This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/0ad468-daea-4b04-a408-27e96b9047a8/1/aU0ylbrOkvvFQHllxly2WWm60Cg.mft File: aU0ylbrOkvvFQHllxly2WWm60Cg.mft (raw, json) Hash identifier: aESQdFbrqsnyfTCXpR671rMpbeXh9Cl5jJZ1g9ZytVc= Subject key identifier: 0B:A1:FE:18:46:42:B1:66:5B:01:A8:89:23:11:C7:28:4C:9B:7F:CE Authority key identifier: 69:4D:32:95:BA:CE:92:FB:C5:40:79:65:C6:5C:B6:59:69:BA:D0:28 Certificate issuer: /CN=694d3295bace92fbc5407965c65cb65969bad028 Certificate serial: 019C4358ECD66F8B90E425C42EBAA551123F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aU0ylbrOkvvFQHllxly2WWm60Cg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/0ad468-daea-4b04-a408-27e96b9047a8/1/aU0ylbrOkvvFQHllxly2WWm60Cg.mft Manifest number: 030E Signing time: Mon 09 Feb 2026 17:00:27 +0000 Manifest this update: Mon 09 Feb 2026 17:00:27 +0000 Manifest next update: Tue 10 Feb 2026 17:00:27 +0000 Files and hashes: 1: aU0ylbrOkvvFQHllxly2WWm60Cg.crl (hash: 8j+GGzobNSKVxYZcTB4+FtJZi91zMIUr4kxesQTZ0LM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/0ad468-daea-4b04-a408-27e96b9047a8/1/aU0ylbrOkvvFQHllxly2WWm60Cg.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/0ad468-daea-4b04-a408-27e96b9047a8/1/aU0ylbrOkvvFQHllxly2WWm60Cg.mft rsync://rpki.ripe.net/repository/DEFAULT/aU0ylbrOkvvFQHllxly2WWm60Cg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:ec:d6:6f:8b:90:e4:25:c4:2e:ba:a5:51:12:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=694d3295bace92fbc5407965c65cb65969bad028 Validity Not Before: Feb 9 17:00:27 2026 GMT Not After : Feb 10 17:00:27 2026 GMT Subject: CN=0ba1fe184642b1665b01a8892311c7284c9b7fce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:75:95:85:ef:8d:30:02:b8:a4:07:9e:af:9e: 73:41:2c:de:01:21:28:4a:9d:94:8b:55:95:51:75: 6b:30:71:f6:8f:8c:04:7d:83:c4:cc:a0:65:18:cd: 8b:c3:a2:2f:bd:1e:eb:a3:f3:07:d2:54:09:f3:d4: 82:6a:40:75:2b:78:d5:92:64:29:0f:b6:b7:79:7e: 76:3c:52:9a:ff:e7:66:b7:8b:12:b5:22:1b:90:e2: 9b:57:20:69:1d:93:be:dc:37:a8:7f:13:49:0a:fd: fd:d2:b7:fe:28:65:47:6f:57:25:51:52:60:d8:92: 78:32:cf:18:48:a2:f6:ee:75:ab:a9:4d:d9:32:50: 78:2a:1f:8e:78:36:a4:b3:cc:f0:4e:a1:1d:23:32: 51:40:53:ba:1b:17:39:8e:88:bb:18:55:b0:62:7d: 70:57:75:6b:49:5b:d0:e8:47:a2:5c:e6:fc:6f:46: 85:6e:bd:96:d4:35:56:af:5a:b3:80:d5:26:0b:77: 67:d6:22:c0:54:e6:2e:7f:cb:01:a3:94:43:bb:53: da:dd:13:51:41:39:09:99:44:4e:bf:cc:e6:bf:70: e8:91:8c:03:58:03:cb:48:dd:0a:b7:12:3a:5f:23: a5:7a:ec:c8:96:4c:08:7b:9b:86:94:d2:18:dc:39: 70:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:A1:FE:18:46:42:B1:66:5B:01:A8:89:23:11:C7:28:4C:9B:7F:CE X509v3 Authority Key Identifier: keyid:69:4D:32:95:BA:CE:92:FB:C5:40:79:65:C6:5C:B6:59:69:BA:D0:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aU0ylbrOkvvFQHllxly2WWm60Cg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/0ad468-daea-4b04-a408-27e96b9047a8/1/aU0ylbrOkvvFQHllxly2WWm60Cg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/0ad468-daea-4b04-a408-27e96b9047a8/1/aU0ylbrOkvvFQHllxly2WWm60Cg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:c8:96:72:ac:8a:3b:0d:33:81:e9:40:3d:9c:f8:68:94:7f: 3b:00:cb:16:c7:46:31:3d:35:57:5c:28:32:d4:ac:03:a3:82: 6b:c8:b0:ab:84:54:e5:3e:5c:5a:9c:f5:da:13:97:b5:09:aa: 7f:65:bb:07:70:8d:54:88:23:98:f2:08:58:15:82:ed:19:20: 12:20:bc:36:a7:72:f0:5a:a4:a4:8d:4c:62:21:ce:12:fe:75: fc:bb:09:66:18:b0:f0:3c:47:af:15:cf:fa:e1:ec:15:3d:32: 57:cd:64:fa:13:7b:c7:72:c8:b1:78:75:b7:34:fa:a0:55:42: 4a:e8:db:07:3a:9e:3d:d8:63:e5:27:45:82:73:6f:68:ed:c4: df:0e:b0:83:19:4e:38:5b:d2:b2:33:2e:c5:70:3d:4e:b5:aa: b9:b6:f8:41:b1:ef:34:8b:b6:2d:55:bb:3f:eb:81:1d:a5:f6: 35:5d:85:c7:d4:58:80:02:fa:b7:8f:f9:8d:ac:37:b1:1e:50: 3c:44:ff:0c:2d:c5:69:7b:bf:28:c2:0a:72:38:c0:04:d8:5a: 54:cd:01:b9:97:d9:cf:a9:f2:a2:10:6e:ef:68:a6:c4:1c:bd: eb:ac:94:08:9b:a7:2c:f2:88:f9:17:84:76:00:c3:1c:44:d6: a5:46:6c:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWOzWb4uQ5CXELrqlURI/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5NGQzMjk1YmFjZTkyZmJjNTQwNzk2NWM2NWNiNjU5Njli YWQwMjgwHhcNMjYwMjA5MTcwMDI3WhcNMjYwMjEwMTcwMDI3WjAzMTEwLwYDVQQD EygwYmExZmUxODQ2NDJiMTY2NWIwMWE4ODkyMzExYzcyODRjOWI3ZmNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmHWVhe+NMAK4pAeer55zQSzeASEo Sp2Ui1WVUXVrMHH2j4wEfYPEzKBlGM2Lw6IvvR7ro/MH0lQJ89SCakB1K3jVkmQp D7a3eX52PFKa/+dmt4sStSIbkOKbVyBpHZO+3DeofxNJCv390rf+KGVHb1clUVJg 2JJ4Ms8YSKL27nWrqU3ZMlB4Kh+OeDaks8zwTqEdIzJRQFO6Gxc5joi7GFWwYn1w V3VrSVvQ6EeiXOb8b0aFbr2W1DVWr1qzgNUmC3dn1iLAVOYuf8sBo5RDu1Pa3RNR QTkJmUROv8zmv3DokYwDWAPLSN0KtxI6XyOleuzIlkwIe5uGlNIY3DlwAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAuh/hhGQrFmWwGoiSMRxyhMm3/OMB8GA1UdIwQY MBaAFGlNMpW6zpL7xUB5ZcZctllputAoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVUweWxick9rdnZGUUhsbHhseTJXV202MENnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8wYWQ0NjgtZGFlYS00YjA0LWE0MDgt MjdlOTZiOTA0N2E4LzEvYVUweWxick9rdnZGUUhsbHhseTJXV202MENnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC8wYWQ0NjgtZGFlYS00YjA0LWE0MDgtMjdlOTZiOTA0N2E4 LzEvYVUweWxick9rdnZGUUhsbHhseTJXV202MENnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYsiWcqyK Ow0zgelAPZz4aJR/OwDLFsdGMT01V1woMtSsA6OCa8iwq4RU5T5cWpz12hOXtQmq f2W7B3CNVIgjmPIIWBWC7RkgEiC8Nqdy8FqkpI1MYiHOEv51/LsJZhiw8DxHrxXP +uHsFT0yV81k+hN7x3LIsXh1tzT6oFVCSujbBzqePdhj5SdFgnNvaO3E3w6wgxlO OFvSsjMuxXA9TrWqubb4QbHvNIu2LVW7P+uBHaX2NV2Fx9RYgAL6t4/5jaw3sR5Q PET/DC3FaXu/KMIKcjjABNhaVM0BuZfZz6nyohBu72imxBy966yUCJunLPKI+ReE dgDDHETWpUZsWg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:56 2026 by rpki-client