9X5wcSnQetP8TG7fbOnQcnHPEfDunWDJSr pR/t9UUrvqZONhrWAeicvIyhoEPlAi5cpCBJUjZ/2Dxs2ZYuwyIwzyRuX60HbFDp m8HQpnskbFp0hw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:46 2026 by rpki-client