This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft File: AAtPqsebsZaQw69aB4xssUqRrUI.mft (raw, json) Hash identifier: 7nCjJh8QdCpLvBZ337yG2emTIr0f3fwdkLtVD5edqj0= Subject key identifier: 72:4A:7B:5A:F2:0A:74:0C:18:95:CA:99:12:4A:27:B1:0B:D4:4F:25 Authority key identifier: 00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42 Certificate issuer: /CN=000b4faac79bb19690c3af5a078c6cb14a91ad42 Certificate serial: 019C42466EDE217BA8CED33FFAD9F785BB81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft Manifest number: 128B Signing time: Mon 09 Feb 2026 12:00:37 +0000 Manifest this update: Mon 09 Feb 2026 12:00:37 +0000 Manifest next update: Tue 10 Feb 2026 12:00:37 +0000 Files and hashes: 1: AAtPqsebsZaQw69aB4xssUqRrUI.crl (hash: INNFS/gsDhuAYjy2FwRuYkbITj3l2rK9SW7kzZMcwQs=) 2: qkYI2TpaHCn0Rl7Zcn2B5GIJgQM.roa (hash: fcQ2Ei/HI72zlpQU19GPaQ5DdqwsBsYj6lbFhVkHW2w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:6e:de:21:7b:a8:ce:d3:3f:fa:d9:f7:85:bb:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=000b4faac79bb19690c3af5a078c6cb14a91ad42 Validity Not Before: Feb 9 12:00:37 2026 GMT Not After : Feb 10 12:00:37 2026 GMT Subject: CN=724a7b5af20a740c1895ca99124a27b10bd44f25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:5d:d4:7f:d3:89:32:ea:6a:bd:9c:58:0a:09: 93:a1:0c:6d:9f:a2:5a:dc:5d:86:d6:cb:53:97:e3: 09:c2:9d:45:98:64:22:74:1b:30:b0:1d:0b:98:6e: 23:72:08:64:79:b5:4a:bf:38:52:65:b1:33:a1:36: 46:37:25:70:5c:95:49:ee:a9:12:99:1a:82:28:4b: 5d:6d:ac:c3:04:9e:0b:63:6a:46:d7:f9:2f:3d:5b: 46:b7:db:24:33:62:2d:9e:04:05:ec:1d:f1:90:54: e3:57:74:f1:bf:07:84:62:48:6f:11:f7:d7:da:e1: c4:e3:d8:8a:ef:b5:0d:64:5f:2f:d2:65:c1:92:87: a3:88:e5:72:53:78:a0:98:4a:df:4e:35:d3:46:91: c8:b7:93:3e:95:ab:6c:3f:49:20:d5:73:3b:79:ca: bd:55:e6:81:f9:27:12:25:de:03:d7:49:71:e7:98: 33:e8:4a:a9:e1:5c:ad:72:e9:0f:ec:d1:46:42:b9: 83:59:c7:f2:d3:85:a5:65:ac:24:1d:e5:e4:69:0a: 8f:2b:d7:4a:ac:8f:9e:de:b1:52:f2:f3:a2:20:96: 9d:bf:77:99:c8:8a:15:4d:ec:32:cb:b0:bf:79:72: ec:75:1d:b6:6b:2f:5d:f6:3d:4f:81:5a:d4:06:e3: 86:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:4A:7B:5A:F2:0A:74:0C:18:95:CA:99:12:4A:27:B1:0B:D4:4F:25 X509v3 Authority Key Identifier: keyid:00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:6f:e3:31:be:7f:14:99:7e:07:20:07:a8:ac:6a:67:fe:b3: 5e:c2:c0:35:b2:4d:88:c8:63:d7:bb:22:22:95:8b:45:96:1a: