This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/3ec692-a3e4-4379-a1c7-a7e3c6a892ec/1/aWZ-UauBVWetZ8u10biJY4Nfqfc.mft File: aWZ-UauBVWetZ8u10biJY4Nfqfc.mft (raw, json) Hash identifier: +yEozLRH4Vts3PMr1n9kWE2YfvXsBdW5UAJwTIcxOck= Subject key identifier: 58:95:BD:B2:3B:63:7E:31:BD:70:94:7B:0D:11:1D:C7:9B:43:C7:CB Authority key identifier: 69:66:7E:51:AB:81:55:67:AD:67:CB:B5:D1:B8:89:63:83:5F:A9:F7 Certificate issuer: /CN=69667e51ab815567ad67cbb5d1b88963835fa9f7 Certificate serial: 019C4321EE7C69A68BED9465BBF9CDD7B94B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aWZ-UauBVWetZ8u10biJY4Nfqfc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/3ec692-a3e4-4379-a1c7-a7e3c6a892ec/1/aWZ-UauBVWetZ8u10biJY4Nfqfc.mft Manifest number: 0F70 Signing time: Mon 09 Feb 2026 16:00:22 +0000 Manifest this update: Mon 09 Feb 2026 16:00:22 +0000 Manifest next update: Tue 10 Feb 2026 16:00:22 +0000 Files and hashes: 1: aWZ-UauBVWetZ8u10biJY4Nfqfc.crl (hash: Sz8laiQwcUfnO/TtYbEhZUVtNQ2B/Bq3BOxL0dzwgS0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/3ec692-a3e4-4379-a1c7-a7e3c6a892ec/1/aWZ-UauBVWetZ8u10biJY4Nfqfc.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/3ec692-a3e4-4379-a1c7-a7e3c6a892ec/1/aWZ-UauBVWetZ8u10biJY4Nfqfc.mft rsync://rpki.ripe.net/repository/DEFAULT/aWZ-UauBVWetZ8u10biJY4Nfqfc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:ee:7c:69:a6:8b:ed:94:65:bb:f9:cd:d7:b9:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69667e51ab815567ad67cbb5d1b88963835fa9f7 Validity Not Before: Feb 9 16:00:22 2026 GMT Not After : Feb 10 16:00:22 2026 GMT Subject: CN=5895bdb23b637e31bd70947b0d111dc79b43c7cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:78:7c:b3:ae:6f:62:e7:8b:57:60:ff:3a:6c: 2f:6d:35:19:1b:26:93:a8:49:b3:81:1b:e8:41:f8: 0e:94:92:19:bd:ec:0d:17:6f:d0:19:bf:4f:6f:ab: 4b:92:0e:9e:69:b3:0e:54:41:19:02:e9:f3:f6:52: 76:51:6a:8e:5b:e6:a1:f5:73:d4:ca:47:bf:41:66: 7b:bd:4e:07:23:b9:88:49:e5:3e:81:0f:75:6d:20: b4:fc:c4:dc:1e:66:2b:16:f9:83:38:9c:c0:fd:51: fc:eb:58:3f:12:19:fb:d0:1b:31:a4:e8:2e:de:90: 55:66:ab:93:05:a0:f7:de:35:ae:4c:22:79:4c:f5: a4:75:54:14:d6:54:83:64:da:58:81:f7:0a:8a:1a: c2:05:c1:c3:94:13:a2:ef:cb:25:3e:fc:7c:0c:3b: 2c:5e:ab:8e:c1:52:fc:d7:f0:69:6c:bf:73:8d:83: 07:8c:84:d3:d2:f7:df:f0:ab:ba:65:07:41:b9:96: 60:7f:55:e2:c4:9c:97:40:2f:df:eb:d2:39:ec:11: 33:0c:f5:5a:e3:7c:a4:ee:68:64:c2:49:58:d2:2e: a5:6e:cc:ed:36:02:a6:40:6a:61:89:b1:a4:31:10: 91:e3:6c:1b:91:4d:63:f4:ad:28:cc:cd:d5:ea:d9: f1:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:95:BD:B2:3B:63:7E:31:BD:70:94:7B:0D:11:1D:C7:9B:43:C7:CB X509v3 Authority Key Identifier: