This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft File: aKUCPY4CESaZfXkmpHcBYIqs48c.mft (raw, json) Hash identifier: Ha9vb+phRiRhqUOudJ5tiUuZse892EYQqwBnrL/R+l4= Subject key identifier: 3E:94:AD:8C:81:2B:07:28:2F:F7:85:D0:A9:7C:6A:2B:DA:23:76:BC Authority key identifier: 68:A5:02:3D:8E:02:11:26:99:7D:79:26:A4:77:01:60:8A:AC:E3:C7 Certificate issuer: /CN=68a5023d8e021126997d7926a47701608aace3c7 Certificate serial: 019C41A2272D1BCB53025CEBC90F6419839A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft Manifest number: 0980 Signing time: Mon 09 Feb 2026 09:01:11 +0000 Manifest this update: Mon 09 Feb 2026 09:01:11 +0000 Manifest next update: Tue 10 Feb 2026 09:01:11 +0000 Files and hashes: 1: aKUCPY4CESaZfXkmpHcBYIqs48c.crl (hash: ZrpzxfRlDVejrXfnpQ5yZGYOTXHf8IuffL411Sg8zbU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.crl rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:27:2d:1b:cb:53:02:5c:eb:c9:0f:64:19:83:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68a5023d8e021126997d7926a47701608aace3c7 Validity Not Before: Feb 9 09:01:11 2026 GMT Not After : Feb 10 09:01:11 2026 GMT Subject: CN=3e94ad8c812b07282ff785d0a97c6a2bda2376bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:47:04:29:59:4a:b4:84:bd:7b:f8:c0:d4:d6: f1:9c:ae:b1:b3:70:d8:f5:d3:69:1f:90:a5:ff:b2: cf:34:90:20:bf:e2:2f:66:a2:d8:cd:86:03:ca:43: bb:af:f5:fa:c8:9d:67:a9:00:5a:81:c6:f2:e8:a4: bf:8a:61:4a:4d:ae:e0:c6:d6:88:ab:83:4d:07:9e: 05:06:49:8c:ba:bf:10:26:84:9c:24:c8:f6:b3:92: f1:d2:28:fe:2b:35:91:0d:91:b4:fe:ad:63:5b:ae: ab:c0:01:5c:04:2a:45:ad:6b:3e:b5:b3:5e:d3:77: ff:95:2b:a0:a1:cb:99:4f:b1:b5:a5:9b:76:96:88: 3f:6b:a6:72:82:e6:ad:b6:72:d0:b8:86:c2:6a:d6: 3d:65:8a:87:1a:82:a6:c5:13:72:34:20:80:61:29: 74:7d:4c:54:a7:6a:62:0c:39:79:7a:fb:2b:b0:d4: fb:44:e4:9f:da:90:be:cd:03:5e:b9:bc:7f:e0:69: 06:65:40:30:d5:a5:33:86:9d:91:eb:f9:97:e9:f8: 62:c7:2e:fe:bb:d1:24:69:15:58:0e:28:fc:31:00: 18:42:59:8d:b3:61:19:df:92:d6:d1:41:35:9a:c6: b2:91:01:56:72:00:78:a2:e3:b7:c8:6a:3f:46:df: ae:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:94:AD:8C:81:2B:07:28:2F:F7:85:D0:A9:7C:6A:2B:DA:23:76:BC X509v3 Authority Key Identifier: keyid:68:A5:02:3D:8E:02:11:26:99:7D:79:26:A4:77:01:60:8A:AC:E3:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:79:df:ec:18:a2:d3:de:78:ca:61:a1:dd:99:3f:57:7c:a4: fa:42:ce:46:c4:f0:bc:23:3f:1a:5e:23:64:40:ab:8f:8c:aa: 