This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/299522-932c-487a-af3d-eb9300672ae4/1/0AvU1Wgs5gjifL4iGiZ37LUHSX0.mft File: 0AvU1Wgs5gjifL4iGiZ37LUHSX0.mft (raw, json) Hash identifier: KJlI2V96CmoFVainAANzckvQ7dtTEI4j6bjeZerq/1w= Subject key identifier: 6F:9D:B3:9F:B7:BC:0F:82:84:95:3A:39:E8:B6:63:4B:4B:B8:90:86 Authority key identifier: D0:0B:D4:D5:68:2C:E6:08:E2:7C:BE:22:1A:26:77:EC:B5:07:49:7D Certificate issuer: /CN=d00bd4d5682ce608e27cbe221a2677ecb507497d Certificate serial: 019C41D903845FE1C64FE94690BEE3681F4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0AvU1Wgs5gjifL4iGiZ37LUHSX0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/299522-932c-487a-af3d-eb9300672ae4/1/0AvU1Wgs5gjifL4iGiZ37LUHSX0.mft Manifest number: 174B Signing time: Mon 09 Feb 2026 10:01:07 +0000 Manifest this update: Mon 09 Feb 2026 10:01:07 +0000 Manifest next update: Tue 10 Feb 2026 10:01:07 +0000 Files and hashes: 1: 0AvU1Wgs5gjifL4iGiZ37LUHSX0.crl (hash: cLAs4UleD3IOLOvGtWuS696CqBzYTRPTrgZb6z2A/+Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/299522-932c-487a-af3d-eb9300672ae4/1/0AvU1Wgs5gjifL4iGiZ37LUHSX0.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/299522-932c-487a-af3d-eb9300672ae4/1/0AvU1Wgs5gjifL4iGiZ37LUHSX0.mft rsync://rpki.ripe.net/repository/DEFAULT/0AvU1Wgs5gjifL4iGiZ37LUHSX0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d9:03:84:5f:e1:c6:4f:e9:46:90:be:e3:68:1f:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d00bd4d5682ce608e27cbe221a2677ecb507497d Validity Not Before: Feb 9 10:01:07 2026 GMT Not After : Feb 10 10:01:07 2026 GMT Subject: CN=6f9db39fb7bc0f8284953a39e8b6634b4bb89086 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1e:e2:23:18:f4:69:3e:f3:d0:01:b8:82:97: b8:79:ec:2b:cc:88:cd:45:0a:b4:91:bc:a3:cc:28: 1a:bb:8e:b7:31:fd:ea:a5:df:23:8f:45:87:4d:67: 07:5a:1b:6f:20:b1:0b:c0:36:cd:ce:32:ee:fa:3e: 2b:dd:84:94:6d:0b:36:85:d5:52:94:84:5f:d6:8b: 6d:09:b8:91:64:cb:71:c0:19:9b:77:0d:89:34:7c: 3d:40:33:64:f3:6a:cd:db:d3:06:93:de:08:82:e4: 79:64:db:90:ca:4a:d1:66:b6:65:61:ab:1d:f2:1c: c7:29:ef:85:38:a3:ba:5b:44:9f:7d:a4:4d:0a:95: 92:f9:74:2a:4a:31:14:61:47:cb:ae:56:ad:e7:25: bf:7c:7c:40:c9:5d:19:b8:c4:fe:de:e2:8a:f6:ef: bb:8d:c5:da:b2:55:70:14:e7:2c:56:38:a1:ec:55: e2:e3:fc:74:57:37:ae:23:4f:01:09:84:7a:cd:b1: 71:eb:d9:ea:75:ad:f5:2d:30:5f:34:d1:a2:2d:82: 3b:17:7d:14:10:0a:b8:a0:17:d5:3c:66:f5:41:5f: 61:52:1a:01:af:8e:ac:8b:e6:43:46:0d:65:aa:e3: 71:a1:f5:9e:ad:36:db:e1:35:ea:4b:c8:58:ac:c8: 70:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:9D:B3:9F:B7:BC:0F:82:84:95:3A:39:E8:B6:63:4B:4B:B8:90:86 X509v3 Authority Key Identifier: