This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/8438f5-6c9c-4703-9fe2-015fde45d0ea/1/apc35u85FOD8zAaQI76XGYuRN5E.mft File: apc35u85FOD8zAaQI76XGYuRN5E.mft (raw, json) Hash identifier: 8si3nfoK+L43iHfbmBLPaTWQM2NBJyucUE27buh0KLY= Subject key identifier: F7:3D:9D:4F:15:68:9E:17:B1:7C:48:A7:71:A3:D1:F8:2D:48:C5:8A Authority key identifier: 6A:97:37:E6:EF:39:14:E0:FC:CC:06:90:23:BE:97:19:8B:91:37:91 Certificate issuer: /CN=6a9737e6ef3914e0fccc069023be97198b913791 Certificate serial: 019C45112C4C32FE9AF2D1D11CD2B45BEB7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/apc35u85FOD8zAaQI76XGYuRN5E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/8438f5-6c9c-4703-9fe2-015fde45d0ea/1/apc35u85FOD8zAaQI76XGYuRN5E.mft Manifest number: 180D Signing time: Tue 10 Feb 2026 01:01:19 +0000 Manifest this update: Tue 10 Feb 2026 01:01:19 +0000 Manifest next update: Wed 11 Feb 2026 01:01:19 +0000 Files and hashes: 1: apc35u85FOD8zAaQI76XGYuRN5E.crl (hash: Oh0AVDiMqLTMw0oEqvkSTKpyKCRhXzJG8YKvwltvL2c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/8438f5-6c9c-4703-9fe2-015fde45d0ea/1/apc35u85FOD8zAaQI76XGYuRN5E.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/8438f5-6c9c-4703-9fe2-015fde45d0ea/1/apc35u85FOD8zAaQI76XGYuRN5E.mft rsync://rpki.ripe.net/repository/DEFAULT/apc35u85FOD8zAaQI76XGYuRN5E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:11:2c:4c:32:fe:9a:f2:d1:d1:1c:d2:b4:5b:eb:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6a9737e6ef3914e0fccc069023be97198b913791 Validity Not Before: Feb 10 01:01:19 2026 GMT Not After : Feb 11 01:01:19 2026 GMT Subject: CN=f73d9d4f15689e17b17c48a771a3d1f82d48c58a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:db:2a:52:f0:0a:9d:17:e3:43:62:40:84:81: 30:de:d2:69:3a:b1:02:a1:26:18:e9:80:60:d2:51: 0d:cc:5d:b5:53:bb:db:83:1b:f7:d3:85:98:d4:5d: c2:8e:7e:9e:82:c3:07:f3:e4:12:10:b0:cf:ee:d2: 58:97:14:33:fd:ec:31:ff:ef:c7:52:81:d7:d8:50: 34:a2:c7:83:a7:6a:f5:d1:d4:48:2b:f4:e7:ff:69: 3d:d6:98:4d:ea:48:5b:62:9e:41:ce:f9:f2:65:cc: 16:09:63:9a:f0:07:6a:9c:3d:27:95:d5:df:b2:00: f0:da:81:57:c4:7d:e9:f0:b1:db:2a:f7:eb:90:78: 09:dd:af:b5:29:d2:28:89:19:72:c0:f6:e3:56:5a: 80:98:f1:6a:05:e8:02:57:7e:b2:f2:f9:29:68:9a: d2:fd:89:26:03:42:e9:9d:02:c2:02:09:d4:38:eb: 98:c3:a2:d6:43:48:31:ac:bb:fd:c1:7e:10:28:3f: f2:8f:36:fe:f7:84:2e:17:06:7d:9f:16:0f:47:ea: 7d:90:47:39:7d:2f:7f:4c:c9:fb:52:0c:8d:7e:57: 9f:5a:77:15:1c:3f:76:f7:d0:68:1f:fa:15:26:c3: e9:64:bd:0d:24:1f:f4:7b:60:1d:99:88:c8:d6:6a: 8f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:3D:9D:4F:15:68:9E:17:B1:7C:48:A7:71:A3:D1:F8:2D:48:C5:8A X509v3 Authority Key Identifier: