This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft File: aPw7CfVvin8ea-PJTw8IikKiy1s.mft (raw, json) Hash identifier: Jg/GJbgz8Yy6oiH0hgjPsrhX8pfxIfDTUz9bSMGzJDs= Subject key identifier: 4E:99:2D:4A:26:FC:07:7E:BC:4A:59:00:E1:C4:E0:14:AA:25:7A:CA Authority key identifier: 68:FC:3B:09:F5:6F:8A:7F:1E:6B:E3:C9:4F:0F:08:8A:42:A2:CB:5B Certificate issuer: /CN=68fc3b09f56f8a7f1e6be3c94f0f088a42a2cb5b Certificate serial: 019C420FC407688BB91B9C3795762E13B903 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPw7CfVvin8ea-PJTw8IikKiy1s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft Manifest number: 09CD Signing time: Mon 09 Feb 2026 11:00:55 +0000 Manifest this update: Mon 09 Feb 2026 11:00:55 +0000 Manifest next update: Tue 10 Feb 2026 11:00:55 +0000 Files and hashes: 1: aPw7CfVvin8ea-PJTw8IikKiy1s.crl (hash: B5sRO13Da0IZiLikuK8hhx4x2PiW++FR0xhY/ugJ6U8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.crl rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft rsync://rpki.ripe.net/repository/DEFAULT/aPw7CfVvin8ea-PJTw8IikKiy1s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:c4:07:68:8b:b9:1b:9c:37:95:76:2e:13:b9:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68fc3b09f56f8a7f1e6be3c94f0f088a42a2cb5b Validity Not Before: Feb 9 11:00:55 2026 GMT Not After : Feb 10 11:00:55 2026 GMT Subject: CN=4e992d4a26fc077ebc4a5900e1c4e014aa257aca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3a:a5:d3:41:a1:c2:fd:5d:73:cf:c2:bc:fb: d5:35:4d:dd:eb:25:ab:59:73:c5:84:55:78:73:ba: 0e:79:b0:0f:37:af:ad:e6:49:50:c7:b7:48:a2:64: d7:d6:77:b9:43:dd:c6:2a:27:c8:29:3b:50:8d:81: 96:24:8f:a2:5d:c5:c5:cf:28:74:47:fa:5e:04:fc: 4e:9c:80:cb:5a:c6:b7:32:3b:be:31:3e:86:e2:bf: 6c:e3:e2:5b:b6:50:f8:ad:50:38:f8:bc:f5:ab:69: 41:bf:24:e8:f8:03:bd:3a:b0:a2:c1:a5:19:7b:84: ef:f1:ab:cf:39:e0:df:08:93:02:4f:1a:02:71:ea: f3:29:17:62:4c:23:5e:82:e8:c8:8b:92:48:11:16: ec:ff:14:75:56:38:d1:b0:6d:4c:70:e8:1e:7d:af: f9:fc:bb:b8:f4:bb:f8:e8:23:97:aa:b5:52:3d:ef: 44:a7:c5:87:84:ab:6e:70:39:1b:af:39:00:1c:51: 1e:7a:30:bf:af:d8:45:63:d5:de:08:c5:5f:30:74: ca:1c:d3:d1:f0:57:0b:95:3c:e0:af:7e:ff:b7:f8: 7d:78:14:38:09:4c:0c:ac:01:19:f7:7c:c9:a6:5a: 23:a7:2b:52:60:bd:b2:93:a6:90:8d:a0:4c:02:9f: 01:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:99:2D:4A:26:FC:07:7E:BC:4A:59:00:E1:C4:E0:14:AA:25:7A:CA X509v3 Authority Key Identifier: keyid:68:FC:3B:09:F5:6F:8A:7F:1E:6B:E3:C9:4F:0F:08:8A:42:A2:CB:5B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPw7CfVvin8ea-PJTw8IikKiy1s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/36b9b1-6ab6-470e-aa43-c8534a3c9498/1/aPw7CfVvin8ea-PJTw8IikKiy1s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:fa:65:cc:62:61:e9:de:60:b8:43:30:9b:09:21:0c:eb:62: e2:df:b8:06:0a:73:1d:e3:b3:ce:07:da:c7:2f:69:59:cd:a0: 5d:91:17:d1:f6:f5:27:d5:63:93:34:cb:26:ca:e5:2f:3c:48: 06:92:14:7f:10:93:07:73:ef:f3:a5:74:c9:f1:b9:0f:04:fd: c3:1c:df:ad:c9:3f:db:37:a1:e5:9e:bf:8e:14:9e:d1:b0:0f: 6c:67:a6:f5:7b:9f:23:a8:cd:c0:f2:41:65:c1:21:87:99:c7: 8c:5a:6c:fe:95:c6:62:b9:be:aa:e8:83:1b:41:fb:a8:08:de: 2c:84:4a:7d:0c:2a:4c:2f:d5:9e:9f:70:c1:3c:ad:c7:b0:81: fc:5c:67:64:3c:21:3e:34:30:ae:1a:1a:d3:e7:68:ec:5c:8e: 54:30:bf:88:52:5a:d4:70:bd:88:f1:50:53:b6:11:bb:c9:72: 98:21:b7:0a:b3:7e:2f:11:9d:88:28:eb:b0:7c:2b:98:34:3f: ed:23:28:8d:df:03:f5:23:03:64:64:1f:67:0e:a5:24:c6:86: 94:e1:9d:f3:e3:74:58:35:df:4e:91:96:21:88:52:7a:fe:10: 4e:03:54:82:ba:0f:9c:8e:d3:9b:3c:5b:89:94:7c:f0:18:19: 09:eb:28:d1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD8QHaIu5G5w3lXYuE7kDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZmMzYjA5ZjU2ZjhhN2YxZTZiZTNjOTRmMGYwODhhNDJh MmNiNWIwHhcNMjYwMjA5MTEwMDU1WhcNMjYwMjEwMTEwMDU1WjAzMTEwLwYDVQQD Eyg0ZTk5MmQ0YTI2ZmMwNzdlYmM0YTU5MDBlMWM0ZTAxNGFhMjU3YWNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwjql00Ghwv1dc8/CvPvVNU3d6yWr WXPFhFV4c7oOebAPN6+t5klQx7dIomTX1ne5Q93GKifIKTtQjYGWJI+iXcXFzyh0 R/peBPxOnIDLWsa3Mju+MT6G4r9s4+JbtlD4rVA4+Lz1q2lBvyTo+AO9OrCiwaUZ e4Tv8avPOeDfCJMCTxoCcerzKRdiTCNegujIi5JIERbs/xR1VjjRsG1McOgefa/5 /Lu49Lv46COXqrVSPe9Ep8WHhKtucDkbrzkAHFEeejC/r9hFY9XeCMVfMHTKHNPR 8FcLlTzgr37/t/h9eBQ4CUwMrAEZ93zJplojpytSYL2yk6aQjaBMAp8BGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE6ZLUom/Ad+vEpZAOHE4BSqJXrKMB8GA1UdIwQY MBaAFGj8Own1b4p/HmvjyU8PCIpCostbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVB3N0NmVnZpbjhlYS1QSlR3OElpa0tpeTFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8zNmI5YjEtNmFiNi00NzBlLWFhNDMt Yzg1MzRhM2M5NDk4LzEvYVB3N0NmVnZpbjhlYS1QSlR3OElpa0tpeTFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC8zNmI5YjEtNmFiNi00NzBlLWFhNDMtYzg1MzRhM2M5NDk4 LzEvYVB3N0NmVnZpbjhlYS1QSlR3OElpa0tpeTFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQvplzGJh 6d5guEMwmwkhDOti4t+4BgpzHeOzzgfaxy9pWc2gXZEX0fb1J9VjkzTLJsrlLzxI BpIUfxCTB3Pv86V0yfG5DwT9wxzfrck/2zeh5Z6/jhSe0bAPbGem9XufI6jNwPJB ZcEhh5nHjFps/pXGYrm+quiDG0H7qAjeLIRKfQwqTC/Vnp9wwTytx7CB/FxnZDwh PjQwrhoa0+do7FyOVDC/iFJa1HC9iPFQU7YRu8lymCG3CrN+LxGdiCjrsHwrmDQ/ 7SMojd8D9SMDZGQfZw6lJMaGlOGd8+N0WDXfTpGWIYhSev4QTgNUgroPnI7Tmzxb iZR88BgZCeso0Q== -----END CERTIFICATE-----Generated at Mon Feb 9 19:49:20 2026 by rpki-client