This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft File: APfVbNN-MeClJfW7GluvX0meQG0.mft (raw, json) Hash identifier: oV8ihZRyDNoqieDQ7s0JMUKyhKHdt6arqIPo+BFm84Y= Subject key identifier: C2:8E:22:AB:45:E2:8A:97:C9:F5:6A:E5:E4:A1:47:1E:D4:4F:79:C7 Authority key identifier: 00:F7:D5:6C:D3:7E:31:E0:A5:25:F5:BB:1A:5B:AF:5F:49:9E:40:6D Certificate issuer: /CN=00f7d56cd37e31e0a525f5bb1a5baf5f499e406d Certificate serial: 019C43C72EDABF89D1E05B7A92B294A066D6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft Manifest number: 1765 Signing time: Mon 09 Feb 2026 19:00:52 +0000 Manifest this update: Mon 09 Feb 2026 19:00:52 +0000 Manifest next update: Tue 10 Feb 2026 19:00:52 +0000 Files and hashes: 1: APfVbNN-MeClJfW7GluvX0meQG0.crl (hash: ra21Q1aDo/XRzzm1nNxGjdf3CivqGxBMJNVKCZEpddA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.crl rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:2e:da:bf:89:d1:e0:5b:7a:92:b2:94:a0:66:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00f7d56cd37e31e0a525f5bb1a5baf5f499e406d Validity Not Before: Feb 9 19:00:52 2026 GMT Not After : Feb 10 19:00:52 2026 GMT Subject: CN=c28e22ab45e28a97c9f56ae5e4a1471ed44f79c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:71:41:e1:e9:da:ad:c0:a1:50:2c:b9:9f:a1: c4:4c:67:bf:8a:43:59:df:3f:d0:ba:db:c4:f9:ce: a7:df:70:6f:b4:af:33:48:0f:18:dd:a4:2d:c4:0c: df:1a:3c:3c:bd:8a:67:23:55:d6:81:b3:d8:26:76: be:e7:04:9a:30:3a:ba:33:f8:02:8e:ee:79:10:12: 67:7e:d4:fd:87:e0:6d:ae:2c:b3:6d:91:e6:b4:0e: 83:7b:60:02:a8:d5:33:07:f4:34:73:3b:a3:21:ef: cf:52:e2:24:f0:9c:e3:69:70:84:c6:58:0d:48:2d: b2:a0:b0:a0:f9:a0:a6:88:aa:e1:73:79:72:34:47: 19:94:9d:00:ae:bd:e8:61:6a:c6:2c:47:49:fa:b0: b2:82:1f:ec:1d:c9:34:d9:7c:c9:64:8a:44:ee:97: 06:1a:54:88:a2:4e:07:78:7f:b1:fe:73:d2:d7:95: bf:39:03:8a:9c:39:be:87:49:12:73:88:27:c6:2b: 41:33:4e:68:ec:a7:59:66:27:26:d4:43:ed:91:39: 6d:51:33:c5:ce:0e:2b:63:bf:25:91:24:61:df:aa: 1f:30:55:e9:5c:c7:09:7f:54:76:08:ba:d3:3e:d3: a9:70:c4:83:33:bd:32:52:f4:65:ae:c5:db:a6:92: fb:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:8E:22:AB:45:E2:8A:97:C9:F5:6A:E5:E4:A1:47:1E:D4:4F:79:C7 X509v3 Authority Key Identifier: keyid:00:F7:D5:6C:D3:7E:31:E0:A5:25:F5:BB:1A:5B:AF:5F:49:9E:40:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:36:9c:6f:74:59:29:04:18:63:3e:7f:86:27:50:b8:cf:52: 2d:07:a8:9a:62:c6:b6:79:d3:be:e4:3c:7c:fb:34:a7:8c:4c: 