This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft File: aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft (raw, json) Hash identifier: S/4LIItLNyOVE0HxPv5ug8t0MXzC6OrsfwrICjwCGRc= Subject key identifier: 97:FF:4D:0E:3A:7B:3B:26:72:79:67:19:19:D6:ED:6D:01:D4:0F:FD Authority key identifier: 68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55 Certificate issuer: /CN=689c68a45661f90a4059bd8c29a3c967bf92e855 Certificate serial: 019C42B44D4F417D1315BE50D0B80E8516C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft Manifest number: 07D3 Signing time: Mon 09 Feb 2026 14:00:38 +0000 Manifest this update: Mon 09 Feb 2026 14:00:38 +0000 Manifest next update: Tue 10 Feb 2026 14:00:38 +0000 Files and hashes: 1: Jk9ilYHmL8kSaIq3l2BZVPIGTwk.roa (hash: gQhROHe9syjBhq1z8TMAwj4HKTkzYppUUMDy4zn8kMo=) 2: aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl (hash: wtay7Flj7Y6yPRYs3LPfeWzWcRnorJNRr63EcoMHFnw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:4d:4f:41:7d:13:15:be:50:d0:b8:0e:85:16:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=689c68a45661f90a4059bd8c29a3c967bf92e855 Validity Not Before: Feb 9 14:00:38 2026 GMT Not After : Feb 10 14:00:38 2026 GMT Subject: CN=97ff4d0e3a7b3b267279671919d6ed6d01d40ffd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5c:b3:4c:1c:09:fd:f0:a6:69:7f:f1:bc:b9: c8:bc:d4:c2:a4:d8:9e:04:35:74:8a:24:7b:05:84: 18:b7:e4:34:54:dd:74:ef:21:ff:f8:19:f3:1f:71: e8:ef:66:80:19:2d:ae:cd:6b:7a:05:ca:4f:63:7b: 68:2d:86:3d:f8:30:cd:b0:73:0f:e8:4b:be:a0:09: 3f:5c:2c:7c:12:25:0b:82:8a:5b:86:51:27:1a:50: 38:6c:43:1b:a6:77:93:f8:bc:97:61:f8:f2:cd:e4: dd:48:09:a4:66:91:f8:33:78:18:8d:01:61:e6:3c: e1:51:a2:e7:37:dd:8e:40:45:e4:4d:8d:b7:d8:f1: ff:ba:46:96:af:5c:39:31:50:62:31:7c:7b:00:b3: 35:6f:e0:6a:1a:f5:78:08:aa:56:93:c5:b1:dd:e3: f4:4f:76:2d:c5:6e:00:8a:40:a5:af:3d:14:8a:8e: 93:0c:92:27:b8:63:19:7f:a2:a0:6f:31:01:85:67: d1:bc:ce:fb:ea:ea:1c:04:9a:7f:18:30:eb:a0:01: f3:59:11:68:01:e5:a3:15:05:e4:51:ab:92:b0:36: eb:4c:fe:7e:d1:a1:5a:55:94:60:64:f6:00:5a:30: 8b:af:e5:e5:9f:7e:03:56:71:70:fe:11:6e:ad:45: 11:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:FF:4D:0E:3A:7B:3B:26:72:79:67:19:19:D6:ED:6D:01:D4:0F:FD X509v3 Authority Key Identifier: keyid:68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:f2:72:33:64:27:ca:db:18:67:bf:22:ec:e4:35:06:e5:12: 