This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft File: 0aiWnX4yy_knZkstxDa5bnFJpis.mft (raw, json) Hash identifier: 8ytpqh38b2icb0E5ZY/oDEUQ9sG2SPYxYXR8tg6IGFc= Subject key identifier: 28:C7:7B:CA:D6:35:ED:51:F2:D8:D6:AF:BB:02:43:89:C4:32:4D:80 Authority key identifier: D1:A8:96:9D:7E:32:CB:F9:27:66:4B:2D:C4:36:B9:6E:71:49:A6:2B Certificate issuer: /CN=d1a8969d7e32cbf927664b2dc436b96e7149a62b Certificate serial: 019C435914B6344859E341C0A9B76C59415B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft Manifest number: 1147 Signing time: Mon 09 Feb 2026 17:00:37 +0000 Manifest this update: Mon 09 Feb 2026 17:00:37 +0000 Manifest next update: Tue 10 Feb 2026 17:00:37 +0000 Files and hashes: 1: 0aiWnX4yy_knZkstxDa5bnFJpis.crl (hash: ioeURMt2yl/HfWvLqyylfoxiO+yjf30U4ONKrnW7pE4=) 2: FSxy8Ovh14yqtFHhoBFX5nBXdNU.roa (hash: duw06+xYQMFPNJS8Nqk1JSY0w1hNxbHtXY/z+S+qyJI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.crl rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:14:b6:34:48:59:e3:41:c0:a9:b7:6c:59:41:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1a8969d7e32cbf927664b2dc436b96e7149a62b Validity Not Before: Feb 9 17:00:37 2026 GMT Not After : Feb 10 17:00:37 2026 GMT Subject: CN=28c77bcad635ed51f2d8d6afbb024389c4324d80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:22:bf:4b:74:6a:89:14:97:8f:01:09:49:9e: d3:d9:36:9f:4e:c0:ed:38:6e:2c:c7:f1:b3:d2:6b: 26:93:98:34:b6:b2:c3:0b:7f:3d:54:14:d2:6e:6a: db:c4:6d:18:6a:d4:54:ea:ff:43:d2:85:03:e2:ee: 80:71:d3:4b:ee:68:a0:70:52:65:32:b7:7a:9a:14: fa:83:56:74:b8:7f:c6:47:cc:0d:52:40:2d:75:5a: cc:96:59:66:3c:d2:ea:f8:00:5c:7e:47:29:9a:df: e6:2e:2a:ac:20:dc:f1:d0:7c:69:9f:54:fa:e3:a9: 1b:c5:fa:1a:19:5e:a6:4a:5e:35:43:39:b6:51:06: ef:57:96:b8:93:78:ee:b0:6e:ce:87:b1:b2:e6:5d: d1:d0:8f:93:b6:71:9f:77:34:95:43:d0:60:3d:a0: d6:e4:9a:43:c8:63:71:9e:2f:f2:a1:e4:94:0a:2e: bc:44:c8:40:70:bb:09:19:ab:59:38:72:31:2f:07: aa:82:71:ef:58:08:86:61:7c:d0:19:b4:5f:90:c7: aa:29:75:9b:10:9c:65:ea:26:02:78:36:36:d8:6a: 6f:b3:e1:ac:3e:4c:44:d5:31:33:67:48:9b:8c:10: d5:2d:26:e8:8a:72:92:d8:b8:6d:c5:8e:0b:69:14: 2e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:C7:7B:CA:D6:35:ED:51:F2:D8:D6:AF:BB:02:43:89:C4:32:4D:80 X509v3 Authority Key Identifier: keyid:D1:A8:96:9D:7E:32:CB:F9:27:66:4B:2D:C4:36:B9:6E:71:49:A6:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:af:43:79:8a:f5:f9:c2:c1:c3:13:ac:2a:66:3f:26:d5:34: