This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft File: 9a2pAdQIv39blDWSHkgAqPgtvas.mft (raw, json) Hash identifier: SwG2eqzh1CIffZz6M03b0f+/kOdFO5eQZfAx3s9mk7w= Subject key identifier: 39:11:F4:6C:BD:9B:C9:B2:A6:05:DB:91:E1:BD:9E:E1:F5:F2:D6:2A Authority key identifier: F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB Certificate issuer: /CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab Certificate serial: 019C427DDCF229C50B6D7B3B8AFA206A91A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 13:01:10 +0000 Manifest this update: Mon 09 Feb 2026 13:01:10 +0000 Manifest next update: Tue 10 Feb 2026 13:01:10 +0000 Files and hashes: 1: 9a2pAdQIv39blDWSHkgAqPgtvas.crl (hash: JmIgv2tzRauCgI4XKmYBmGfDiMKqJeV1GdUEPfHQ/0o=) 2: J6H8JSFuxVzFOSwqeVn8vTsfdVE.roa (hash: vYs9Iafl6ODvzqSPTNj74leQVCe3/0UGQl7TxkQZF/8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:dc:f2:29:c5:0b:6d:7b:3b:8a:fa:20:6a:91:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab Validity Not Before: Feb 9 13:01:10 2026 GMT Not After : Feb 10 13:01:10 2026 GMT Subject: CN=3911f46cbd9bc9b2a605db91e1bd9ee1f5f2d62a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6e:62:97:a3:d7:25:d2:c7:8c:a2:a9:c6:33: 79:5b:bc:62:a6:77:e6:d8:bc:e8:e1:58:15:0e:14: 9d:a4:68:91:1b:ae:23:ea:4a:65:6f:e7:50:90:a8: eb:c1:54:c1:93:c3:db:90:35:55:b5:3e:b4:3f:b8: e5:fb:a3:57:b7:ee:63:21:86:5d:19:36:31:8b:01: 9d:79:08:70:0e:cf:8e:ca:36:57:76:b6:19:13:e8: 9c:61:55:83:db:4b:93:63:e0:5c:63:f0:ce:9a:19: af:a9:04:09:7c:0e:b9:9f:00:47:d5:68:90:b4:79: 3b:2e:da:fc:8e:5c:3d:81:55:fb:7a:8c:91:67:a6: 15:b8:d0:40:ed:e6:08:96:90:6a:43:59:8f:de:77: 2b:f3:fe:35:15:95:4d:af:a8:67:ea:90:2a:48:67: ff:5c:71:1a:57:c1:45:d1:96:7a:3e:4c:d8:a5:60: 7b:52:59:ad:03:93:51:1a:c4:9d:ba:78:9d:f2:85: 51:9d:bd:2b:55:7a:01:71:de:2e:b1:4c:73:2d:07: a3:a1:6b:f3:21:20:24:15:0e:5b:08:09:d2:05:c4: a3:3c:1e:6d:b5:e7:57:6b:60:38:ac:f8:5a:cd:40: 2d:78:52:3a:91:3c:f6:8e:de:84:4f:29:80:e9:96: 9b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:11:F4:6C:BD:9B:C9:B2:A6:05:DB:91:E1:BD:9E:E1:F5:F2:D6:2A X509v3 Authority Key Identifier: keyid:F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:60:fb:6a:3f:a6:e2:7b:0c:90:b6:8b:60:4e:03:b7:d0:bf: c5:1f:57:95:86:5e:f6:87:c3:66:77:86:cf:55:03:62:ce:53: 82:31:f8:86:55:13:24:41:50:4f:43:50:6c:91:f6:67:ef:8d: d2:28:3c:14:79:f5:a7:71:ce:05:9f:9b:3c:51:a6:40:9a:79: db:89:28:24:b1:9a:60:79:69:c9:14:f2:a2:30:9c:2b:cd:2d: 62:70:e8:51:21:1e:21:b9:0d:0e:2c:69:91:9b:88:a9:e5:8f: e6:fa:9d:61:3e:38:25:f6:a8:d3:50:5c:95:bd:cb:d3:40:02: 9a:ef:11:55:ec:cc:65:05:e6:e7:8e:da:82:53:b6:bf:d4:48: 18:09:ad:bf:00:c2:38:8c:21:21:13:77:40:18:8b:7c:9e:11: 56:3c:12:01:eb:0d:fb:14:81:02:85:63:6b:93:2d:e3:fb:1c: da:ea:71:de:5e:3f:18:96:3c:2d:6f:06:a2:8a:d6:5b:8a:bf: 6c:a8:42:6c:5c:72:bc:b2:14:de:5e:8d:b1:31:26:a9:14:e2: 55:dd:e3:d3:7b:6a:e3:64:bf:3d:0a:be:1a:c7:b2:a7:5a:fa: bf:65:90:0b:2c:0f:33:89:75:22:5f:62:23:3a:58:be:7a:b3: 1e:52:2d:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfdzyKcULbXs7ivogapGmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY1YWRhOTAxZDQwOGJmN2Y1Yjk0MzU5MjFlNDgwMGE4Zjgy ZGJkYWIwHhcNMjYwMjA5MTMwMTEwWhcNMjYwMjEwMTMwMTEwWjAzMTEwLwYDVQQD EygzOTExZjQ2Y2JkOWJjOWIyYTYwNWRiOTFlMWJkOWVlMWY1ZjJkNjJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq25il6PXJdLHjKKpxjN5W7xipnfm 2Lzo4VgVDhSdpGiRG64j6kplb+dQkKjrwVTBk8PbkDVVtT60P7jl+6NXt+5jIYZd GTYxiwGdeQhwDs+OyjZXdrYZE+icYVWD20uTY+BcY/DOmhmvqQQJfA65nwBH1WiQ tHk7Ltr8jlw9gVX7eoyRZ6YVuNBA7eYIlpBqQ1mP3ncr8/41FZVNr6hn6pAqSGf/ XHEaV8FF0ZZ6PkzYpWB7UlmtA5NRGsSdunid8oVRnb0rVXoBcd4usUxzLQejoWvz ISAkFQ5bCAnSBcSjPB5ttedXa2A4rPhazUAteFI6kTz2jt6ETymA6ZabqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDkR9Gy9m8mypgXbkeG9nuH18tYqMB8GA1UdIwQY MBaAFPWtqQHUCL9/W5Q1kh5IAKj4Lb2rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOWEycEFkUUl2MzlibERXU0hrZ0FxUGd0dmFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS9hZmE2ZDYtNTBmOS00MWQ0LWI3Y2Yt YTMzNjQ5ZTNlMmM1LzEvOWEycEFkUUl2MzlibERXU0hrZ0FxUGd0dmFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZS9hZmE2ZDYtNTBmOS00MWQ0LWI3Y2YtYTMzNjQ5ZTNlMmM1 LzEvOWEycEFkUUl2MzlibERXU0hrZ0FxUGd0dmFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZmD7aj+m 4nsMkLaLYE4Dt9C/xR9XlYZe9ofDZneGz1UDYs5TgjH4hlUTJEFQT0NQbJH2Z++N 0ig8FHn1p3HOBZ+bPFGmQJp524koJLGaYHlpyRTyojCcK80tYnDoUSEeIbkNDixp kZuIqeWP5vqdYT44Jfao01Bclb3L00ACmu8RVezMZQXm547aglO2v9RIGAmtvwDC OIwhIRN3QBiLfJ4RVjwSAesN+xSBAoVja5Mt4/sc2upx3l4/GJY8LW8GoorWW4q/ bKhCbFxyvLIU3l6NsTEmqRTiVd3j03tq42S/PQq+Gseyp1r6v2WQCywPM4l1Il9i IzpYvnqzHlItCw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:41 2026 by rpki-client