This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft File: aaKML4THXo0DiGlDVRUt0rcx8kk.mft (raw, json) Hash identifier: qu2EZce+SZUW/SEreYaZrKONIWLVpyzShE0XMcYfN0M= Subject key identifier: D3:A9:08:F5:51:05:7A:49:1C:39:4E:A0:40:AA:07:DA:BC:50:6D:A7 Authority key identifier: 69:A2:8C:2F:84:C7:5E:8D:03:88:69:43:55:15:2D:D2:B7:31:F2:49 Certificate issuer: /CN=69a28c2f84c75e8d0388694355152dd2b731f249 Certificate serial: 019C41D8E9F8A45037ECFC80890BF27B0760 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft Manifest number: 1812 Signing time: Mon 09 Feb 2026 10:01:00 +0000 Manifest this update: Mon 09 Feb 2026 10:01:00 +0000 Manifest next update: Tue 10 Feb 2026 10:01:00 +0000 Files and hashes: 1: MB0uTApSO8m5vg_bm9trr3XpjgU.roa (hash: 2eNykuyF9+3yCGYPE8lH28bjQtkNd0f4qvsTFx03Ijs=) 2: aaKML4THXo0DiGlDVRUt0rcx8kk.crl (hash: wcU44Kce1fX56MOrYvdn4W659YklpqZwZ6MEjIrVRZ0=) 3: xg2vmPZnFpWKOjIR5eQ7FMGT8aE.roa (hash: hPOQooNWczBMB25D+ekEfhNU7YNSFMQ+pTU+YyTaGew=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:e9:f8:a4:50:37:ec:fc:80:89:0b:f2:7b:07:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69a28c2f84c75e8d0388694355152dd2b731f249 Validity Not Before: Feb 9 10:01:00 2026 GMT Not After : Feb 10 10:01:00 2026 GMT Subject: CN=d3a908f551057a491c394ea040aa07dabc506da7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ac:db:65:6e:61:ba:b7:23:3c:aa:7a:b9:d9: e3:b0:1f:a5:60:9e:d8:bf:bf:28:24:12:91:a9:53: 4b:7b:52:6f:83:15:be:c4:34:1b:d1:4e:5a:00:a1: ea:bd:9b:4e:03:90:c6:98:35:41:da:6a:60:be:12: 9f:cf:c3:7f:43:a2:b4:c1:81:fb:57:bc:7d:2b:12: fd:ed:96:db:e2:b4:83:cf:d5:0e:9f:c5:8c:62:a1: 44:f6:73:fd:bd:d7:96:32:62:86:12:16:4a:7e:07: 07:a2:4c:7a:31:9d:7c:66:f7:bd:40:de:75:aa:6c: 8a:96:a9:a1:d3:9b:cb:30:39:f1:ba:e7:8d:cf:66: ea:d8:ea:08:56:0a:cf:59:da:dc:7f:64:e7:06:75: 55:90:79:12:8f:f4:d4:a5:73:a6:73:c5:60:7e:62: 29:ee:25:af:76:24:5e:43:b7:7c:94:54:de:31:db: e8:59:e9:e1:31:bc:14:31:eb:10:1a:ce:01:af:0e: c0:db:5e:c2:a1:eb:21:2e:9f:2d:c6:ae:2e:d5:44: 69:ae:81:91:f0:81:12:8e:6d:41:97:2d:86:66:15: 33:25:44:af:40:9e:a8:75:3a:ec:10:40:07:3c:59: 05:43:00:b9:59:20:0a:08:ec:d8:7d:91:e7:ee:ea: e8:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:A9:08:F5:51:05:7A:49:1C:39:4E:A0:40:AA:07:DA:BC:50:6D:A7 X509v3 Authority Key Identifier: keyid:69:A2:8C:2F:84:C7:5E:8D:03:88:69:43:55:15:2D:D2:B7:31:F2:49 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:31:23:a7:f8:b1:33:d9:76:0d:df:1d:a6:bd:02:05:1b:c5: 