This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8d64d1-4940-40e7-895c-5312a133b94e/1/MAhC2wg32vMRozS3IjGOcLWIsAk.mft File: MAhC2wg32vMRozS3IjGOcLWIsAk.mft (raw, json) Hash identifier: 2M6bSLVOwACsQgzNL83aI8rEKqwzEDG/sAarcSuAwAc= Subject key identifier: 44:65:38:10:D3:1D:D9:50:01:B2:FE:7B:F0:3F:C6:84:64:23:6F:F0 Authority key identifier: 30:08:42:DB:08:37:DA:F3:11:A3:34:B7:22:31:8E:70:B5:88:B0:09 Certificate issuer: /CN=300842db0837daf311a334b722318e70b588b009 Certificate serial: 019C43224CC5773F1938A943E07EABC924A0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MAhC2wg32vMRozS3IjGOcLWIsAk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8d64d1-4940-40e7-895c-5312a133b94e/1/MAhC2wg32vMRozS3IjGOcLWIsAk.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 16:00:47 +0000 Manifest this update: Mon 09 Feb 2026 16:00:47 +0000 Manifest next update: Tue 10 Feb 2026 16:00:47 +0000 Files and hashes: 1: MAhC2wg32vMRozS3IjGOcLWIsAk.crl (hash: Fhj2vy1NZO0WfHeL+dOqwAH4LA9CHO5l8K75eSFTjQM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/8d64d1-4940-40e7-895c-5312a133b94e/1/MAhC2wg32vMRozS3IjGOcLWIsAk.crl rsync://rpki.ripe.net/repository/DEFAULT/51/8d64d1-4940-40e7-895c-5312a133b94e/1/MAhC2wg32vMRozS3IjGOcLWIsAk.mft rsync://rpki.ripe.net/repository/DEFAULT/MAhC2wg32vMRozS3IjGOcLWIsAk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:4c:c5:77:3f:19:38:a9:43:e0:7e:ab:c9:24:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=300842db0837daf311a334b722318e70b588b009 Validity Not Before: Feb 9 16:00:47 2026 GMT Not After : Feb 10 16:00:47 2026 GMT Subject: CN=44653810d31dd95001b2fe7bf03fc68464236ff0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:59:13:25:cc:fc:5b:c3:b9:d3:27:c7:c8:dd: 18:12:d3:59:4f:b5:a6:a6:3b:ed:ae:c5:71:64:27: 01:ae:7e:a0:4e:b7:9b:de:b3:56:0d:c2:62:44:a0: c7:9f:b0:52:d9:25:49:d7:b7:45:f1:ac:12:39:9c: 13:57:8d:f1:31:23:4f:fc:1e:2e:96:60:0f:78:1a: 6f:15:77:3e:bf:fa:c3:9b:3c:ee:97:91:b5:3a:b8: 8a:7a:de:83:6b:0e:9a:aa:8a:4e:3d:e2:a3:4d:b0: be:5f:64:72:5c:23:ed:7e:ca:c0:bf:c1:3d:25:60: c0:fa:be:6d:60:4f:c7:7f:cc:f2:e6:f4:5e:5b:33: 0a:87:f3:9c:7d:fe:13:7e:c3:f4:9d:19:0c:c5:33: c1:88:ca:3b:0d:c3:2b:ba:37:2d:cf:b9:4b:56:c2: 01:74:88:0d:6d:76:05:38:b1:ea:23:f3:74:8d:cd: e6:fc:0f:ff:ab:47:c5:c4:20:a3:6c:d6:b0:e6:43: bb:49:7d:d3:1b:c0:16:9f:39:68:aa:b7:d5:5d:99: d3:f4:5e:54:83:00:63:44:e9:77:b0:10:43:04:0f: 8d:6c:8c:3a:13:f4:5f:b3:b0:c4:62:d1:bb:93:07: b9:ed:42:fb:b6:68:ae:9c:57:3c:93:e3:93:60:56: 74:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:65:38:10:D3:1D:D9:50:01:B2:FE:7B:F0:3F:C6:84:64:23:6F:F0 X509v3 Authority Key Identifier: keyid:30:08:42:DB:08:37:DA:F3:11:A3:34:B7:22:31:8E:70:B5:88:B0:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MAhC2wg32vMRozS3IjGOcLWIsAk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8d64d1-4940-40e7-895c-5312a133b94e/1/MAhC2wg32vMRozS3IjGOcLWIsAk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8d64d1-4940-40e7-895c-5312a133b94e/1/MAhC2wg32vMRozS3IjGOcLWIsAk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:8c:cc:6f:10:34:ea:d8:46:9e:64:3b:e5:c4:4f:f3:99:20: b3:45:89:78:a8:d4:05:7a:85:a3:f2:3c:14:4b:6f:51:dc:bf: 3f:f6:26:8e:ae:60:a7:82:e1:01:1d:c6:05:eb:54:c1:fc:8e: f4:da:39:47:44:5e:46:25:30:79:57:3d:27:8f:ca:c8:64:8b: 13:14:83:8b:1f:78:d6:8a:d7:cb:63:96:85:e8:87:c1:9c:4f: 4a:14:e6:9e:55:89:ed:ca:17:45:ac:e5:53:25:e3:33:ed:d3: ff:1f:a2:dc:4e:a8:ac:29:0a:c3:45:ae:be:59:1c:9b:7f:75: bf:ed:03:a8:6c:26:a6:3e:f0:f1:6e:7d:7d:0b:c1:cc:19:4f: 30:9b:5e:52:a3:9b:f3:bf:54:8a:8e:39:79:c3:9e:72:0e:3f: 2d:8f:95:37:34:4c:32:1d:55:89:6f:bd:9b:fb:fc:11:f8:4f: 5b:33:9e:59:de:9a:3e:df:82:21:d8:35:47:20:3e:de:93:c8: 82:e0:7e:38:fa:e8:b8:b5:ad:b5:cd:86:ac:f1:e5:e8:50:ef: f5:d6:c0:28:c5:22:6f:c7:1c:6d:d8:c8:7e:51:ab:28:07:e4: 87:ef:d7:5b:89:da:58:e3:9a:45:e5:42:ec:99:67:f7:60:cc: 55:1c:10:1a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIkzFdz8ZOKlD4H6rySSgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwMDg0MmRiMDgzN2RhZjMxMWEzMzRiNzIyMzE4ZTcwYjU4 OGIwMDkwHhcNMjYwMjA5MTYwMDQ3WhcNMjYwMjEwMTYwMDQ3WjAzMTEwLwYDVQQD Eyg0NDY1MzgxMGQzMWRkOTUwMDFiMmZlN2JmMDNmYzY4NDY0MjM2ZmYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2FkTJcz8W8O50yfHyN0YEtNZT7Wm pjvtrsVxZCcBrn6gTreb3rNWDcJiRKDHn7BS2SVJ17dF8awSOZwTV43xMSNP/B4u lmAPeBpvFXc+v/rDmzzul5G1OriKet6Daw6aqopOPeKjTbC+X2RyXCPtfsrAv8E9 JWDA+r5tYE/Hf8zy5vReWzMKh/Ocff4TfsP0nRkMxTPBiMo7DcMrujctz7lLVsIB dIgNbXYFOLHqI/N0jc3m/A//q0fFxCCjbNaw5kO7SX3TG8AWnzloqrfVXZnT9F5U gwBjROl3sBBDBA+NbIw6E/Rfs7DEYtG7kwe57UL7tmiunFc8k+OTYFZ0ZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFERlOBDTHdlQAbL+e/A/xoRkI2/wMB8GA1UdIwQY MBaAFDAIQtsIN9rzEaM0tyIxjnC1iLAJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUFoQzJ3ZzMydk1Sb3pTM0lqR09jTFdJc0FrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS84ZDY0ZDEtNDk0MC00MGU3LTg5NWMt NTMxMmExMzNiOTRlLzEvTUFoQzJ3ZzMydk1Sb3pTM0lqR09jTFdJc0FrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS84ZDY0ZDEtNDk0MC00MGU3LTg5NWMtNTMxMmExMzNiOTRl LzEvTUFoQzJ3ZzMydk1Sb3pTM0lqR09jTFdJc0FrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaIzMbxA0 6thGnmQ75cRP85kgs0WJeKjUBXqFo/I8FEtvUdy/P/Ymjq5gp4LhAR3GBetUwfyO 9No5R0ReRiUweVc9J4/KyGSLExSDix941orXy2OWheiHwZxPShTmnlWJ7coXRazl UyXjM+3T/x+i3E6orCkKw0Wuvlkcm391v+0DqGwmpj7w8W59fQvBzBlPMJteUqOb 879Uio45ecOecg4/LY+VNzRMMh1ViW+9m/v8EfhPWzOeWd6aPt+CIdg1RyA+3pPI guB+OProuLWttc2GrPHl6FDv9dbAKMUib8ccbdjIflGrKAfkh+/XW4naWOOaReVC 7Jln92DMVRwQGg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:28 2026 by rpki-client