This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/3d47de-35ca-4b75-b0b0-b9dcde2f9601/1/AvVGiQSoqn3bXUKeoF6NMYc2RBk.mft File: AvVGiQSoqn3bXUKeoF6NMYc2RBk.mft (raw, json) Hash identifier: 23llZ0lvkio82YB2EEyE5hN4kZeOQPkTOnbNIGx0JmE= Subject key identifier: BC:C2:4A:D7:62:45:09:FA:31:49:28:E0:59:A8:72:52:48:7D:6D:4E Authority key identifier: 02:F5:46:89:04:A8:AA:7D:DB:5D:42:9E:A0:5E:8D:31:87:36:44:19 Certificate issuer: /CN=02f5468904a8aa7ddb5d429ea05e8d3187364419 Certificate serial: 019C4210030FC812875CC39E8C65468C8452 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AvVGiQSoqn3bXUKeoF6NMYc2RBk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/3d47de-35ca-4b75-b0b0-b9dcde2f9601/1/AvVGiQSoqn3bXUKeoF6NMYc2RBk.mft Manifest number: 01AC Signing time: Mon 09 Feb 2026 11:01:11 +0000 Manifest this update: Mon 09 Feb 2026 11:01:11 +0000 Manifest next update: Tue 10 Feb 2026 11:01:11 +0000 Files and hashes: 1: AvVGiQSoqn3bXUKeoF6NMYc2RBk.crl (hash: Fi0u5GKg9A5ML9ukyaQR4KSug1UntRh54ZIZW076bHc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/3d47de-35ca-4b75-b0b0-b9dcde2f9601/1/AvVGiQSoqn3bXUKeoF6NMYc2RBk.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/3d47de-35ca-4b75-b0b0-b9dcde2f9601/1/AvVGiQSoqn3bXUKeoF6NMYc2RBk.mft rsync://rpki.ripe.net/repository/DEFAULT/AvVGiQSoqn3bXUKeoF6NMYc2RBk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:03:0f:c8:12:87:5c:c3:9e:8c:65:46:8c:84:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02f5468904a8aa7ddb5d429ea05e8d3187364419 Validity Not Before: Feb 9 11:01:11 2026 GMT Not After : Feb 10 11:01:11 2026 GMT Subject: CN=bcc24ad7624509fa314928e059a87252487d6d4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:63:8d:38:25:e8:cf:cb:66:36:4e:ba:35:16: 95:eb:25:c8:36:af:1b:9c:04:ca:ce:d8:42:4a:1d: 4d:12:2e:8c:e1:08:3f:04:3e:86:93:bf:23:60:17: b3:9d:ae:b1:5f:83:d3:21:42:39:93:db:74:25:94: 73:b5:51:5a:d4:a1:17:8d:c3:9a:ef:2c:ef:34:aa: 0f:ea:92:ec:0c:1d:cc:73:0e:f6:2a:ca:bb:74:75: ee:87:5e:33:9a:f9:70:c2:01:d4:45:ea:bc:df:8c: 32:43:28:22:fa:58:8c:3b:89:9b:a0:53:3c:66:58: 04:af:5c:27:c9:60:1b:8c:57:ee:93:f1:56:7d:fc: 42:3f:a2:b5:9e:9c:c5:4e:16:7e:f5:a7:38:f1:34: ed:fb:27:4a:d1:28:51:5e:a7:a0:c3:44:7a:41:35: 3b:bb:d3:9d:3d:b6:98:a2:d2:4d:54:69:4f:c2:2e: 8e:74:4f:55:23:55:61:f3:bb:15:d5:bc:10:3c:f5: f2:8b:28:16:38:c3:2e:12:62:8e:d1:bd:97:d9:d9: f2:35:fe:63:43:84:a5:25:0a:b0:1b:b4:9f:3f:31: fc:6b:1b:6f:13:15:53:c2:2e:2c:5d:aa:d1:e3:e2: e2:4c:f6:59:53:09:2b:7d:d8:b5:80:d0:a6:08:8b: cd:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:C2:4A:D7:62:45:09:FA:31:49:28:E0:59:A8:72:52:48:7D:6D:4E X509v3 Authority Key Identifier: keyid:02:F5:46:89:04:A8:AA:7D:DB:5D:42:9E:A0:5E:8D:31:87:36:44:19 