21:1e:e9:a9:cc:6d:79:fc:47:af:af:7d:d4:5a:1c:a5:c8:23: eb:b4:f0:b1:f9:b3:b1:8a:ee:d6:a1:01:d0:f6:26:d0:4b:9c: 38:50:82:9d:63:27:0f:bb:01:21:f6:d1:66:df:3e:4f:a7:75: 5b:32:34:a2:54:65:6a:9f:de:da:f1:db:93:a9:55:0b:f9:8d: 73:4e:06:53:8d:41:4d:74:24:ab:16:29:f0:f3:78:d1:8c:a8: 85:4d:e4:5b:4b:67:e3:24:b7:69:81:a2:ae:61:0f:06:87:bf: be:0c:50:c2:6b:28:78:ec:9a:c0:27:d2:d2:dc:50:1a:c3:3a: 1f:e2:14:5d:ca:bd:3e:5f:b9:89:1f:b1:7a:8c:a3:e8:35:a3: 1c:13:89:77:b6:1c:b6:91:90:a8:3f:64:c9:5e:22:87:5a:7b: 62:f0:24:09:06:e0:3d:2e:f7:22:a7:5f:57:61:dd:64:c9:57: 39:90:b1:98:22:ae:9d:05:2e:26:a8:b3:77:c5:4e:86:53:ae: c2:6c:f5:b8:5a:f6:b7:e2:a8:11:2b:bf:ba:a6:42:c4:d8:1c: bc:13:f5:f1:36:c0:a1:39:d2:ce:8a:a5:1e:e5:42:52:12:b9: f5:4c:2f:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2On4pFA37PyAiQvyewdgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5YTI4YzJmODRjNzVlOGQwMzg4Njk0MzU1MTUyZGQyYjcz MWYyNDkwHhcNMjYwMjA5MTAwMTAwWhcNMjYwMjEwMTAwMTAwWjAzMTEwLwYDVQQD EyhkM2E5MDhmNTUxMDU3YTQ5MWMzOTRlYTA0MGFhMDdkYWJjNTA2ZGE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsKzbZW5hurcjPKp6udnjsB+lYJ7Y v78oJBKRqVNLe1JvgxW+xDQb0U5aAKHqvZtOA5DGmDVB2mpgvhKfz8N/Q6K0wYH7 V7x9KxL97Zbb4rSDz9UOn8WMYqFE9nP9vdeWMmKGEhZKfgcHokx6MZ18Zve9QN51 qmyKlqmh05vLMDnxuueNz2bq2OoIVgrPWdrcf2TnBnVVkHkSj/TUpXOmc8VgfmIp 7iWvdiReQ7d8lFTeMdvoWenhMbwUMesQGs4Brw7A217CoeshLp8txq4u1URproGR 8IESjm1Bly2GZhUzJUSvQJ6odTrsEEAHPFkFQwC5WSAKCOzYfZHn7uro3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNOpCPVRBXpJHDlOoECqB9q8UG2nMB8GA1UdIwQY MBaAFGmijC+Ex16NA4hpQ1UVLdK3MfJJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWFLTUw0VEhYbzBEaUdsRFZSVXQwcmN4OGtrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS84OWZmNDctMGI3Yi00MzA5LWE4YWYt MmNiZDU1ZjlhOGVlLzEvYWFLTUw0VEhYbzBEaUdsRFZSVXQwcmN4OGtrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS84OWZmNDctMGI3Yi00MzA5LWE4YWYtMmNiZDU1ZjlhOGVl LzEvYWFLTUw0VEhYbzBEaUdsRFZSVXQwcmN4OGtrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMTEjp/ix M9l2Dd8dpr0CBRvFIR7pqcxtefxHr6991Focpcgj67TwsfmzsYru1qEB0PYm0Euc OFCCnWMnD7sBIfbRZt8+T6d1WzI0olRlap/e2vHbk6lVC/mNc04GU41BTXQkqxYp 8PN40YyohU3kW0tn4yS3aYGirmEPBoe/vgxQwmsoeOyawCfS0txQGsM6H+IUXcq9 Pl+5iR+xeoyj6DWjHBOJd7YctpGQqD9kyV4ih1p7YvAkCQbgPS73IqdfV2HdZMlX OZCxmCKunQUuJqizd8VOhlOuwmz1uFr2t+KoESu/uqZCxNgcvBP18TbAoTnSzoql HuVCUhK59Uwv9w== -----END CERTIFICATE-----Generated at Mon Feb 9 19:48:30 2026 by rpki-client