keyid:D0:0B:D4:D5:68:2C:E6:08:E2:7C:BE:22:1A:26:77:EC:B5:07:49:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0AvU1Wgs5gjifL4iGiZ37LUHSX0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/299522-932c-487a-af3d-eb9300672ae4/1/0AvU1Wgs5gjifL4iGiZ37LUHSX0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/299522-932c-487a-af3d-eb9300672ae4/1/0AvU1Wgs5gjifL4iGiZ37LUHSX0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:42:61:1d:4f:93:99:1a:df:e1:50:ab:51:f8:15:51:ab:ad: 18:69:99:e0:cb:ea:83:e3:03:12:e6:cd:e3:34:a3:a7:e0:1a: 04:e8:11:99:8b:79:27:f8:b4:4a:a4:18:46:48:0d:f1:cb:8e: bb:b2:14:43:12:b6:39:10:03:c1:44:9a:ef:87:41:0a:d5:bb: 48:28:31:3d:52:1c:50:39:7d:76:7e:b8:84:71:85:02:45:f9: a3:77:32:03:82:c5:ce:46:45:18:89:ed:f1:47:b9:39:b2:48: bb:72:64:6d:61:35:f0:91:44:ce:ab:8d:ca:57:5d:b9:f8:93: 66:85:f6:db:a8:9c:53:ab:80:4d:99:e1:d3:e2:14:72:92:8e: f8:dd:d4:77:ad:3e:fd:fc:07:3c:9b:e5:25:81:45:67:41:32: 5c:32:4a:6b:6d:31:c0:3f:13:e8:90:78:99:70:7e:d0:68:32: 95:1b:89:ce:f2:b8:61:ae:3e:43:34:51:f6:cb:78:d0:73:15: 29:92:30:86:7a:34:5f:ff:38:68:2c:a9:e6:3e:58:43:ab:7c: e2:24:32:c3:52:68:03:d5:b6:ca:2e:91:ec:da:a7:77:0b:aa: c7:80:af:4f:49:c1:8e:b3:20:e9:ad:1d:cc:0a:be:38:19:da: d5:03:ec:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2QOEX+HGT+lGkL7jaB9OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwMGJkNGQ1NjgyY2U2MDhlMjdjYmUyMjFhMjY3N2VjYjUw NzQ5N2QwHhcNMjYwMjA5MTAwMTA3WhcNMjYwMjEwMTAwMTA3WjAzMTEwLwYDVQQD Eyg2ZjlkYjM5ZmI3YmMwZjgyODQ5NTNhMzllOGI2NjM0YjRiYjg5MDg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqh7iIxj0aT7z0AG4gpe4eewrzIjN RQq0kbyjzCgau463Mf3qpd8jj0WHTWcHWhtvILELwDbNzjLu+j4r3YSUbQs2hdVS lIRf1ottCbiRZMtxwBmbdw2JNHw9QDNk82rN29MGk94IguR5ZNuQykrRZrZlYasd 8hzHKe+FOKO6W0SffaRNCpWS+XQqSjEUYUfLrlat5yW/fHxAyV0ZuMT+3uKK9u+7 jcXaslVwFOcsVjih7FXi4/x0VzeuI08BCYR6zbFx69nqda31LTBfNNGiLYI7F30U EAq4oBfVPGb1QV9hUhoBr46si+ZDRg1lquNxofWerTbb4TXqS8hYrMhwpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG+ds5+3vA+ChJU6Oei2Y0tLuJCGMB8GA1UdIwQY MBaAFNAL1NVoLOYI4ny+Ihomd+y1B0l9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEF2VTFXZ3M1Z2ppZkw0aUdpWjM3TFVIU1gwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi8yOTk1MjItOTMyYy00ODdhLWFmM2Qt ZWI5MzAwNjcyYWU0LzEvMEF2VTFXZ3M1Z2ppZkw0aUdpWjM3TFVIU1gwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi8yOTk1MjItOTMyYy00ODdhLWFmM2QtZWI5MzAwNjcyYWU0 LzEvMEF2VTFXZ3M1Z2ppZkw0aUdpWjM3TFVIU1gwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKkJhHU+T mRrf4VCrUfgVUautGGmZ4Mvqg+MDEubN4zSjp+AaBOgRmYt5J/i0SqQYRkgN8cuO u7IUQxK2ORADwUSa74dBCtW7SCgxPVIcUDl9dn64hHGFAkX5o3cyA4LFzkZFGInt 8Ue5ObJIu3JkbWE18JFEzquNylddufiTZoX226icU6uATZnh0+IUcpKO+N3Ud60+ /fwHPJvlJYFFZ0EyXDJKa20xwD8T6JB4mXB+0GgylRuJzvK4Ya4+QzRR9st40HMV KZIwhno0X/84aCyp5j5YQ6t84iQyw1JoA9W2yi6R7Nqndwuqx4CvT0nBjrMg6a0d zAq+OBna1QPsRw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:20 2026 by rpki-client