83:b4:e2:5f:a8:d3:2f:72:0d:86:84:a5:bb:ef:0c:ef:32:9b: ef:04:33:21:9d:fd:f7:6d:80:33:97:7e:a2:4f:8a:6b:2e:92: 16:72:0c:64:ac:6a:39:8c:c1:98:b0:cb:29:cd:41:7b:e8:a5: 15:a7:76:22:2d:c5:6b:91:dd:f2:e8:fc:e4:d1:99:a7:f4:4f: 6d:69:2d:67:89:b0:a2:08:89:62:41:d9:ba:21:32:1f:d0:38: 5b:b7:9d:4a:ad:bf:32:a9:4b:c2:ef:85:e6:00:d2:58:6c:32: f9:f4:cf:17:c3:03:a8:5b:2d:7b:9c:c7:c7:e3:25:e0:19:0b: 50:f5:a1:56:85:91:ae:d7:55:83:09:a2:ae:0e:3e:cc:27:0d: 74:4d:6b:e1:11:9d:b5:b5:11:d6:c3:73:c2:64:f0:2d:ad:35: 0a:85:14:7c:3d:20:9b:98:d6:38:d0:7d:4a:96:38:f4:d2:f0: 79:bf:29:80:74:14:de:57:12:b3:6c:a9:75:b6:74:80:2a:28: 6f:97:77:e4:51:eb:5f:29:05:a7:37:a4:a6:b7:9d:d7:ba:cc: 5e:21:fc:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxy7av4nR4Ft6krKUoGbWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZjdkNTZjZDM3ZTMxZTBhNTI1ZjViYjFhNWJhZjVmNDk5 ZTQwNmQwHhcNMjYwMjA5MTkwMDUyWhcNMjYwMjEwMTkwMDUyWjAzMTEwLwYDVQQD EyhjMjhlMjJhYjQ1ZTI4YTk3YzlmNTZhZTVlNGExNDcxZWQ0NGY3OWM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAunFB4enarcChUCy5n6HETGe/ikNZ 3z/QutvE+c6n33BvtK8zSA8Y3aQtxAzfGjw8vYpnI1XWgbPYJna+5wSaMDq6M/gC ju55EBJnftT9h+BtriyzbZHmtA6De2ACqNUzB/Q0czujIe/PUuIk8JzjaXCExlgN SC2yoLCg+aCmiKrhc3lyNEcZlJ0Arr3oYWrGLEdJ+rCygh/sHck02XzJZIpE7pcG GlSIok4HeH+x/nPS15W/OQOKnDm+h0kSc4gnxitBM05o7KdZZicm1EPtkTltUTPF zg4rY78lkSRh36ofMFXpXMcJf1R2CLrTPtOpcMSDM70yUvRlrsXbppL7yQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMKOIqtF4oqXyfVq5eShRx7UT3nHMB8GA1UdIwQY MBaAFAD31WzTfjHgpSX1uxpbr19JnkBtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVBmVmJOTi1NZUNsSmZXN0dsdXZYMG1lUUcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC84Y2I3ZWEtZDc1ZC00NmY2LWE1YzMt MTNiMjllYWUxOWIzLzEvQVBmVmJOTi1NZUNsSmZXN0dsdXZYMG1lUUcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC84Y2I3ZWEtZDc1ZC00NmY2LWE1YzMtMTNiMjllYWUxOWIz LzEvQVBmVmJOTi1NZUNsSmZXN0dsdXZYMG1lUUcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGjacb3RZ KQQYYz5/hidQuM9SLQeommLGtnnTvuQ8fPs0p4xMg7TiX6jTL3INhoSlu+8M7zKb 7wQzIZ39922AM5d+ok+Kay6SFnIMZKxqOYzBmLDLKc1Be+ilFad2Ii3Fa5Hd8uj8 5NGZp/RPbWktZ4mwogiJYkHZuiEyH9A4W7edSq2/MqlLwu+F5gDSWGwy+fTPF8MD qFste5zHx+Ml4BkLUPWhVoWRrtdVgwmirg4+zCcNdE1r4RGdtbUR1sNzwmTwLa01 CoUUfD0gm5jWONB9SpY49NLweb8pgHQU3lcSs2ypdbZ0gCoob5d35FHrXykFpzek pred17rMXiH8pQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:17:51 2026 by rpki-client