keyid:6A:97:37:E6:EF:39:14:E0:FC:CC:06:90:23:BE:97:19:8B:91:37:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/apc35u85FOD8zAaQI76XGYuRN5E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8438f5-6c9c-4703-9fe2-015fde45d0ea/1/apc35u85FOD8zAaQI76XGYuRN5E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8438f5-6c9c-4703-9fe2-015fde45d0ea/1/apc35u85FOD8zAaQI76XGYuRN5E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:a9:b7:85:09:f8:f4:70:bf:eb:ec:c0:57:51:27:87:d1:58: de:73:fe:9b:b9:9f:df:11:92:08:d3:00:b5:1a:50:d6:a1:c0: 56:4f:6a:6c:b5:06:67:80:f0:91:d9:6d:b9:a2:55:91:28:57: ff:ac:02:2e:e5:82:6b:5c:87:cf:b9:5e:47:08:7d:30:1a:58: 14:fd:7e:4a:bf:c6:ad:88:99:09:97:54:68:80:27:3b:0b:45: 46:03:fa:70:98:42:34:31:23:60:02:7f:b0:fd:73:08:30:6a: d7:58:fa:c5:4b:dc:c0:a2:a3:8d:17:87:49:a0:59:3b:d2:8d: 50:88:6e:5d:68:e7:b9:a3:3b:5a:36:35:80:5c:27:1a:95:af: ce:99:0d:76:60:ee:f0:a5:c3:1e:ac:b2:8c:e7:75:2f:cd:5a: 27:02:f8:14:13:d7:1d:72:78:25:f0:c7:30:a4:bb:c3:ad:77: 28:04:4d:20:a9:38:f3:68:4b:64:b3:26:7b:66:9d:71:40:73: 34:c2:73:b7:0c:63:85:13:84:2d:2f:4c:55:3f:a2:c6:5d:d9: f4:41:0e:c1:7c:3d:5f:a1:e0:93:06:9f:0c:a3:59:18:8a:8d: 9a:6f:2f:5f:3d:b7:34:f1:c5:0b:5d:5f:69:4b:92:02:6c:70: 3b:f4:91:12 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFESxMMv6a8tHRHNK0W+t+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhOTczN2U2ZWYzOTE0ZTBmY2NjMDY5MDIzYmU5NzE5OGI5 MTM3OTEwHhcNMjYwMjEwMDEwMTE5WhcNMjYwMjExMDEwMTE5WjAzMTEwLwYDVQQD EyhmNzNkOWQ0ZjE1Njg5ZTE3YjE3YzQ4YTc3MWEzZDFmODJkNDhjNThhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArtsqUvAKnRfjQ2JAhIEw3tJpOrEC oSYY6YBg0lENzF21U7vbgxv304WY1F3Cjn6egsMH8+QSELDP7tJYlxQz/ewx/+/H UoHX2FA0oseDp2r10dRIK/Tn/2k91phN6khbYp5BzvnyZcwWCWOa8AdqnD0nldXf sgDw2oFXxH3p8LHbKvfrkHgJ3a+1KdIoiRlywPbjVlqAmPFqBegCV36y8vkpaJrS /YkmA0LpnQLCAgnUOOuYw6LWQ0gxrLv9wX4QKD/yjzb+94QuFwZ9nxYPR+p9kEc5 fS9/TMn7UgyNflefWncVHD9299BoH/oVJsPpZL0NJB/0e2AdmYjI1mqPzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPc9nU8VaJ4XsXxIp3Gj0fgtSMWKMB8GA1UdIwQY MBaAFGqXN+bvORTg/MwGkCO+lxmLkTeRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYXBjMzV1ODVGT0Q4ekFhUUk3NlhHWXVSTjVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC84NDM4ZjUtNmM5Yy00NzAzLTlmZTIt MDE1ZmRlNDVkMGVhLzEvYXBjMzV1ODVGT0Q4ekFhUUk3NlhHWXVSTjVFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC84NDM4ZjUtNmM5Yy00NzAzLTlmZTItMDE1ZmRlNDVkMGVh LzEvYXBjMzV1ODVGT0Q4ekFhUUk3NlhHWXVSTjVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ6m3hQn4 9HC/6+zAV1Enh9FY3nP+m7mf3xGSCNMAtRpQ1qHAVk9qbLUGZ4DwkdltuaJVkShX /6wCLuWCa1yHz7leRwh9MBpYFP1+Sr/GrYiZCZdUaIAnOwtFRgP6cJhCNDEjYAJ/ sP1zCDBq11j6xUvcwKKjjReHSaBZO9KNUIhuXWjnuaM7WjY1gFwnGpWvzpkNdmDu 8KXDHqyyjOd1L81aJwL4FBPXHXJ4JfDHMKS7w613KARNIKk482hLZLMme2adcUBz NMJztwxjhROELS9MVT+ixl3Z9EEOwXw9X6HgkwafDKNZGIqNmm8vXz23NPHFC11f aUuSAmxwO/SREg== -----END CERTIFICATE-----Generated at Tue Feb 10 03:15:41 2026 by rpki-client