5a:47:81:7b:d9:9c:63:09:f9:c3:7a:9f:d7:94:fa:f1:a8:3c: e2:f0:0a:69:5b:3f:bc:05:8d:30:31:87:9b:8b:d4:2e:eb:fc: c2:08:fe:1c:4b:33:5b:89:2a:0c:eb:76:62:27:c9:87:b8:09: b4:d6:ac:f4:c3:17:2a:34:c0:2d:68:1d:6b:31:7f:a8:bc:97: 90:6b:41:e7:6b:73:fb:34:d4:f2:b6:ab:59:f9:1c:2a:dc:52: 10:97:42:e2:28:ca:33:3c:ef:d6:81:0d:33:af:1f:26:5f:47: 23:13:44:c7:2b:aa:4f:34:41:46:a7:0a:1f:db:25:ac:f3:ca: b9:5f:7f:ff:b4:32:0d:77:5e:ce:cf:92:e8:79:26:d9:b6:66: 72:a6:15:a2:c6:30:e4:ca:48:40:d6:f2:ab:da:8e:ba:23:df: e2:f3:a8:6c:17:d9:07:9c:49:19:ed:16:72:4c:85:e7:a6:9b: f2:cc:2f:6a:f4:fb:be:48:25:02:42:56:8f:ac:8e:5e:69:ec: d0:23:d4:1c:45:7e:92:45:39:71:64:ea:fb:46:c3:48:cb:29: 2f:95:fd:04:41:f8:cf:34:cd:34:64:b7:d1:3f:61:f9:25:c9: 04:08:ae:39 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtE1PQX0TFb5Q0LgOhRbEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4OWM2OGE0NTY2MWY5MGE0MDU5YmQ4YzI5YTNjOTY3YmY5 MmU4NTUwHhcNMjYwMjA5MTQwMDM4WhcNMjYwMjEwMTQwMDM4WjAzMTEwLwYDVQQD Eyg5N2ZmNGQwZTNhN2IzYjI2NzI3OTY3MTkxOWQ2ZWQ2ZDAxZDQwZmZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxFyzTBwJ/fCmaX/xvLnIvNTCpNie BDV0iiR7BYQYt+Q0VN107yH/+BnzH3Ho72aAGS2uzWt6BcpPY3toLYY9+DDNsHMP 6Eu+oAk/XCx8EiULgopbhlEnGlA4bEMbpneT+LyXYfjyzeTdSAmkZpH4M3gYjQFh 5jzhUaLnN92OQEXkTY232PH/ukaWr1w5MVBiMXx7ALM1b+BqGvV4CKpWk8Wx3eP0 T3YtxW4AikClrz0Uio6TDJInuGMZf6KgbzEBhWfRvM776uocBJp/GDDroAHzWRFo AeWjFQXkUauSsDbrTP5+0aFaVZRgZPYAWjCLr+Xln34DVnFw/hFurUURVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJf/TQ46ezsmcnlnGRnW7W0B1A/9MB8GA1UdIwQY MBaAFGicaKRWYfkKQFm9jCmjyWe/kuhVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUp4b3BGWmgtUXBBV2IyTUthUEpaNy1TNkZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC8zOWRhY2MtMWM1Ny00ZGViLWEyMjUt YjYyMDdmNzU1MjY3LzEvYUp4b3BGWmgtUXBBV2IyTUthUEpaNy1TNkZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC8zOWRhY2MtMWM1Ny00ZGViLWEyMjUtYjYyMDdmNzU1MjY3 LzEvYUp4b3BGWmgtUXBBV2IyTUthUEpaNy1TNkZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYPJyM2Qn ytsYZ78i7OQ1BuUSWkeBe9mcYwn5w3qf15T68ag84vAKaVs/vAWNMDGHm4vULuv8 wgj+HEszW4kqDOt2YifJh7gJtNas9MMXKjTALWgdazF/qLyXkGtB52tz+zTU8rar WfkcKtxSEJdC4ijKMzzv1oENM68fJl9HIxNExyuqTzRBRqcKH9slrPPKuV9//7Qy DXdezs+S6Hkm2bZmcqYVosYw5MpIQNbyq9qOuiPf4vOobBfZB5xJGe0WckyF56ab 8swvavT7vkglAkJWj6yOXmns0CPUHEV+kkU5cWTq+0bDSMspL5X9BEH4zzTNNGS3 0T9h+SXJBAiuOQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:58 2026 by rpki-client