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AvVGiQSoqn3bXUKeoF6NMYc2RBk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/3d47de-35ca-4b75-b0b0-b9dcde2f9601/1/AvVGiQSoqn3bXUKeoF6NMYc2RBk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/3d47de-35ca-4b75-b0b0-b9dcde2f9601/1/AvVGiQSoqn3bXUKeoF6NMYc2RBk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:09:f2:16:30:9e:4c:e4:08:26:78:9e:c9:1d:bd:20:93:02: 77:c5:44:54:87:9a:6d:e6:90:e9:03:5c:09:ec:ee:e5:70:27: 7f:49:8f:d8:17:ff:3b:6f:31:3d:52:a2:1b:9d:fc:22:4c:49: 19:e5:17:ce:47:2a:40:44:91:23:2c:9d:d6:57:85:ff:05:93: 4a:01:4d:48:e4:89:1d:0e:7c:13:f7:73:15:87:4b:cc:8c:9f: 0a:c4:62:de:c4:6a:9a:53:8b:b3:a6:24:82:08:5d:d7:f8:34: 11:ad:ea:3f:3d:47:6e:92:03:66:98:2e:e0:a0:84:6b:07:69: 2b:5f:56:2c:b0:a9:d2:c2:c6:66:55:23:09:1d:20:bf:9d:b4: 54:91:f5:1b:3e:d5:2d:46:64:0b:42:16:79:6c:f2:e9:42:81: 20:53:1f:e8:9e:9a:ef:11:cb:2b:d2:40:68:23:21:b4:25:e6: 2e:49:67:00:fc:2a:83:d4:de:cc:4b:4f:67:8f:5f:12:18:e1: 02:41:69:c6:87:de:92:3a:48:b3:59:14:d6:c7:60:7b:25:ba: f7:a1:be:64:e2:58:b9:2b:89:07:9c:ca:78:1e:67:65:ef:1c: 24:16:f6:c5:8f:f3:c3:4f:3e:27:05:a6:31:91:73:ce:f0:5c: e0:05:ba:27 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEAMPyBKHXMOejGVGjIRSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyZjU0Njg5MDRhOGFhN2RkYjVkNDI5ZWEwNWU4ZDMxODcz NjQ0MTkwHhcNMjYwMjA5MTEwMTExWhcNMjYwMjEwMTEwMTExWjAzMTEwLwYDVQQD EyhiY2MyNGFkNzYyNDUwOWZhMzE0OTI4ZTA1OWE4NzI1MjQ4N2Q2ZDRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAymONOCXoz8tmNk66NRaV6yXINq8b nATKzthCSh1NEi6M4Qg/BD6Gk78jYBezna6xX4PTIUI5k9t0JZRztVFa1KEXjcOa 7yzvNKoP6pLsDB3Mcw72Ksq7dHXuh14zmvlwwgHUReq834wyQygi+liMO4mboFM8 ZlgEr1wnyWAbjFfuk/FWffxCP6K1npzFThZ+9ac48TTt+ydK0ShRXqegw0R6QTU7 u9OdPbaYotJNVGlPwi6OdE9VI1Vh87sV1bwQPPXyiygWOMMuEmKO0b2X2dnyNf5j Q4SlJQqwG7SfPzH8axtvExVTwi4sXarR4+LiTPZZUwkrfdi1gNCmCIvNRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLzCStdiRQn6MUko4FmoclJIfW1OMB8GA1UdIwQY MBaAFAL1RokEqKp9211CnqBejTGHNkQZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQXZWR2lRU29xbjNiWFVLZW9GNk5NWWMyUkJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zZDQ3ZGUtMzVjYS00Yjc1LWIwYjAt YjlkY2RlMmY5NjAxLzEvQXZWR2lRU29xbjNiWFVLZW9GNk5NWWMyUkJrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy8zZDQ3ZGUtMzVjYS00Yjc1LWIwYjAtYjlkY2RlMmY5NjAx LzEvQXZWR2lRU29xbjNiWFVLZW9GNk5NWWMyUkJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkAnyFjCe TOQIJnieyR29IJMCd8VEVIeabeaQ6QNcCezu5XAnf0mP2Bf/O28xPVKiG538IkxJ GeUXzkcqQESRIyyd1leF/wWTSgFNSOSJHQ58E/dzFYdLzIyfCsRi3sRqmlOLs6Yk gghd1/g0Ea3qPz1HbpIDZpgu4KCEawdpK19WLLCp0sLGZlUjCR0gv520VJH1Gz7V LUZkC0IWeWzy6UKBIFMf6J6a7xHLK9JAaCMhtCXmLklnAPwqg9TezEtPZ49fEhjh AkFpxofekjpIs1kU1sdgeyW696G+ZOJYuSuJB5zKeB5nZe8cJBb2xY/zw08+JwWm MZFzzvBc4AW6Jw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:54 2026 by rpki-client