keyid:69:66:7E:51:AB:81:55:67:AD:67:CB:B5:D1:B8:89:63:83:5F:A9:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aWZ-UauBVWetZ8u10biJY4Nfqfc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/3ec692-a3e4-4379-a1c7-a7e3c6a892ec/1/aWZ-UauBVWetZ8u10biJY4Nfqfc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/3ec692-a3e4-4379-a1c7-a7e3c6a892ec/1/aWZ-UauBVWetZ8u10biJY4Nfqfc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:5e:ae:b2:f6:0e:90:0f:93:e7:a8:da:6a:c7:2a:40:95:ce: 42:6e:45:de:c3:57:40:be:9b:20:74:dd:dc:72:57:ff:83:74: ab:3f:93:01:bb:c2:de:31:d5:dd:6a:87:a3:64:c0:46:fe:9d: ce:94:74:5c:e2:47:ab:fd:01:72:51:61:bc:d3:87:46:39:85: 4e:fc:e6:1e:92:b7:e2:e6:ce:56:ed:50:e2:b8:3a:6d:0f:b7: 07:9e:e5:37:b4:2e:e3:a4:ed:0b:52:66:55:05:83:83:7c:54: c8:fe:de:bc:2b:9b:57:94:2f:c8:34:e1:df:b8:c9:35:93:d4: 32:24:0b:91:cb:4f:69:7f:fb:12:c7:66:25:42:a7:c7:fc:b3: fa:b3:ba:8f:ce:b5:70:84:ee:03:61:d0:0e:6a:94:db:7f:ed: c9:60:a3:57:a7:9c:12:78:6c:01:1a:a1:a6:5c:ae:bb:db:a5: a5:d4:56:03:2f:c3:a0:79:43:2a:95:0f:72:6c:0c:9c:a4:e4: 0f:e7:32:03:c9:1f:47:f1:83:17:5d:0b:b8:5b:42:65:47:ce: c1:14:32:57:a0:43:8f:6f:7b:cb:ca:0c:d5:1d:51:67:42:64: ed:93:56:b0:ae:fd:47:3d:08:8c:8d:91:46:35:0a:3c:1f:a4: 8b:d5:74:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIe58aaaL7ZRlu/nN17lLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5NjY3ZTUxYWI4MTU1NjdhZDY3Y2JiNWQxYjg4OTYzODM1 ZmE5ZjcwHhcNMjYwMjA5MTYwMDIyWhcNMjYwMjEwMTYwMDIyWjAzMTEwLwYDVQQD Eyg1ODk1YmRiMjNiNjM3ZTMxYmQ3MDk0N2IwZDExMWRjNzliNDNjN2NiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvnh8s65vYueLV2D/OmwvbTUZGyaT qEmzgRvoQfgOlJIZvewNF2/QGb9Pb6tLkg6eabMOVEEZAunz9lJ2UWqOW+ah9XPU yke/QWZ7vU4HI7mISeU+gQ91bSC0/MTcHmYrFvmDOJzA/VH861g/Ehn70BsxpOgu 3pBVZquTBaD33jWuTCJ5TPWkdVQU1lSDZNpYgfcKihrCBcHDlBOi78slPvx8DDss XquOwVL81/BpbL9zjYMHjITT0vff8Ku6ZQdBuZZgf1XixJyXQC/f69I57BEzDPVa 43yk7mhkwklY0i6lbsztNgKmQGphibGkMRCR42wbkU1j9K0ozM3V6tnxfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFiVvbI7Y34xvXCUew0RHcebQ8fLMB8GA1UdIwQY MBaAFGlmflGrgVVnrWfLtdG4iWODX6n3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVdaLVVhdUJWV2V0Wjh1MTBiaUpZNE5mcWZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8zZWM2OTItYTNlNC00Mzc5LWExYzct YTdlM2M2YTg5MmVjLzEvYVdaLVVhdUJWV2V0Wjh1MTBiaUpZNE5mcWZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi8zZWM2OTItYTNlNC00Mzc5LWExYzctYTdlM2M2YTg5MmVj LzEvYVdaLVVhdUJWV2V0Wjh1MTBiaUpZNE5mcWZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApV6usvYO kA+T56jaascqQJXOQm5F3sNXQL6bIHTd3HJX/4N0qz+TAbvC3jHV3WqHo2TARv6d zpR0XOJHq/0BclFhvNOHRjmFTvzmHpK34ubOVu1Q4rg6bQ+3B57lN7Qu46TtC1Jm VQWDg3xUyP7evCubV5QvyDTh37jJNZPUMiQLkctPaX/7EsdmJUKnx/yz+rO6j861 cITuA2HQDmqU23/tyWCjV6ecEnhsARqhplyuu9ulpdRWAy/DoHlDKpUPcmwMnKTk D+cyA8kfR/GDF10LuFtCZUfOwRQyV6BDj297y8oM1R1RZ0Jk7ZNWsK79Rz0IjI2R RjUKPB+ki9V0zA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:44:51 2026 by rpki-client