e3:09:20:66:6d:1d:7f:58:5a:a7:b2:56:8b:88:da:79:0c:34: 1e:ed:7d:1f:3d:6b:cd:d5:ac:b1:45:c8:ef:0b:c1:8d:36:52: 53:02:c5:1c:db:e6:f7:f9:5f:bc:2e:28:28:60:2f:81:50:9b: fb:3f:36:0e:04:e6:c8:cc:05:90:c1:3e:68:70:72:72:0d:ea: 5e:09:16:3c:21:45:e8:7c:82:19:85:88:bd:33:8d:e5:56:68: e8:dd:21:0d:98:5a:5a:a4:cc:cd:b0:13:6b:09:54:ac:67:c4: 16:85:28:8f:c8:f6:96:31:18:da:be:1b:52:fd:74:fa:29:66: 00:ca:8b:d4:32:a4:81:aa:e1:26:30:2c:96:ad:cf:0b:65:c1: 37:6e:c5:00:56:2e:8c:c9:6e:28:3d:9d:de:96:35:24:4e:a4: 32:ac:96:7a:30:59:a6:a5:2f:52:fa:00:b6:29:48:92:f6:bf: ca:5c:7a:9b:9d:53:9c:cd:84:99:19:5d:87:12:1d:16:e4:f8: c3:d3:5d:e2:61:ba:d4:4e:6b:1c:4a:b6:a7:55:e1:75:24:99: 62:00:69:2e:4e:75:c0:42:9f:01:b6:1d:0d:dc:7a:9a:80:33: fe:8e:63:0a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWRS2NEhZ40HAqbdsWUFbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxYTg5NjlkN2UzMmNiZjkyNzY2NGIyZGM0MzZiOTZlNzE0 OWE2MmIwHhcNMjYwMjA5MTcwMDM3WhcNMjYwMjEwMTcwMDM3WjAzMTEwLwYDVQQD EygyOGM3N2JjYWQ2MzVlZDUxZjJkOGQ2YWZiYjAyNDM4OWM0MzI0ZDgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2CK/S3RqiRSXjwEJSZ7T2TafTsDt OG4sx/Gz0msmk5g0trLDC389VBTSbmrbxG0YatRU6v9D0oUD4u6AcdNL7migcFJl Mrd6mhT6g1Z0uH/GR8wNUkAtdVrMlllmPNLq+ABcfkcpmt/mLiqsINzx0Hxpn1T6 46kbxfoaGV6mSl41Qzm2UQbvV5a4k3jusG7Oh7Gy5l3R0I+TtnGfdzSVQ9BgPaDW 5JpDyGNxni/yoeSUCi68RMhAcLsJGatZOHIxLweqgnHvWAiGYXzQGbRfkMeqKXWb EJxl6iYCeDY22Gpvs+GsPkxE1TEzZ0ibjBDVLSboinKS2LhtxY4LaRQunwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCjHe8rWNe1R8tjWr7sCQ4nEMk2AMB8GA1UdIwQY MBaAFNGolp1+Msv5J2ZLLcQ2uW5xSaYrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGFpV25YNHl5X2tuWmtzdHhEYTVibkZKcGlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny8yNzI5NGUtYjllNy00NjYwLTkzMmQt MjEwNDhhNzM0YTQ2LzEvMGFpV25YNHl5X2tuWmtzdHhEYTVibkZKcGlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny8yNzI5NGUtYjllNy00NjYwLTkzMmQtMjEwNDhhNzM0YTQ2 LzEvMGFpV25YNHl5X2tuWmtzdHhEYTVibkZKcGlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiq9DeYr1 +cLBwxOsKmY/JtU04wkgZm0df1hap7JWi4jaeQw0Hu19Hz1rzdWssUXI7wvBjTZS UwLFHNvm9/lfvC4oKGAvgVCb+z82DgTmyMwFkME+aHBycg3qXgkWPCFF6HyCGYWI vTON5VZo6N0hDZhaWqTMzbATawlUrGfEFoUoj8j2ljEY2r4bUv10+ilmAMqL1DKk garhJjAslq3PC2XBN27FAFYujMluKD2d3pY1JE6kMqyWejBZpqUvUvoAtilIkva/ ylx6m51TnM2EmRldhxIdFuT4w9Nd4mG61E5rHEq2p1XhdSSZYgBpLk51wEKfAbYd Ddx6moAz/o5jCg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:34:00 2026 by rpki-client