a9:5f:65:b1:9e:82:51:8e:47:27:aa:a2:61:0b:2a:a2:86:e1: 4e:82:f7:08:5b:90:31:ad:64:dc:f8:08:18:18:46:9b:64:a5: 70:bb:d7:82:c7:e4:97:dd:36:47:59:99:5a:67:a2:85:b3:32: f8:6d:78:d8:23:c3:37:eb:58:fe:1c:44:75:44:61:ca:8f:ac: 3f:9f:14:9d:d7:52:18:c6:3c:f3:99:88:aa:5a:c6:c3:16:fe: 34:e0:7a:bf:89:6a:dc:2e:f9:0f:d1:40:96:a6:3d:6d:ca:15: f2:7a:a3:02:5c:31:e2:14:7c:64:b4:30:45:41:11:bf:1b:69: d5:cb:d4:e3:03:3d:8e:6f:ae:4c:33:cf:6b:35:9e:fd:46:97: 84:4b:5e:24:f2:f8:1d:da:4c:f0:62:26:0b:92:67:69:21:6f: b1:fa:ff:11:28:fe:e8:88:10:7d:6d:d4:19:95:45:a9:53:8c: b9:74:d5:b9:61:1c:3a:d6:1b:57:6b:ab:3f:b1:ee:cd:b0:37: 49:be:6c:5d:c7:0e:ba:07:87:59:5f:be:39:ab:88:cd:44:49: 42:51:68:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRm7eIXuoztM/+tn3hbuBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwMGI0ZmFhYzc5YmIxOTY5MGMzYWY1YTA3OGM2Y2IxNGE5 MWFkNDIwHhcNMjYwMjA5MTIwMDM3WhcNMjYwMjEwMTIwMDM3WjAzMTEwLwYDVQQD Eyg3MjRhN2I1YWYyMGE3NDBjMTg5NWNhOTkxMjRhMjdiMTBiZDQ0ZjI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAll3Uf9OJMupqvZxYCgmToQxtn6Ja 3F2G1stTl+MJwp1FmGQidBswsB0LmG4jcghkebVKvzhSZbEzoTZGNyVwXJVJ7qkS mRqCKEtdbazDBJ4LY2pG1/kvPVtGt9skM2ItngQF7B3xkFTjV3TxvweEYkhvEffX 2uHE49iK77UNZF8v0mXBkoejiOVyU3igmErfTjXTRpHIt5M+latsP0kg1XM7ecq9 VeaB+ScSJd4D10lx55gz6Eqp4VytcukP7NFGQrmDWcfy04WlZawkHeXkaQqPK9dK rI+e3rFS8vOiIJadv3eZyIoVTewyy7C/eXLsdR22ay9d9j1PgVrUBuOGVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHJKe1ryCnQMGJXKmRJKJ7EL1E8lMB8GA1UdIwQY MBaAFAALT6rHm7GWkMOvWgeMbLFKka1CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUF0UHFzZWJzWmFRdzY5YUI0eHNzVXFSclVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS85OTBiYjUtZmU0Mi00OTg1LTljYWYt YTA5NmVlY2RhNzkzLzEvQUF0UHFzZWJzWmFRdzY5YUI0eHNzVXFSclVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS85OTBiYjUtZmU0Mi00OTg1LTljYWYtYTA5NmVlY2RhNzkz LzEvQUF0UHFzZWJzWmFRdzY5YUI0eHNzVXFSclVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhm/jMb5/ FJl+ByAHqKxqZ/6zXsLANbJNiMhj17siIpWLRZYaqV9lsZ6CUY5HJ6qiYQsqoobh ToL3CFuQMa1k3PgIGBhGm2SlcLvXgsfkl902R1mZWmeihbMy+G142CPDN+tY/hxE dURhyo+sP58UnddSGMY885mIqlrGwxb+NOB6v4lq3C75D9FAlqY9bcoV8nqjAlwx 4hR8ZLQwRUERvxtp1cvU4wM9jm+uTDPPazWe/UaXhEteJPL4HdpM8GImC5JnaSFv sfr/ESj+6IgQfW3UGZVFqVOMuXTVuWEcOtYbV2urP7HuzbA3Sb5sXccOugeHWV++ OauIzURJQlFoMg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:41 2026 by rpki-client