75:5f:b7:5a:b5:02:51:0c:1a:c5:2c:f2:a1:e1:82:4a:d8:d3: d0:92:85:1f:2f:e2:40:f7:94:c0:fe:30:3d:f2:dd:d7:a0:2a: 7f:6d:53:a1:ed:64:07:af:0d:2a:8d:b5:17:2d:af:80:31:e4: 3b:0b:f3:08:59:78:1a:c0:fe:a1:9a:3e:aa:c6:6a:7f:54:b4: ef:94:f9:b0:be:0b:46:d5:ae:29:ce:a7:a5:15:fb:2b:e5:f8: f3:8b:d1:2c:ec:8a:53:ec:6e:7e:1f:5d:84:8c:f6:4b:2d:96: bb:f5:f0:fb:0f:cd:53:dc:84:2a:db:f8:b4:63:22:85:a0:e7: 7c:24:b2:bc:51:6b:da:2e:50:21:ea:d1:e9:23:58:a6:01:4a: 30:a3:1b:d7:e2:3b:d1:7d:fd:12:d9:fb:10:1b:8b:87:9e:7d: d8:6c:23:38:b7:d8:c5:1d:18:bd:2f:9e:52:0c:8f:5d:9a:80: ca:dc:d2:b6:86:e8:cb:fb:c0:e2:1f:a5:88:ff:e1:cc:1d:71: 34:ac:67:6b:89:8d:b0:f2:19:55:e8:80:98:c4:df:61:a8:d5: 93:2b:43:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoictG8tTAlzryQ9kGYOaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4YTUwMjNkOGUwMjExMjY5OTdkNzkyNmE0NzcwMTYwOGFh Y2UzYzcwHhcNMjYwMjA5MDkwMTExWhcNMjYwMjEwMDkwMTExWjAzMTEwLwYDVQQD EygzZTk0YWQ4YzgxMmIwNzI4MmZmNzg1ZDBhOTdjNmEyYmRhMjM3NmJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqUcEKVlKtIS9e/jA1NbxnK6xs3DY 9dNpH5Cl/7LPNJAgv+IvZqLYzYYDykO7r/X6yJ1nqQBagcby6KS/imFKTa7gxtaI q4NNB54FBkmMur8QJoScJMj2s5Lx0ij+KzWRDZG0/q1jW66rwAFcBCpFrWs+tbNe 03f/lSugocuZT7G1pZt2log/a6ZyguattnLQuIbCatY9ZYqHGoKmxRNyNCCAYSl0 fUxUp2piDDl5evsrsNT7ROSf2pC+zQNeubx/4GkGZUAw1aUzhp2R6/mX6fhixy7+ u9EkaRVYDij8MQAYQlmNs2EZ35LW0UE1msaykQFWcgB4ouO3yGo/Rt+uuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD6UrYyBKwcoL/eF0Kl8aivaI3a8MB8GA1UdIwQY MBaAFGilAj2OAhEmmX15JqR3AWCKrOPHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUtVQ1BZNENFU2FaZlhrbXBIY0JZSXFzNDhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC84NjBiZWItMmVkYi00Y2UwLWE1NWUt ODQ4MWU2YzMzZTNjLzEvYUtVQ1BZNENFU2FaZlhrbXBIY0JZSXFzNDhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC84NjBiZWItMmVkYi00Y2UwLWE1NWUtODQ4MWU2YzMzZTNj LzEvYUtVQ1BZNENFU2FaZlhrbXBIY0JZSXFzNDhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW3nf7Bii 0954ymGh3Zk/V3yk+kLORsTwvCM/Gl4jZECrj4yqdV+3WrUCUQwaxSzyoeGCStjT 0JKFHy/iQPeUwP4wPfLd16Aqf21Toe1kB68NKo21Fy2vgDHkOwvzCFl4GsD+oZo+ qsZqf1S075T5sL4LRtWuKc6npRX7K+X484vRLOyKU+xufh9dhIz2Sy2Wu/Xw+w/N U9yEKtv4tGMihaDnfCSyvFFr2i5QIerR6SNYpgFKMKMb1+I70X39Etn7EBuLh559 2GwjOLfYxR0YvS+eUgyPXZqAytzStoboy/vA4h+liP/hzB1xNKxna4mNsPIZVeiA mMTfYajVkytDYQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:41 2026 by rpki-client